This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5F33/2F6AC13C0BEC11EC92130D5AC4F9AE02/kxe7Gf-Qf0cYEetWEAqgvJLPFJc.mft File: kxe7Gf-Qf0cYEetWEAqgvJLPFJc.mft (raw, json) Hash identifier: DxyMpwDMNM5IBiSC984ARrKbK4faJ+8nHVfIHka1E1M= Subject key identifier: 35:D1:CB:54:E8:8B:74:2F:D3:CC:EB:6E:53:AA:3E:72:A9:75:B0:B1 Authority key identifier: 93:17:BB:19:FF:90:7F:47:18:11:EB:56:10:0A:A0:BC:92:CF:14:97 Certificate issuer: /CN=A91B5F33/serialNumber=9317BB19FF907F471811EB56100AA0BC92CF1497 Certificate serial: 057F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kxe7Gf-Qf0cYEetWEAqgvJLPFJc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5F33/2F6AC13C0BEC11EC92130D5AC4F9AE02/kxe7Gf-Qf0cYEetWEAqgvJLPFJc.mft Manifest number: 0573 Signing time: Sun 28 Dec 2025 22:30:44 +0000 Manifest this update: Sun 28 Dec 2025 22:30:44 +0000 Manifest next update: Sun 04 Jan 2026 22:30:44 +0000 Files and hashes: 1: kxe7Gf-Qf0cYEetWEAqgvJLPFJc.crl (hash: yD8NOYPRMWUOd4/Ey94mrQKdl4Wqi+rPZzxf9KAqbiw=) 2: 720FAF9A0BEF11ECAEF3EA5DC4F9AE02.roa (hash: So00zJ1AKw4WG3WlOWEkw0uPB14Z1y1sOqNnyZb7Bn8=) 3: 7187CDE60BEF11ECAEF3EA5DC4F9AE02.roa (hash: YuwAjf0VpmVoTjcP53b2MZy/33jsOggpPYKkc+Tnm7Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5F33/2F6AC13C0BEC11EC92130D5AC4F9AE02/kxe7Gf-Qf0cYEetWEAqgvJLPFJc.crl rsync://rpki.apnic.net/member_repository/A91B5F33/2F6AC13C0BEC11EC92130D5AC4F9AE02/kxe7Gf-Qf0cYEetWEAqgvJLPFJc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kxe7Gf-Qf0cYEetWEAqgvJLPFJc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 Jan 2026 22:30:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1407 (0x57f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5F33, serialNumber=9317BB19FF907F471811EB56100AA0BC92CF1497 Validity Not Before: Dec 28 22:30:44 2025 GMT Not After : Jan 4 22:30:44 2026 GMT Subject: CN=6951af94-f664 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:31:bd:b8:ba:4e:32:3c:b1:c1:f0:1f:91:7b: 40:14:b8:4d:d1:3e:bf:8f:a8:0c:ff:d7:f7:53:71: 62:b1:91:a0:f2:4a:56:68:b0:53:98:a7:b2:70:3d: 85:86:0d:c4:c9:f6:02:12:82:79:4c:67:44:b5:98: 0c:80:76:47:82:33:88:13:a3:7b:ad:a8:d1:1d:d9: c2:87:80:5b:71:01:91:90:31:47:ee:8c:3f:d1:05: 21:19:37:9a:7f:fa:02:f2:98:53:41:18:8f:39:06: 2b:1e:d2:31:6d:8a:83:0e:b7:05:c6:ef:80:7a:8a: 6a:61:df:00:c7:de:23:6b:4a:c3:72:22:37:7e:be: 9f:aa:f7:c0:d3:d2:f8:4a:69:2e:4f:04:4b:81:83: fc:b8:ae:2f:d1:8d:a5:a2:a0:1f:e9:91:cc:9f:b8: 99:a0:fd:7d:6e:8c:e9:7b:be:8e:62:28:80:22:b3: 7b:fb:99:10:2c:b6:cc:e0:5e:92:84:64:b8:4f:f3: ed:51:f2:c7:ea:db:f0:7c:1c:72:28:ff:27:e7:05: 7d:af:2f:f5:dc:0e:6b:f4:c9:74:b4:eb:b5:dd:35: 85:ee:df:b3:9d:51:fb:a4:70:4c:28:e3:85:29:e9: cb:71:1b:17:0d:0f:07:8b:e9:19:ba:28:8b:87:20: 2a:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:D1:CB:54:E8:8B:74:2F:D3:CC:EB:6E:53:AA:3E:72:A9:75:B0:B1 X509v3 Authority Key Identifier: keyid:93:17:BB:19:FF:90:7F:47:18:11:EB:56:10:0A:A0:BC:92:CF:14:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5F33/2F6AC13C0BEC11EC92130D5AC4F9AE02/kxe7Gf-Qf0cYEetWEAqgvJLPFJc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kxe7Gf-Qf0cYEetWEAqgvJLPFJc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5F33/2F6AC13C0BEC11EC92130D5AC4F9AE02/kxe7Gf-Qf0cYEetWEAqgvJLPFJc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:7c:3c:06:4a:d1:e9:26:6e:b9:4d:6f:41:0a:30:1a:b0:ff: aa:3b:b6:2b:5a:e3:cc:18:d2:87:bf:1f:2e:1b:7e:0c:2e:2b: 54:c0:3c:68:7d:a6:0d:d1:77:c5:6d:f5:44:31:8c:3f:86:29: 7d:c4:43:b4:75:c8:02:2c:e7:c0:ea:ff:3e:77:4d:6b:33:8a: df:03:70:81:4a:d6:30:50:84:4d:eb:f5:7d:cb:11:01:02:1b: a0:02:5d:93:5d:9f:dc:78:b2:a8:98:a3:27:d3:a8:e0:07:c3: c8:d6:5b:7e:39:8e:a4:b5:2a:a1:35:82:7d:39:ff:34:b5:2d: 3b:ac:6c:6b:a1:41:0d:1e:89:19:b1:ee:94:2e:7b:c4:ea:a6: 78:20:1c:8d:05:19:52:34:42:9f:54:a5:ec:f2:d3:90:23:65: 4b:d9:35:da:8f:9e:d9:83:a5:16:50:4a:02:b1:a8:f3:a9:53: d1:60:11:e9:6f:7e:c4:d1:c4:f3:e7:8f:38:26:0d:4e:aa:bf: 02:55:c0:eb:97:7d:76:90:e0:28:46:a4:dc:74:5b:0b:7a:e8: 4b:ae:63:1c:01:2d:95:39:c3:73:56:14:f2:d2:ac:d5:fa:67: 2b:b8:98:2e:73:b3:af:9b:35:37:23:42:86:f6:9e:a6:bc:ca: 49:78:94:e9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBX8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVGMzMxMTAvBgNVBAUTKDkzMTdCQjE5RkY5MDdGNDcxODExRUI1NjEwMEFBMEJD OTJDRjE0OTcwHhcNMjUxMjI4MjIzMDQ0WhcNMjYwMTA0MjIzMDQ0WjAYMRYwFAYD VQQDDA02OTUxYWY5NC1mNjY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApTG9uLpOMjyxwfAfkXtAFLhN0T6/j6gM/9f3U3FisZGg8kpWaLBTmKeycD2F hg3EyfYCEoJ5TGdEtZgMgHZHgjOIE6N7rajRHdnCh4BbcQGRkDFH7ow/0QUhGTea f/oC8phTQRiPOQYrHtIxbYqDDrcFxu+AeopqYd8Ax94ja0rDciI3fr6fqvfA09L4 SmkuTwRLgYP8uK4v0Y2loqAf6ZHMn7iZoP19bozpe76OYiiAIrN7+5kQLLbM4F6S hGS4T/PtUfLH6tvwfBxyKP8n5wV9ry/13A5r9Ml0tOu13TWF7t+znVH7pHBMKOOF KenLcRsXDQ8Hi+kZuiiLhyAqgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDXRy1To i3Qv08zrblOqPnKpdbCxMB8GA1UdIwQYMBaAFJMXuxn/kH9HGBHrVhAKoLySzxSX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUYzMy8yRjZBQzEzQzBC RUMxMUVDOTIxMzBENUFDNEY5QUUwMi9reGU3R2YtUWYwY1lFZXRXRUFxZ3ZKTFBG SmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t4ZTdHZi1RZjBjWUVldFdFQXFndkpMUEZKYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NUYzMy8yRjZBQzEzQzBCRUMxMUVDOTIxMzBENUFDNEY5QUUwMi9reGU3R2YtUWYw Y1lFZXRXRUFxZ3ZKTFBGSmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAufDwGStHpJm65TW9BCjAasP+qO7YrWuPMGNKHvx8uG34MLitUwDxo faYN0XfFbfVEMYw/hil9xEO0dcgCLOfA6v8+d01rM4rfA3CBStYwUIRN6/V9yxEB AhugAl2TXZ/ceLKomKMn06jgB8PI1lt+OY6ktSqhNYJ9Of80tS07rGxroUENHokZ se6ULnvE6qZ4IByNBRlSNEKfVKXs8tOQI2VL2TXaj57Zg6UWUEoCsajzqVPRYBHp b37E0cTz5484Jg1Oqr8CVcDrl312kOAoRqTcdFsLeuhLrmMcAS2VOcNzVhTy0qzV +mcruJguc7OvmzU3I0KG9p6mvMpJeJTp -----END CERTIFICATE-----Generated at Tue Dec 30 12:29:27 2025 by rpki-client