This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.mft File: kQglePceS4YFfcPrBwP-ZYnmaJE.mft (raw, json) Hash identifier: x4dU5F5VFi3Y8ahUN7DH2niYhEfMeXRajSkAhlerljI= Subject key identifier: 9A:C8:43:08:CC:E1:27:F0:AB:74:45:8D:13:52:20:C2:E3:BC:3C:E4 Authority key identifier: 91:08:25:78:F7:1E:4B:86:05:7D:C3:EB:07:03:FE:65:89:E6:68:91 Certificate issuer: /CN=A91BC039/serialNumber=91082578F71E4B86057DC3EB0703FE6589E66891 Certificate serial: DB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kQglePceS4YFfcPrBwP-ZYnmaJE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.mft Manifest number: D8 Signing time: Wed 31 Dec 2025 22:57:48 +0000 Manifest this update: Wed 31 Dec 2025 22:57:47 +0000 Manifest next update: Wed 07 Jan 2026 22:57:47 +0000 Files and hashes: 1: kQglePceS4YFfcPrBwP-ZYnmaJE.crl (hash: FagX8UpbWQyRJRyVdqbF1bf6OoKiTfJam/0zl+uT3Qg=) 2: 1167F6B2A18211EFA7475221C4F9AE02.roa (hash: Ifm3IRESO4IiNyy88ffJnkP8xwASc9gofSuSR7nlwHs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.crl rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kQglePceS4YFfcPrBwP-ZYnmaJE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 07 Jan 2026 22:57:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 219 (0xdb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC039, serialNumber=91082578F71E4B86057DC3EB0703FE6589E66891 Validity Not Before: Dec 31 22:57:47 2025 GMT Not After : Jan 7 22:57:47 2026 GMT Subject: CN=6955aa6b-ad7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:c1:15:39:45:1d:be:46:59:70:04:e8:6f:f9: 68:ec:56:f1:cf:d8:cf:35:b7:b3:88:75:2a:9c:6d: cb:e0:c4:8d:94:14:4a:35:8d:28:d9:ce:e8:33:8a: 73:54:cd:26:93:b6:7e:bc:33:08:80:f5:2d:14:38: 6d:41:8d:e0:8b:22:62:d4:e4:21:60:bc:59:00:f5: 25:29:04:ae:63:43:07:93:29:a2:48:a3:d0:83:01: b2:7b:af:d1:42:1e:31:c3:b5:72:52:f3:47:6a:8f: c3:a9:c0:4c:77:73:d8:7b:37:ed:ee:55:d4:1a:99: 5b:fb:0b:22:ec:5e:24:ac:fd:99:e8:1d:df:ab:ab: f2:d5:9c:d4:2a:ed:bf:34:48:f0:29:83:8e:2b:b0: 53:3b:37:7f:c1:ef:6f:b2:11:57:06:67:a7:d9:7f: c9:c4:92:a8:c4:a2:1c:39:ab:e5:7e:bf:89:81:14: ad:7f:b7:1f:3b:29:64:5c:e0:1e:b2:0c:7e:ce:9d: 2b:d1:34:e8:73:0b:63:98:65:72:42:f8:74:c6:74: 24:80:2e:61:20:1c:76:03:37:62:3a:e9:f0:34:6f: ec:fa:c8:be:ce:84:e9:ee:95:24:7e:77:68:98:a9: 44:d5:be:ac:89:f7:f9:01:7d:5c:9a:a8:03:05:0b: d5:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:C8:43:08:CC:E1:27:F0:AB:74:45:8D:13:52:20:C2:E3:BC:3C:E4 X509v3 Authority Key Identifier: keyid:91:08:25:78:F7:1E:4B:86:05:7D:C3:EB:07:03:FE:65:89:E6:68:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kQglePceS4YFfcPrBwP-ZYnmaJE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:69:03:ca:1c:9d:ea:5f:29:78:da:6a:74:e6:a6:36:cb:8e: 52:ed:d0:1f:5f:7c:7a:d9:ec:59:d8:6c:8f:01:e3:23:d1:7a: 3d:1b:f8:ce:3b:7e:e8:b2:a0:5f:5c:73:5b:b7:74:bc:4d:92: 2b:dd:63:af:ec:51:cc:09:47:5f:d4:5e:0c:8a:21:04:49:4c: 0f:27:ea:d7:db:6e:65:b1:02:63:d4:d1:a2:35:d8:5c:a4:ce: 13:ff:96:1f:c4:a2:8d:2f:b0:db:ce:3e:b2:f9:6e:83:02:cc: cb:04:2d:61:eb:e4:1e:dc:0b:9b:82:f5:5e:bc:85:7a:3b:da: 15:12:d2:f8:8e:3d:39:71:5d:eb:9a:37:3c:67:82:a8:a6:a1: 5c:5b:df:fd:87:9f:9f:b4:15:d8:8a:5c:c5:8e:f1:29:28:29: 97:93:f6:3c:d7:92:74:22:02:ff:d9:b3:44:89:5b:b0:9c:b1: e5:f4:5a:c2:a1:00:08:0b:43:f4:ac:cc:00:95:ae:65:55:e6: ff:92:e9:91:59:9e:73:58:3d:f6:2e:4a:d8:73:81:02:89:9f: c4:2d:ba:48:bf:c6:9a:61:a3:df:6d:3f:98:05:f5:17:cc:13: fb:12:e7:62:cf:65:3a:22:df:a3:85:27:9c:b4:83:fa:d7:30: 65:bd:22:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkMwMzkxMTAvBgNVBAUTKDkxMDgyNTc4RjcxRTRCODYwNTdEQzNFQjA3MDNGRTY1 ODlFNjY4OTEwHhcNMjUxMjMxMjI1NzQ3WhcNMjYwMTA3MjI1NzQ3WjAYMRYwFAYD VQQDDA02OTU1YWE2Yi1hZDdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3cEVOUUdvkZZcATob/lo7Fbxz9jPNbeziHUqnG3L4MSNlBRKNY0o2c7oM4pz VM0mk7Z+vDMIgPUtFDhtQY3giyJi1OQhYLxZAPUlKQSuY0MHkymiSKPQgwGye6/R Qh4xw7VyUvNHao/DqcBMd3PYezft7lXUGplb+wsi7F4krP2Z6B3fq6vy1ZzUKu2/ NEjwKYOOK7BTOzd/we9vshFXBmen2X/JxJKoxKIcOavlfr+JgRStf7cfOylkXOAe sgx+zp0r0TTocwtjmGVyQvh0xnQkgC5hIBx2AzdiOunwNG/s+si+zoTp7pUkfndo mKlE1b6siff5AX1cmqgDBQvVjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJrIQwjM 4Sfwq3RFjRNSIMLjvDzkMB8GA1UdIwQYMBaAFJEIJXj3HkuGBX3D6wcD/mWJ5miR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzAzOS8xNTM0QTA1QUEx NzQxMUVGQkY2MTY2MjRDNEY5QUUwMi9rUWdsZVBjZVM0WUZmY1ByQndQLVpZbm1h SkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2tRZ2xlUGNlUzRZRmZjUHJCd1AtWllubWFKRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QzAzOS8xNTM0QTA1QUExNzQxMUVGQkY2MTY2MjRDNEY5QUUwMi9rUWdsZVBjZVM0 WUZmY1ByQndQLVpZbm1hSkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHaQPKHJ3qXyl42mp05qY2y45S7dAfX3x62exZ2GyPAeMj0Xo9G/jO O37osqBfXHNbt3S8TZIr3WOv7FHMCUdf1F4MiiEESUwPJ+rX225lsQJj1NGiNdhc pM4T/5YfxKKNL7Dbzj6y+W6DAszLBC1h6+Qe3AubgvVevIV6O9oVEtL4jj05cV3r mjc8Z4KopqFcW9/9h5+ftBXYilzFjvEpKCmXk/Y815J0IgL/2bNEiVuwnLHl9FrC oQAIC0P0rMwAla5lVeb/kumRWZ5zWD32LkrYc4ECiZ/ELbpIv8aaYaPfbT+YBfUX zBP7Eudiz2U6It+jhSectIP61zBlvSJE -----END CERTIFICATE-----Generated at Thu Jan 1 18:06:33 2026 by rpki-client