This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.mft File: kQglePceS4YFfcPrBwP-ZYnmaJE.mft (raw, json) Hash identifier: wlwg2L/RCRMp9Fo834Bxb1RJmYrm5kXwa8kDdHlIurc= Subject key identifier: 9B:7D:EB:49:9F:AF:78:6B:42:51:44:E3:3B:9C:34:2F:C4:5B:4D:97 Authority key identifier: 91:08:25:78:F7:1E:4B:86:05:7D:C3:EB:07:03:FE:65:89:E6:68:91 Certificate issuer: /CN=A91BC039/serialNumber=91082578F71E4B86057DC3EB0703FE6589E66891 Certificate serial: D7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kQglePceS4YFfcPrBwP-ZYnmaJE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.mft Manifest number: D4 Signing time: Wed 24 Dec 2025 22:42:28 +0000 Manifest this update: Wed 24 Dec 2025 22:42:27 +0000 Manifest next update: Wed 31 Dec 2025 22:42:27 +0000 Files and hashes: 1: kQglePceS4YFfcPrBwP-ZYnmaJE.crl (hash: Og+EcL9/PRai9FWoe5ld/H4dzRJiTC7aE8jglaTU2NE=) 2: 1167F6B2A18211EFA7475221C4F9AE02.roa (hash: Ifm3IRESO4IiNyy88ffJnkP8xwASc9gofSuSR7nlwHs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.crl rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kQglePceS4YFfcPrBwP-ZYnmaJE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Dec 2025 22:42:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 215 (0xd7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC039, serialNumber=91082578F71E4B86057DC3EB0703FE6589E66891 Validity Not Before: Dec 24 22:42:27 2025 GMT Not After : Dec 31 22:42:27 2025 GMT Subject: CN=694c6c54-b5f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:ff:66:e3:5d:3e:46:5b:2d:89:06:7d:a3:d9: cd:60:ee:41:e6:a6:8f:33:ca:50:88:7f:78:3d:a3: 4b:04:09:68:0f:70:9d:85:5a:de:01:68:48:68:51: 76:23:39:40:2f:32:e7:6a:a8:55:01:af:79:36:0c: bd:63:d5:cd:4f:82:62:ad:65:40:92:88:bd:ff:e5: 0e:e0:5d:e3:80:2b:ab:2d:63:59:e8:d2:34:13:2b: f3:3b:09:ce:8d:fb:ca:c5:fb:0f:03:b0:c9:fa:66: 63:50:00:bf:00:5a:81:7e:00:e0:74:48:48:93:33: 06:7b:34:42:0f:aa:b5:73:0d:27:f3:f2:08:63:84: 70:7a:e8:19:06:d7:ee:d8:1f:15:f0:8c:54:72:4d: 73:4e:07:56:b3:de:97:88:57:72:ab:68:95:fd:c2: c0:31:82:e9:6c:48:ac:31:c4:04:f9:50:4c:9a:31: b6:a3:f4:e4:03:a6:74:42:9b:43:89:a8:73:35:96: 2f:63:25:4e:29:26:34:ac:9f:b1:6f:f2:25:11:b6: f5:95:5a:5b:08:af:e2:f2:ef:f7:9e:65:7a:c9:21: 73:bf:dc:d8:f3:07:c3:cc:b2:49:b4:ef:cf:0e:4d: 35:5c:ab:63:7b:a1:92:e6:97:4b:b5:bf:17:1e:07: 2c:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:7D:EB:49:9F:AF:78:6B:42:51:44:E3:3B:9C:34:2F:C4:5B:4D:97 X509v3 Authority Key Identifier: keyid:91:08:25:78:F7:1E:4B:86:05:7D:C3:EB:07:03:FE:65:89:E6:68:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kQglePceS4YFfcPrBwP-ZYnmaJE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:ac:86:c9:83:87:7b:20:94:25:6d:da:8f:37:e6:d8:db:e0: f6:12:15:ad:89:05:64:d8:78:cf:ea:6f:c3:51:48:88:6d:8d: 2c:b4:b7:6a:79:e4:cb:3a:71:20:ba:d7:46:28:73:36:b1:28: 2b:9d:8e:a9:f3:2a:f5:03:c8:7d:b1:08:42:87:8e:8d:98:fd: 6a:7e:7d:26:18:96:f5:ef:33:b8:ed:9e:51:71:50:00:13:e9: f4:74:5f:f1:c7:56:d1:64:3a:1c:0b:21:48:8c:0d:e3:02:07: 20:f3:33:a6:2d:45:85:5c:d9:92:18:88:d6:5c:c0:fd:79:03: df:d0:bd:b1:8c:a1:64:8a:18:d7:26:50:57:e8:e5:db:67:ce: 9d:88:26:99:ae:8d:a5:30:25:34:cb:7a:6b:1e:5b:5d:2a:10: c9:39:96:db:b2:ef:78:a4:2a:2b:60:9b:51:cf:1a:f4:cd:eb: 9e:e4:5a:f8:9f:5a:dc:2c:27:04:21:f5:6f:4a:b2:c3:cc:9c: 4a:42:95:b9:b1:ce:07:54:11:32:f6:37:e7:7a:de:a1:0c:0e: db:1d:2f:81:e1:d3:e1:67:12:84:7e:6a:f6:df:32:80:d7:55: 5e:a4:12:96:54:32:6d:d9:ac:c9:19:1a:fc:00:e1:e9:dd:7d: 5c:90:90:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkMwMzkxMTAvBgNVBAUTKDkxMDgyNTc4RjcxRTRCODYwNTdEQzNFQjA3MDNGRTY1 ODlFNjY4OTEwHhcNMjUxMjI0MjI0MjI3WhcNMjUxMjMxMjI0MjI3WjAYMRYwFAYD VQQDDA02OTRjNmM1NC1iNWYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr/9m410+RlstiQZ9o9nNYO5B5qaPM8pQiH94PaNLBAloD3CdhVreAWhIaFF2 IzlALzLnaqhVAa95Ngy9Y9XNT4JirWVAkoi9/+UO4F3jgCurLWNZ6NI0EyvzOwnO jfvKxfsPA7DJ+mZjUAC/AFqBfgDgdEhIkzMGezRCD6q1cw0n8/IIY4RweugZBtfu 2B8V8IxUck1zTgdWs96XiFdyq2iV/cLAMYLpbEisMcQE+VBMmjG2o/TkA6Z0QptD iahzNZYvYyVOKSY0rJ+xb/IlEbb1lVpbCK/i8u/3nmV6ySFzv9zY8wfDzLJJtO/P Dk01XKtje6GS5pdLtb8XHgcs7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJt960mf r3hrQlFE4zucNC/EW02XMB8GA1UdIwQYMBaAFJEIJXj3HkuGBX3D6wcD/mWJ5miR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzAzOS8xNTM0QTA1QUEx NzQxMUVGQkY2MTY2MjRDNEY5QUUwMi9rUWdsZVBjZVM0WUZmY1ByQndQLVpZbm1h SkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2tRZ2xlUGNlUzRZRmZjUHJCd1AtWllubWFKRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QzAzOS8xNTM0QTA1QUExNzQxMUVGQkY2MTY2MjRDNEY5QUUwMi9rUWdsZVBjZVM0 WUZmY1ByQndQLVpZbm1hSkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAzrIbJg4d7IJQlbdqPN+bY2+D2EhWtiQVk2HjP6m/DUUiIbY0stLdq eeTLOnEgutdGKHM2sSgrnY6p8yr1A8h9sQhCh46NmP1qfn0mGJb17zO47Z5RcVAA E+n0dF/xx1bRZDocCyFIjA3jAgcg8zOmLUWFXNmSGIjWXMD9eQPf0L2xjKFkihjX JlBX6OXbZ86diCaZro2lMCU0y3prHltdKhDJOZbbsu94pCorYJtRzxr0zeue5Fr4 n1rcLCcEIfVvSrLDzJxKQpW5sc4HVBEy9jfnet6hDA7bHS+B4dPhZxKEfmr23zKA 11VepBKWVDJt2azJGRr8AOHp3X1ckJA2 -----END CERTIFICATE-----Generated at Thu Dec 25 19:24:09 2025 by rpki-client