This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.mft File: KPBxEOQ1hKO6ajpKh9aOnrfT6QI.mft (raw, json) Hash identifier: cFm2WRlitOC+7uArDMgxPoEMBRxINz3LNSnfBf/MFHY= Subject key identifier: 5F:5D:49:DC:BB:C4:8A:7E:17:12:B9:AE:E8:F7:FF:C4:51:DD:D3:9B Authority key identifier: 28:F0:71:10:E4:35:84:A3:BA:6A:3A:4A:87:D6:8E:9E:B7:D3:E9:02 Certificate issuer: /CN=A91C5021/serialNumber=28F07110E43584A3BA6A3A4A87D68E9EB7D3E902 Certificate serial: 07A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.mft Manifest number: 078C Signing time: Mon 22 Dec 2025 20:51:57 +0000 Manifest this update: Mon 22 Dec 2025 20:51:57 +0000 Manifest next update: Mon 29 Dec 2025 20:51:57 +0000 Files and hashes: 1: KPBxEOQ1hKO6ajpKh9aOnrfT6QI.crl (hash: u6yPV9GpOat9rTHxB/mZsLB7eHSx2M7ES+iwDQEOmT8=) 2: C42CEC7ECC3611EF9C79665CC4F9AE02.roa (hash: +9I46oBmobqbn5rox7c5LlYsiP1+hncBa8w/SO0pYyk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.crl rsync://rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 20:51:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1955 (0x7a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5021, serialNumber=28F07110E43584A3BA6A3A4A87D68E9EB7D3E902 Validity Not Before: Dec 22 20:51:57 2025 GMT Not After : Dec 29 20:51:57 2025 GMT Subject: CN=6949af6d-98f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:dc:2a:2e:74:92:29:af:2b:57:42:6c:af:30: 14:5a:3d:ad:11:03:a5:f8:f2:77:c8:eb:c6:c3:7b: 29:c5:5b:9b:c3:65:79:f6:63:8f:37:39:30:35:07: df:99:e5:1f:19:a1:03:8d:20:6e:34:01:a9:03:d2: 27:a2:7c:7d:0c:2d:4e:2d:85:4d:c8:6d:93:a0:ca: 0a:83:74:2b:89:c4:06:54:3d:7c:f1:68:c4:21:59: 2d:6c:e9:58:3d:f9:a8:f3:f8:06:8d:a7:ee:8b:ae: a4:ad:f2:a6:59:99:fa:67:ed:f4:7d:f7:62:82:be: 12:54:bb:a8:43:c6:1e:6f:b9:ae:d4:b6:fb:97:64: 86:27:7e:3a:83:2c:44:86:27:52:cc:34:f3:5c:1a: d2:62:11:26:23:bd:a9:94:16:40:6f:22:60:a0:6a: ea:76:8c:00:e5:c2:9b:a2:7d:29:f4:e9:c4:b6:38: 43:1f:ab:ad:17:57:99:6a:d0:61:f3:2a:04:37:48: e4:98:53:b6:fe:ce:7d:3f:c1:ad:59:d5:da:e2:5e: b8:42:2a:b3:b7:1f:83:92:ff:26:16:7d:f3:df:2c: 6a:dc:08:1b:66:c8:ae:a2:be:9f:4b:a6:4b:4b:4d: 4d:5a:33:c2:a5:5e:a2:45:ed:c3:09:63:b2:1f:ef: fc:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:5D:49:DC:BB:C4:8A:7E:17:12:B9:AE:E8:F7:FF:C4:51:DD:D3:9B X509v3 Authority Key Identifier: keyid:28:F0:71:10:E4:35:84:A3:BA:6A:3A:4A:87:D6:8E:9E:B7:D3:E9:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:13:f8:07:b4:22:84:5b:99:65:1a:cf:92:3e:b7:0c:07:48: fd:4a:90:c9:e5:1e:1e:65:b0:89:d7:f1:23:2b:8f:95:95:ec: 4a:cf:c8:35:39:8c:9a:48:51:42:3a:6a:8b:43:6d:f0:db:37: b5:de:5f:fe:cf:38:0f:ae:12:ca:98:70:07:24:5c:c7:f6:95: 30:6b:76:17:4d:9b:3b:81:0c:4b:e8:ca:1c:e7:03:cf:10:22: a8:80:59:dc:80:d9:9b:65:fe:98:1b:b6:ba:8d:3e:7c:45:58: ef:72:78:a5:07:d2:77:96:d8:64:50:df:75:71:12:58:63:f6: 43:45:f7:b6:0b:32:57:68:67:c2:41:48:2b:ae:7a:d4:36:0f: f2:be:aa:e6:a4:9d:af:e0:e7:ea:fe:66:9b:3b:26:a2:05:f9: 16:2e:40:9a:3e:be:cc:53:f0:01:db:9c:58:3f:35:e5:0b:b0: e7:a9:e0:a1:c0:14:e6:f1:8b:2c:4a:47:55:9c:f5:d4:03:2b: 6d:bd:b4:10:b9:e3:aa:0e:1c:cc:60:af:ba:4d:5a:1b:68:54: ca:87:f9:9b:72:d0:c6:89:f4:98:9c:f0:9f:45:f6:b0:a5:52: 51:f5:78:c8:98:81:86:9b:d0:d6:e8:d3:e3:73:61:a3:4b:a3: 05:9c:27:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB6MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzUwMjExMTAvBgNVBAUTKDI4RjA3MTEwRTQzNTg0QTNCQTZBM0E0QTg3RDY4RTlF QjdEM0U5MDIwHhcNMjUxMjIyMjA1MTU3WhcNMjUxMjI5MjA1MTU3WjAYMRYwFAYD VQQDDA02OTQ5YWY2ZC05OGY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsNwqLnSSKa8rV0JsrzAUWj2tEQOl+PJ3yOvGw3spxVubw2V59mOPNzkwNQff meUfGaEDjSBuNAGpA9Inonx9DC1OLYVNyG2ToMoKg3QricQGVD188WjEIVktbOlY Pfmo8/gGjafui66krfKmWZn6Z+30ffdigr4SVLuoQ8Yeb7mu1Lb7l2SGJ346gyxE hidSzDTzXBrSYhEmI72plBZAbyJgoGrqdowA5cKbon0p9OnEtjhDH6utF1eZatBh 8yoEN0jkmFO2/s59P8GtWdXa4l64Qiqztx+Dkv8mFn3z3yxq3AgbZsiuor6fS6ZL S01NWjPCpV6iRe3DCWOyH+/8gwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF9dSdy7 xIp+FxK5ruj3/8RR3dObMB8GA1UdIwQYMBaAFCjwcRDkNYSjumo6SofWjp630+kC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNTAyMS85QUZENDg2QzNC QkMxMUVCQTc3NkYxNjFDNEY5QUUwMi9LUEJ4RU9RMWhLTzZhanBLaDlhT25yZlQ2 UUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tQQnhFT1ExaEtPNmFqcEtoOWFPbnJmVDZRSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NTAyMS85QUZENDg2QzNCQkMxMUVCQTc3NkYxNjFDNEY5QUUwMi9LUEJ4RU9RMWhL TzZhanBLaDlhT25yZlQ2UUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQE/gHtCKEW5llGs+SPrcMB0j9SpDJ5R4eZbCJ1/EjK4+VlexKz8g1 OYyaSFFCOmqLQ23w2ze13l/+zzgPrhLKmHAHJFzH9pUwa3YXTZs7gQxL6Moc5wPP ECKogFncgNmbZf6YG7a6jT58RVjvcnilB9J3lthkUN91cRJYY/ZDRfe2CzJXaGfC QUgrrnrUNg/yvqrmpJ2v4Ofq/mabOyaiBfkWLkCaPr7MU/AB25xYPzXlC7DnqeCh wBTm8YssSkdVnPXUAyttvbQQueOqDhzMYK+6TVobaFTKh/mbctDGifSYnPCfRfaw pVJR9XjImIGGm9DW6NPjc2GjS6MFnCdN -----END CERTIFICATE-----Generated at Tue Dec 23 20:52:01 2025 by rpki-client