This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.mft File: KQN7v5LysPTDMKHN1KdiVs16VCI.mft (raw, json) Hash identifier: D++6xKeAmEhyXOCyjpCiujsLxhdGnjby7W4nHlHosns= Subject key identifier: EC:1E:C2:D6:48:B2:AC:6E:2B:C9:12:FA:05:70:8D:A7:7A:E9:93:4B Authority key identifier: 29:03:7B:BF:92:F2:B0:F4:C3:30:A1:CD:D4:A7:62:56:CD:7A:54:22 Certificate issuer: /CN=A91E9B89/serialNumber=29037BBF92F2B0F4C330A1CDD4A76256CD7A5422 Certificate serial: F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQN7v5LysPTDMKHN1KdiVs16VCI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.mft Manifest number: F3 Signing time: Sun 21 Dec 2025 04:27:21 +0000 Manifest this update: Sun 21 Dec 2025 04:27:21 +0000 Manifest next update: Sun 28 Dec 2025 04:27:21 +0000 Files and hashes: 1: KQN7v5LysPTDMKHN1KdiVs16VCI.crl (hash: WpVAvnDB+WIX4dEP98zu8CoocMjSo3jTsDxxjEwZVnU=) 2: 2025BD6C6C3311EF99E0EF34C4F9AE02.roa (hash: EkH7NGdtLzD6VnZqtvPSOcqvmB0pZ+aCYQgXfVmLWFM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.crl rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQN7v5LysPTDMKHN1KdiVs16VCI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 04:27:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 245 (0xf5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9B89, serialNumber=29037BBF92F2B0F4C330A1CDD4A76256CD7A5422 Validity Not Before: Dec 21 04:27:21 2025 GMT Not After : Dec 28 04:27:21 2025 GMT Subject: CN=69477729-5bca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:23:92:a5:09:b4:33:07:ec:17:ce:fe:d8:b6: 8a:2c:57:0e:95:93:3e:e3:3f:66:80:bd:59:20:71: 47:da:93:5e:13:04:f0:7a:c8:99:1b:9d:8d:2f:bc: 73:e6:63:0c:70:c7:83:fa:eb:0a:8b:6c:3e:a3:19: 31:1f:e4:81:a6:09:4a:92:52:2f:e8:c4:fd:00:db: c5:a5:9b:4e:ce:12:95:4b:cb:85:ff:86:aa:9e:bf: ea:d9:00:3a:fc:a7:9f:f8:a6:37:81:53:60:45:a8: 5f:ca:02:78:62:00:79:94:8e:a8:b7:f1:41:c3:a4: b0:e6:58:1e:3a:d8:86:2c:96:1b:81:69:87:cc:d3: 86:c0:01:a8:a8:10:82:29:3a:4c:9b:dc:bc:39:00: b8:72:43:7e:b6:41:b2:1f:9f:0a:4c:96:b1:61:c2: dd:71:8f:99:26:06:5f:83:a1:b7:b9:a1:94:2d:21: 35:b7:9b:36:37:f4:98:17:db:40:41:12:55:5b:b4: 0b:9b:9a:e8:9e:6e:d7:d2:a8:d8:2c:35:8d:79:b6: 05:b8:ea:ae:15:73:df:32:89:3b:58:d4:25:e0:44: 98:18:a6:64:4c:ea:71:0a:80:c0:2a:d0:f3:f7:b2: ca:76:7c:0f:fa:75:6b:57:85:99:76:00:7b:f3:fe: 40:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:1E:C2:D6:48:B2:AC:6E:2B:C9:12:FA:05:70:8D:A7:7A:E9:93:4B X509v3 Authority Key Identifier: keyid:29:03:7B:BF:92:F2:B0:F4:C3:30:A1:CD:D4:A7:62:56:CD:7A:54:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQN7v5LysPTDMKHN1KdiVs16VCI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:2d:0e:48:f7:ee:71:c8:8a:02:3e:71:d3:49:3d:a1:c6:7f: 6d:fc:3b:db:e8:dd:35:26:a8:e3:c5:7d:85:9b:39:26:4b:af: 6e:42:12:ec:1f:11:40:68:80:27:bc:85:b9:f6:ea:8b:6b:a1: 10:90:a0:23:77:c1:59:b3:fc:03:79:3a:07:24:86:a2:5b:2c: 9c:f5:9d:cc:2c:86:ce:6a:7b:4c:f9:d4:a6:f8:7b:fa:c8:65: 49:b0:e3:3a:4d:35:19:54:0c:c1:22:c6:9f:46:70:3e:f5:c8: c8:90:36:27:96:5f:e2:f4:08:f8:e4:22:4b:21:76:cb:c0:1f: 8d:1e:03:de:d2:bc:92:a0:5f:e8:9a:3b:de:17:d9:4f:a3:37: a1:a5:83:95:0c:b0:c5:c3:13:17:7b:bf:be:3d:89:c2:34:a6: 1e:fa:61:fd:7c:87:fb:0a:23:af:10:4d:40:ab:10:10:1c:ff: c8:45:ef:d6:81:3a:fa:7d:84:24:7a:d5:6b:38:60:9f:7b:e8: d2:7a:56:47:dc:ea:a8:b4:39:89:34:30:4f:f7:88:99:6b:ea: 20:88:e9:cd:82:19:53:ef:b2:45:62:2c:d9:ab:d2:34:f7:bf: 14:78:2a:5c:70:83:d9:07:ca:fd:23:f7:75:8e:44:03:3a:3a: 3a:54:6b:e0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlCODkxMTAvBgNVBAUTKDI5MDM3QkJGOTJGMkIwRjRDMzMwQTFDREQ0QTc2MjU2 Q0Q3QTU0MjIwHhcNMjUxMjIxMDQyNzIxWhcNMjUxMjI4MDQyNzIxWjAYMRYwFAYD VQQDDA02OTQ3NzcyOS01YmNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAziOSpQm0MwfsF87+2LaKLFcOlZM+4z9mgL1ZIHFH2pNeEwTwesiZG52NL7xz 5mMMcMeD+usKi2w+oxkxH+SBpglKklIv6MT9ANvFpZtOzhKVS8uF/4aqnr/q2QA6 /Kef+KY3gVNgRahfygJ4YgB5lI6ot/FBw6Sw5lgeOtiGLJYbgWmHzNOGwAGoqBCC KTpMm9y8OQC4ckN+tkGyH58KTJaxYcLdcY+ZJgZfg6G3uaGULSE1t5s2N/SYF9tA QRJVW7QLm5ronm7X0qjYLDWNebYFuOquFXPfMok7WNQl4ESYGKZkTOpxCoDAKtDz 97LKdnwP+nVrV4WZdgB78/5AjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOwewtZI sqxuK8kS+gVwjad66ZNLMB8GA1UdIwQYMBaAFCkDe7+S8rD0wzChzdSnYlbNelQi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOUI4OS80MzY3QzIwRTZD MTgxMUVGQUI2QjY5MENDNEY5QUUwMi9LUU43djVMeXNQVERNS0hOMUtkaVZzMTZW Q0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tRTjd2NUx5c1BURE1LSE4xS2RpVnMxNlZDSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OUI4OS80MzY3QzIwRTZDMTgxMUVGQUI2QjY5MENDNEY5QUUwMi9LUU43djVMeXNQ VERNS0hOMUtkaVZzMTZWQ0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCzLQ5I9+5xyIoCPnHTST2hxn9t/Dvb6N01JqjjxX2FmzkmS69uQhLs HxFAaIAnvIW59uqLa6EQkKAjd8FZs/wDeToHJIaiWyyc9Z3MLIbOantM+dSm+Hv6 yGVJsOM6TTUZVAzBIsafRnA+9cjIkDYnll/i9Aj45CJLIXbLwB+NHgPe0rySoF/o mjveF9lPozehpYOVDLDFwxMXe7++PYnCNKYe+mH9fIf7CiOvEE1AqxAQHP/IRe/W gTr6fYQketVrOGCfe+jSelZH3OqotDmJNDBP94iZa+ogiOnNghlT77JFYizZq9I0 978UeCpccIPZB8r9I/d1jkQDOjo6VGvg -----END CERTIFICATE-----Generated at Sun Dec 21 08:18:29 2025 by rpki-client