This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.mft File: kBqfnorkBi5SGbdlLY6f7n7FrjM.mft (raw, json) Hash identifier: 3qMvrU/WCM9qaUNmHcWM/ZrTr2gU7c8W4F0Ojo9VZQE= Subject key identifier: AA:B2:BD:36:84:BE:F5:B7:21:BE:4B:DB:02:7C:44:1D:4F:24:D4:FE Authority key identifier: 90:1A:9F:9E:8A:E4:06:2E:52:19:B7:65:2D:8E:9F:EE:7E:C5:AE:33 Certificate issuer: /CN=A91F2CE7/serialNumber=901A9F9E8AE4062E5219B7652D8E9FEE7EC5AE33 Certificate serial: 0104 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kBqfnorkBi5SGbdlLY6f7n7FrjM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.mft Manifest number: 0100 Signing time: Fri 19 Dec 2025 04:14:37 +0000 Manifest this update: Fri 19 Dec 2025 04:14:36 +0000 Manifest next update: Fri 26 Dec 2025 04:14:36 +0000 Files and hashes: 1: kBqfnorkBi5SGbdlLY6f7n7FrjM.crl (hash: urU9wDJzz0O9WRNHuCPF5m3Q9C/2rmjUMBR1GCiYgpY=) 2: 4C738434ABD011F08EDDF110C4F9AE02.roa (hash: Lm3n9/beTQTSuADhNOkS7uaY8GPI4m4BtlZmRSSiRCI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.crl rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kBqfnorkBi5SGbdlLY6f7n7FrjM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 04:14:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 260 (0x104) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2CE7, serialNumber=901A9F9E8AE4062E5219B7652D8E9FEE7EC5AE33 Validity Not Before: Dec 19 04:14:36 2025 GMT Not After : Dec 26 04:14:36 2025 GMT Subject: CN=6944d12c-077d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:ad:21:e1:6c:24:b4:8d:db:73:88:53:70:dc: 6a:ee:ee:ec:0e:9a:20:31:f4:91:e2:55:eb:99:3b: c9:a6:7e:65:10:b6:1b:f8:a8:f7:9b:25:e1:c5:d1: f9:b5:2f:7a:ba:48:4f:40:7c:dc:90:16:b9:5d:13: aa:c1:b3:d1:e2:9d:9b:ab:54:77:d1:26:7f:7b:36: b6:3c:2f:63:8a:92:f3:6a:fb:af:bc:05:e4:b8:7b: 1f:c4:10:9f:0d:6b:4c:24:c2:ef:5b:69:f5:69:db: 35:ec:94:5b:62:ac:8b:f3:20:3e:b7:db:b8:15:11: f5:f8:68:29:81:25:11:44:52:75:f6:c7:ba:7f:45: f1:67:3a:50:eb:10:a0:fb:27:1b:29:0e:79:ef:b0: bd:fd:68:da:1b:02:ab:0d:c4:00:5a:9c:09:8c:b2: f6:c9:d1:b2:f8:b7:ca:de:93:65:1c:77:29:77:8e: 19:48:23:bc:31:9c:ac:c0:00:af:16:b9:fa:2c:56: 5b:3b:8c:46:b3:09:96:b6:79:dc:14:4e:fa:b5:2c: 21:45:74:1d:85:93:8d:01:ab:44:11:14:3a:f7:7f: cd:a2:d2:66:dd:2b:85:28:ab:fe:77:16:e1:2d:87: 77:44:10:f4:27:31:82:7c:2b:b7:9e:a5:ce:ca:60: 16:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:B2:BD:36:84:BE:F5:B7:21:BE:4B:DB:02:7C:44:1D:4F:24:D4:FE X509v3 Authority Key Identifier: keyid:90:1A:9F:9E:8A:E4:06:2E:52:19:B7:65:2D:8E:9F:EE:7E:C5:AE:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kBqfnorkBi5SGbdlLY6f7n7FrjM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:0c:d9:4e:d5:b5:78:80:35:74:20:4a:69:a2:be:d5:d0:10: 2c:46:0a:b7:3d:9a:82:40:79:c6:02:50:ea:21:e9:aa:61:34: 9f:e0:4c:9b:ab:04:d7:2a:11:a3:32:fc:5a:f4:c4:cc:5a:63: 62:e6:35:31:15:cd:13:74:70:c7:6d:f8:58:4a:06:09:2d:05: 63:c8:2b:be:2f:25:63:90:d9:e5:89:a6:12:0b:d5:39:c4:8f: ba:2a:3d:79:c5:10:e5:95:9d:71:0c:db:b5:cd:02:36:c7:54: 14:77:b9:53:e3:42:fa:eb:e0:a2:09:3e:3c:0d:d3:84:7d:0a: 09:99:43:df:4e:84:b3:55:7c:2c:8a:a3:66:59:9b:25:6a:e7: 84:b7:d4:53:55:65:0c:79:c2:c9:e2:5b:32:16:3e:6b:5d:32: 0b:02:9e:df:5c:88:c5:b1:f9:0d:3c:eb:9a:70:c1:8e:09:b0: da:f1:6c:00:6c:89:51:d7:f8:a2:2a:6d:0a:b4:51:36:bd:e0: 45:0a:c4:54:cb:b5:87:74:e3:b9:9a:e6:5b:10:ab:f9:10:75: db:01:4b:69:86:80:af:15:04:75:42:7d:cf:63:6f:e1:46:17: 58:c0:a3:b3:6c:e2:db:cb:8a:1a:c8:46:99:8b:5e:4c:8f:fa: 6e:f7:f4:d4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjJDRTcxMTAvBgNVBAUTKDkwMUE5RjlFOEFFNDA2MkU1MjE5Qjc2NTJEOEU5RkVF N0VDNUFFMzMwHhcNMjUxMjE5MDQxNDM2WhcNMjUxMjI2MDQxNDM2WjAYMRYwFAYD VQQDDA02OTQ0ZDEyYy0wNzdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvK0h4WwktI3bc4hTcNxq7u7sDpogMfSR4lXrmTvJpn5lELYb+Kj3myXhxdH5 tS96ukhPQHzckBa5XROqwbPR4p2bq1R30SZ/eza2PC9jipLzavuvvAXkuHsfxBCf DWtMJMLvW2n1ads17JRbYqyL8yA+t9u4FRH1+GgpgSURRFJ19se6f0XxZzpQ6xCg +ycbKQ5577C9/WjaGwKrDcQAWpwJjLL2ydGy+LfK3pNlHHcpd44ZSCO8MZyswACv Frn6LFZbO4xGswmWtnncFE76tSwhRXQdhZONAatEERQ693/NotJm3SuFKKv+dxbh LYd3RBD0JzGCfCu3nqXOymAWbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKqyvTaE vvW3Ib5L2wJ8RB1PJNT+MB8GA1UdIwQYMBaAFJAan56K5AYuUhm3ZS2On+5+xa4z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMkNFNy83MkY3NUI5ODVB REQxMUVGODEyQzkyM0ZDNEY5QUUwMi9rQnFmbm9ya0JpNVNHYmRsTFk2ZjduN0Zy ak0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tCcWZub3JrQmk1U0diZGxMWTZmN243RnJqTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MkNFNy83MkY3NUI5ODVBREQxMUVGODEyQzkyM0ZDNEY5QUUwMi9rQnFmbm9ya0Jp NVNHYmRsTFk2ZjduN0Zyak0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAnDNlO1bV4gDV0IEppor7V0BAsRgq3PZqCQHnGAlDqIemqYTSf4Eyb qwTXKhGjMvxa9MTMWmNi5jUxFc0TdHDHbfhYSgYJLQVjyCu+LyVjkNnliaYSC9U5 xI+6Kj15xRDllZ1xDNu1zQI2x1QUd7lT40L66+CiCT48DdOEfQoJmUPfToSzVXws iqNmWZslaueEt9RTVWUMecLJ4lsyFj5rXTILAp7fXIjFsfkNPOuacMGOCbDa8WwA bIlR1/iiKm0KtFE2veBFCsRUy7WHdOO5muZbEKv5EHXbAUtphoCvFQR1Qn3PY2/h RhdYwKOzbOLby4oayEaZi15Mj/pu9/TU -----END CERTIFICATE-----Generated at Sat Dec 20 15:22:31 2025 by rpki-client