This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft File: Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft (raw, json) Hash identifier: o+KmfQ6c1uVIxCkv1DkiIvKq1fU5z1KxhwPBOxeSb64= Subject key identifier: 71:4B:6E:C7:A0:56:FB:F5:BC:C4:A4:10:B9:91:99:CF:D0:7D:00:91 Authority key identifier: 2B:3E:E4:4E:A9:CB:5B:81:29:6B:B6:7D:F0:F5:46:F8:AA:C8:A4:B4 Certificate issuer: /CN=A91F4F00/serialNumber=2B3EE44EA9CB5B81296BB67DF0F546F8AAC8A4B4 Certificate serial: 07F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft Manifest number: 07E9 Signing time: Thu 18 Dec 2025 20:39:07 +0000 Manifest this update: Thu 18 Dec 2025 20:39:06 +0000 Manifest next update: Thu 25 Dec 2025 20:39:06 +0000 Files and hashes: 1: Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.crl (hash: Jw/3SJn27Ssn5bde4g9l0NTHoDD8JlAtkK5eiZjy2iI=) 2: E7BAB834B5F511F0B410AD78C4F9AE02.roa (hash: fxQZfbaLKR/d/fZu/fhyY8IFle3U5GHLuzj+qPAQsuQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.crl rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 20:39:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2035 (0x7f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4F00, serialNumber=2B3EE44EA9CB5B81296BB67DF0F546F8AAC8A4B4 Validity Not Before: Dec 18 20:39:06 2025 GMT Not After : Dec 25 20:39:06 2025 GMT Subject: CN=6944666b-d2d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:05:11:0a:10:69:46:4f:3e:78:7c:25:75:ae: 6e:7e:c8:66:93:0c:38:01:7a:95:78:5c:c1:c5:19: 37:e2:cb:d9:d8:bb:62:cc:7d:bb:cb:37:60:d2:db: 22:fd:73:58:d9:6a:8d:67:7e:03:a7:de:c4:ac:5c: 15:dc:b1:c6:8c:c0:11:e6:e0:61:78:56:98:af:b7: 8d:fd:d1:24:47:23:47:09:37:70:e3:0e:8b:8f:bf: 8a:6d:04:00:b9:4b:ba:63:72:21:99:b4:b0:8e:38: c6:ca:03:2e:7e:05:c8:fd:02:18:eb:75:4a:6e:14: 67:cb:b2:ea:8b:55:9a:b1:82:2d:1c:b9:79:61:84: cb:a6:98:2d:01:b4:23:e8:7e:0a:af:6f:72:cf:b2: 6a:5c:e4:23:f4:0e:9f:87:46:16:0d:cd:09:cc:e9: cf:88:34:40:78:0d:ab:12:f2:6c:b1:e6:e6:7d:c9: f2:d9:9e:00:3a:fa:28:9c:eb:06:cf:19:50:e5:c0: 69:ee:28:a1:74:d0:6d:25:e4:f2:34:fd:23:13:91: a5:c5:2a:34:cf:1c:1a:d5:4b:42:d9:43:cf:af:ff: c2:fc:19:f5:11:32:ad:ef:6f:9c:16:89:86:23:b6: e2:9b:45:38:b6:f8:9d:57:9d:e5:d5:ac:8e:16:f9: 54:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:4B:6E:C7:A0:56:FB:F5:BC:C4:A4:10:B9:91:99:CF:D0:7D:00:91 X509v3 Authority Key Identifier: keyid:2B:3E:E4:4E:A9:CB:5B:81:29:6B:B6:7D:F0:F5:46:F8:AA:C8:A4:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:8f:ad:c1:db:d9:67:e3:1b:40:fe:06:d2:93:4f:bf:d0:94: 61:d1:2b:e3:ce:49:78:d0:e8:ed:df:d8:6c:16:53:90:bd:c5: 83:81:06:54:c2:b4:d8:c4:df:28:71:b3:a5:31:a6:ab:f4:29: c7:be:4d:d1:69:42:2f:15:18:c0:ff:20:bb:98:7d:be:6e:2e: b1:db:7f:eb:9e:31:c5:db:fc:06:86:be:1d:42:4e:ae:d6:12: 9c:50:6d:69:63:82:31:85:c1:8f:e3:e3:cb:b9:65:8d:d5:4a: 8f:19:d6:fb:03:57:cf:95:57:b4:98:9d:d8:92:42:78:d1:ca: 31:29:d8:cf:a0:a6:e2:05:10:2b:bd:c2:fe:07:22:73:f2:7b: 33:e7:28:e1:2a:8e:5f:8a:74:6b:22:97:a1:41:14:58:87:23: 5b:96:52:45:9b:ce:48:03:4e:ab:6d:f8:6e:b7:bd:d1:c4:7c: d8:43:ee:56:1b:cf:90:a4:62:6b:cd:61:d1:3d:d9:a2:1f:bc: ba:47:31:23:26:f1:de:c9:44:33:0b:1b:11:e0:84:1f:31:ca: 53:42:0d:c7:61:83:9f:1c:67:4f:33:5f:a1:d7:be:52:4f:27: fc:bd:3f:c8:e1:76:99:e3:05:06:46:1a:9d:c8:78:d9:39:90: 75:6e:be:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB/MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRGMDAxMTAvBgNVBAUTKDJCM0VFNDRFQTlDQjVCODEyOTZCQjY3REYwRjU0NkY4 QUFDOEE0QjQwHhcNMjUxMjE4MjAzOTA2WhcNMjUxMjI1MjAzOTA2WjAYMRYwFAYD VQQDDA02OTQ0NjY2Yi1kMmQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxAURChBpRk8+eHwlda5ufshmkww4AXqVeFzBxRk34svZ2LtizH27yzdg0tsi /XNY2WqNZ34Dp97ErFwV3LHGjMAR5uBheFaYr7eN/dEkRyNHCTdw4w6Lj7+KbQQA uUu6Y3IhmbSwjjjGygMufgXI/QIY63VKbhRny7Lqi1WasYItHLl5YYTLppgtAbQj 6H4Kr29yz7JqXOQj9A6fh0YWDc0JzOnPiDRAeA2rEvJssebmfcny2Z4AOvoonOsG zxlQ5cBp7iihdNBtJeTyNP0jE5GlxSo0zxwa1UtC2UPPr//C/Bn1ETKt72+cFomG I7bim0U4tvidV53l1ayOFvlUQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHFLbseg Vvv1vMSkELmRmc/QfQCRMB8GA1UdIwQYMBaAFCs+5E6py1uBKWu2ffD1RviqyKS0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNEYwMC8zREE2OTAxNjEz NTcxMUVCQTIzREE3MTRDNEY5QUUwMi9LejdrVHFuTFc0RXBhN1o5OFBWRy1Lcklw TFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0t6N2tUcW5MVzRFcGE3Wjk4UFZHLUtySXBMUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NEYwMC8zREE2OTAxNjEzNTcxMUVCQTIzREE3MTRDNEY5QUUwMi9LejdrVHFuTFc0 RXBhN1o5OFBWRy1LcklwTFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFj63B29ln4xtA/gbSk0+/0JRh0Svjzkl40Ojt39hsFlOQvcWDgQZU wrTYxN8ocbOlMaar9CnHvk3RaUIvFRjA/yC7mH2+bi6x23/rnjHF2/wGhr4dQk6u 1hKcUG1pY4IxhcGP4+PLuWWN1UqPGdb7A1fPlVe0mJ3YkkJ40coxKdjPoKbiBRAr vcL+ByJz8nsz5yjhKo5finRrIpehQRRYhyNbllJFm85IA06rbfhut73RxHzYQ+5W G8+QpGJrzWHRPdmiH7y6RzEjJvHeyUQzCxsR4IQfMcpTQg3HYYOfHGdPM1+h175S Tyf8vT/I4XaZ4wUGRhqdyHjZOZB1br5W -----END CERTIFICATE-----Generated at Fri Dec 19 17:45:20 2025 by rpki-client