This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.mft File: Klm5bDClX71h0iMDc864nR2wGos.mft (raw, json) Hash identifier: JhSsZaom78e50TtUmxVjufw6O78t5W6TCxyDnhnSN1Y= Subject key identifier: 29:5D:75:75:8E:89:03:0C:FF:87:F4:8D:2C:9F:B8:C7:27:4E:DD:D4 Authority key identifier: 2A:59:B9:6C:30:A5:5F:BD:61:D2:23:03:73:CE:B8:9D:1D:B0:1A:8B Certificate issuer: /CN=A91F523F/serialNumber=2A59B96C30A55FBD61D2230373CEB89D1DB01A8B Certificate serial: C7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Klm5bDClX71h0iMDc864nR2wGos.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.mft Manifest number: C5 Signing time: Fri 19 Dec 2025 04:59:24 +0000 Manifest this update: Fri 19 Dec 2025 04:59:24 +0000 Manifest next update: Fri 26 Dec 2025 04:59:24 +0000 Files and hashes: 1: Klm5bDClX71h0iMDc864nR2wGos.crl (hash: Fc6FIqaOQ9CYeFkDrTCHbLRagX2clnZa2dAWqhSdpPY=) 2: 607B5F6AB05411EF84C8DC74C4F9AE02.roa (hash: CDlWFm2LtxVmYaaBC5EKvKez8sI4jo8CXca3FR8eDpc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.crl rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Klm5bDClX71h0iMDc864nR2wGos.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 04:59:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 199 (0xc7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F523F, serialNumber=2A59B96C30A55FBD61D2230373CEB89D1DB01A8B Validity Not Before: Dec 19 04:59:24 2025 GMT Not After : Dec 26 04:59:24 2025 GMT Subject: CN=6944dbac-cd44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:0a:8a:2f:79:21:42:ad:af:ac:2a:c9:6c:94: 92:e7:c0:47:5b:67:10:8a:70:9a:24:7b:b0:dc:d4: d8:9e:ff:32:c5:49:fd:3e:e6:11:8d:26:0f:92:69: 55:7c:2a:fb:20:7a:08:95:a7:74:48:4f:58:3c:10: c2:26:c4:33:36:09:e4:ed:39:4f:8d:ef:3c:6d:1d: 2e:6b:bf:b1:d1:a2:cc:12:ff:d7:26:a6:03:1a:e1: f9:40:9c:bd:fc:8c:ce:17:b7:a6:32:82:5a:38:54: eb:9a:27:7a:cd:ed:26:cc:d7:b2:0f:14:a3:8c:72: 94:a4:1d:e5:bd:76:da:f4:af:bb:bf:5c:cf:64:7a: 0e:04:f7:01:3b:85:cb:8b:1e:3a:da:b6:37:f4:42: dc:2a:c9:2b:ce:fc:0e:0f:c2:44:32:4e:23:66:e5: ee:06:95:7c:72:53:c8:63:fe:30:52:e6:e8:0b:64: 4a:7c:a1:e2:22:0a:1a:93:a6:9c:03:2a:c5:87:76: 5a:1f:3d:da:10:ab:24:0d:51:23:2f:ae:f7:0e:bc: 90:dd:df:26:b8:d5:6e:55:76:aa:42:86:e6:1d:75: 28:b7:4c:d0:cf:27:af:fc:19:51:1a:8c:4c:79:42: de:09:91:e6:7a:99:dd:41:e8:33:b4:79:69:64:82: b4:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:5D:75:75:8E:89:03:0C:FF:87:F4:8D:2C:9F:B8:C7:27:4E:DD:D4 X509v3 Authority Key Identifier: keyid:2A:59:B9:6C:30:A5:5F:BD:61:D2:23:03:73:CE:B8:9D:1D:B0:1A:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Klm5bDClX71h0iMDc864nR2wGos.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:27:e3:bf:a3:e3:c3:47:89:8c:ac:c6:59:ac:71:3d:75:77: d4:00:07:ec:f4:58:e4:c9:c1:7f:18:36:22:0c:18:85:e5:55: 2e:3a:a8:18:f2:8b:4b:dc:79:b3:f3:dd:c8:e5:ea:d4:0f:90: ae:5a:ab:bc:c3:a7:6f:a4:ea:2d:6e:0b:89:80:ef:1d:40:e0: 5d:2a:57:c4:2e:bc:2d:04:06:0f:40:2e:54:55:89:a8:0a:d8: 81:5c:c1:7d:9b:4e:0d:08:08:f0:b1:42:54:84:95:d8:66:8b: a6:6f:a0:7e:6b:a8:d6:8f:18:d6:fa:70:5e:e2:cf:9d:ea:09: 2c:c6:bd:89:7d:24:d4:b1:da:10:30:56:97:f2:7a:4d:ae:13: 4d:a9:d5:7d:7d:83:b6:ee:7b:56:be:63:d9:c2:34:50:b3:22: 6d:10:6c:43:56:9d:c5:fd:ac:cc:fa:3b:92:29:72:9b:bf:a6: 9c:55:0a:89:14:2b:25:b9:c7:ed:c7:9e:58:68:fb:81:b7:a6: 24:1f:39:ef:95:c8:51:5f:d6:4c:c8:af:40:c4:5d:74:57:83: 10:7d:94:c9:83:01:6f:3a:65:81:22:37:40:c5:aa:ec:0c:7a: c1:0e:4d:f0:c1:94:77:30:50:3e:07:7c:0f:5b:a2:5e:09:84: 33:64:94:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjUyM0YxMTAvBgNVBAUTKDJBNTlCOTZDMzBBNTVGQkQ2MUQyMjMwMzczQ0VCODlE MURCMDFBOEIwHhcNMjUxMjE5MDQ1OTI0WhcNMjUxMjI2MDQ1OTI0WjAYMRYwFAYD VQQDDA02OTQ0ZGJhYy1jZDQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArgqKL3khQq2vrCrJbJSS58BHW2cQinCaJHuw3NTYnv8yxUn9PuYRjSYPkmlV fCr7IHoIlad0SE9YPBDCJsQzNgnk7TlPje88bR0ua7+x0aLMEv/XJqYDGuH5QJy9 /IzOF7emMoJaOFTrmid6ze0mzNeyDxSjjHKUpB3lvXba9K+7v1zPZHoOBPcBO4XL ix462rY39ELcKskrzvwOD8JEMk4jZuXuBpV8clPIY/4wUuboC2RKfKHiIgoak6ac AyrFh3ZaHz3aEKskDVEjL673DryQ3d8muNVuVXaqQobmHXUot0zQzyev/BlRGoxM eULeCZHmepndQegztHlpZIK05wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFClddXWO iQMM/4f0jSyfuMcnTt3UMB8GA1UdIwQYMBaAFCpZuWwwpV+9YdIjA3POuJ0dsBqL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTIzRi80RUJBNkIzMkIw NTMxMUVGOUMyQjhEM0ZDNEY5QUUwMi9LbG01YkRDbFg3MWgwaU1EYzg2NG5SMndH b3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0tsbTViRENsWDcxaDBpTURjODY0blIyd0dvcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTIzRi80RUJBNkIzMkIwNTMxMUVGOUMyQjhEM0ZDNEY5QUUwMi9LbG01YkRDbFg3 MWgwaU1EYzg2NG5SMndHb3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPJ+O/o+PDR4mMrMZZrHE9dXfUAAfs9FjkycF/GDYiDBiF5VUuOqgY 8otL3Hmz893I5erUD5CuWqu8w6dvpOotbguJgO8dQOBdKlfELrwtBAYPQC5UVYmo CtiBXMF9m04NCAjwsUJUhJXYZoumb6B+a6jWjxjW+nBe4s+d6gksxr2JfSTUsdoQ MFaX8npNrhNNqdV9fYO27ntWvmPZwjRQsyJtEGxDVp3F/azM+juSKXKbv6acVQqJ FCslucftx55YaPuBt6YkHznvlchRX9ZMyK9AxF10V4MQfZTJgwFvOmWBIjdAxars DHrBDk3wwZR3MFA+B3wPW6JeCYQzZJQq -----END CERTIFICATE-----Generated at Sat Dec 20 00:53:33 2025 by rpki-client