This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F731E/EAA19CB4B2DC11EB8621CB56C4F9AE02/kGA-NU21aLPKQpAOcDAR55ZiiS4.mft File: kGA-NU21aLPKQpAOcDAR55ZiiS4.mft (raw, json) Hash identifier: QWCZlySDcFxSdOTk3V0eV2eh8sJdAyk+UJU6/UTNkko= Subject key identifier: AB:53:58:3B:5A:84:C3:13:DB:DA:74:F8:9A:81:A2:BE:5C:45:6F:EC Authority key identifier: 90:60:3E:35:4D:B5:68:B3:CA:42:90:0E:70:30:11:E7:96:62:89:2E Certificate issuer: /CN=A91F731E/serialNumber=90603E354DB568B3CA42900E703011E79662892E Certificate serial: 0671 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kGA-NU21aLPKQpAOcDAR55ZiiS4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F731E/EAA19CB4B2DC11EB8621CB56C4F9AE02/kGA-NU21aLPKQpAOcDAR55ZiiS4.mft Manifest number: 0665 Signing time: Wed 31 Dec 2025 15:51:44 +0000 Manifest this update: Wed 31 Dec 2025 15:51:43 +0000 Manifest next update: Wed 07 Jan 2026 15:51:43 +0000 Files and hashes: 1: kGA-NU21aLPKQpAOcDAR55ZiiS4.crl (hash: Zrb9Bl+fTpELE9rcutlwqrGJFT9q9gKkLM0L17QhMII=) 2: 30857DB6CBA211ECAE233133C4F9AE02.roa (hash: eSlTAoQ5k0fFKiHMdeu9X90T/rFtlTnA6Fx/5ofc1sU=) 3: 8CD64094BDFE11EBBBB16A42C4F9AE02.roa (hash: JYcdT8gc4SSOPp9mZ4cChcf87lzFLOtfwrJ4fYMBet4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F731E/EAA19CB4B2DC11EB8621CB56C4F9AE02/kGA-NU21aLPKQpAOcDAR55ZiiS4.crl rsync://rpki.apnic.net/member_repository/A91F731E/EAA19CB4B2DC11EB8621CB56C4F9AE02/kGA-NU21aLPKQpAOcDAR55ZiiS4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kGA-NU21aLPKQpAOcDAR55ZiiS4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 07 Jan 2026 15:51:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1649 (0x671) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F731E, serialNumber=90603E354DB568B3CA42900E703011E79662892E Validity Not Before: Dec 31 15:51:43 2025 GMT Not After : Jan 7 15:51:43 2026 GMT Subject: CN=69554690-30b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:35:73:bc:8f:e4:8b:d5:21:3b:cc:7c:47:e8: 29:16:21:08:14:96:f0:8b:37:ab:39:05:ae:42:9d: 68:7e:15:5e:18:2b:db:a4:b0:aa:54:47:9e:c5:e5: 93:ba:06:52:af:57:db:ac:09:95:53:b4:7c:7a:88: ec:af:a3:8f:12:43:91:9c:64:19:ba:e4:3d:ed:fa: f5:fe:e7:6c:20:ff:f4:cb:a5:48:84:49:93:b5:b4: 21:17:b2:1e:ca:cd:e1:ff:92:23:20:ed:1c:9b:e4: d0:49:68:93:f5:fe:bf:dd:65:57:e3:03:6f:61:8d: d5:0c:0f:85:4f:a9:6b:5d:f9:5f:c6:27:b1:7f:34: 6a:c0:75:6d:2e:40:b7:5a:6d:4d:e8:b6:38:73:a8: b6:c3:b5:6c:74:5f:3c:43:14:35:7c:19:6e:8c:b1: 2d:f9:b4:1e:15:21:70:fc:42:b5:ab:be:8f:ad:1a: a9:21:a2:d9:4f:b3:dc:34:87:ee:4c:1e:62:a2:5f: 6b:85:7c:6c:bd:42:27:15:15:7f:38:9c:67:65:bc: 3b:bd:b6:21:e7:33:d9:ac:0e:9d:6f:6b:a2:7a:25: 65:6c:96:9c:83:b7:a0:25:c0:2c:ec:37:38:72:ac: d8:7f:a7:f3:e8:2f:46:41:49:dc:56:82:c9:5d:a1: e2:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:53:58:3B:5A:84:C3:13:DB:DA:74:F8:9A:81:A2:BE:5C:45:6F:EC X509v3 Authority Key Identifier: keyid:90:60:3E:35:4D:B5:68:B3:CA:42:90:0E:70:30:11:E7:96:62:89:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F731E/EAA19CB4B2DC11EB8621CB56C4F9AE02/kGA-NU21aLPKQpAOcDAR55ZiiS4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kGA-NU21aLPKQpAOcDAR55ZiiS4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F731E/EAA19CB4B2DC11EB8621CB56C4F9AE02/kGA-NU21aLPKQpAOcDAR55ZiiS4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:8b:0e:25:7a:b0:db:52:16:ae:63:9a:b8:a0:b9:92:8d:d7: 46:17:49:10:6f:e7:26:89:54:00:cb:4c:79:96:3e:c6:3d:5a: b3:d1:44:09:0c:56:32:69:2d:84:02:e4:7d:07:e9:a5:54:81: 9c:44:ed:a3:c6:8b:a7:4d:aa:30:a5:c2:b3:72:20:2d:e2:2f: 57:cd:60:68:eb:25:c4:bb:25:48:61:87:25:c7:fd:31:d9:75: 03:3a:22:f1:70:68:eb:c8:fc:88:fe:4a:93:e9:62:f3:d6:46: b2:f3:af:54:0b:25:3b:a1:34:38:30:c7:0c:f5:3d:98:70:52: cc:28:15:55:cb:ee:74:85:43:1e:26:ed:cd:b6:79:2b:33:31: 47:30:a6:89:d2:4c:ef:c5:0e:6b:f8:79:11:11:b7:0a:48:68: ca:48:e2:00:fc:ca:ec:36:f5:7f:9c:0e:d3:29:0a:42:61:f0: d7:39:a6:ce:d6:31:99:4f:20:04:fd:4b:32:e5:3c:cb:42:13: ec:80:3d:b3:53:3d:9b:cf:3e:a9:10:69:4e:7c:26:aa:57:31: dc:6c:39:1e:b9:40:c7:1c:9c:52:f0:5e:95:9c:44:b9:45:e6: bd:9b:ec:9e:3a:9e:f0:40:37:23:bc:e8:05:54:dc:2f:7b:58: 62:dd:04:ac -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBnEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjczMUUxMTAvBgNVBAUTKDkwNjAzRTM1NERCNTY4QjNDQTQyOTAwRTcwMzAxMUU3 OTY2Mjg5MkUwHhcNMjUxMjMxMTU1MTQzWhcNMjYwMTA3MTU1MTQzWjAYMRYwFAYD VQQDDA02OTU1NDY5MC0zMGI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApDVzvI/ki9UhO8x8R+gpFiEIFJbwizerOQWuQp1ofhVeGCvbpLCqVEeexeWT ugZSr1fbrAmVU7R8eojsr6OPEkORnGQZuuQ97fr1/udsIP/0y6VIhEmTtbQhF7Ie ys3h/5IjIO0cm+TQSWiT9f6/3WVX4wNvYY3VDA+FT6lrXflfxiexfzRqwHVtLkC3 Wm1N6LY4c6i2w7VsdF88QxQ1fBlujLEt+bQeFSFw/EK1q76PrRqpIaLZT7PcNIfu TB5iol9rhXxsvUInFRV/OJxnZbw7vbYh5zPZrA6db2uieiVlbJacg7egJcAs7Dc4 cqzYf6fz6C9GQUncVoLJXaHigQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKtTWDta hMMT29p0+JqBor5cRW/sMB8GA1UdIwQYMBaAFJBgPjVNtWizykKQDnAwEeeWYoku MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNzMxRS9FQUExOUNCNEIy REMxMUVCODYyMUNCNTZDNEY5QUUwMi9rR0EtTlUyMWFMUEtRcEFPY0RBUjU1Wmlp UzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2tHQS1OVTIxYUxQS1FwQU9jREFSNTVaaWlTNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NzMxRS9FQUExOUNCNEIyREMxMUVCODYyMUNCNTZDNEY5QUUwMi9rR0EtTlUyMWFM UEtRcEFPY0RBUjU1WmlpUzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALiw4lerDbUhauY5q4oLmSjddGF0kQb+cmiVQAy0x5lj7GPVqz0UQJ DFYyaS2EAuR9B+mlVIGcRO2jxounTaowpcKzciAt4i9XzWBo6yXEuyVIYYclx/0x 2XUDOiLxcGjryPyI/kqT6WLz1kay869UCyU7oTQ4MMcM9T2YcFLMKBVVy+50hUMe Ju3NtnkrMzFHMKaJ0kzvxQ5r+HkREbcKSGjKSOIA/MrsNvV/nA7TKQpCYfDXOabO 1jGZTyAE/Usy5TzLQhPsgD2zUz2bzz6pEGlOfCaqVzHcbDkeuUDHHJxS8F6VnES5 Rea9m+yeOp7wQDcjvOgFVNwve1hi3QSs -----END CERTIFICATE-----Generated at Thu Jan 1 23:35:35 2026 by rpki-client