This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9112FE1/F1C7447E09F111F08B44A325C4F9AE02/kg59CR8VVp8tg0DGWCuVlewGVoA.mft File: kg59CR8VVp8tg0DGWCuVlewGVoA.mft (raw, json) Hash identifier: cGSFpCyDj5Cbo/F+1zPEZp1kamgu2MgwHDr9j/8VJ94= Subject key identifier: B3:21:AC:3B:34:C4:DE:2A:9E:17:0D:22:5F:7F:97:BF:F5:77:C8:C1 Authority key identifier: 92:0E:7D:09:1F:15:56:9F:2D:83:40:C6:58:2B:95:95:EC:06:56:80 Certificate issuer: /CN=A9112FE1/serialNumber=920E7D091F15569F2D8340C6582B9595EC065680 Certificate serial: 8A Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/kg59CR8VVp8tg0DGWCuVlewGVoA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112FE1/F1C7447E09F111F08B44A325C4F9AE02/kg59CR8VVp8tg0DGWCuVlewGVoA.mft Manifest number: 8A Signing time: Fri 19 Dec 2025 05:39:03 +0000 Manifest this update: Fri 19 Dec 2025 05:39:03 +0000 Manifest next update: Fri 26 Dec 2025 05:39:03 +0000 Files and hashes: 1: kg59CR8VVp8tg0DGWCuVlewGVoA.crl (hash: feoRSZgmbAzBHILnxNTGxm2IJusz/C4ODBEeE2mbxYM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112FE1/F1C7447E09F111F08B44A325C4F9AE02/kg59CR8VVp8tg0DGWCuVlewGVoA.crl rsync://rpki.apnic.net/member_repository/A9112FE1/F1C7447E09F111F08B44A325C4F9AE02/kg59CR8VVp8tg0DGWCuVlewGVoA.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/kg59CR8VVp8tg0DGWCuVlewGVoA.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 05:39:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 138 (0x8a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112FE1, serialNumber=920E7D091F15569F2D8340C6582B9595EC065680 Validity Not Before: Dec 19 05:39:03 2025 GMT Not After : Dec 26 05:39:03 2025 GMT Subject: CN=6944e4f7-2473 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:57:85:01:e8:ee:91:c7:8f:6f:e8:2e:7d:11: 13:c6:63:fb:d6:b3:d7:f5:d9:db:95:f4:a3:47:c2: 85:58:e8:e2:ad:0e:63:d2:e1:23:86:34:39:17:7b: 28:6c:c8:0f:ca:38:8f:f3:90:84:e4:f8:77:b7:3c: bd:f6:cc:6d:2f:94:fb:42:f3:69:08:62:08:6f:70: c6:66:6d:05:a4:e9:be:25:7d:fc:16:c1:9a:c5:11: ca:c1:5e:c4:01:95:36:25:11:04:b7:cb:38:1b:8c: 06:e3:21:75:78:20:d6:a3:69:e0:41:08:ec:af:f8: 42:49:f4:a4:ca:e0:86:59:65:d8:8c:5d:23:f7:12: 01:0c:1c:de:9e:14:ea:c2:af:60:34:89:1b:75:e3: 3f:fe:80:99:c2:4a:89:26:6e:b5:bb:9e:a5:fd:92: 40:e7:bb:c2:74:4d:c6:5b:74:44:7c:36:9f:63:f3: 7f:a5:8d:5b:35:1a:22:b3:82:79:41:47:d3:17:89: b7:dd:e8:f0:7e:c1:8f:f6:87:bd:e5:26:24:ad:bc: 02:5b:a2:cc:19:ec:70:3e:b3:51:f5:1f:76:96:c7: ea:87:6e:4b:8c:71:da:1f:b2:25:35:98:4c:f1:95: 69:6d:1a:53:ff:5c:84:95:0f:ad:9d:98:8f:06:53: a0:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:21:AC:3B:34:C4:DE:2A:9E:17:0D:22:5F:7F:97:BF:F5:77:C8:C1 X509v3 Authority Key Identifier: keyid:92:0E:7D:09:1F:15:56:9F:2D:83:40:C6:58:2B:95:95:EC:06:56:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112FE1/F1C7447E09F111F08B44A325C4F9AE02/kg59CR8VVp8tg0DGWCuVlewGVoA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/kg59CR8VVp8tg0DGWCuVlewGVoA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112FE1/F1C7447E09F111F08B44A325C4F9AE02/kg59CR8VVp8tg0DGWCuVlewGVoA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:e0:1d:2f:2f:43:7b:6d:29:13:b0:42:1a:77:69:89:08:63: b9:43:b9:8b:8f:40:63:6c:71:a2:90:88:e2:8b:42:73:45:24: 8e:b0:06:9b:f7:1a:84:73:4e:8b:c8:24:65:c7:8d:29:31:cf: 4b:4f:2b:fe:d2:9c:b4:ae:2a:c8:b4:b9:d0:bf:aa:ef:57:a9: 91:c9:a4:15:03:00:f9:64:43:69:0d:d6:21:95:8f:e5:16:be: f0:f7:35:cd:3e:72:f8:08:81:33:28:50:ce:dc:d5:49:31:38: bc:a7:08:f8:02:ed:1e:c6:ee:26:88:ea:3d:89:50:c5:53:81: 7c:da:a6:e7:b8:fc:68:3c:27:bc:e8:cd:c8:e8:79:62:ee:0c: ed:ae:fb:ae:12:0e:86:4f:4b:10:aa:63:e8:e8:49:7c:32:7d: 48:09:77:6d:e7:24:04:02:a4:a4:49:89:80:d2:b5:c8:da:49: be:2c:b9:84:91:5c:de:60:82:94:4e:8c:60:67:35:10:58:d4: 81:fc:df:bb:bf:5f:1e:31:44:70:5c:5f:62:d0:16:b6:f3:0d: 2e:3a:c4:6e:fe:9f:18:60:1e:47:d3:1d:87:6f:a3:83:f8:9f: b0:00:12:3d:5d:0e:56:9b:0c:f4:68:01:ec:1c:11:18:08:8c: b4:b2:1a:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTJGRTExMTAvBgNVBAUTKDkyMEU3RDA5MUYxNTU2OUYyRDgzNDBDNjU4MkI5NTk1 RUMwNjU2ODAwHhcNMjUxMjE5MDUzOTAzWhcNMjUxMjI2MDUzOTAzWjAYMRYwFAYD VQQDDA02OTQ0ZTRmNy0yNDczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt1eFAejukcePb+gufRETxmP71rPX9dnblfSjR8KFWOjirQ5j0uEjhjQ5F3so bMgPyjiP85CE5Ph3tzy99sxtL5T7QvNpCGIIb3DGZm0FpOm+JX38FsGaxRHKwV7E AZU2JREEt8s4G4wG4yF1eCDWo2ngQQjsr/hCSfSkyuCGWWXYjF0j9xIBDBzenhTq wq9gNIkbdeM//oCZwkqJJm61u56l/ZJA57vCdE3GW3REfDafY/N/pY1bNRois4J5 QUfTF4m33ejwfsGP9oe95SYkrbwCW6LMGexwPrNR9R92lsfqh25LjHHaH7IlNZhM 8ZVpbRpT/1yElQ+tnZiPBlOgwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLMhrDs0 xN4qnhcNIl9/l7/1d8jBMB8GA1UdIwQYMBaAFJIOfQkfFVafLYNAxlgrlZXsBlaA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMkZFMS9GMUM3NDQ3RTA5 RjExMUYwOEI0NEEzMjVDNEY5QUUwMi9rZzU5Q1I4VlZwOHRnMERHV0N1Vmxld0dW b0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2tnNTlDUjhWVnA4dGcwREdXQ3VWbGV3R1ZvQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MkZFMS9GMUM3NDQ3RTA5RjExMUYwOEI0NEEzMjVDNEY5QUUwMi9rZzU5Q1I4VlZw OHRnMERHV0N1Vmxld0dWb0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCI4B0vL0N7bSkTsEIad2mJCGO5Q7mLj0BjbHGikIjii0JzRSSOsAab 9xqEc06LyCRlx40pMc9LTyv+0py0rirItLnQv6rvV6mRyaQVAwD5ZENpDdYhlY/l Fr7w9zXNPnL4CIEzKFDO3NVJMTi8pwj4Au0exu4miOo9iVDFU4F82qbnuPxoPCe8 6M3I6Hli7gztrvuuEg6GT0sQqmPo6El8Mn1ICXdt5yQEAqSkSYmA0rXI2km+LLmE kVzeYIKUToxgZzUQWNSB/N+7v18eMURwXF9i0Ba28w0uOsRu/p8YYB5H0x2Hb6OD +J+wABI9XQ5Wmwz0aAHsHBEYCIy0shrt -----END CERTIFICATE-----Generated at Sat Dec 20 21:11:41 2025 by rpki-client