This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911B871/8A2DABE01DA711EB80712A4FC4F9AE02/KxUe1JZstlaQzZqoJiuKau0G5EM.mft File: KxUe1JZstlaQzZqoJiuKau0G5EM.mft (raw, json) Hash identifier: 2N+zaWRCKkkzqAjRP0H2Rtf+/mJLhxksRGw0YFyX7Tw= Subject key identifier: 8A:6E:6E:83:81:76:EC:26:4B:79:B0:AF:C0:CC:4D:85:C1:6D:C9:06 Authority key identifier: 2B:15:1E:D4:96:6C:B6:56:90:CD:9A:A8:26:2B:8A:6A:ED:06:E4:43 Certificate issuer: /CN=A911B871/serialNumber=2B151ED4966CB65690CD9AA8262B8A6AED06E443 Certificate serial: 07E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KxUe1JZstlaQzZqoJiuKau0G5EM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B871/8A2DABE01DA711EB80712A4FC4F9AE02/KxUe1JZstlaQzZqoJiuKau0G5EM.mft Manifest number: 07D0 Signing time: Thu 18 Dec 2025 20:47:00 +0000 Manifest this update: Thu 18 Dec 2025 20:47:00 +0000 Manifest next update: Thu 25 Dec 2025 20:47:00 +0000 Files and hashes: 1: KxUe1JZstlaQzZqoJiuKau0G5EM.crl (hash: wrYMfhB++6qokmFNtGTqHJjCg391ndt+e8XkXu1UiQM=) 2: 6F3FE776CF9511F09003FA4DC4F9AE02.roa (hash: dccnAsVRG5F4BLVx9qqI8mfwjXOuUJp1z+4BKIb0lIY=) 3: C4EEE8EE24E011EBA4C87F7DC4F9AE02.roa (hash: 5JkdXg8obUFlMSitt9szb1JTAobrjQW+JairCkgY4a4=) 4: 6FA255F0CF9511F0BB07FA4DC4F9AE02.roa (hash: YmO5r9I5M9hSwRgGeW2RzV0SplpKUhcFG78XAfWS68g=) 5: 8A01BCDC1DA811EBAFA5B44FC4F9AE02.roa (hash: Os+URuFoZ2zAOXDoDv8uqqxEF42zo4igT1qvd2MJXSY=) 6: 440FC47687C211EEA6A0667BC4F9AE02.roa (hash: So5qFFxmGcF1ctOBdOf/BGE9FgCEBqSycNLllCKsDto=) 7: FF7010DCAE9811F081180758C4F9AE02.roa (hash: VvmYkMG4uoU0S75QpcNmSN4i51xgi+sqh80k/T/yC00=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B871/8A2DABE01DA711EB80712A4FC4F9AE02/KxUe1JZstlaQzZqoJiuKau0G5EM.crl rsync://rpki.apnic.net/member_repository/A911B871/8A2DABE01DA711EB80712A4FC4F9AE02/KxUe1JZstlaQzZqoJiuKau0G5EM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KxUe1JZstlaQzZqoJiuKau0G5EM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 20:46:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2024 (0x7e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B871, serialNumber=2B151ED4966CB65690CD9AA8262B8A6AED06E443 Validity Not Before: Dec 18 20:47:00 2025 GMT Not After : Dec 25 20:47:00 2025 GMT Subject: CN=69446844-21e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:65:b1:dd:5e:4f:da:b1:39:1e:41:de:ca:1d: e4:3e:46:d4:d9:63:0b:54:dc:75:2b:5c:58:78:2b: b8:1a:1d:4e:40:58:2a:81:11:77:cd:92:11:bd:99: c1:57:16:16:02:5d:16:b2:02:8a:69:cb:a4:75:f3: 68:90:ce:54:8e:74:a4:46:36:9a:6e:ee:fb:20:0d: fd:58:a5:7f:44:df:f1:0d:6f:34:7e:fe:05:81:a7: 99:cb:ca:99:0d:b4:b4:9a:05:55:b9:c3:68:d2:e3: 3b:0a:24:b3:2c:d6:46:74:54:76:f9:99:56:b7:44: 59:03:50:41:36:9b:46:dc:3f:25:51:d2:3d:eb:70: 9d:92:b3:07:ab:12:34:ba:1c:32:80:b8:72:5c:0a: 27:2c:a4:12:f9:88:2f:91:ed:6f:b6:cd:cb:5b:fd: 43:9c:6c:f7:a0:62:81:54:5c:d1:7f:e1:19:8f:ed: ba:84:0c:08:39:34:9f:8e:ea:68:74:75:b3:ee:c9: 24:24:ec:45:15:30:b5:5f:ed:77:c9:a4:ff:00:5a: ca:50:0b:2b:4d:c0:eb:e1:99:fe:9b:93:aa:06:60: 9d:94:a6:18:96:23:a4:fd:d5:80:d9:ee:3b:ec:97: 11:ef:69:a7:2f:60:28:a1:a8:c2:44:f8:fb:84:f9: 7c:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:6E:6E:83:81:76:EC:26:4B:79:B0:AF:C0:CC:4D:85:C1:6D:C9:06 X509v3 Authority Key Identifier: keyid:2B:15:1E:D4:96:6C:B6:56:90:CD:9A:A8:26:2B:8A:6A:ED:06:E4:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B871/8A2DABE01DA711EB80712A4FC4F9AE02/KxUe1JZstlaQzZqoJiuKau0G5EM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KxUe1JZstlaQzZqoJiuKau0G5EM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B871/8A2DABE01DA711EB80712A4FC4F9AE02/KxUe1JZstlaQzZqoJiuKau0G5EM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:f4:0d:70:a2:54:0d:d1:2a:2d:65:32:a4:2d:62:73:22:91: 0f:16:d8:a4:e4:6f:93:0c:02:e3:36:3b:0d:0f:c1:ac:df:bb: 81:21:02:a7:21:ca:71:54:bb:ca:fb:2c:31:23:5f:ae:a9:4e: ce:09:a6:d8:56:28:98:7f:9c:81:fd:ee:61:51:f6:5d:2a:f6: da:cd:20:2e:18:63:2a:41:bd:dd:43:74:63:98:0d:5d:8d:88: 44:a8:82:4d:a9:d8:c0:b6:15:0a:34:27:e5:9f:ef:2a:05:8b: 8c:27:3c:c1:5b:9d:5b:86:bf:20:8c:9a:b9:e8:7a:1a:ed:f6: 00:2c:80:a4:aa:c5:c5:77:8c:9a:07:90:91:d4:0d:5b:8b:c2: c1:a4:63:c3:f5:b3:4a:af:ee:81:61:10:4e:c2:c9:a3:87:af: ce:6f:8b:8c:a4:1a:84:dc:a8:3d:a3:84:46:8d:b5:91:3a:85: c6:f9:31:66:8f:49:19:a4:f3:6b:a1:02:bc:0f:27:17:20:ad: 0a:5e:7c:e1:3f:b0:fd:32:8f:ce:c4:73:66:05:90:6e:3c:bd: 16:c3:73:b1:a0:62:ec:1a:e9:bb:0b:a5:80:13:f2:eb:dd:00: 22:20:74:25:8d:d1:19:01:3f:18:8a:e5:39:21:e4:3c:5e:a0: 21:a0:07:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB+gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI4NzExMTAvBgNVBAUTKDJCMTUxRUQ0OTY2Q0I2NTY5MENEOUFBODI2MkI4QTZB RUQwNkU0NDMwHhcNMjUxMjE4MjA0NzAwWhcNMjUxMjI1MjA0NzAwWjAYMRYwFAYD VQQDDA02OTQ0Njg0NC0yMWU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1GWx3V5P2rE5HkHeyh3kPkbU2WMLVNx1K1xYeCu4Gh1OQFgqgRF3zZIRvZnB VxYWAl0WsgKKacukdfNokM5UjnSkRjaabu77IA39WKV/RN/xDW80fv4FgaeZy8qZ DbS0mgVVucNo0uM7CiSzLNZGdFR2+ZlWt0RZA1BBNptG3D8lUdI963CdkrMHqxI0 uhwygLhyXAonLKQS+Ygvke1vts3LW/1DnGz3oGKBVFzRf+EZj+26hAwIOTSfjupo dHWz7skkJOxFFTC1X+13yaT/AFrKUAsrTcDr4Zn+m5OqBmCdlKYYliOk/dWA2e47 7JcR72mnL2AooajCRPj7hPl8tQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIpuboOB duwmS3mwr8DMTYXBbckGMB8GA1UdIwQYMBaAFCsVHtSWbLZWkM2aqCYrimrtBuRD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjg3MS84QTJEQUJFMDFE QTcxMUVCODA3MTJBNEZDNEY5QUUwMi9LeFVlMUpac3RsYVF6WnFvSml1S2F1MEc1 RU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0t4VWUxSlpzdGxhUXpacW9KaXVLYXUwRzVFTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Qjg3MS84QTJEQUJFMDFEQTcxMUVCODA3MTJBNEZDNEY5QUUwMi9LeFVlMUpac3Rs YVF6WnFvSml1S2F1MEc1RU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBS9A1wolQN0SotZTKkLWJzIpEPFtik5G+TDALjNjsND8Gs37uBIQKn IcpxVLvK+ywxI1+uqU7OCabYViiYf5yB/e5hUfZdKvbazSAuGGMqQb3dQ3RjmA1d jYhEqIJNqdjAthUKNCfln+8qBYuMJzzBW51bhr8gjJq56Hoa7fYALICkqsXFd4ya B5CR1A1bi8LBpGPD9bNKr+6BYRBOwsmjh6/Ob4uMpBqE3Kg9o4RGjbWROoXG+TFm j0kZpPNroQK8DycXIK0KXnzhP7D9Mo/OxHNmBZBuPL0Ww3OxoGLsGum7C6WAE/Lr 3QAiIHQljdEZAT8YiuU5IeQ8XqAhoAcT -----END CERTIFICATE-----Generated at Sat Dec 20 21:09:58 2025 by rpki-client