This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911F536/9A86DBD0C99A11EFB4CEEF1EC4F9AE02/KumFgVoQ3W0EUj_IHY2v1ya-eBY.mft File: KumFgVoQ3W0EUj_IHY2v1ya-eBY.mft (raw, json) Hash identifier: wH2z1x1AETbuXjVArsaFr3pR0+eI2yH/BrwHgJQK9kU= Subject key identifier: D1:B4:EF:56:D7:4A:E8:FE:E5:A4:E4:B7:5E:67:B6:FA:C6:05:00:9B Authority key identifier: 2A:E9:85:81:5A:10:DD:6D:04:52:3F:C8:1D:8D:AF:D7:26:BE:78:16 Certificate issuer: /CN=A911F536/serialNumber=2AE985815A10DD6D04523FC81D8DAFD726BE7816 Certificate serial: BB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KumFgVoQ3W0EUj_IHY2v1ya-eBY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F536/9A86DBD0C99A11EFB4CEEF1EC4F9AE02/KumFgVoQ3W0EUj_IHY2v1ya-eBY.mft Manifest number: B9 Signing time: Mon 29 Dec 2025 05:04:38 +0000 Manifest this update: Mon 29 Dec 2025 05:04:38 +0000 Manifest next update: Mon 05 Jan 2026 05:04:38 +0000 Files and hashes: 1: KumFgVoQ3W0EUj_IHY2v1ya-eBY.crl (hash: VQtPHPFR1rWKUGJdcdBIWHomTeMw+VKJo7PGjpXSk4E=) 2: F51AC6A6C99A11EFB5D4B020C4F9AE02.roa (hash: McJ+hP8GUu/Ld5Rarq2qGp1xUtwodZVqiVkbBVRJzkE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F536/9A86DBD0C99A11EFB4CEEF1EC4F9AE02/KumFgVoQ3W0EUj_IHY2v1ya-eBY.crl rsync://rpki.apnic.net/member_repository/A911F536/9A86DBD0C99A11EFB4CEEF1EC4F9AE02/KumFgVoQ3W0EUj_IHY2v1ya-eBY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KumFgVoQ3W0EUj_IHY2v1ya-eBY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 Jan 2026 05:04:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 187 (0xbb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F536, serialNumber=2AE985815A10DD6D04523FC81D8DAFD726BE7816 Validity Not Before: Dec 29 05:04:38 2025 GMT Not After : Jan 5 05:04:38 2026 GMT Subject: CN=69520be6-8474 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:f1:d1:5a:d4:22:85:63:85:d7:45:83:c5:de: 38:15:77:cf:74:a2:4a:74:ac:3a:cf:d7:f8:78:6b: 8a:4a:e5:5c:23:da:41:d6:45:00:22:45:7d:b5:10: 25:f0:df:b8:39:1b:12:70:e5:9e:8d:8c:b1:6e:99: 99:b2:92:4f:e9:3a:6a:cc:61:38:e0:50:54:58:a2: f5:e4:d0:98:a9:19:b4:36:43:d7:70:bb:cb:a8:5c: 46:a2:b6:31:68:9c:5c:91:ef:c7:61:58:ae:5a:9d: 83:0c:6b:91:d3:1b:ed:b3:60:d5:e3:dd:bf:70:ac: b6:8a:d3:67:cb:b9:a9:11:b2:d1:dd:88:bd:57:e8: fa:8d:8d:04:86:61:f6:1f:f0:19:d6:6b:64:08:90: ae:ca:b1:b7:33:81:cf:03:0c:41:b7:5e:8c:26:4c: c2:2e:82:0d:b4:21:59:67:88:ae:17:c2:8a:4b:c2: fe:4e:6d:ea:71:78:2c:61:03:71:17:35:25:24:7b: d6:09:7a:44:28:c4:bb:9d:b5:ff:0d:99:36:94:15: 6d:a9:7e:5c:b4:75:64:ff:a9:ed:6c:a8:06:db:58: 7c:b9:4a:3b:1c:76:d5:48:ba:81:4c:0c:80:e2:20: 54:99:6b:ad:a1:4e:52:b2:79:28:25:a9:e4:90:61: 88:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:B4:EF:56:D7:4A:E8:FE:E5:A4:E4:B7:5E:67:B6:FA:C6:05:00:9B X509v3 Authority Key Identifier: keyid:2A:E9:85:81:5A:10:DD:6D:04:52:3F:C8:1D:8D:AF:D7:26:BE:78:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F536/9A86DBD0C99A11EFB4CEEF1EC4F9AE02/KumFgVoQ3W0EUj_IHY2v1ya-eBY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KumFgVoQ3W0EUj_IHY2v1ya-eBY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F536/9A86DBD0C99A11EFB4CEEF1EC4F9AE02/KumFgVoQ3W0EUj_IHY2v1ya-eBY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:c7:fd:03:21:78:3d:89:5d:36:2c:48:02:9c:6a:f3:f6:05: 51:7c:6e:24:1b:3f:9b:d3:05:f6:d8:0b:7b:67:66:97:55:03: 50:80:9a:59:33:14:13:e0:7c:df:5a:74:d9:b9:47:0c:24:c9: bc:61:1f:7b:a5:b4:a6:61:29:ea:08:23:7d:4b:38:77:51:61: 15:87:4b:13:4a:d2:4c:eb:6c:2b:de:de:14:09:e7:7e:18:0a: b7:07:f6:9d:94:51:cb:dd:50:a8:e0:ae:fc:c3:6c:ae:12:7c: 1d:24:43:b6:58:a6:ad:12:27:c5:76:5a:6f:e9:4e:b3:2f:32: f6:83:0f:95:5d:13:59:4e:42:c7:9c:63:c7:61:b1:5b:88:62: d7:bd:8f:3a:56:81:19:58:e1:68:8c:04:0f:af:05:85:bd:db: 0e:30:a5:eb:0b:b8:5e:6e:82:26:8a:17:07:ec:bf:5e:9e:ef: 0d:9b:d7:2c:e9:7d:1c:d6:37:c7:9c:2a:78:6a:d7:a7:e8:56: 18:63:7f:5c:5f:98:e6:a2:ca:3e:96:5b:77:23:22:d3:77:93: fc:64:a3:76:17:6a:76:c0:0d:f3:bb:5a:5e:c3:9b:bb:23:42: 63:29:26:6c:88:de:62:bd:15:3f:f0:a9:c5:7f:39:98:76:fc: 8b:ba:06:12 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUY1MzYxMTAvBgNVBAUTKDJBRTk4NTgxNUExMERENkQwNDUyM0ZDODFEOERBRkQ3 MjZCRTc4MTYwHhcNMjUxMjI5MDUwNDM4WhcNMjYwMTA1MDUwNDM4WjAYMRYwFAYD VQQDDA02OTUyMGJlNi04NDc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqvHRWtQihWOF10WDxd44FXfPdKJKdKw6z9f4eGuKSuVcI9pB1kUAIkV9tRAl 8N+4ORsScOWejYyxbpmZspJP6TpqzGE44FBUWKL15NCYqRm0NkPXcLvLqFxGorYx aJxcke/HYViuWp2DDGuR0xvts2DV492/cKy2itNny7mpEbLR3Yi9V+j6jY0EhmH2 H/AZ1mtkCJCuyrG3M4HPAwxBt16MJkzCLoINtCFZZ4iuF8KKS8L+Tm3qcXgsYQNx FzUlJHvWCXpEKMS7nbX/DZk2lBVtqX5ctHVk/6ntbKgG21h8uUo7HHbVSLqBTAyA 4iBUmWutoU5SsnkoJankkGGIlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNG071bX Suj+5aTkt15ntvrGBQCbMB8GA1UdIwQYMBaAFCrphYFaEN1tBFI/yB2Nr9cmvngW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjUzNi85QTg2REJEMEM5 OUExMUVGQjRDRUVGMUVDNEY5QUUwMi9LdW1GZ1ZvUTNXMEVVal9JSFkydjF5YS1l QlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0t1bUZnVm9RM1cwRVVqX0lIWTJ2MXlhLWVCWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RjUzNi85QTg2REJEMEM5OUExMUVGQjRDRUVGMUVDNEY5QUUwMi9LdW1GZ1ZvUTNX MEVVal9JSFkydjF5YS1lQlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLx/0DIXg9iV02LEgCnGrz9gVRfG4kGz+b0wX22At7Z2aXVQNQgJpZ MxQT4HzfWnTZuUcMJMm8YR97pbSmYSnqCCN9Szh3UWEVh0sTStJM62wr3t4UCed+ GAq3B/adlFHL3VCo4K78w2yuEnwdJEO2WKatEifFdlpv6U6zLzL2gw+VXRNZTkLH nGPHYbFbiGLXvY86VoEZWOFojAQPrwWFvdsOMKXrC7heboImihcH7L9enu8Nm9cs 6X0c1jfHnCp4aten6FYYY39cX5jmoso+llt3IyLTd5P8ZKN2F2p2wA3zu1pew5u7 I0JjKSZsiN5ivRU/8KnFfzmYdvyLugYS -----END CERTIFICATE-----Generated at Tue Dec 30 18:40:08 2025 by rpki-client