This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9138679/CB2CB3CEEA7711EFA5635680C4F9AE02/koDwcHR3Uzh7a6ZXMtbdeZKzUME.mft File: koDwcHR3Uzh7a6ZXMtbdeZKzUME.mft (raw, json) Hash identifier: 3f2mhHx1/C4zw1xMO2/UiyVKWU+KLhKz7c1EqWMbaL4= Subject key identifier: 00:F2:E3:2E:1F:4E:41:9A:4A:8F:FA:52:6B:D2:E2:A0:AC:94:22:FE Authority key identifier: 92:80:F0:70:74:77:53:38:7B:6B:A6:57:32:D6:DD:79:92:B3:50:C1 Certificate issuer: /CN=A9138679/serialNumber=9280F070747753387B6BA65732D6DD7992B350C1 Certificate serial: A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/koDwcHR3Uzh7a6ZXMtbdeZKzUME.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9138679/CB2CB3CEEA7711EFA5635680C4F9AE02/koDwcHR3Uzh7a6ZXMtbdeZKzUME.mft Manifest number: 9F Signing time: Fri 19 Dec 2025 05:24:57 +0000 Manifest this update: Fri 19 Dec 2025 05:24:56 +0000 Manifest next update: Fri 26 Dec 2025 05:24:56 +0000 Files and hashes: 1: koDwcHR3Uzh7a6ZXMtbdeZKzUME.crl (hash: IZusVtTlXuO5Zsp1Z1jA2MawXVlt5dcl9vC2ixUdk2I=) 2: 2CD223FCEA7811EF92D8DC39C4F9AE02.roa (hash: guOkrCtWFoq8Lg0AXDAskb6dB7b68BfvYrXJ0gD0vek=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9138679/CB2CB3CEEA7711EFA5635680C4F9AE02/koDwcHR3Uzh7a6ZXMtbdeZKzUME.crl rsync://rpki.apnic.net/member_repository/A9138679/CB2CB3CEEA7711EFA5635680C4F9AE02/koDwcHR3Uzh7a6ZXMtbdeZKzUME.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/koDwcHR3Uzh7a6ZXMtbdeZKzUME.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 05:24:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 161 (0xa1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9138679, serialNumber=9280F070747753387B6BA65732D6DD7992B350C1 Validity Not Before: Dec 19 05:24:56 2025 GMT Not After : Dec 26 05:24:56 2025 GMT Subject: CN=6944e1a9-1d24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:d7:c7:33:26:7c:d4:98:10:64:f5:10:c8:02: d8:6e:0f:e6:9b:fc:02:b3:86:64:e6:29:17:79:29: 84:3a:d1:0f:f6:34:c2:cc:e1:f5:25:99:34:dc:23: 87:e2:44:27:4b:40:51:af:99:cc:ab:1a:79:88:77: 66:51:cc:dd:70:3a:dd:88:96:6e:cb:4d:f2:19:65: 5a:cf:33:b8:96:c6:7b:9a:35:63:bc:60:4f:73:c7: 9e:db:c9:a3:b1:dd:26:b9:b3:41:30:fa:45:d3:94: 95:74:08:0f:fb:09:bf:6c:59:a4:0c:51:93:a0:44: e1:ee:ef:6e:5b:a8:9e:70:46:a7:b3:a1:99:9a:e7: 15:1d:6b:57:29:45:56:9c:10:8d:a6:ce:53:8e:b6: 93:d5:6a:9e:cc:e0:da:b5:45:cb:b6:99:f9:a1:a6: 73:f5:6d:d4:20:e0:b1:8b:6b:f0:12:4e:f4:75:21: 36:43:f3:97:b4:40:69:86:69:dc:1f:41:e2:42:e9: bd:a8:3b:e8:95:06:83:3a:b2:f9:92:8c:64:64:c3: 62:5b:47:0f:66:3e:eb:ea:2b:37:45:df:f3:b7:55: 61:4d:69:8f:8e:2d:30:ab:01:53:b8:ee:1f:33:99: a3:29:ba:73:74:45:b3:6b:94:86:95:31:0d:c5:6e: f2:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:F2:E3:2E:1F:4E:41:9A:4A:8F:FA:52:6B:D2:E2:A0:AC:94:22:FE X509v3 Authority Key Identifier: keyid:92:80:F0:70:74:77:53:38:7B:6B:A6:57:32:D6:DD:79:92:B3:50:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9138679/CB2CB3CEEA7711EFA5635680C4F9AE02/koDwcHR3Uzh7a6ZXMtbdeZKzUME.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/koDwcHR3Uzh7a6ZXMtbdeZKzUME.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9138679/CB2CB3CEEA7711EFA5635680C4F9AE02/koDwcHR3Uzh7a6ZXMtbdeZKzUME.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:52:7d:4a:11:d1:d4:3f:02:21:7f:ff:02:c1:32:72:67:61: b0:50:fa:7a:26:4b:90:78:38:99:58:4e:18:a0:2f:f7:3c:1d: 7e:33:5a:1c:f9:e6:08:3c:ee:47:b5:73:47:46:33:f9:14:b4: a6:85:7a:63:d1:ab:56:92:40:c3:73:88:39:d3:46:e9:6a:aa: 73:de:9a:d6:0d:ac:6c:a4:ac:da:17:d9:3d:d7:42:de:8d:70: 72:ea:d6:b8:e8:0a:68:de:5f:51:65:61:f7:c2:64:db:ff:00: 2d:06:9d:21:dc:d3:f6:f4:92:dc:bb:4e:ca:94:dc:5b:8f:df: 91:f2:2a:0a:87:58:0e:d6:f1:04:90:ba:64:fa:f1:08:b9:1f: 32:2e:72:3d:40:14:e7:d1:74:6d:9e:74:f0:3e:f6:de:a2:70: 77:54:42:06:6d:af:38:f0:ac:cc:db:eb:1b:47:e1:a2:0c:2c: ec:77:36:3e:9b:f4:55:bd:38:5a:f8:07:81:75:a9:d2:59:e1: 4b:b6:d8:64:78:68:54:54:10:13:4b:04:49:ab:da:ab:61:17: 84:26:90:58:b8:d2:39:99:8a:09:59:6a:56:f6:14:71:de:de: 37:4f:0f:43:13:e9:59:61:81:f5:b0:8f:87:a7:f7:7c:32:a2: 11:44:63:54 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzg2NzkxMTAvBgNVBAUTKDkyODBGMDcwNzQ3NzUzMzg3QjZCQTY1NzMyRDZERDc5 OTJCMzUwQzEwHhcNMjUxMjE5MDUyNDU2WhcNMjUxMjI2MDUyNDU2WjAYMRYwFAYD VQQDDA02OTQ0ZTFhOS0xZDI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvtfHMyZ81JgQZPUQyALYbg/mm/wCs4Zk5ikXeSmEOtEP9jTCzOH1JZk03COH 4kQnS0BRr5nMqxp5iHdmUczdcDrdiJZuy03yGWVazzO4lsZ7mjVjvGBPc8ee28mj sd0mubNBMPpF05SVdAgP+wm/bFmkDFGToETh7u9uW6iecEans6GZmucVHWtXKUVW nBCNps5TjraT1WqezODatUXLtpn5oaZz9W3UIOCxi2vwEk70dSE2Q/OXtEBphmnc H0HiQum9qDvolQaDOrL5koxkZMNiW0cPZj7r6is3Rd/zt1VhTWmPji0wqwFTuO4f M5mjKbpzdEWza5SGlTENxW7yCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFADy4y4f TkGaSo/6UmvS4qCslCL+MB8GA1UdIwQYMBaAFJKA8HB0d1M4e2umVzLW3XmSs1DB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODY3OS9DQjJDQjNDRUVB NzcxMUVGQTU2MzU2ODBDNEY5QUUwMi9rb0R3Y0hSM1V6aDdhNlpYTXRiZGVaS3pV TUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tvRHdjSFIzVXpoN2E2WlhNdGJkZVpLelVNRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODY3OS9DQjJDQjNDRUVBNzcxMUVGQTU2MzU2ODBDNEY5QUUwMi9rb0R3Y0hSM1V6 aDdhNlpYTXRiZGVaS3pVTUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMUn1KEdHUPwIhf/8CwTJyZ2GwUPp6JkuQeDiZWE4YoC/3PB1+M1oc +eYIPO5HtXNHRjP5FLSmhXpj0atWkkDDc4g500bpaqpz3prWDaxspKzaF9k910Le jXBy6ta46Apo3l9RZWH3wmTb/wAtBp0h3NP29JLcu07KlNxbj9+R8ioKh1gO1vEE kLpk+vEIuR8yLnI9QBTn0XRtnnTwPvbeonB3VEIGba848KzM2+sbR+GiDCzsdzY+ m/RVvTha+AeBdanSWeFLtthkeGhUVBATSwRJq9qrYReEJpBYuNI5mYoJWWpW9hRx 3t43Tw9DE+lZYYH1sI+Hp/d8MqIRRGNU -----END CERTIFICATE-----Generated at Fri Dec 19 18:49:39 2025 by rpki-client