This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.mft File: kTeon0YQ2uLIjGlNyVLOWDVScHk.mft (raw, json) Hash identifier: lMoREnJa6jS8KVk7gfwDMFDcAaTH2MmgZrNq5Z62qXk= Subject key identifier: BD:14:B2:D5:5E:51:AD:D3:30:27:33:AF:EB:C6:C4:23:0D:9A:21:EC Authority key identifier: 91:37:A8:9F:46:10:DA:E2:C8:8C:69:4D:C9:52:CE:58:35:52:70:79 Certificate issuer: /CN=A913F8BC/serialNumber=9137A89F4610DAE2C88C694DC952CE5835527079 Certificate serial: 104E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTeon0YQ2uLIjGlNyVLOWDVScHk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.mft Manifest number: 1042 Signing time: Thu 18 Dec 2025 17:15:09 +0000 Manifest this update: Thu 18 Dec 2025 17:15:08 +0000 Manifest next update: Thu 25 Dec 2025 17:15:08 +0000 Files and hashes: 1: kTeon0YQ2uLIjGlNyVLOWDVScHk.crl (hash: U1LAE+Em7vYrBV1FVg7s/vluGXvWpSPmDM/EGE9mAug=) 2: E9056E5A520611E9ABE43055C4F9AE02.roa (hash: h2Z0WowEDdcT+vihpwqc3ZmmFIzfzbEzcf903yWEHbc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.crl rsync://rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTeon0YQ2uLIjGlNyVLOWDVScHk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 17:15:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4174 (0x104e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F8BC, serialNumber=9137A89F4610DAE2C88C694DC952CE5835527079 Validity Not Before: Dec 18 17:15:08 2025 GMT Not After : Dec 25 17:15:08 2025 GMT Subject: CN=6944369d-1e4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:f9:51:99:06:8f:12:a0:e7:ab:45:49:e2:7f: c3:07:4d:76:03:62:7d:3a:11:90:a5:19:84:2d:a3: a9:67:cf:f6:e1:56:55:72:b3:41:4d:6f:fc:6d:71: 15:aa:0f:f7:f0:ef:21:73:9b:43:84:e6:1f:c2:d8: fd:d7:d8:0a:97:fa:d1:43:9a:c1:12:c1:4e:7d:bb: 9a:f6:8d:52:b8:e3:25:b4:41:97:05:87:0b:89:a5: 3f:e3:d2:51:2d:74:0c:97:70:32:85:9e:cf:d3:4a: 91:b3:09:8c:19:5a:86:59:b9:d3:06:fb:04:a4:08: e2:62:18:1e:bd:66:90:00:26:d9:59:c9:39:89:59: a2:79:4e:4b:39:ab:b0:23:57:47:86:c9:05:63:7c: 67:dd:54:73:f2:26:46:e1:6d:e6:58:b1:18:b2:e2: 59:7f:93:4a:cd:c1:c7:a8:1b:53:a3:de:9a:6a:9f: 89:22:38:ac:e9:6e:9e:7b:ee:61:10:03:7b:8f:08: 49:7d:ae:43:a2:b7:2f:d8:3b:21:bb:6d:6f:5e:5c: bc:b5:f0:c0:43:44:22:32:0a:29:74:9f:63:8b:28: 94:7a:0e:99:c3:be:20:f1:0d:14:0b:e8:e3:59:b8: f9:12:dd:e6:1b:19:55:09:2b:ce:a1:5c:43:81:5b: 4a:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:14:B2:D5:5E:51:AD:D3:30:27:33:AF:EB:C6:C4:23:0D:9A:21:EC X509v3 Authority Key Identifier: keyid:91:37:A8:9F:46:10:DA:E2:C8:8C:69:4D:C9:52:CE:58:35:52:70:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTeon0YQ2uLIjGlNyVLOWDVScHk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:f7:ef:b3:55:16:3a:c3:4b:c0:6f:46:32:87:a1:08:3c:e7: 81:d9:fa:df:c9:bc:e7:e5:44:5e:76:ad:5d:27:f3:6e:27:80: 8c:c0:44:a3:1e:ac:79:ad:e7:39:78:ad:16:f3:61:b9:89:3d: e8:71:79:63:65:9b:18:55:22:8b:41:af:9f:ed:a9:f5:c3:a6: 76:a0:0f:b8:13:bc:27:6f:61:23:c9:2f:94:c6:5d:c9:cd:7b: 7c:7f:95:cc:cc:1f:64:30:e1:b6:38:e3:ee:c0:bc:6b:0e:5a: 82:3e:68:c0:45:ce:5d:eb:73:d1:c0:9a:2b:be:62:43:61:9f: 2b:26:96:1b:be:83:78:16:22:b5:31:bc:f3:6e:c2:d9:6a:1e: 21:32:a8:78:17:37:e6:f9:9f:8c:84:5d:a6:fd:30:d7:df:bf: e1:be:f2:c2:bf:54:c4:f3:d4:f8:cf:71:ab:30:5c:46:05:b6: 1d:2a:c5:e8:f6:97:9a:f8:c5:cd:4c:65:8d:c4:eb:19:e9:1a: 17:9f:c1:48:03:88:7c:93:00:6d:c8:30:b3:d1:9b:fd:d2:6c: c6:f3:46:22:08:dd:a2:73:e5:63:c4:c4:d2:fb:d2:97:e7:b4: 93:37:68:2e:90:b4:36:5b:fa:84:75:56:4d:37:4f:dc:46:d7: 6c:db:2f:7b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEE4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0Y4QkMxMTAvBgNVBAUTKDkxMzdBODlGNDYxMERBRTJDODhDNjk0REM5NTJDRTU4 MzU1MjcwNzkwHhcNMjUxMjE4MTcxNTA4WhcNMjUxMjI1MTcxNTA4WjAYMRYwFAYD VQQDDA02OTQ0MzY5ZC0xZTRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1/lRmQaPEqDnq0VJ4n/DB012A2J9OhGQpRmELaOpZ8/24VZVcrNBTW/8bXEV qg/38O8hc5tDhOYfwtj919gKl/rRQ5rBEsFOfbua9o1SuOMltEGXBYcLiaU/49JR LXQMl3AyhZ7P00qRswmMGVqGWbnTBvsEpAjiYhgevWaQACbZWck5iVmieU5LOauw I1dHhskFY3xn3VRz8iZG4W3mWLEYsuJZf5NKzcHHqBtTo96aap+JIjis6W6ee+5h EAN7jwhJfa5Dorcv2Dshu21vXly8tfDAQ0QiMgopdJ9jiyiUeg6Zw74g8Q0UC+jj Wbj5Et3mGxlVCSvOoVxDgVtKrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL0UstVe Ua3TMCczr+vGxCMNmiHsMB8GA1UdIwQYMBaAFJE3qJ9GENriyIxpTclSzlg1UnB5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRjhCQy80RTEzRjQwQzUy MDYxMUU5OEVGQzNBNTRDNEY5QUUwMi9rVGVvbjBZUTJ1TElqR2xOeVZMT1dEVlNj SGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tUZW9uMFlRMnVMSWpHbE55VkxPV0RWU2NIay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RjhCQy80RTEzRjQwQzUyMDYxMUU5OEVGQzNBNTRDNEY5QUUwMi9rVGVvbjBZUTJ1 TElqR2xOeVZMT1dEVlNjSGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAo9++zVRY6w0vAb0Yyh6EIPOeB2frfybzn5URedq1dJ/NuJ4CMwESj Hqx5rec5eK0W82G5iT3ocXljZZsYVSKLQa+f7an1w6Z2oA+4E7wnb2EjyS+Uxl3J zXt8f5XMzB9kMOG2OOPuwLxrDlqCPmjARc5d63PRwJorvmJDYZ8rJpYbvoN4FiK1 MbzzbsLZah4hMqh4Fzfm+Z+MhF2m/TDX37/hvvLCv1TE89T4z3GrMFxGBbYdKsXo 9pea+MXNTGWNxOsZ6RoXn8FIA4h8kwBtyDCz0Zv90mzG80YiCN2ic+VjxMTS+9KX 57STN2gukLQ2W/qEdVZNN0/cRtds2y97 -----END CERTIFICATE-----Generated at Fri Dec 19 23:59:14 2025 by rpki-client