This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914F521/21658820C67E11E9AF3BA765C4F9AE02/KXaHZ1PWVWKnyoXj6ejfdQeXyUg.mft File: KXaHZ1PWVWKnyoXj6ejfdQeXyUg.mft (raw, json) Hash identifier: kr3Boi6yeRDolk18QyvXRAYFUufI8FC0q5UKNJLwmSM= Subject key identifier: 1E:DC:D1:74:44:00:D5:02:38:81:67:F8:66:73:8C:0C:4D:8C:F2:DF Authority key identifier: 29:76:87:67:53:D6:55:62:A7:CA:85:E3:E9:E8:DF:75:07:97:C9:48 Certificate issuer: /CN=A914F521/serialNumber=2976876753D65562A7CA85E3E9E8DF750797C948 Certificate serial: 0E28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KXaHZ1PWVWKnyoXj6ejfdQeXyUg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F521/21658820C67E11E9AF3BA765C4F9AE02/KXaHZ1PWVWKnyoXj6ejfdQeXyUg.mft Manifest number: 0E0B Signing time: Wed 31 Dec 2025 17:36:47 +0000 Manifest this update: Wed 31 Dec 2025 17:36:46 +0000 Manifest next update: Wed 07 Jan 2026 17:36:46 +0000 Files and hashes: 1: KXaHZ1PWVWKnyoXj6ejfdQeXyUg.crl (hash: 78pUGTVyd9dcjBonR8kUZarxBG4BMeZN2dpYPBhwKQE=) 2: 757320342E4011EEBC464879C4F9AE02.roa (hash: P37lIdcSAoW+RqsdCkFvhSnyXLO3TfyFSiBj1G2ZldU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F521/21658820C67E11E9AF3BA765C4F9AE02/KXaHZ1PWVWKnyoXj6ejfdQeXyUg.crl rsync://rpki.apnic.net/member_repository/A914F521/21658820C67E11E9AF3BA765C4F9AE02/KXaHZ1PWVWKnyoXj6ejfdQeXyUg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KXaHZ1PWVWKnyoXj6ejfdQeXyUg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 07 Jan 2026 17:36:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3624 (0xe28) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F521, serialNumber=2976876753D65562A7CA85E3E9E8DF750797C948 Validity Not Before: Dec 31 17:36:46 2025 GMT Not After : Jan 7 17:36:46 2026 GMT Subject: CN=69555f2f-a5b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:06:28:59:91:ec:d4:57:f4:61:68:83:88:eb: 26:4f:01:5d:c5:54:1f:49:e3:6e:09:82:0f:f7:07: 99:ee:9d:ba:25:bc:98:36:e9:9a:79:25:ba:60:7b: ce:3c:54:d9:c9:6c:84:7d:9a:a9:2e:0b:49:38:6d: 7b:22:60:90:6c:24:ec:88:11:3f:56:c9:ba:9b:a0: 6c:f8:60:32:19:33:9d:5b:93:a2:19:56:f4:29:d0: b6:d7:e3:10:6d:10:b8:55:e7:59:84:79:1d:ed:f1: f8:b8:0c:74:a5:54:c5:31:ff:41:fa:70:70:78:fb: 8e:0f:47:91:6f:c7:0d:78:db:3f:b1:8c:95:b8:8b: 1a:d1:8a:4b:24:1f:66:c7:11:41:45:eb:60:a5:d4: 5a:9b:ca:08:b4:ef:bd:d0:74:76:19:a9:62:50:fe: aa:0e:e0:d2:1c:95:bf:db:6a:9e:15:79:fc:25:48: 84:99:1c:96:4d:f3:96:67:4e:35:d5:55:86:0f:6b: e2:62:48:e2:41:6e:ef:20:fd:c6:04:0b:c6:e5:7a: 8d:37:c7:c3:3a:4d:03:1c:54:d2:c4:08:30:74:0c: 1d:96:f9:56:4e:74:9b:a6:fa:ab:a2:68:ab:72:4a: 20:92:41:2a:86:ae:3b:34:3e:d6:a7:e6:45:2d:53: 8b:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:DC:D1:74:44:00:D5:02:38:81:67:F8:66:73:8C:0C:4D:8C:F2:DF X509v3 Authority Key Identifier: keyid:29:76:87:67:53:D6:55:62:A7:CA:85:E3:E9:E8:DF:75:07:97:C9:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F521/21658820C67E11E9AF3BA765C4F9AE02/KXaHZ1PWVWKnyoXj6ejfdQeXyUg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KXaHZ1PWVWKnyoXj6ejfdQeXyUg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F521/21658820C67E11E9AF3BA765C4F9AE02/KXaHZ1PWVWKnyoXj6ejfdQeXyUg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:92:61:e2:34:25:7a:b7:8a:c0:d5:5a:e3:90:bf:ae:c1:7c: 11:4e:70:05:7e:db:5e:6e:55:32:bf:fa:12:e9:6a:7c:ef:3b: 52:0d:4b:dd:84:e4:bf:b9:80:56:bd:fe:af:ba:35:61:69:d7: bd:bd:7b:10:8c:78:e3:9b:cc:33:e2:64:1d:49:63:00:65:64: 59:2e:38:88:d1:2a:6d:0a:3f:79:d2:a1:9c:5c:22:a8:f6:2c: c6:47:1e:b9:c2:c7:48:b3:ba:cf:2c:97:9a:97:6c:45:26:58: 8d:be:b6:38:13:ef:9d:28:91:e4:86:a5:db:44:84:37:fc:cd: b0:38:a3:0d:85:d7:05:b6:76:d1:0c:39:d6:f5:8e:87:11:32: ae:d6:ce:f2:28:a1:d0:7c:fa:ed:03:b0:cc:bb:84:0e:71:0b: bc:89:f9:3e:1e:c7:28:09:82:ca:a8:08:b7:35:a2:9b:4a:39: 45:7d:b2:aa:2e:24:58:f5:c4:18:08:cd:5a:a8:51:d2:bc:55: ce:16:05:a4:8f:1f:c5:44:84:1a:ce:18:ff:63:56:ed:c8:b8: 71:a5:e6:1b:d3:1c:1f:76:ff:7b:95:b8:13:4a:a7:6d:ed:79: df:42:d0:8c:a5:85:d6:c6:f4:f0:56:1b:dc:47:ff:b9:aa:c8: 32:26:8c:ab -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDigwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEY1MjExMTAvBgNVBAUTKDI5NzY4NzY3NTNENjU1NjJBN0NBODVFM0U5RThERjc1 MDc5N0M5NDgwHhcNMjUxMjMxMTczNjQ2WhcNMjYwMTA3MTczNjQ2WjAYMRYwFAYD VQQDDA02OTU1NWYyZi1hNWI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwwYoWZHs1Ff0YWiDiOsmTwFdxVQfSeNuCYIP9weZ7p26JbyYNumaeSW6YHvO PFTZyWyEfZqpLgtJOG17ImCQbCTsiBE/Vsm6m6Bs+GAyGTOdW5OiGVb0KdC21+MQ bRC4VedZhHkd7fH4uAx0pVTFMf9B+nBwePuOD0eRb8cNeNs/sYyVuIsa0YpLJB9m xxFBRetgpdRam8oItO+90HR2GaliUP6qDuDSHJW/22qeFXn8JUiEmRyWTfOWZ041 1VWGD2viYkjiQW7vIP3GBAvG5XqNN8fDOk0DHFTSxAgwdAwdlvlWTnSbpvqromir ckogkkEqhq47ND7Wp+ZFLVOL+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB7c0XRE ANUCOIFn+GZzjAxNjPLfMB8GA1UdIwQYMBaAFCl2h2dT1lVip8qF4+no33UHl8lI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjUyMS8yMTY1ODgyMEM2 N0UxMUU5QUYzQkE3NjVDNEY5QUUwMi9LWGFIWjFQV1ZXS255b1hqNmVqZmRRZVh5 VWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tYYUhaMVBXVldLbnlvWGo2ZWpmZFFlWHlVZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjUyMS8yMTY1ODgyMEM2N0UxMUU5QUYzQkE3NjVDNEY5QUUwMi9LWGFIWjFQV1ZX S255b1hqNmVqZmRRZVh5VWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDkmHiNCV6t4rA1VrjkL+uwXwRTnAFftteblUyv/oS6Wp87ztSDUvd hOS/uYBWvf6vujVhade9vXsQjHjjm8wz4mQdSWMAZWRZLjiI0SptCj950qGcXCKo 9izGRx65wsdIs7rPLJeal2xFJliNvrY4E++dKJHkhqXbRIQ3/M2wOKMNhdcFtnbR DDnW9Y6HETKu1s7yKKHQfPrtA7DMu4QOcQu8ifk+HscoCYLKqAi3NaKbSjlFfbKq LiRY9cQYCM1aqFHSvFXOFgWkjx/FRIQazhj/Y1btyLhxpeYb0xwfdv97lbgTSqdt 7XnfQtCMpYXWxvTwVhvcR/+5qsgyJoyr -----END CERTIFICATE-----Generated at Thu Jan 1 22:58:19 2026 by rpki-client