This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9152329/C7FAD368A26811EF9D914118C4F9AE02/KTrGQFMJ3pSVFof-Fylq3c2Vcvw.mft File: KTrGQFMJ3pSVFof-Fylq3c2Vcvw.mft (raw, json) Hash identifier: HD+j8SxdRdIHeiKkYPo/KwnWsMOxm36HiOL4abtWTm4= Subject key identifier: 90:41:E2:36:6B:E0:7E:34:8E:DF:77:86:3D:BE:6E:0B:DF:B9:12:44 Authority key identifier: 29:3A:C6:40:53:09:DE:94:95:16:87:FE:17:29:6A:DD:CD:95:72:FC Certificate issuer: /CN=A9152329/serialNumber=293AC6405309DE94951687FE17296ADDCD9572FC Certificate serial: D2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KTrGQFMJ3pSVFof-Fylq3c2Vcvw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152329/C7FAD368A26811EF9D914118C4F9AE02/KTrGQFMJ3pSVFof-Fylq3c2Vcvw.mft Manifest number: D0 Signing time: Sun 21 Dec 2025 04:53:03 +0000 Manifest this update: Sun 21 Dec 2025 04:53:02 +0000 Manifest next update: Sun 28 Dec 2025 04:53:02 +0000 Files and hashes: 1: KTrGQFMJ3pSVFof-Fylq3c2Vcvw.crl (hash: 6svPu2/1tuUKLr3n50EP0WfnQUCD6id4p7xpGAjJ8N8=) 2: 38161248A26911EFBF6D0319C4F9AE02.roa (hash: n0Thufh5JkG5zit4bqbChTpHcB8GdZqVj3xLM+DLazE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152329/C7FAD368A26811EF9D914118C4F9AE02/KTrGQFMJ3pSVFof-Fylq3c2Vcvw.crl rsync://rpki.apnic.net/member_repository/A9152329/C7FAD368A26811EF9D914118C4F9AE02/KTrGQFMJ3pSVFof-Fylq3c2Vcvw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KTrGQFMJ3pSVFof-Fylq3c2Vcvw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 04:53:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 210 (0xd2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152329, serialNumber=293AC6405309DE94951687FE17296ADDCD9572FC Validity Not Before: Dec 21 04:53:02 2025 GMT Not After : Dec 28 04:53:02 2025 GMT Subject: CN=69477d2f-a1d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:ac:5c:1e:9d:07:96:fb:de:b4:42:04:20:cf: 5e:b0:16:d4:84:a4:18:50:f6:de:ec:92:27:af:2b: 94:24:0d:8f:0c:63:ed:5c:65:98:54:ce:d5:45:46: 3f:02:73:d2:93:c2:29:82:be:a0:c4:17:9e:24:51: 37:ba:13:d5:74:2f:9f:90:6a:9e:71:9f:ba:da:cf: 48:4b:f7:db:7d:cd:c6:44:3a:22:29:b8:c7:81:c0: c0:5e:60:ac:95:43:78:c6:1f:57:f0:76:c3:e9:86: e6:55:e1:de:66:12:be:56:1e:96:4f:70:99:8a:43: f4:07:fa:2c:21:c2:4b:e9:1a:17:f2:59:e1:f9:28: 33:8c:f4:a0:05:10:68:fe:62:e6:56:01:38:cb:13: e6:eb:7d:55:c3:9a:20:e7:b7:26:4b:e4:83:5d:3f: 3e:25:a6:64:ac:2a:37:28:a5:0f:06:fa:37:ad:11: 70:8d:e4:3c:63:5d:c7:1e:6f:2d:ee:b3:4c:c5:3b: 26:a3:24:7a:ca:62:ea:01:03:b7:28:16:88:74:eb: 1d:44:ce:95:c3:dc:cb:47:fb:9f:3b:82:2c:8f:88: 52:5b:c8:86:fd:89:4a:d0:57:c3:43:ee:33:87:d1: c4:03:79:5a:30:14:1f:86:6e:bc:93:c4:51:ce:78: d2:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:41:E2:36:6B:E0:7E:34:8E:DF:77:86:3D:BE:6E:0B:DF:B9:12:44 X509v3 Authority Key Identifier: keyid:29:3A:C6:40:53:09:DE:94:95:16:87:FE:17:29:6A:DD:CD:95:72:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152329/C7FAD368A26811EF9D914118C4F9AE02/KTrGQFMJ3pSVFof-Fylq3c2Vcvw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KTrGQFMJ3pSVFof-Fylq3c2Vcvw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152329/C7FAD368A26811EF9D914118C4F9AE02/KTrGQFMJ3pSVFof-Fylq3c2Vcvw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:0e:00:1e:9b:26:ec:3d:63:2e:d4:bd:66:fa:8f:d9:71:32: 80:69:7a:bb:62:b4:f7:10:1b:c0:3b:38:f0:ef:7f:64:dc:eb: 13:02:35:06:a5:13:1b:9d:a2:32:99:1f:73:08:ed:2c:19:cc: d0:1e:e8:de:f5:ff:94:83:bf:0b:01:2b:8e:7b:9f:c9:c0:2a: 2e:f2:71:3a:8d:8b:29:0b:6d:06:40:39:c1:af:01:ef:3f:d4: 99:a2:02:3d:68:50:63:d3:61:a2:a1:b9:a8:19:42:f6:5a:01: 8e:c0:45:0f:bb:cf:7a:e6:f8:f1:a2:64:70:31:69:a0:1e:3a: af:0a:d0:d3:f3:b9:d1:00:ca:03:09:25:e6:bd:80:6c:cf:37: d6:a3:e0:1f:8a:2d:ac:72:a7:04:7c:7d:89:22:7a:23:b6:bf: 38:47:40:7b:29:ea:de:63:47:e6:77:04:ae:0d:03:69:17:82: 5e:45:e3:8b:35:49:aa:06:17:bd:1b:e3:6a:a6:de:0f:06:23: a0:e0:4e:3a:25:29:c9:01:c8:89:82:a6:9b:01:96:05:41:c4: c8:b8:ba:a2:17:77:86:31:1c:4b:8f:77:89:2a:5f:29:ff:4f: ee:2e:8b:0b:7d:b1:8a:af:9f:1b:67:81:bf:bd:d0:09:81:43: 57:1e:68:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTIzMjkxMTAvBgNVBAUTKDI5M0FDNjQwNTMwOURFOTQ5NTE2ODdGRTE3Mjk2QURE Q0Q5NTcyRkMwHhcNMjUxMjIxMDQ1MzAyWhcNMjUxMjI4MDQ1MzAyWjAYMRYwFAYD VQQDDA02OTQ3N2QyZi1hMWQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApaxcHp0HlvvetEIEIM9esBbUhKQYUPbe7JInryuUJA2PDGPtXGWYVM7VRUY/ AnPSk8Ipgr6gxBeeJFE3uhPVdC+fkGqecZ+62s9IS/fbfc3GRDoiKbjHgcDAXmCs lUN4xh9X8HbD6YbmVeHeZhK+Vh6WT3CZikP0B/osIcJL6RoX8lnh+SgzjPSgBRBo /mLmVgE4yxPm631Vw5og57cmS+SDXT8+JaZkrCo3KKUPBvo3rRFwjeQ8Y13HHm8t 7rNMxTsmoyR6ymLqAQO3KBaIdOsdRM6Vw9zLR/ufO4Isj4hSW8iG/YlK0FfDQ+4z h9HEA3laMBQfhm68k8RRznjSWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJBB4jZr 4H40jt93hj2+bgvfuRJEMB8GA1UdIwQYMBaAFCk6xkBTCd6UlRaH/hcpat3NlXL8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjMyOS9DN0ZBRDM2OEEy NjgxMUVGOUQ5MTQxMThDNEY5QUUwMi9LVHJHUUZNSjNwU1ZGb2YtRnlscTNjMlZj dncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0tUckdRRk1KM3BTVkZvZi1GeWxxM2MyVmN2dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjMyOS9DN0ZBRDM2OEEyNjgxMUVGOUQ5MTQxMThDNEY5QUUwMi9LVHJHUUZNSjNw U1ZGb2YtRnlscTNjMlZjdncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADDgAemybsPWMu1L1m+o/ZcTKAaXq7YrT3EBvAOzjw739k3OsTAjUG pRMbnaIymR9zCO0sGczQHuje9f+Ug78LASuOe5/JwCou8nE6jYspC20GQDnBrwHv P9SZogI9aFBj02GiobmoGUL2WgGOwEUPu8965vjxomRwMWmgHjqvCtDT87nRAMoD CSXmvYBszzfWo+Afii2scqcEfH2JInojtr84R0B7KereY0fmdwSuDQNpF4JeReOL NUmqBhe9G+Nqpt4PBiOg4E46JSnJAciJgqabAZYFQcTIuLqiF3eGMRxLj3eJKl8p /0/uLosLfbGKr58bZ4G/vdAJgUNXHmim -----END CERTIFICATE-----Generated at Tue Dec 23 02:40:29 2025 by rpki-client