This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.mft File: KrJDLDrVEo7XPpnEYNBhH69NIg4.mft (raw, json) Hash identifier: CLGGfGSuM6r6BzDBsvuhksYHuacvOQH5jnVvBhsonrY= Subject key identifier: C2:4A:5F:51:3D:7B:2D:3B:6D:10:FD:0B:0E:D1:D3:19:F0:47:F2:47 Authority key identifier: 2A:B2:43:2C:3A:D5:12:8E:D7:3E:99:C4:60:D0:61:1F:AF:4D:22:0E Certificate issuer: /CN=A9153850/serialNumber=2AB2432C3AD5128ED73E99C460D0611FAF4D220E Certificate serial: A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KrJDLDrVEo7XPpnEYNBhH69NIg4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.mft Manifest number: 9B Signing time: Fri 19 Dec 2025 05:34:50 +0000 Manifest this update: Fri 19 Dec 2025 05:34:49 +0000 Manifest next update: Fri 26 Dec 2025 05:34:49 +0000 Files and hashes: 1: KrJDLDrVEo7XPpnEYNBhH69NIg4.crl (hash: Uuh0Ky3Uzp6w86D7P2/lAWrPWfz7QI3a4FI19GhdMkM=) 2: D6246110AA6F11F0AD515C63C4F9AE02.roa (hash: RGGyK8DspBxTZffeC/YcsDxozPm/op0sIdvWa7dUrhw=) 3: FC7F121AAA6F11F0BCFEBD63C4F9AE02.roa (hash: ACjymaT82Ts20I3seIpJ3qFJasSA4FVf/+MM9Q+0Im8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.crl rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KrJDLDrVEo7XPpnEYNBhH69NIg4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 05:34:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 166 (0xa6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153850, serialNumber=2AB2432C3AD5128ED73E99C460D0611FAF4D220E Validity Not Before: Dec 19 05:34:49 2025 GMT Not After : Dec 26 05:34:49 2025 GMT Subject: CN=6944e3fa-f5b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:e9:6d:cd:53:de:8f:97:99:61:34:63:52:2c: 5e:e8:09:ed:cc:ed:91:1e:90:47:77:20:6d:dd:87: d9:4d:a3:5b:bc:04:5c:cc:34:67:c4:d1:9f:d7:59: 04:6e:51:3d:3b:2d:f7:92:a0:96:91:93:33:95:b3: e8:57:a7:08:83:14:c8:60:5d:49:70:8f:ad:97:65: 6a:ce:21:2a:7d:21:67:14:59:da:f8:0d:3e:ff:46: 72:9f:c3:19:66:ef:8c:45:9a:47:14:f7:1f:0a:bd: e9:08:ea:3a:e7:6e:9b:23:32:4f:25:44:8c:ab:50: 44:85:e9:c2:7c:f7:a2:2e:08:92:44:a2:27:82:89: ac:af:bb:0c:92:f8:e6:1a:60:99:42:6e:6d:cd:13: 59:38:1e:c2:f2:fe:8d:98:51:da:39:a8:0a:00:25: 42:d3:4e:5a:fc:95:39:2e:04:51:3d:ae:57:2e:a7: ea:ef:9e:52:f5:44:b0:73:2b:e2:69:a2:66:9a:14: df:86:e3:db:04:1f:00:f7:c7:ec:5f:6b:8f:45:75: ac:f5:b6:f5:81:25:31:a7:9a:7f:a0:13:bd:3f:ae: 52:be:ff:0a:9c:16:0d:1b:3b:47:43:7d:01:8c:f2: 6d:b0:6a:88:05:43:2b:9d:de:63:19:ec:23:e6:8b: 58:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:4A:5F:51:3D:7B:2D:3B:6D:10:FD:0B:0E:D1:D3:19:F0:47:F2:47 X509v3 Authority Key Identifier: keyid:2A:B2:43:2C:3A:D5:12:8E:D7:3E:99:C4:60:D0:61:1F:AF:4D:22:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KrJDLDrVEo7XPpnEYNBhH69NIg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:cd:48:29:7a:77:52:77:20:c1:84:80:df:94:44:36:6a:d3: 4b:75:6d:cd:7b:df:27:29:af:35:19:0d:41:19:b9:64:85:af: 97:f1:79:1c:77:0d:5a:9c:36:b9:9d:5c:0e:fe:2c:56:eb:c6: f2:66:e9:6e:26:3f:48:b0:38:9f:84:16:65:1e:93:e0:e3:0f: 06:82:39:a6:87:e4:be:28:b1:c1:f9:a9:fb:9c:0d:15:fd:96: ad:be:08:a0:c1:30:b5:0b:2c:1a:4e:c8:2a:8d:4a:59:9f:02: 3e:2c:29:33:e9:e0:bd:e6:69:79:15:b6:59:85:93:3f:74:ba: 59:ee:e7:9f:62:3f:69:c4:70:4c:e8:73:6c:3a:24:89:0a:e1: 94:d3:31:88:c3:ac:b9:e0:5e:f9:85:be:32:c4:70:b8:90:e7: 7b:ab:f9:9b:81:c3:2d:b2:f9:9c:92:50:3d:26:db:27:5e:1d: cc:e8:e0:fa:b5:dc:d3:a3:d8:06:92:ec:87:90:b0:94:b5:35: dd:ee:64:79:15:ae:82:7e:fd:8f:4c:9a:61:45:66:b5:06:67: 3b:e6:c0:5a:67:93:19:f0:ed:b6:00:ad:55:74:ba:d7:5f:fc: ee:2a:8a:7c:6c:6d:2f:62:98:10:79:ab:da:25:0a:f1:53:3c: d3:b1:9f:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM4NTAxMTAvBgNVBAUTKDJBQjI0MzJDM0FENTEyOEVENzNFOTlDNDYwRDA2MTFG QUY0RDIyMEUwHhcNMjUxMjE5MDUzNDQ5WhcNMjUxMjI2MDUzNDQ5WjAYMRYwFAYD VQQDDA02OTQ0ZTNmYS1mNWI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwOltzVPej5eZYTRjUixe6AntzO2RHpBHdyBt3YfZTaNbvARczDRnxNGf11kE blE9Oy33kqCWkZMzlbPoV6cIgxTIYF1JcI+tl2VqziEqfSFnFFna+A0+/0Zyn8MZ Zu+MRZpHFPcfCr3pCOo6526bIzJPJUSMq1BEhenCfPeiLgiSRKIngomsr7sMkvjm GmCZQm5tzRNZOB7C8v6NmFHaOagKACVC005a/JU5LgRRPa5XLqfq755S9USwcyvi aaJmmhTfhuPbBB8A98fsX2uPRXWs9bb1gSUxp5p/oBO9P65Svv8KnBYNGztHQ30B jPJtsGqIBUMrnd5jGewj5otYbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMJKX1E9 ey07bRD9Cw7R0xnwR/JHMB8GA1UdIwQYMBaAFCqyQyw61RKO1z6ZxGDQYR+vTSIO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Mzg1MC83QjNCMzdENDAx ODYxMUYwQjA1QjRDNTlDNEY5QUUwMi9LckpETERyVkVvN1hQcG5FWU5CaEg2OU5J ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tySkRMRHJWRW83WFBwbkVZTkJoSDY5TklnNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Mzg1MC83QjNCMzdENDAxODYxMUYwQjA1QjRDNTlDNEY5QUUwMi9LckpETERyVkVv N1hQcG5FWU5CaEg2OU5JZzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKzUgpendSdyDBhIDflEQ2atNLdW3Ne98nKa81GQ1BGblkha+X8Xkc dw1anDa5nVwO/ixW68byZuluJj9IsDifhBZlHpPg4w8Ggjmmh+S+KLHB+an7nA0V /ZatvgigwTC1CywaTsgqjUpZnwI+LCkz6eC95ml5FbZZhZM/dLpZ7uefYj9pxHBM 6HNsOiSJCuGU0zGIw6y54F75hb4yxHC4kOd7q/mbgcMtsvmcklA9JtsnXh3M6OD6 tdzTo9gGkuyHkLCUtTXd7mR5Fa6Cfv2PTJphRWa1Bmc75sBaZ5MZ8O22AK1VdLrX X/zuKop8bG0vYpgQeavaJQrxUzzTsZ9h -----END CERTIFICATE-----Generated at Fri Dec 19 19:05:39 2025 by rpki-client