This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.mft File: KgHI_pZ5aUR4MewBwCvE6cuaziw.mft (raw, json) Hash identifier: gfGxvOz14kCiNxdv8rY0iqrtQyjPdrGq20qg9V/nKUA= Subject key identifier: E4:58:73:84:3D:DF:AC:BA:5E:82:06:62:CD:84:73:87:C6:91:EC:F0 Authority key identifier: 2A:01:C8:FE:96:79:69:44:78:31:EC:01:C0:2B:C4:E9:CB:9A:CE:2C Certificate issuer: /CN=A9158F8D/serialNumber=2A01C8FE967969447831EC01C02BC4E9CB9ACE2C Certificate serial: 0103 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KgHI_pZ5aUR4MewBwCvE6cuaziw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.mft Manifest number: FE Signing time: Fri 19 Dec 2025 04:22:17 +0000 Manifest this update: Fri 19 Dec 2025 04:22:17 +0000 Manifest next update: Fri 26 Dec 2025 04:22:17 +0000 Files and hashes: 1: KgHI_pZ5aUR4MewBwCvE6cuaziw.crl (hash: WtYy6YFrb4yq7yr0Yx6WZ83kRDb7toe0fyvQUz8Cj7s=) 2: B9574A322C1311F0B642882AC4F9AE02.roa (hash: QN8v9t5P0QTRBsYg+U9O7T5DHQfpoMuEMEImQ353CzQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.crl rsync://rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KgHI_pZ5aUR4MewBwCvE6cuaziw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 04:22:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 259 (0x103) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158F8D, serialNumber=2A01C8FE967969447831EC01C02BC4E9CB9ACE2C Validity Not Before: Dec 19 04:22:17 2025 GMT Not After : Dec 26 04:22:17 2025 GMT Subject: CN=6944d2f9-6c61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:69:ab:b7:66:af:ac:c9:20:d9:81:50:4e:f6: ed:e9:7d:36:cf:f4:a1:4f:8d:01:d4:8c:be:4e:3b: dd:51:43:df:8b:c6:13:b6:7b:e7:11:07:61:ff:1a: cc:d1:8f:e8:95:5a:a5:47:8d:53:d1:17:3d:ea:88: aa:59:7c:fe:18:29:b0:5e:55:49:11:7f:16:3e:a8: 91:4f:32:1f:e1:29:73:d1:44:8c:2b:2d:c1:ad:eb: bc:6d:cb:31:18:f8:14:73:84:2b:de:f4:23:dd:f8: 97:ee:70:c2:58:43:92:25:c7:1c:17:ee:f9:60:2a: bb:66:07:7e:12:43:e4:88:71:19:27:55:b4:0a:d1: 99:6b:32:44:c2:e2:bc:3a:7d:18:26:43:7d:a9:06: 0c:4c:d5:34:56:0f:44:8e:cc:ed:41:64:a2:bc:6f: 03:dd:36:a8:ca:74:ed:35:f3:17:25:73:5c:8a:38: 4b:33:4c:8a:b0:c3:63:16:9b:6c:93:3e:36:7d:91: d4:58:ad:79:93:63:81:48:9e:61:94:ab:66:5e:71: 25:a1:f1:91:91:f1:9c:3f:4d:f5:5b:2c:2a:30:eb: 7e:ee:67:5c:22:1b:46:1a:f3:2e:a3:85:cc:4d:44: 6b:ac:83:60:87:67:98:8f:86:7c:43:2f:81:b0:2f: 0b:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:58:73:84:3D:DF:AC:BA:5E:82:06:62:CD:84:73:87:C6:91:EC:F0 X509v3 Authority Key Identifier: keyid:2A:01:C8:FE:96:79:69:44:78:31:EC:01:C0:2B:C4:E9:CB:9A:CE:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KgHI_pZ5aUR4MewBwCvE6cuaziw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:1e:73:dd:c2:fb:1b:49:07:20:7a:c2:b3:20:81:02:f9:14: db:84:a0:46:53:4b:e0:a0:20:d4:63:25:be:fd:00:37:93:e1: 96:b6:8a:54:ce:0d:ad:3e:08:ab:20:38:e9:07:74:b3:53:00: 04:85:fb:df:7e:d2:c9:db:11:5f:cd:77:38:1b:6d:18:a9:64: 7f:b1:9b:59:ec:c3:43:b8:69:2b:ce:74:03:ac:88:c8:33:90: d6:6a:3d:cb:67:e0:ef:2f:87:a9:1c:c9:3b:88:19:a3:c2:c1: 40:38:5f:78:e3:46:a9:ec:d2:a1:01:09:81:a9:f5:bc:e8:1e: fd:f5:d4:88:38:97:64:d5:2a:95:c3:7b:2a:72:29:50:8d:1c: 4f:a7:e6:aa:16:ed:a4:b7:4e:9c:91:6b:b7:8c:77:a8:77:45: 91:01:28:8e:c7:0e:a8:2e:08:c4:e1:62:b0:38:cc:f8:3b:c8: a3:f5:34:40:70:08:6c:a3:b2:14:79:56:5f:5b:a1:a6:89:09: c0:81:0b:c6:32:37:2f:98:53:20:b6:93:59:13:d4:1a:f5:be: e6:64:53:f1:f2:bc:63:5d:1a:1b:04:38:bc:a0:54:44:51:1c: b2:de:02:39:ec:04:29:32:31:83:30:c2:f1:b8:ac:18:ac:e2: 27:6f:db:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NThGOEQxMTAvBgNVBAUTKDJBMDFDOEZFOTY3OTY5NDQ3ODMxRUMwMUMwMkJDNEU5 Q0I5QUNFMkMwHhcNMjUxMjE5MDQyMjE3WhcNMjUxMjI2MDQyMjE3WjAYMRYwFAYD VQQDDA02OTQ0ZDJmOS02YzYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv2mrt2avrMkg2YFQTvbt6X02z/ShT40B1Iy+TjvdUUPfi8YTtnvnEQdh/xrM 0Y/olVqlR41T0Rc96oiqWXz+GCmwXlVJEX8WPqiRTzIf4Slz0USMKy3Breu8bcsx GPgUc4Qr3vQj3fiX7nDCWEOSJcccF+75YCq7Zgd+EkPkiHEZJ1W0CtGZazJEwuK8 On0YJkN9qQYMTNU0Vg9EjsztQWSivG8D3TaoynTtNfMXJXNcijhLM0yKsMNjFpts kz42fZHUWK15k2OBSJ5hlKtmXnElofGRkfGcP031WywqMOt+7mdcIhtGGvMuo4XM TURrrINgh2eYj4Z8Qy+BsC8LjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFORYc4Q9 36y6XoIGYs2Ec4fGkezwMB8GA1UdIwQYMBaAFCoByP6WeWlEeDHsAcArxOnLms4s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OEY4RC9BMTc5RTUzQzY0 NzcxMUVGQTgyREU5M0RDNEY5QUUwMi9LZ0hJX3BaNWFVUjRNZXdCd0N2RTZjdWF6 aXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tnSElfcFo1YVVSNE1ld0J3Q3ZFNmN1YXppdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OEY4RC9BMTc5RTUzQzY0NzcxMUVGQTgyREU5M0RDNEY5QUUwMi9LZ0hJX3BaNWFV UjRNZXdCd0N2RTZjdWF6aXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAHnPdwvsbSQcgesKzIIEC+RTbhKBGU0vgoCDUYyW+/QA3k+GWtopU zg2tPgirIDjpB3SzUwAEhfvfftLJ2xFfzXc4G20YqWR/sZtZ7MNDuGkrznQDrIjI M5DWaj3LZ+DvL4epHMk7iBmjwsFAOF9440ap7NKhAQmBqfW86B799dSIOJdk1SqV w3sqcilQjRxPp+aqFu2kt06ckWu3jHeod0WRASiOxw6oLgjE4WKwOMz4O8ij9TRA cAhso7IUeVZfW6GmiQnAgQvGMjcvmFMgtpNZE9Qa9b7mZFPx8rxjXRobBDi8oFRE URyy3gI57AQpMjGDMMLxuKwYrOInb9vC -----END CERTIFICATE-----Generated at Sat Dec 20 17:34:31 2025 by rpki-client