This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A915F438/B7EF53FE2B4E11E5ACBBDF3AC4F9AE02/k-dhjM_iZIDXknoYcbrYP--d9IQ.mft File: k-dhjM_iZIDXknoYcbrYP--d9IQ.mft (raw, json) Hash identifier: uNF4BSPB5DK/BtubQXw6koADqT4xGATZufg9ocRXx7s= Subject key identifier: 6E:48:90:74:36:46:3B:D4:C0:0F:35:72:36:A1:97:47:9E:EC:68:51 Authority key identifier: 93:E7:61:8C:CF:E2:64:80:D7:92:7A:18:71:BA:D8:3F:EF:9D:F4:84 Certificate issuer: /CN=A915F438/serialNumber=93E7618CCFE26480D7927A1871BAD83FEF9DF484 Certificate serial: 2591 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k-dhjM_iZIDXknoYcbrYP--d9IQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915F438/B7EF53FE2B4E11E5ACBBDF3AC4F9AE02/k-dhjM_iZIDXknoYcbrYP--d9IQ.mft Manifest number: 257C Signing time: Sat 20 Dec 2025 15:36:22 +0000 Manifest this update: Sat 20 Dec 2025 15:36:22 +0000 Manifest next update: Sat 27 Dec 2025 15:36:22 +0000 Files and hashes: 1: k-dhjM_iZIDXknoYcbrYP--d9IQ.crl (hash: BAl20E3vco1NV3+9WKQk/uPPslDxgeLMbpY2Wg+5rmc=) 2: 657B47B61C2F11E880C4ED7BC4F9AE02.roa (hash: SqubnCOkk8RsrmFBLZGk+dGzptnKgDT9xCotCHCxhuo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915F438/B7EF53FE2B4E11E5ACBBDF3AC4F9AE02/k-dhjM_iZIDXknoYcbrYP--d9IQ.crl rsync://rpki.apnic.net/member_repository/A915F438/B7EF53FE2B4E11E5ACBBDF3AC4F9AE02/k-dhjM_iZIDXknoYcbrYP--d9IQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k-dhjM_iZIDXknoYcbrYP--d9IQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 15:36:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9617 (0x2591) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915F438, serialNumber=93E7618CCFE26480D7927A1871BAD83FEF9DF484 Validity Not Before: Dec 20 15:36:22 2025 GMT Not After : Dec 27 15:36:22 2025 GMT Subject: CN=6946c276-c347 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:e0:92:5c:63:a8:d5:91:36:24:af:98:ff:a2: 94:b0:8f:15:02:b6:2f:e1:ed:42:40:9e:49:58:33: 18:8e:4f:68:3d:59:e9:ef:c2:9d:04:54:96:cd:11: fc:17:e0:f4:56:49:fa:55:be:da:e5:64:00:ed:07: 7b:4f:c2:17:57:05:85:e2:99:bf:d1:04:50:4d:d3: 2a:c3:95:d2:44:77:b1:ad:65:c9:56:8f:2d:23:9d: 49:2e:7b:89:e3:26:6f:c2:3e:8a:6d:73:5b:8c:48: 88:7a:04:78:8c:2a:17:5c:ef:4e:7d:8d:99:6a:9f: 1a:a1:19:14:52:21:cc:db:d2:b9:89:ba:1b:53:63: 22:f0:0b:94:2e:01:fa:90:5d:ec:d9:12:0e:c4:a3: d8:36:f5:d5:ed:c7:bd:76:50:89:00:fa:cc:5f:60: 5c:03:a1:72:e9:6d:fe:12:8d:60:1f:c9:1f:f3:3c: 7a:ac:88:42:53:da:c2:37:d7:d5:ad:db:18:a9:2f: f0:a3:a2:a3:bb:ce:63:08:13:f5:ea:2a:e4:7e:02: ff:54:c2:fc:1d:38:ee:3c:2b:7a:f5:56:9e:84:8b: d3:ba:f9:b4:9f:47:ab:7d:71:aa:e6:2b:01:8c:6e: af:ed:b0:80:b0:d3:f1:9c:87:b9:57:70:35:f9:b0: fb:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:48:90:74:36:46:3B:D4:C0:0F:35:72:36:A1:97:47:9E:EC:68:51 X509v3 Authority Key Identifier: keyid:93:E7:61:8C:CF:E2:64:80:D7:92:7A:18:71:BA:D8:3F:EF:9D:F4:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915F438/B7EF53FE2B4E11E5ACBBDF3AC4F9AE02/k-dhjM_iZIDXknoYcbrYP--d9IQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k-dhjM_iZIDXknoYcbrYP--d9IQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915F438/B7EF53FE2B4E11E5ACBBDF3AC4F9AE02/k-dhjM_iZIDXknoYcbrYP--d9IQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:91:08:55:fd:71:82:bf:5d:e0:26:88:77:33:7b:9b:99:8d: 3d:f0:aa:13:df:b4:0d:4d:b2:36:ba:bc:99:e8:bd:53:15:17: ce:ed:d4:58:06:ff:86:ae:43:0e:c3:52:2e:6a:e6:44:ab:4b: db:67:b3:ef:fb:6b:1c:d3:82:c7:fe:1d:fb:2a:ae:5a:e7:ab: 19:27:51:ac:47:57:80:24:19:d6:d6:25:0e:bd:20:69:2c:5b: d5:b4:28:4f:d4:8e:4c:fb:d9:a3:b4:98:4c:b4:cc:d6:3e:93: 7b:ba:57:28:d9:c3:72:46:ef:3c:16:bb:f5:27:c1:d4:2c:1a: 96:43:6f:2e:7f:ba:4c:31:7c:3e:a3:26:d7:77:b6:f9:dd:8b: ff:4f:49:38:6c:3f:a9:88:74:76:94:f6:3f:1c:18:df:2d:11: ed:2a:20:b7:72:9d:ef:24:64:0c:04:80:86:56:aa:cc:e1:a5: 53:db:77:1d:2a:d5:68:68:c9:ca:1f:13:b4:19:9b:ce:57:19: 94:7e:e0:e9:16:f8:fc:5a:9e:69:a8:a6:07:68:17:02:4b:91: 15:d0:34:c0:06:8c:eb:95:72:1e:c3:8f:2e:cf:39:db:a1:bd: 1e:6e:15:2f:9e:89:bc:89:58:4d:13:7c:77:9f:9d:85:24:3e: 3b:0b:c4:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJZEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUY0MzgxMTAvBgNVBAUTKDkzRTc2MThDQ0ZFMjY0ODBENzkyN0ExODcxQkFEODNG RUY5REY0ODQwHhcNMjUxMjIwMTUzNjIyWhcNMjUxMjI3MTUzNjIyWjAYMRYwFAYD VQQDDA02OTQ2YzI3Ni1jMzQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw+CSXGOo1ZE2JK+Y/6KUsI8VArYv4e1CQJ5JWDMYjk9oPVnp78KdBFSWzRH8 F+D0Vkn6Vb7a5WQA7Qd7T8IXVwWF4pm/0QRQTdMqw5XSRHexrWXJVo8tI51JLnuJ 4yZvwj6KbXNbjEiIegR4jCoXXO9OfY2Zap8aoRkUUiHM29K5ibobU2Mi8AuULgH6 kF3s2RIOxKPYNvXV7ce9dlCJAPrMX2BcA6Fy6W3+Eo1gH8kf8zx6rIhCU9rCN9fV rdsYqS/wo6Kju85jCBP16irkfgL/VML8HTjuPCt69VaehIvTuvm0n0erfXGq5isB jG6v7bCAsNPxnIe5V3A1+bD75wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG5IkHQ2 RjvUwA81cjahl0ee7GhRMB8GA1UdIwQYMBaAFJPnYYzP4mSA15J6GHG62D/vnfSE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RjQzOC9CN0VGNTNGRTJC NEUxMUU1QUNCQkRGM0FDNEY5QUUwMi9rLWRoak1faVpJRFhrbm9ZY2JyWVAtLWQ5 SVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2stZGhqTV9pWklEWGtub1ljYnJZUC0tZDlJUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RjQzOC9CN0VGNTNGRTJCNEUxMUU1QUNCQkRGM0FDNEY5QUUwMi9rLWRoak1faVpJ RFhrbm9ZY2JyWVAtLWQ5SVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC+kQhV/XGCv13gJoh3M3ubmY098KoT37QNTbI2uryZ6L1TFRfO7dRY Bv+GrkMOw1IuauZEq0vbZ7Pv+2sc04LH/h37Kq5a56sZJ1GsR1eAJBnW1iUOvSBp LFvVtChP1I5M+9mjtJhMtMzWPpN7ulco2cNyRu88Frv1J8HULBqWQ28uf7pMMXw+ oybXd7b53Yv/T0k4bD+piHR2lPY/HBjfLRHtKiC3cp3vJGQMBICGVqrM4aVT23cd KtVoaMnKHxO0GZvOVxmUfuDpFvj8Wp5pqKYHaBcCS5EV0DTABozrlXIew48uzznb ob0ebhUvnom8iVhNE3x3n52FJD47C8Qv -----END CERTIFICATE-----Generated at Mon Dec 22 03:38:54 2025 by rpki-client