This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A915FE9F/23027124517011F0B9DBCB87C4F9AE02/KNrY1MxvdA-gANQ2hprg8Xbq6TM.mft File: KNrY1MxvdA-gANQ2hprg8Xbq6TM.mft (raw, json) Hash identifier: Uq7jB16H0D0LA4Ud/6fXD1L6spSu0RcsGSZHNPHdkk4= Subject key identifier: 53:82:E7:19:0B:61:52:E9:2C:E8:B1:A4:A2:8D:8D:EF:06:5D:19:D8 Authority key identifier: 28:DA:D8:D4:CC:6F:74:0F:A0:00:D4:36:86:9A:E0:F1:76:EA:E9:33 Certificate issuer: /CN=A915FE9F/serialNumber=28DAD8D4CC6F740FA000D436869AE0F176EAE933 Certificate serial: 63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KNrY1MxvdA-gANQ2hprg8Xbq6TM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915FE9F/23027124517011F0B9DBCB87C4F9AE02/KNrY1MxvdA-gANQ2hprg8Xbq6TM.mft Manifest number: 5F Signing time: Sun 21 Dec 2025 06:08:41 +0000 Manifest this update: Sun 21 Dec 2025 06:08:40 +0000 Manifest next update: Sun 28 Dec 2025 06:08:40 +0000 Files and hashes: 1: KNrY1MxvdA-gANQ2hprg8Xbq6TM.crl (hash: /B0vCxkBWKhAeJSEgqLAi/IWChxm+1kbJWxuDwJseKM=) 2: EAAC1A669E5C11F0B2B86856C4F9AE02.roa (hash: 3ivuXSavI1grPWsZeIczoxpu8ztBxvr+RSbjIfz05CY=) 3: E9ACBC4C9E5C11F0B2B86856C4F9AE02.roa (hash: 9HHR5FNxgt2P/Pdw8ubx9aLKafeL5xLqLydwvJefiRE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915FE9F/23027124517011F0B9DBCB87C4F9AE02/KNrY1MxvdA-gANQ2hprg8Xbq6TM.crl rsync://rpki.apnic.net/member_repository/A915FE9F/23027124517011F0B9DBCB87C4F9AE02/KNrY1MxvdA-gANQ2hprg8Xbq6TM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KNrY1MxvdA-gANQ2hprg8Xbq6TM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 06:08:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 99 (0x63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915FE9F, serialNumber=28DAD8D4CC6F740FA000D436869AE0F176EAE933 Validity Not Before: Dec 21 06:08:40 2025 GMT Not After : Dec 28 06:08:40 2025 GMT Subject: CN=69478ee8-c0f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:18:cc:e6:37:04:99:dc:a5:c6:d5:1e:c8:bd: a8:99:2c:63:9b:5a:4f:b9:db:2a:b4:7a:c7:10:47: 3a:18:6a:89:79:ef:ec:c1:ee:bd:82:94:bc:f1:46: 9e:8e:da:60:e2:88:e8:67:84:34:9f:16:5e:f8:f2: 7c:94:12:ec:d5:9a:ad:c4:94:a2:55:25:03:99:8a: 74:27:cc:18:4d:51:d8:c3:63:3d:58:47:7a:7c:f8: 50:d9:b4:50:7e:31:db:33:af:9b:db:e3:0a:86:8f: de:bb:b3:1a:7f:11:92:ef:e0:74:8d:39:31:ef:e7: 8f:5b:19:f7:eb:14:98:7d:8a:8d:f8:85:04:ca:31: c3:69:e7:32:d6:1a:1c:b1:f8:aa:ef:b8:94:bd:6b: a4:93:47:0e:04:fa:07:97:9b:76:25:1e:50:88:ff: 5a:f9:b1:9a:76:83:dd:d4:1f:0d:c5:a3:80:73:5e: d5:2b:2c:e6:88:f1:c6:8a:75:dd:ae:cf:63:51:c4: ba:31:5d:44:8c:44:59:43:82:f7:86:91:05:65:7a: 8b:f0:6b:a6:2c:c2:1a:82:50:30:11:d5:7c:d8:95: 30:86:d6:b3:63:33:45:ec:88:41:81:e6:e2:70:50: 16:f2:d5:ab:5c:a5:03:2f:9e:6e:5a:9a:01:0c:5c: 5f:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:82:E7:19:0B:61:52:E9:2C:E8:B1:A4:A2:8D:8D:EF:06:5D:19:D8 X509v3 Authority Key Identifier: keyid:28:DA:D8:D4:CC:6F:74:0F:A0:00:D4:36:86:9A:E0:F1:76:EA:E9:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915FE9F/23027124517011F0B9DBCB87C4F9AE02/KNrY1MxvdA-gANQ2hprg8Xbq6TM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KNrY1MxvdA-gANQ2hprg8Xbq6TM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915FE9F/23027124517011F0B9DBCB87C4F9AE02/KNrY1MxvdA-gANQ2hprg8Xbq6TM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:0a:7f:09:33:db:bd:e7:5b:df:17:e1:6e:c0:3d:db:16:c4: 95:86:01:f5:c6:d0:00:9f:94:54:e3:79:74:64:9a:4f:77:eb: d5:b3:5b:b0:74:51:a3:59:73:17:a3:87:b5:c1:05:0c:e3:1a: e9:1f:68:ad:3e:0f:86:e2:37:36:b6:de:65:54:75:12:37:43: fa:6b:58:3e:5f:a2:bc:5a:aa:f4:6c:01:e4:97:9d:a3:81:42: 67:4e:34:07:97:0b:ce:a8:85:86:36:0a:f5:a9:bd:b1:9b:cf: 48:39:9e:f3:4c:a2:12:f6:46:31:d6:bd:89:9a:89:cd:fd:02: 61:9f:bf:e5:29:99:92:7c:eb:49:40:ed:d4:00:9f:ec:ba:20: 48:4b:8b:9a:7b:0f:04:3d:b8:14:88:bd:4a:86:b1:56:e1:6e: 23:23:f5:35:30:d2:c7:cb:58:c5:f3:d3:21:71:5c:56:39:5a: 3e:44:b9:9f:33:94:83:11:96:e2:a4:21:e7:30:c0:2f:dd:14: cc:f7:47:29:26:1b:81:c2:83:e2:a4:8f:c7:0d:29:0e:5b:66: dd:95:56:42:c8:37:1c:e1:cc:33:52:4f:44:07:77:1e:35:e0: 68:e1:d3:68:e3:98:10:ca:cd:1a:b0:41:0f:d9:5b:f0:f4:d0: 5e:e4:6a:31 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 RkU5RjExMC8GA1UEBRMoMjhEQUQ4RDRDQzZGNzQwRkEwMDBENDM2ODY5QUUwRjE3 NkVBRTkzMzAeFw0yNTEyMjEwNjA4NDBaFw0yNTEyMjgwNjA4NDBaMBgxFjAUBgNV BAMMDTY5NDc4ZWU4LWMwZjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDcGMzmNwSZ3KXG1R7IvaiZLGObWk+52yq0escQRzoYaol57+zB7r2ClLzxRp6O 2mDiiOhnhDSfFl748nyUEuzVmq3ElKJVJQOZinQnzBhNUdjDYz1YR3p8+FDZtFB+ Mdszr5vb4wqGj967sxp/EZLv4HSNOTHv549bGffrFJh9io34hQTKMcNp5zLWGhyx +KrvuJS9a6STRw4E+geXm3YlHlCI/1r5sZp2g93UHw3Fo4BzXtUrLOaI8caKdd2u z2NRxLoxXUSMRFlDgveGkQVleovwa6YswhqCUDAR1XzYlTCG1rNjM0XsiEGB5uJw UBby1atcpQMvnm5amgEMXF8hAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUU4LnGQth Uuks6LGkoo2N7wZdGdgwHwYDVR0jBBgwFoAUKNrY1MxvdA+gANQ2hprg8Xbq6TMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVGRTlGLzIzMDI3MTI0NTE3 MDExRjBCOURCQ0I4N0M0RjlBRTAyL0tOclkxTXh2ZEEtZ0FOUTJocHJnOFhicTZU TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvS05yWTFNeHZkQS1nQU5RMmhwcmc4WGJxNlRNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVG RTlGLzIzMDI3MTI0NTE3MDExRjBCOURCQ0I4N0M0RjlBRTAyL0tOclkxTXh2ZEEt Z0FOUTJocHJnOFhicTZUTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABcKfwkz273nW98X4W7APdsWxJWGAfXG0ACflFTjeXRkmk9369WzW7B0 UaNZcxejh7XBBQzjGukfaK0+D4biNza23mVUdRI3Q/prWD5forxaqvRsAeSXnaOB QmdONAeXC86ohYY2CvWpvbGbz0g5nvNMohL2RjHWvYmaic39AmGfv+UpmZJ860lA 7dQAn+y6IEhLi5p7DwQ9uBSIvUqGsVbhbiMj9TUw0sfLWMXz0yFxXFY5Wj5EuZ8z lIMRluKkIecwwC/dFMz3RykmG4HCg+Kkj8cNKQ5bZt2VVkLINxzhzDNST0QHdx41 4Gjh02jjmBDKzRqwQQ/ZW/D00F7kajE= -----END CERTIFICATE-----Generated at Mon Dec 22 16:38:16 2025 by rpki-client