This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91608B2/C95A49AE4A5211F0989D700FC4F9AE02/KcmzN9Z7DxREgXmLTVsNc9eIrys.mft File: KcmzN9Z7DxREgXmLTVsNc9eIrys.mft (raw, json) Hash identifier: 8THhiS5yQXNNlpteIh5pp6mLGC53s4SqEHEU3b0l6Pw= Subject key identifier: 8A:BD:70:0A:76:6D:40:31:79:48:07:71:41:46:08:05:A2:87:C1:E8 Authority key identifier: 29:C9:B3:37:D6:7B:0F:14:44:81:79:8B:4D:5B:0D:73:D7:88:AF:2B Certificate issuer: /CN=A91608B2/serialNumber=29C9B337D67B0F144481798B4D5B0D73D788AF2B Certificate serial: 63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KcmzN9Z7DxREgXmLTVsNc9eIrys.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91608B2/C95A49AE4A5211F0989D700FC4F9AE02/KcmzN9Z7DxREgXmLTVsNc9eIrys.mft Manifest number: 62 Signing time: Fri 19 Dec 2025 06:03:07 +0000 Manifest this update: Fri 19 Dec 2025 06:03:07 +0000 Manifest next update: Fri 26 Dec 2025 06:03:07 +0000 Files and hashes: 1: KcmzN9Z7DxREgXmLTVsNc9eIrys.crl (hash: a8dJ8yYSg0+SQ65gMMHK3z6c5+M9UWo6FMstScqjO1g=) 2: 13B4125A4A5311F08B06EF0FC4F9AE02.roa (hash: JRzGJdFSse2irDcL+W7kuHv+w+d8AeO+g8YTYnBtHyU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91608B2/C95A49AE4A5211F0989D700FC4F9AE02/KcmzN9Z7DxREgXmLTVsNc9eIrys.crl rsync://rpki.apnic.net/member_repository/A91608B2/C95A49AE4A5211F0989D700FC4F9AE02/KcmzN9Z7DxREgXmLTVsNc9eIrys.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KcmzN9Z7DxREgXmLTVsNc9eIrys.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 06:03:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 99 (0x63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91608B2, serialNumber=29C9B337D67B0F144481798B4D5B0D73D788AF2B Validity Not Before: Dec 19 06:03:07 2025 GMT Not After : Dec 26 06:03:07 2025 GMT Subject: CN=6944ea9b-a794 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:e8:c4:b6:cc:cf:dd:63:98:fc:63:f0:32:15: 3d:f0:7d:cc:11:52:f0:4a:78:27:3e:0c:b9:dd:a5: 4b:22:f4:5b:a5:bc:bf:0f:6f:4e:72:9f:36:3d:3c: 74:4d:db:01:2c:01:be:c7:e9:4d:e9:1f:1e:f6:75: 11:51:73:c6:9b:84:b3:f7:1a:2a:12:c3:b0:53:1e: 2d:91:42:bf:ad:2b:5c:7a:fb:bc:41:03:aa:76:93: 6c:ad:3f:dd:f0:c3:9e:c7:fc:91:78:23:a3:2e:8f: 47:1c:eb:05:e5:ad:39:c1:13:0b:4c:9e:8c:cd:c4: 7f:f7:73:d4:3f:99:83:17:9e:a7:c3:98:53:b3:88: 54:89:85:99:bf:4f:07:43:4f:c8:4b:3a:69:a4:76: e9:d3:ea:45:c2:a9:f4:19:0f:a5:ca:ba:50:0c:ca: c8:5b:ee:00:d1:66:fb:a3:7e:f7:d1:48:c7:f8:67: 62:cf:96:e4:97:ca:5f:23:85:12:56:4e:c2:fa:25: 87:7d:de:19:ad:bf:68:bb:e2:76:68:00:fb:aa:56: 0e:9d:49:39:d8:6b:8a:d5:57:14:2e:9b:ad:cf:96: 87:6c:07:c4:3c:ea:1d:1f:c6:cc:79:c3:79:41:bf: df:6b:c4:a7:e9:87:a5:1d:96:ed:d4:81:7b:fc:31: 13:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:BD:70:0A:76:6D:40:31:79:48:07:71:41:46:08:05:A2:87:C1:E8 X509v3 Authority Key Identifier: keyid:29:C9:B3:37:D6:7B:0F:14:44:81:79:8B:4D:5B:0D:73:D7:88:AF:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91608B2/C95A49AE4A5211F0989D700FC4F9AE02/KcmzN9Z7DxREgXmLTVsNc9eIrys.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KcmzN9Z7DxREgXmLTVsNc9eIrys.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91608B2/C95A49AE4A5211F0989D700FC4F9AE02/KcmzN9Z7DxREgXmLTVsNc9eIrys.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:c0:84:a4:04:80:ae:92:62:97:a0:bb:87:be:35:da:bb:ea: d1:fe:e0:63:fb:a4:01:05:74:f8:65:e4:54:50:69:e5:35:66: 46:bf:da:d9:6f:0f:b1:75:33:a6:b1:c9:8a:73:a6:03:9f:4a: a0:f9:3e:e5:a3:4b:a0:41:45:1b:61:13:84:b1:3d:a8:30:64: 23:d6:45:b6:60:f0:f4:8a:6a:2e:b7:6e:0a:6c:d3:e7:07:b5: 81:a8:1b:46:77:df:f6:a9:df:43:50:6f:b8:f5:35:9d:2a:5a: 79:2b:71:3b:97:61:a0:62:5d:93:e5:c4:eb:6e:85:d2:1d:ad: b5:f1:93:76:d5:40:80:14:8f:a6:32:08:a4:8a:ca:88:65:a5: 6f:33:03:06:ec:1c:34:ee:90:d2:86:72:1d:e5:ac:f4:cb:96: cc:cb:e2:af:33:99:1b:a3:d2:ea:c7:0e:cd:f1:8d:cb:00:ca: 8c:75:b3:cf:55:8c:1a:4b:05:02:e5:41:df:c4:aa:f0:e0:a3: f9:35:91:2c:e7:47:c4:06:50:f1:ea:fc:13:27:5b:33:4c:20: a8:d3:2d:89:8d:50:24:6c:34:0f:26:a2:fd:4e:b7:51:33:e8: 92:6d:98:9d:6c:12:1c:02:30:c8:e5:71:70:95:c6:d0:89:77: 75:34:89:9f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 MDhCMjExMC8GA1UEBRMoMjlDOUIzMzdENjdCMEYxNDQ0ODE3OThCNEQ1QjBENzNE Nzg4QUYyQjAeFw0yNTEyMTkwNjAzMDdaFw0yNTEyMjYwNjAzMDdaMBgxFjAUBgNV BAMMDTY5NDRlYTliLWE3OTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCf6MS2zM/dY5j8Y/AyFT3wfcwRUvBKeCc+DLndpUsi9FulvL8Pb05ynzY9PHRN 2wEsAb7H6U3pHx72dRFRc8abhLP3GioSw7BTHi2RQr+tK1x6+7xBA6p2k2ytP93w w57H/JF4I6Muj0cc6wXlrTnBEwtMnozNxH/3c9Q/mYMXnqfDmFOziFSJhZm/TwdD T8hLOmmkdunT6kXCqfQZD6XKulAMyshb7gDRZvujfvfRSMf4Z2LPluSXyl8jhRJW TsL6JYd93hmtv2i74nZoAPuqVg6dSTnYa4rVVxQum63PlodsB8Q86h0fxsx5w3lB v99rxKfph6Udlu3UgXv8MRNZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUir1wCnZt QDF5SAdxQUYIBaKHwegwHwYDVR0jBBgwFoAUKcmzN9Z7DxREgXmLTVsNc9eIrysw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYwOEIyL0M5NUE0OUFFNEE1 MjExRjA5ODlENzAwRkM0RjlBRTAyL0tjbXpOOVo3RHhSRWdYbUxUVnNOYzllSXJ5 cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvS2Ntek45WjdEeFJFZ1htTFRWc05jOWVJcnlzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYw OEIyL0M5NUE0OUFFNEE1MjExRjA5ODlENzAwRkM0RjlBRTAyL0tjbXpOOVo3RHhS RWdYbUxUVnNOYzllSXJ5cy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADPAhKQEgK6SYpegu4e+Ndq76tH+4GP7pAEFdPhl5FRQaeU1Zka/2tlv D7F1M6axyYpzpgOfSqD5PuWjS6BBRRthE4SxPagwZCPWRbZg8PSKai63bgps0+cH tYGoG0Z33/ap30NQb7j1NZ0qWnkrcTuXYaBiXZPlxOtuhdIdrbXxk3bVQIAUj6Yy CKSKyohlpW8zAwbsHDTukNKGch3lrPTLlszL4q8zmRuj0urHDs3xjcsAyox1s89V jBpLBQLlQd/EqvDgo/k1kSznR8QGUPHq/BMnWzNMIKjTLYmNUCRsNA8mov1Ot1Ez 6JJtmJ1sEhwCMMjlcXCVxtCJd3U0iZ8= -----END CERTIFICATE-----Generated at Fri Dec 19 20:27:39 2025 by rpki-client