This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.mft File: _-KgNynzLTIiepnJJRWMgspUuVc.mft (raw, json) Hash identifier: +4VWN8Qh8sDvlRdqK3cvIqjlx0EVTPNOOmHKh/z595Y= Subject key identifier: 45:21:D5:25:29:EC:2E:47:73:FD:E0:22:6D:21:6F:E6:2A:38:DD:E2 Authority key identifier: FF:E2:A0:37:29:F3:2D:32:22:7A:99:C9:25:15:8C:82:CA:54:B9:57 Certificate issuer: /CN=A917225D/serialNumber=FFE2A03729F32D32227A99C925158C82CA54B957 Certificate serial: 351E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_-KgNynzLTIiepnJJRWMgspUuVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.mft Manifest number: 350C Signing time: Sun 28 Dec 2025 14:23:17 +0000 Manifest this update: Sun 28 Dec 2025 14:23:16 +0000 Manifest next update: Sun 04 Jan 2026 14:23:16 +0000 Files and hashes: 1: _-KgNynzLTIiepnJJRWMgspUuVc.crl (hash: 6mZUKiT60yOWJRQpbWgor8ZzEsX68cZScTq5jRdSi0Y=) 2: A0121BD4871711EA924C6626C4F9AE02.roa (hash: TsmW3wUGCspNY1UcKJcNnUuuDH7qDphY3UYVmmAdbDA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.crl rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_-KgNynzLTIiepnJJRWMgspUuVc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 Jan 2026 14:23:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13598 (0x351e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917225D, serialNumber=FFE2A03729F32D32227A99C925158C82CA54B957 Validity Not Before: Dec 28 14:23:16 2025 GMT Not After : Jan 4 14:23:16 2026 GMT Subject: CN=69513d55-c354 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:30:96:65:20:27:b3:c7:46:97:71:5d:e9:4b: 2b:69:77:b8:66:04:dc:b5:18:d3:1b:9d:29:53:d2: 26:24:5a:d6:ab:43:82:3b:9c:5b:fa:17:4e:7e:2a: 63:d4:1e:0e:7e:7d:77:92:f9:ae:0b:8a:86:8f:ae: 33:db:46:d9:5f:49:0d:cc:7b:60:8b:4a:b9:b8:1c: 3f:dd:23:aa:2d:7d:70:d5:43:38:5b:14:43:86:21: 64:bb:d5:72:01:29:d6:1c:4f:3d:5a:96:f5:a8:3a: 44:38:94:63:ea:b4:d0:87:8a:5a:3b:5f:7b:0c:b7: 92:b1:5b:97:6f:df:db:d2:5e:7c:b1:92:e4:26:e6: f0:80:da:7e:80:55:5d:03:83:75:98:07:e7:8c:f5: 03:97:31:f5:e7:16:b0:8c:2a:44:50:64:b9:61:7d: 27:c8:8a:46:cd:ac:42:a3:38:ef:26:c2:d6:2e:6c: 9f:9d:17:23:6c:3c:a2:18:9c:ea:d5:16:f0:53:f4: c0:fa:d1:32:13:a8:74:34:a4:3e:b7:9a:4a:69:09: 03:46:ca:b7:7c:9e:46:35:95:ae:85:d8:93:90:97: d0:64:39:19:ea:6b:23:93:57:0b:cb:f0:ac:9f:4c: aa:71:6f:13:18:80:98:0b:39:81:2a:99:87:a5:54: 39:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:21:D5:25:29:EC:2E:47:73:FD:E0:22:6D:21:6F:E6:2A:38:DD:E2 X509v3 Authority Key Identifier: keyid:FF:E2:A0:37:29:F3:2D:32:22:7A:99:C9:25:15:8C:82:CA:54:B9:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_-KgNynzLTIiepnJJRWMgspUuVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:ed:3c:48:3d:29:b0:8d:1c:8e:a2:26:6a:8c:ff:4f:ee:25: 24:15:b5:2e:d2:6e:ac:bc:e7:44:39:1d:bd:38:62:88:93:f3: 8b:28:03:5a:5c:22:cf:36:2d:4d:dd:23:71:e9:8b:99:ad:4a: e5:10:21:0f:15:52:42:7d:8f:0d:d0:d3:2f:cc:10:9f:35:b0: 48:82:05:54:61:a0:9d:a6:bd:9b:2c:8b:66:91:3a:49:46:b0: c0:33:30:1d:a2:2a:f5:77:2c:de:f4:96:09:d2:78:85:d0:f2: 67:fe:f4:06:47:94:eb:85:d8:3e:98:f5:5f:72:dc:0d:8b:25: 9f:56:e6:e5:25:c2:58:9f:70:e1:31:35:9a:af:bf:82:5e:76: a2:29:85:0e:45:17:93:66:7f:cd:58:e1:2b:ba:21:b1:a4:18: db:ca:07:f3:88:ab:83:f6:1c:65:0a:7c:86:0d:71:60:e9:d7: 1d:a6:23:70:6a:80:3c:2f:9c:91:57:6c:86:b2:31:87:78:6f: 00:0c:af:a3:22:e8:56:64:cb:69:5a:04:36:4e:c9:68:4e:0f: 2e:9e:78:94:8e:fc:84:73:80:b9:31:84:64:96:39:72:f8:db: f2:07:ae:da:9f:f5:93:90:eb:76:9a:3d:d5:f4:fb:d1:cb:80: ce:1b:d9:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNR4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzIyNUQxMTAvBgNVBAUTKEZGRTJBMDM3MjlGMzJEMzIyMjdBOTlDOTI1MTU4Qzgy Q0E1NEI5NTcwHhcNMjUxMjI4MTQyMzE2WhcNMjYwMTA0MTQyMzE2WjAYMRYwFAYD VQQDDA02OTUxM2Q1NS1jMzU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0jCWZSAns8dGl3Fd6UsraXe4ZgTctRjTG50pU9ImJFrWq0OCO5xb+hdOfipj 1B4Ofn13kvmuC4qGj64z20bZX0kNzHtgi0q5uBw/3SOqLX1w1UM4WxRDhiFku9Vy ASnWHE89Wpb1qDpEOJRj6rTQh4paO197DLeSsVuXb9/b0l58sZLkJubwgNp+gFVd A4N1mAfnjPUDlzH15xawjCpEUGS5YX0nyIpGzaxCozjvJsLWLmyfnRcjbDyiGJzq 1RbwU/TA+tEyE6h0NKQ+t5pKaQkDRsq3fJ5GNZWuhdiTkJfQZDkZ6msjk1cLy/Cs n0yqcW8TGICYCzmBKpmHpVQ5swIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEUh1SUp 7C5Hc/3gIm0hb+YqON3iMB8GA1UdIwQYMBaAFP/ioDcp8y0yInqZySUVjILKVLlX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MjI1RC8xRjU1MDgzMDFE ODQxMUUyOTE3QkQwRDkwOEIwMkNEMi9fLUtnTnluekxUSWllcG5KSlJXTWdzcFV1 VmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL18tS2dOeW56TFRJaWVwbkpKUldNZ3NwVXVWYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MjI1RC8xRjU1MDgzMDFEODQxMUUyOTE3QkQwRDkwOEIwMkNEMi9fLUtnTnluekxU SWllcG5KSlJXTWdzcFV1VmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCt7TxIPSmwjRyOoiZqjP9P7iUkFbUu0m6svOdEOR29OGKIk/OLKANa XCLPNi1N3SNx6YuZrUrlECEPFVJCfY8N0NMvzBCfNbBIggVUYaCdpr2bLItmkTpJ RrDAMzAdoir1dyze9JYJ0niF0PJn/vQGR5Trhdg+mPVfctwNiyWfVublJcJYn3Dh MTWar7+CXnaiKYUORReTZn/NWOEruiGxpBjbygfziKuD9hxlCnyGDXFg6dcdpiNw aoA8L5yRV2yGsjGHeG8ADK+jIuhWZMtpWgQ2TsloTg8unniUjvyEc4C5MYRkljly +NvyB67an/WTkOt2mj3V9PvRy4DOG9lQ -----END CERTIFICATE-----Generated at Mon Dec 29 02:40:14 2025 by rpki-client