This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.mft File: _-KgNynzLTIiepnJJRWMgspUuVc.mft (raw, json) Hash identifier: wk6fq/rRQu7jk3jVPbC5B5ir/3qTVQaRkQw2uqPXoPc= Subject key identifier: B9:35:52:3E:D2:63:08:65:65:E9:5B:F9:E8:04:4C:67:E2:7E:F7:2D Authority key identifier: FF:E2:A0:37:29:F3:2D:32:22:7A:99:C9:25:15:8C:82:CA:54:B9:57 Certificate issuer: /CN=A917225D/serialNumber=FFE2A03729F32D32227A99C925158C82CA54B957 Certificate serial: 351F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_-KgNynzLTIiepnJJRWMgspUuVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.mft Manifest number: 350D Signing time: Tue 30 Dec 2025 14:24:10 +0000 Manifest this update: Tue 30 Dec 2025 14:24:10 +0000 Manifest next update: Tue 06 Jan 2026 14:24:10 +0000 Files and hashes: 1: _-KgNynzLTIiepnJJRWMgspUuVc.crl (hash: iPogl8dJcdCRyzlfuV1AHmxPYACg/WJJ9WSa0LLeAhc=) 2: A0121BD4871711EA924C6626C4F9AE02.roa (hash: TsmW3wUGCspNY1UcKJcNnUuuDH7qDphY3UYVmmAdbDA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.crl rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_-KgNynzLTIiepnJJRWMgspUuVc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 06 Jan 2026 14:24:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13599 (0x351f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917225D, serialNumber=FFE2A03729F32D32227A99C925158C82CA54B957 Validity Not Before: Dec 30 14:24:10 2025 GMT Not After : Jan 6 14:24:10 2026 GMT Subject: CN=6953e08a-0fe1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:ec:ff:cb:48:bc:ae:c5:d8:56:b1:c2:85:ba: 4f:c1:48:a8:25:0d:3c:d1:22:5a:e4:ec:a9:9c:13: 3c:13:ea:94:13:11:5a:ce:aa:79:63:b9:72:63:b4: 25:54:75:93:ed:e4:ea:68:02:22:7c:53:9b:24:ae: 15:72:0e:36:f9:1d:62:99:bb:c3:46:61:99:5e:00: 82:c0:94:2d:b7:67:e6:32:95:c1:14:4f:63:0f:1c: 03:31:a0:d3:fd:3e:e4:fc:2a:e3:0f:bd:f2:ea:43: 93:49:ab:6d:79:38:03:cc:97:0f:19:55:b5:f1:7f: 12:97:d8:02:9b:c5:a4:ea:ec:bd:21:e8:b5:7c:d3: 9c:ba:4c:77:0e:4c:b4:93:2a:20:76:8c:c6:81:97: 3c:a2:52:5f:74:07:af:ed:71:1e:0b:6a:8b:81:14: d7:42:13:29:b9:80:60:64:25:6c:ef:ee:d8:94:e2: f4:23:8c:70:e7:e0:a3:7e:66:4b:43:d5:83:92:57: fb:76:65:3d:65:3c:d3:a7:c2:a4:5d:ea:43:55:7a: 68:ed:64:6f:94:39:26:73:d3:61:10:48:1b:44:6f: 67:06:f4:9f:ef:f5:e5:e2:ed:9d:fd:6a:84:ee:8e: bf:b5:1b:54:20:64:87:d3:76:99:c5:2c:8d:46:31: 9d:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:35:52:3E:D2:63:08:65:65:E9:5B:F9:E8:04:4C:67:E2:7E:F7:2D X509v3 Authority Key Identifier: keyid:FF:E2:A0:37:29:F3:2D:32:22:7A:99:C9:25:15:8C:82:CA:54:B9:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_-KgNynzLTIiepnJJRWMgspUuVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:27:b7:be:63:a2:4e:2e:81:d1:47:71:6a:05:a6:4d:81:e3: 5a:80:e9:ed:46:72:e6:f0:41:a8:82:c2:ed:04:88:89:31:7f: 03:db:a4:3f:22:b1:c2:a1:40:92:cf:5f:b9:6d:00:a4:9f:b7: b2:04:1e:2f:38:61:db:ab:e8:33:3d:b4:ae:3c:0c:20:04:5e: 5e:0a:8d:dd:fa:42:4f:1b:08:c8:9a:3e:89:91:d3:6b:96:db: 53:c3:ae:98:0b:63:af:c2:7a:61:e3:99:6d:6a:ef:da:56:24: b0:88:92:68:27:c8:c4:48:53:55:c6:b6:b8:e5:61:44:92:fc: 4d:69:7c:d2:d2:07:6b:b6:b9:1d:cf:4d:a4:4e:2b:d2:f7:dc: d2:17:63:9c:69:73:98:cd:0a:98:a8:23:64:da:a2:b4:6e:b5: 5d:b1:57:f0:93:ec:bc:65:26:9f:6f:e9:5d:11:84:b2:7c:27: d6:3b:66:99:48:50:bc:1f:ee:1b:9b:19:57:e5:cc:05:61:67: 43:de:5b:6c:2e:fd:ba:ae:0a:d3:b7:ca:b5:83:b4:8e:59:a7: cf:71:07:8f:25:ae:da:e2:bd:6a:78:86:bc:9d:c6:4f:9d:a4: f9:dd:d3:f9:b7:66:d6:b9:d9:47:5c:9c:1a:f7:d1:5a:da:1d: 48:f8:08:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNR8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzIyNUQxMTAvBgNVBAUTKEZGRTJBMDM3MjlGMzJEMzIyMjdBOTlDOTI1MTU4Qzgy Q0E1NEI5NTcwHhcNMjUxMjMwMTQyNDEwWhcNMjYwMTA2MTQyNDEwWjAYMRYwFAYD VQQDDA02OTUzZTA4YS0wZmUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1+z/y0i8rsXYVrHChbpPwUioJQ080SJa5OypnBM8E+qUExFazqp5Y7lyY7Ql VHWT7eTqaAIifFObJK4Vcg42+R1imbvDRmGZXgCCwJQtt2fmMpXBFE9jDxwDMaDT /T7k/CrjD73y6kOTSatteTgDzJcPGVW18X8Sl9gCm8Wk6uy9Iei1fNOcukx3Dky0 kyogdozGgZc8olJfdAev7XEeC2qLgRTXQhMpuYBgZCVs7+7YlOL0I4xw5+CjfmZL Q9WDklf7dmU9ZTzTp8KkXepDVXpo7WRvlDkmc9NhEEgbRG9nBvSf7/Xl4u2d/WqE 7o6/tRtUIGSH03aZxSyNRjGdGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLk1Uj7S YwhlZelb+egETGfifvctMB8GA1UdIwQYMBaAFP/ioDcp8y0yInqZySUVjILKVLlX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MjI1RC8xRjU1MDgzMDFE ODQxMUUyOTE3QkQwRDkwOEIwMkNEMi9fLUtnTnluekxUSWllcG5KSlJXTWdzcFV1 VmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL18tS2dOeW56TFRJaWVwbkpKUldNZ3NwVXVWYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MjI1RC8xRjU1MDgzMDFEODQxMUUyOTE3QkQwRDkwOEIwMkNEMi9fLUtnTnluekxU SWllcG5KSlJXTWdzcFV1VmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbJ7e+Y6JOLoHRR3FqBaZNgeNagOntRnLm8EGogsLtBIiJMX8D26Q/ IrHCoUCSz1+5bQCkn7eyBB4vOGHbq+gzPbSuPAwgBF5eCo3d+kJPGwjImj6JkdNr lttTw66YC2Ovwnph45ltau/aViSwiJJoJ8jESFNVxra45WFEkvxNaXzS0gdrtrkd z02kTivS99zSF2OcaXOYzQqYqCNk2qK0brVdsVfwk+y8ZSafb+ldEYSyfCfWO2aZ SFC8H+4bmxlX5cwFYWdD3ltsLv26rgrTt8q1g7SOWafPcQePJa7a4r1qeIa8ncZP naT53dP5t2bWudlHXJwa99Fa2h1I+Ag+ -----END CERTIFICATE-----Generated at Wed Dec 31 10:30:22 2025 by rpki-client