This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917F4D3/68034C68626611ED8242C786C4F9AE02/kSbv5Q1eO1Mf7uRUmrML_npUVQc.mft File: kSbv5Q1eO1Mf7uRUmrML_npUVQc.mft (raw, json) Hash identifier: VNgIYlpqLCIlJhUohPIL6gEgIrTXcWyLa4pY1t/qWVs= Subject key identifier: DA:C6:BF:47:36:7A:9B:C8:30:65:8C:E4:B6:67:E8:ED:52:28:B5:6A Authority key identifier: 91:26:EF:E5:0D:5E:3B:53:1F:EE:E4:54:9A:B3:0B:FE:7A:54:55:07 Certificate issuer: /CN=A917F4D3/serialNumber=9126EFE50D5E3B531FEEE4549AB30BFE7A545507 Certificate serial: 0245 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kSbv5Q1eO1Mf7uRUmrML_npUVQc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F4D3/68034C68626611ED8242C786C4F9AE02/kSbv5Q1eO1Mf7uRUmrML_npUVQc.mft Manifest number: 0242 Signing time: Fri 19 Dec 2025 01:01:42 +0000 Manifest this update: Fri 19 Dec 2025 01:01:42 +0000 Manifest next update: Fri 26 Dec 2025 01:01:42 +0000 Files and hashes: 1: kSbv5Q1eO1Mf7uRUmrML_npUVQc.crl (hash: Sd7i4FsTrVzxAqzsuhBnvVYZONSlTxYMk8XvNWsk6iI=) 2: 32091726626D11ED87BDAC82C4F9AE02.roa (hash: hbdkOUT0eBQ98Cc0oj/9P37h6+6Kubs6FMec8+3wPTM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F4D3/68034C68626611ED8242C786C4F9AE02/kSbv5Q1eO1Mf7uRUmrML_npUVQc.crl rsync://rpki.apnic.net/member_repository/A917F4D3/68034C68626611ED8242C786C4F9AE02/kSbv5Q1eO1Mf7uRUmrML_npUVQc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kSbv5Q1eO1Mf7uRUmrML_npUVQc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 01:01:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 581 (0x245) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F4D3, serialNumber=9126EFE50D5E3B531FEEE4549AB30BFE7A545507 Validity Not Before: Dec 19 01:01:42 2025 GMT Not After : Dec 26 01:01:42 2025 GMT Subject: CN=6944a3f6-22c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:a0:cf:e4:f7:fc:63:23:9a:63:df:90:3b:de: 3f:1c:2c:8f:c3:36:8a:d8:cd:cd:0e:1e:c7:95:bc: f7:9f:aa:5e:28:53:bd:de:fc:85:57:b0:83:db:3a: fb:2d:f3:14:52:1a:aa:e6:ab:3f:cc:35:78:85:28: 40:e6:3e:49:ad:67:7c:ca:56:3d:9d:e8:12:c4:e9: 0d:19:b3:9b:fe:70:b5:c1:6e:33:a3:3c:2c:7d:d5: 02:90:75:92:dd:8c:27:50:2e:86:af:70:9d:e6:21: 4d:6b:f6:fa:92:c5:8c:d8:c0:a2:a8:21:3a:25:3c: f0:dc:4b:a0:48:be:fc:04:f7:ea:f9:2a:3b:a0:ab: ff:93:0a:c0:1c:2d:b4:2c:e6:65:93:46:61:31:13: fa:7d:bd:e4:60:1d:a8:e1:bf:bb:f1:b8:c9:0b:bb: 6a:39:b3:da:a6:45:ee:5d:f9:a5:8c:1c:35:da:b2: d1:12:46:79:8f:2b:3d:2a:6c:53:33:cc:66:59:fa: 70:d0:2f:45:62:e2:50:2a:36:af:65:ee:47:26:3d: 80:9d:11:7b:d0:96:ca:e4:50:e9:51:2c:e7:c5:0b: e1:46:35:42:57:76:5e:dc:a4:65:b4:69:f2:10:8b: 19:d0:e4:33:ae:0e:c1:e0:bb:a5:fa:1f:66:14:7d: 63:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:C6:BF:47:36:7A:9B:C8:30:65:8C:E4:B6:67:E8:ED:52:28:B5:6A X509v3 Authority Key Identifier: keyid:91:26:EF:E5:0D:5E:3B:53:1F:EE:E4:54:9A:B3:0B:FE:7A:54:55:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F4D3/68034C68626611ED8242C786C4F9AE02/kSbv5Q1eO1Mf7uRUmrML_npUVQc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kSbv5Q1eO1Mf7uRUmrML_npUVQc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F4D3/68034C68626611ED8242C786C4F9AE02/kSbv5Q1eO1Mf7uRUmrML_npUVQc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c4:e0:1d:cf:76:0f:a6:ff:f8:eb:0e:d8:05:a2:80:1a:5f:d1: f3:64:ec:2d:09:5e:4b:78:0f:b7:4f:36:3c:1f:2a:0f:b7:6c: ec:05:2a:9a:18:a1:f5:fb:6c:05:22:14:9b:81:4c:34:89:fc: c0:87:01:5d:7a:ae:5f:a4:2f:ef:ec:1c:f7:cc:50:f0:16:b7: 98:f5:e0:45:10:3d:78:a1:78:36:e5:cd:fa:05:c3:ca:2e:99: 6a:09:60:c2:35:63:af:d9:b8:aa:23:a2:c2:bd:aa:b5:3e:8e: ca:d5:45:b1:9c:3e:96:c5:53:59:e1:ff:5c:87:d9:aa:de:0c: 3b:62:98:9c:ab:52:8c:31:58:d3:dc:0d:0b:b9:0d:3d:99:83: 6a:f5:89:24:fb:2c:2e:65:c7:d4:76:1b:90:aa:5c:f7:33:5c: 50:f0:52:d3:dc:d4:ee:c1:54:ad:98:af:5b:62:05:a2:65:14: 70:3b:4f:67:04:2b:dc:96:01:6b:2c:92:f5:42:f8:81:32:3d: 81:b2:6e:b8:e4:f7:b0:85:5d:3f:f9:4d:3d:23:3b:3c:bf:87: c7:1c:f2:cf:d2:b3:c1:6f:24:07:3f:19:b5:11:3f:f1:c0:c2: 6b:4e:33:ab:d9:2d:0f:c6:8c:c3:bd:db:82:c0:72:87:04:c7: 01:2b:e3:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Y0RDMxMTAvBgNVBAUTKDkxMjZFRkU1MEQ1RTNCNTMxRkVFRTQ1NDlBQjMwQkZF N0E1NDU1MDcwHhcNMjUxMjE5MDEwMTQyWhcNMjUxMjI2MDEwMTQyWjAYMRYwFAYD VQQDDA02OTQ0YTNmNi0yMmM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvKDP5Pf8YyOaY9+QO94/HCyPwzaK2M3NDh7Hlbz3n6peKFO93vyFV7CD2zr7 LfMUUhqq5qs/zDV4hShA5j5JrWd8ylY9negSxOkNGbOb/nC1wW4zozwsfdUCkHWS 3YwnUC6Gr3Cd5iFNa/b6ksWM2MCiqCE6JTzw3EugSL78BPfq+So7oKv/kwrAHC20 LOZlk0ZhMRP6fb3kYB2o4b+78bjJC7tqObPapkXuXfmljBw12rLREkZ5jys9KmxT M8xmWfpw0C9FYuJQKjavZe5HJj2AnRF70JbK5FDpUSznxQvhRjVCV3Ze3KRltGny EIsZ0OQzrg7B4Lul+h9mFH1j4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNrGv0c2 epvIMGWM5LZn6O1SKLVqMB8GA1UdIwQYMBaAFJEm7+UNXjtTH+7kVJqzC/56VFUH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RjREMy82ODAzNEM2ODYy NjYxMUVEODI0MkM3ODZDNEY5QUUwMi9rU2J2NVExZU8xTWY3dVJVbXJNTF9ucFVW UWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tTYnY1UTFlTzFNZjd1UlVtck1MX25wVVZRYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RjREMy82ODAzNEM2ODYyNjYxMUVEODI0MkM3ODZDNEY5QUUwMi9rU2J2NVExZU8x TWY3dVJVbXJNTF9ucFVWUWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDE4B3Pdg+m//jrDtgFooAaX9HzZOwtCV5LeA+3TzY8HyoPt2zsBSqa GKH1+2wFIhSbgUw0ifzAhwFdeq5fpC/v7Bz3zFDwFreY9eBFED14oXg25c36BcPK LplqCWDCNWOv2biqI6LCvaq1Po7K1UWxnD6WxVNZ4f9ch9mq3gw7Ypicq1KMMVjT 3A0LuQ09mYNq9Ykk+ywuZcfUdhuQqlz3M1xQ8FLT3NTuwVStmK9bYgWiZRRwO09n BCvclgFrLJL1QviBMj2Bsm645PewhV0/+U09Izs8v4fHHPLP0rPBbyQHPxm1ET/x wMJrTjOr2S0PxozDvduCwHKHBMcBK+O2 -----END CERTIFICATE-----Generated at Fri Dec 19 23:57:40 2025 by rpki-client