This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91847A2/B5773AAC594211EA936FCE43C4F9AE02/kof26C-PO6JOCdnGMXilwLLaAd4.mft File: kof26C-PO6JOCdnGMXilwLLaAd4.mft (raw, json) Hash identifier: amfPHFcpN7hhpDKe9izjiyd/LGjo/zuwqyOiFVHjNXI= Subject key identifier: 49:67:2F:BF:DF:4B:3F:B4:98:EB:E3:95:7B:8A:E4:77:1A:13:F2:33 Authority key identifier: 92:87:F6:E8:2F:8F:3B:A2:4E:09:D9:C6:31:78:A5:C0:B2:DA:01:DE Certificate issuer: /CN=A91847A2/serialNumber=9287F6E82F8F3BA24E09D9C63178A5C0B2DA01DE Certificate serial: 0BD1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kof26C-PO6JOCdnGMXilwLLaAd4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91847A2/B5773AAC594211EA936FCE43C4F9AE02/kof26C-PO6JOCdnGMXilwLLaAd4.mft Manifest number: 0B64 Signing time: Sat 20 Dec 2025 18:54:25 +0000 Manifest this update: Sat 20 Dec 2025 18:54:25 +0000 Manifest next update: Sat 27 Dec 2025 18:54:25 +0000 Files and hashes: 1: kof26C-PO6JOCdnGMXilwLLaAd4.crl (hash: Nty91jNNmDf2SR0hMjFMK5OuIVndjNf9ZjGW6FR1730=) 2: 449FE2BE594411EA962D7646C4F9AE02.roa (hash: 3y9BDXWhIindn9fV5yRhLvjaXOZjwz7wE89JCwHuZfU=) 3: AB988312177211EBAC79CC7EC4F9AE02.roa (hash: 2efUF6FV6lzagFO6ixmFLw5grpZeZdNkHznhn486HIY=) 4: B1986BCE2E2411EB8AF6BB67C4F9AE02.roa (hash: 1Oowb0Op5/Cu+8FSjA8UF2OrKzh23X2j+ax5PBrX1iA=) 5: 72E17FF2194F11ED818A3C66C4F9AE02.roa (hash: uU9R+G2quDutiuaDSqaRQis0/8oF8eouaABisexnp3Y=) 6: 4B82FA441A8611ECB908E939C4F9AE02.roa (hash: ioPHlw0sW6GeE8i+5W/iQUIzBchZcQHPRQo5hhiTaFw=) 7: 7978E3F6602811EFB5954527C4F9AE02.roa (hash: I/yFDnonwjcIdEyDMRzyxAMhULYfijDfUDeIkoqzyfk=) 8: 71AD02DC194F11ED818A3C66C4F9AE02.roa (hash: DOBTNH4GGNPUe/CVItieZfmqwMcwBWdfPDr7AZPstYA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91847A2/B5773AAC594211EA936FCE43C4F9AE02/kof26C-PO6JOCdnGMXilwLLaAd4.crl rsync://rpki.apnic.net/member_repository/A91847A2/B5773AAC594211EA936FCE43C4F9AE02/kof26C-PO6JOCdnGMXilwLLaAd4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kof26C-PO6JOCdnGMXilwLLaAd4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 18:54:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3025 (0xbd1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91847A2, serialNumber=9287F6E82F8F3BA24E09D9C63178A5C0B2DA01DE Validity Not Before: Dec 20 18:54:25 2025 GMT Not After : Dec 27 18:54:25 2025 GMT Subject: CN=6946f0e1-7805 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:94:31:3f:26:0a:05:b8:5d:bc:ed:33:49:50: c7:30:dd:f7:40:97:bf:83:39:eb:8a:f4:bc:a9:e5: c0:5f:87:9c:e4:ef:33:60:0a:d9:1a:22:0a:80:fa: 7a:6c:0f:15:47:ae:c9:0d:21:74:13:61:98:84:c8: dd:61:6b:9b:a3:f2:9d:63:cb:1a:37:d7:9d:3a:06: 4e:c2:08:22:10:ad:db:a7:d1:90:da:18:c4:81:f9: e6:3e:4f:cd:7a:0e:84:24:70:ce:40:70:ba:04:2a: 6b:c2:d3:1d:63:e6:f0:94:e4:6d:0d:32:40:16:04: 2e:96:4f:10:fb:2e:db:7a:f9:39:b4:a1:40:0b:40: 91:be:e6:e2:16:cd:c4:97:c2:be:d4:e9:c2:31:87: c8:b0:c0:3c:fc:1b:29:89:d5:79:f5:7f:b2:57:f8: bf:3d:74:b6:22:b1:9e:5f:8b:aa:35:c9:85:17:85: 73:af:ba:b8:32:c9:c6:32:79:5a:ff:d1:c4:0d:db: cf:19:d6:38:23:c7:67:2c:54:6d:3c:90:87:c5:6a: ba:6d:ff:1f:63:9e:d5:d5:8b:ed:c6:0e:3d:6f:83: 14:47:92:ff:80:b3:6d:71:7b:1b:b0:ce:e3:42:43: f0:d6:a4:42:4b:fa:8c:96:f3:2e:f2:26:e8:91:06: 8e:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:67:2F:BF:DF:4B:3F:B4:98:EB:E3:95:7B:8A:E4:77:1A:13:F2:33 X509v3 Authority Key Identifier: keyid:92:87:F6:E8:2F:8F:3B:A2:4E:09:D9:C6:31:78:A5:C0:B2:DA:01:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91847A2/B5773AAC594211EA936FCE43C4F9AE02/kof26C-PO6JOCdnGMXilwLLaAd4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kof26C-PO6JOCdnGMXilwLLaAd4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91847A2/B5773AAC594211EA936FCE43C4F9AE02/kof26C-PO6JOCdnGMXilwLLaAd4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:e7:a1:81:78:5f:da:76:12:90:f0:43:9f:7a:c3:bf:cd:be: f3:a5:fb:93:9a:e4:86:e0:c1:9c:aa:34:8b:f6:17:d6:58:16: 16:49:7e:28:f5:8c:89:75:37:ca:46:a9:3e:b4:84:78:42:fc: 42:9d:8c:8d:b6:03:55:2b:18:6b:0e:10:eb:15:cf:4a:ec:d1: ce:42:cc:23:8c:69:99:24:ec:54:50:c6:69:e1:a2:81:a6:11: da:69:7e:2f:1e:1a:da:43:f7:b8:fe:49:71:3d:0b:bb:85:73: d8:9f:65:86:b4:24:99:da:2c:a4:f7:4c:05:9d:59:3d:71:de: 93:26:75:67:55:2f:0d:dc:33:ae:a4:99:14:36:83:a0:1f:3f: 83:13:ff:ec:8c:2e:23:80:14:94:6a:55:d6:3b:d7:65:77:64: c4:88:74:ed:1f:da:14:b2:4a:d6:13:53:c4:85:bd:f8:f5:fa: 1c:d7:8c:14:97:de:67:6e:d6:33:cc:15:8c:41:ff:c9:df:23: f8:d4:fb:69:07:fc:44:24:9d:0c:52:69:cf:9d:6a:d8:dd:a9: 6c:a9:0b:ea:7f:ce:e2:9f:ba:0f:73:35:69:9e:5c:d5:e3:88: a0:9a:30:e5:c0:26:f6:3e:23:4e:c2:06:04:42:93:62:3e:81: f8:1e:e0:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC9EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQ3QTIxMTAvBgNVBAUTKDkyODdGNkU4MkY4RjNCQTI0RTA5RDlDNjMxNzhBNUMw QjJEQTAxREUwHhcNMjUxMjIwMTg1NDI1WhcNMjUxMjI3MTg1NDI1WjAYMRYwFAYD VQQDDA02OTQ2ZjBlMS03ODA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwJQxPyYKBbhdvO0zSVDHMN33QJe/gznrivS8qeXAX4ec5O8zYArZGiIKgPp6 bA8VR67JDSF0E2GYhMjdYWubo/KdY8saN9edOgZOwggiEK3bp9GQ2hjEgfnmPk/N eg6EJHDOQHC6BCprwtMdY+bwlORtDTJAFgQulk8Q+y7bevk5tKFAC0CRvubiFs3E l8K+1OnCMYfIsMA8/BspidV59X+yV/i/PXS2IrGeX4uqNcmFF4Vzr7q4MsnGMnla /9HEDdvPGdY4I8dnLFRtPJCHxWq6bf8fY57V1Yvtxg49b4MUR5L/gLNtcXsbsM7j QkPw1qRCS/qMlvMu8ibokQaO5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFElnL7/f Sz+0mOvjlXuK5HcaE/IzMB8GA1UdIwQYMBaAFJKH9ugvjzuiTgnZxjF4pcCy2gHe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDdBMi9CNTc3M0FBQzU5 NDIxMUVBOTM2RkNFNDNDNEY5QUUwMi9rb2YyNkMtUE82Sk9DZG5HTVhpbHdMTGFB ZDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tvZjI2Qy1QTzZKT0NkbkdNWGlsd0xMYUFkNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NDdBMi9CNTc3M0FBQzU5NDIxMUVBOTM2RkNFNDNDNEY5QUUwMi9rb2YyNkMtUE82 Sk9DZG5HTVhpbHdMTGFBZDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBj56GBeF/adhKQ8EOfesO/zb7zpfuTmuSG4MGcqjSL9hfWWBYWSX4o 9YyJdTfKRqk+tIR4QvxCnYyNtgNVKxhrDhDrFc9K7NHOQswjjGmZJOxUUMZp4aKB phHaaX4vHhraQ/e4/klxPQu7hXPYn2WGtCSZ2iyk90wFnVk9cd6TJnVnVS8N3DOu pJkUNoOgHz+DE//sjC4jgBSUalXWO9dld2TEiHTtH9oUskrWE1PEhb349foc14wU l95nbtYzzBWMQf/J3yP41PtpB/xEJJ0MUmnPnWrY3alsqQvqf87in7oPczVpnlzV 44igmjDlwCb2PiNOwgYEQpNiPoH4HuBN -----END CERTIFICATE-----Generated at Mon Dec 22 07:18:49 2025 by rpki-client