This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9185B0F/52D0A120854E11EBB75BB009C4F9AE02/kFj-3Oxfh289_hYZQxnBRcnAzLU.mft File: kFj-3Oxfh289_hYZQxnBRcnAzLU.mft (raw, json) Hash identifier: SoE+7UOANQwNCyEs6gcSVVi9gy7SXh0wNfzIR2ePQUE= Subject key identifier: 1A:73:9B:2F:AC:32:07:2B:09:1C:58:75:96:C6:45:7B:08:0A:C6:38 Authority key identifier: 90:58:FE:DC:EC:5F:87:6F:3D:FE:16:19:43:19:C1:45:C9:C0:CC:B5 Certificate issuer: /CN=A9185B0F/serialNumber=9058FEDCEC5F876F3DFE16194319C145C9C0CCB5 Certificate serial: 06C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kFj-3Oxfh289_hYZQxnBRcnAzLU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185B0F/52D0A120854E11EBB75BB009C4F9AE02/kFj-3Oxfh289_hYZQxnBRcnAzLU.mft Manifest number: 06C0 Signing time: Sat 20 Dec 2025 21:30:38 +0000 Manifest this update: Sat 20 Dec 2025 21:30:38 +0000 Manifest next update: Sat 27 Dec 2025 21:30:38 +0000 Files and hashes: 1: kFj-3Oxfh289_hYZQxnBRcnAzLU.crl (hash: qvkepI4tohnpwwLZzqa2gDufcSPLhr2f9TZ2yrvDD1Q=) 2: 25A7FE7E855211EB8DEDD812C4F9AE02.roa (hash: 3KVNAeWh03dGVWnQ63cP0I/qibdtWKvdfNbIMy7dwHk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185B0F/52D0A120854E11EBB75BB009C4F9AE02/kFj-3Oxfh289_hYZQxnBRcnAzLU.crl rsync://rpki.apnic.net/member_repository/A9185B0F/52D0A120854E11EBB75BB009C4F9AE02/kFj-3Oxfh289_hYZQxnBRcnAzLU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kFj-3Oxfh289_hYZQxnBRcnAzLU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 21:30:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1734 (0x6c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185B0F, serialNumber=9058FEDCEC5F876F3DFE16194319C145C9C0CCB5 Validity Not Before: Dec 20 21:30:38 2025 GMT Not After : Dec 27 21:30:38 2025 GMT Subject: CN=6947157e-b369 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:af:fc:10:4c:10:a0:f5:5c:80:4c:fa:08:1e: 25:09:39:5e:d7:a5:47:a5:41:86:9d:8b:bb:2e:be: 30:ab:4c:45:35:43:ae:27:43:2f:ef:3e:00:7a:52: fd:39:78:d1:b5:96:0e:e9:83:10:b0:c4:df:83:7e: 93:f2:e0:0d:a6:1c:3b:ec:e0:e8:1e:ff:25:6c:fb: 4a:7d:0a:99:f3:d5:10:1a:48:98:0d:f6:ec:b6:d5: c9:fb:65:8d:10:39:17:22:2f:4f:60:4f:99:99:c2: 70:3b:cf:1a:d1:1d:da:2f:d8:bf:41:1c:63:d7:0a: f3:b9:e1:b6:4b:ef:1b:e5:6c:85:d3:7d:a5:5c:63: 2f:8e:a2:e5:98:de:db:33:cd:4b:04:30:8c:68:2f: 0c:62:d8:b1:35:1c:b7:2c:ab:f6:ac:63:ac:e4:d7: cf:ef:61:28:1a:70:0a:98:5b:94:a8:7f:73:14:b2: 16:96:14:02:45:20:d2:72:83:fc:d9:dc:41:bd:da: 1d:81:e3:1b:d9:15:98:a2:60:41:98:a5:77:ca:40: 12:98:0b:f6:53:26:e4:31:b1:ab:a8:c5:3e:cc:e6: c9:7d:e7:e5:91:91:6b:22:20:69:cb:89:2c:0e:5e: 0d:1c:fc:1e:a7:31:e5:9c:dd:66:25:08:76:63:7d: c8:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:73:9B:2F:AC:32:07:2B:09:1C:58:75:96:C6:45:7B:08:0A:C6:38 X509v3 Authority Key Identifier: keyid:90:58:FE:DC:EC:5F:87:6F:3D:FE:16:19:43:19:C1:45:C9:C0:CC:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185B0F/52D0A120854E11EBB75BB009C4F9AE02/kFj-3Oxfh289_hYZQxnBRcnAzLU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kFj-3Oxfh289_hYZQxnBRcnAzLU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185B0F/52D0A120854E11EBB75BB009C4F9AE02/kFj-3Oxfh289_hYZQxnBRcnAzLU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:a0:ca:7b:26:fa:dc:a8:82:ca:6c:b8:33:e5:57:e2:54:4b: fa:7c:1a:b9:24:d5:d8:71:be:71:54:f2:e0:76:9e:b4:c1:92: 98:91:30:e9:9e:96:e9:12:28:00:58:59:f3:eb:0b:2a:6f:f4: 2e:ed:f5:d4:2e:e5:74:79:bb:6e:52:96:f8:4f:3a:e5:3a:4c: fd:d5:6b:4e:c1:97:7d:c6:f5:82:00:73:5c:f7:b7:fc:a8:3d: 96:cd:f4:2f:f0:53:32:c3:97:63:76:98:12:92:51:b9:3f:dd: 2d:a7:e8:b5:3e:b4:a3:58:6d:4a:e4:a3:d9:65:b8:1d:5f:c0: 7a:37:ea:b1:cd:34:6c:78:2a:cb:87:e2:ef:f5:0f:ca:4a:db: ff:40:80:4a:26:8d:34:2d:33:0f:b8:6a:05:aa:2f:75:d9:ee: 93:1c:d2:8c:db:77:81:2f:0a:bf:a8:7a:d1:dc:e0:79:68:53: e7:6f:45:b4:8b:ea:6a:63:11:cd:51:2f:a8:75:5a:f1:7d:28: 9e:cf:7b:35:bb:c5:3d:4f:6b:52:72:aa:90:37:8c:ef:8b:01: f2:0a:d5:24:85:4d:39:d0:92:4f:92:b0:62:62:f9:03:30:e1: 9a:87:35:eb:df:bd:a9:c1:d8:c6:1f:c0:f0:c2:86:a9:b8:19: f3:cb:8a:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBsYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVCMEYxMTAvBgNVBAUTKDkwNThGRURDRUM1Rjg3NkYzREZFMTYxOTQzMTlDMTQ1 QzlDMENDQjUwHhcNMjUxMjIwMjEzMDM4WhcNMjUxMjI3MjEzMDM4WjAYMRYwFAYD VQQDDA02OTQ3MTU3ZS1iMzY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr6/8EEwQoPVcgEz6CB4lCTle16VHpUGGnYu7Lr4wq0xFNUOuJ0Mv7z4AelL9 OXjRtZYO6YMQsMTfg36T8uANphw77ODoHv8lbPtKfQqZ89UQGkiYDfbsttXJ+2WN EDkXIi9PYE+ZmcJwO88a0R3aL9i/QRxj1wrzueG2S+8b5WyF032lXGMvjqLlmN7b M81LBDCMaC8MYtixNRy3LKv2rGOs5NfP72EoGnAKmFuUqH9zFLIWlhQCRSDScoP8 2dxBvdodgeMb2RWYomBBmKV3ykASmAv2UybkMbGrqMU+zObJfeflkZFrIiBpy4ks Dl4NHPwepzHlnN1mJQh2Y33ILwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBpzmy+s MgcrCRxYdZbGRXsICsY4MB8GA1UdIwQYMBaAFJBY/tzsX4dvPf4WGUMZwUXJwMy1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUIwRi81MkQwQTEyMDg1 NEUxMUVCQjc1QkIwMDlDNEY5QUUwMi9rRmotM094ZmgyODlfaFlaUXhuQlJjbkF6 TFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tGai0zT3hmaDI4OV9oWVpReG5CUmNuQXpMVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUIwRi81MkQwQTEyMDg1NEUxMUVCQjc1QkIwMDlDNEY5QUUwMi9rRmotM094Zmgy ODlfaFlaUXhuQlJjbkF6TFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBboMp7JvrcqILKbLgz5VfiVEv6fBq5JNXYcb5xVPLgdp60wZKYkTDp npbpEigAWFnz6wsqb/Qu7fXULuV0ebtuUpb4TzrlOkz91WtOwZd9xvWCAHNc97f8 qD2WzfQv8FMyw5djdpgSklG5P90tp+i1PrSjWG1K5KPZZbgdX8B6N+qxzTRseCrL h+Lv9Q/KStv/QIBKJo00LTMPuGoFqi912e6THNKM23eBLwq/qHrR3OB5aFPnb0W0 i+pqYxHNUS+odVrxfSiez3s1u8U9T2tScqqQN4zviwHyCtUkhU050JJPkrBiYvkD MOGahzXr372pwdjGH8DwwoapuBnzy4qF -----END CERTIFICATE-----Generated at Mon Dec 22 14:01:56 2025 by rpki-client