This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.mft File: KmvwVK0j6tLbOVMbZGcmypRaxJI.mft (raw, json) Hash identifier: 7kCSz7CJ63XZ0C/RPOAp3J+t6kNj8c8PpxHMeFqMsAE= Subject key identifier: 02:36:8E:BD:4D:8F:C4:F0:C7:73:96:B2:CF:FA:41:EC:E0:96:29:C7 Authority key identifier: 2A:6B:F0:54:AD:23:EA:D2:DB:39:53:1B:64:67:26:CA:94:5A:C4:92 Certificate issuer: /CN=A918AB7E/serialNumber=2A6BF054AD23EAD2DB39531B646726CA945AC492 Certificate serial: 8B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmvwVK0j6tLbOVMbZGcmypRaxJI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.mft Manifest number: 8A Signing time: Fri 19 Dec 2025 05:37:54 +0000 Manifest this update: Fri 19 Dec 2025 05:37:53 +0000 Manifest next update: Fri 26 Dec 2025 05:37:53 +0000 Files and hashes: 1: KmvwVK0j6tLbOVMbZGcmypRaxJI.crl (hash: aNp3z8unv6MD+lUh0X7khY02MYl4DlXUHsgKzT1Jqiw=) 2: 3CF5A86C088211F0BB90C23EC4F9AE02.roa (hash: WjhNkxKHghzjWbpSoIkFccSDxcFZFh5y2Re0ypkmeM8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.crl rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmvwVK0j6tLbOVMbZGcmypRaxJI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 05:37:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 139 (0x8b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918AB7E, serialNumber=2A6BF054AD23EAD2DB39531B646726CA945AC492 Validity Not Before: Dec 19 05:37:53 2025 GMT Not After : Dec 26 05:37:53 2025 GMT Subject: CN=6944e4b1-c11c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:90:84:e6:90:72:c3:e7:a8:76:2d:86:a5:d0: 84:3b:90:f9:a0:d6:91:87:46:c2:59:cb:bb:50:4a: b9:a3:91:fe:75:a2:14:d4:e5:dd:c4:28:97:ca:d3: 46:82:3e:1a:cd:58:39:9d:19:c6:5e:03:5c:14:62: d2:31:e2:da:18:db:fe:20:e5:ae:89:34:11:61:84: f7:fa:ca:8c:62:fc:e1:ad:09:fc:ea:a7:8c:17:90: 0a:12:5f:e0:3d:11:44:9e:ef:43:ab:b3:f4:da:d0: 5c:0e:42:97:31:33:01:27:2c:ca:8c:fe:33:01:c3: 59:3c:ec:34:d6:24:c0:0d:1f:5c:7f:fe:e0:a4:92: 1d:88:67:2d:99:b6:20:ad:fd:49:8a:b9:d3:a4:1c: 22:37:9f:cd:37:cb:24:26:69:4f:58:97:04:ad:10: 2a:b0:c5:85:60:54:54:e8:48:e7:37:30:75:52:c4: 20:2b:d8:1d:8c:20:7e:a7:5e:d8:3c:5c:ab:cf:0e: ce:9a:72:4c:c5:8e:89:b8:7b:0a:b1:0c:ba:32:d2: 5d:43:36:b5:2c:37:b1:ae:cf:ee:a1:8a:4e:e4:9f: a3:a7:84:22:2f:76:5b:34:31:28:52:18:a3:0f:f3: 97:44:52:d1:01:80:af:54:d3:67:cc:8a:11:c8:54: 7d:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:36:8E:BD:4D:8F:C4:F0:C7:73:96:B2:CF:FA:41:EC:E0:96:29:C7 X509v3 Authority Key Identifier: keyid:2A:6B:F0:54:AD:23:EA:D2:DB:39:53:1B:64:67:26:CA:94:5A:C4:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmvwVK0j6tLbOVMbZGcmypRaxJI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:46:92:cc:a5:37:5a:5b:a9:77:dd:7c:ca:33:5a:b4:0f:02: c6:2e:1f:cf:ab:cd:8a:7f:40:8f:0a:42:90:51:49:39:ad:09: ae:31:e4:ca:b0:0d:81:6e:9e:8b:97:a6:ee:20:92:bd:03:1f: 27:35:02:85:4b:c9:43:80:0e:ad:0d:c7:3e:2c:7b:14:bb:ea: 52:0c:87:71:96:6a:a4:79:4a:ef:c5:4c:f0:a1:7f:84:73:94: f4:89:04:ae:bc:e9:e5:0f:36:54:52:7b:d5:17:41:ad:7c:00: 38:8b:b8:b8:2e:68:53:ea:f7:e3:d7:55:76:36:5d:52:57:2d: ec:7c:bc:f1:14:69:67:8c:e2:04:c4:61:49:25:a0:47:48:6d: b1:0f:73:14:af:8b:5a:e3:2d:b6:57:cf:14:20:e0:3b:ac:23: ff:a0:52:af:d5:c6:08:42:86:90:cf:df:fd:09:ad:5d:aa:fb: a7:71:df:e5:1b:12:04:ef:b9:73:30:19:3e:c2:c4:bf:bc:47: ac:44:45:1c:e4:dc:71:7f:ac:c1:87:33:5c:f2:02:be:57:74: f6:a5:1c:8c:fe:af:5d:6d:68:e3:a3:b9:2e:fd:48:23:74:7c: 35:97:96:9e:f8:e2:0e:26:eb:70:b3:6c:78:2d:a0:9f:da:56: f7:5b:e3:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEFCN0UxMTAvBgNVBAUTKDJBNkJGMDU0QUQyM0VBRDJEQjM5NTMxQjY0NjcyNkNB OTQ1QUM0OTIwHhcNMjUxMjE5MDUzNzUzWhcNMjUxMjI2MDUzNzUzWjAYMRYwFAYD VQQDDA02OTQ0ZTRiMS1jMTFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx5CE5pByw+eodi2GpdCEO5D5oNaRh0bCWcu7UEq5o5H+daIU1OXdxCiXytNG gj4azVg5nRnGXgNcFGLSMeLaGNv+IOWuiTQRYYT3+sqMYvzhrQn86qeMF5AKEl/g PRFEnu9Dq7P02tBcDkKXMTMBJyzKjP4zAcNZPOw01iTADR9cf/7gpJIdiGctmbYg rf1JirnTpBwiN5/NN8skJmlPWJcErRAqsMWFYFRU6EjnNzB1UsQgK9gdjCB+p17Y PFyrzw7OmnJMxY6JuHsKsQy6MtJdQza1LDexrs/uoYpO5J+jp4QiL3ZbNDEoUhij D/OXRFLRAYCvVNNnzIoRyFR9OQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAI2jr1N j8Twx3OWss/6QezglinHMB8GA1UdIwQYMBaAFCpr8FStI+rS2zlTG2RnJsqUWsSS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QUI3RS9GNzU5Nzk2RTA4 ODExMUYwQkFDMzQxM0VDNEY5QUUwMi9LbXZ3VkswajZ0TGJPVk1iWkdjbXlwUmF4 SkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ttdndWSzBqNnRMYk9WTWJaR2NteXBSYXhKSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QUI3RS9GNzU5Nzk2RTA4ODExMUYwQkFDMzQxM0VDNEY5QUUwMi9LbXZ3VkswajZ0 TGJPVk1iWkdjbXlwUmF4SkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCORpLMpTdaW6l33XzKM1q0DwLGLh/Pq82Kf0CPCkKQUUk5rQmuMeTK sA2Bbp6Ll6buIJK9Ax8nNQKFS8lDgA6tDcc+LHsUu+pSDIdxlmqkeUrvxUzwoX+E c5T0iQSuvOnlDzZUUnvVF0GtfAA4i7i4LmhT6vfj11V2Nl1SVy3sfLzxFGlnjOIE xGFJJaBHSG2xD3MUr4ta4y22V88UIOA7rCP/oFKv1cYIQoaQz9/9Ca1dqvuncd/l GxIE77lzMBk+wsS/vEesREUc5Nxxf6zBhzNc8gK+V3T2pRyM/q9dbWjjo7ku/Ugj dHw1l5ae+OIOJutws2x4LaCf2lb3W+Md -----END CERTIFICATE-----Generated at Fri Dec 19 19:04:41 2025 by rpki-client