This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.mft File: kzxM1thDXA-L4vUjRybWYQ9-2jo.mft (raw, json) Hash identifier: VmlIBKhW3OIthiXKgqzOHZoABsnvF0y/MF0gRlwod7w= Subject key identifier: AB:45:A3:5B:D5:AD:36:1D:98:5A:87:BE:80:70:CD:3B:85:7E:B7:B9 Authority key identifier: 93:3C:4C:D6:D8:43:5C:0F:8B:E2:F5:23:47:26:D6:61:0F:7E:DA:3A Certificate issuer: /CN=A918D0DE/serialNumber=933C4CD6D8435C0F8BE2F5234726D6610F7EDA3A Certificate serial: 0C71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzxM1thDXA-L4vUjRybWYQ9-2jo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.mft Manifest number: 0C62 Signing time: Thu 18 Dec 2025 18:20:45 +0000 Manifest this update: Thu 18 Dec 2025 18:20:45 +0000 Manifest next update: Thu 25 Dec 2025 18:20:45 +0000 Files and hashes: 1: kzxM1thDXA-L4vUjRybWYQ9-2jo.crl (hash: weyPbmYQsaken/EmhGMDRzQqiqQbr+Ty7Zs0jxuP58E=) 2: 38FFAC50884411EDA212BC24C4F9AE02.roa (hash: ckq5cjCEQ/2WL7JkGpSyoM0Cdw/OAtqMQAwrig1lc1c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.crl rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzxM1thDXA-L4vUjRybWYQ9-2jo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 18:20:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3185 (0xc71) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D0DE, serialNumber=933C4CD6D8435C0F8BE2F5234726D6610F7EDA3A Validity Not Before: Dec 18 18:20:45 2025 GMT Not After : Dec 25 18:20:45 2025 GMT Subject: CN=694445fd-8185 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:3e:2e:fb:ef:2a:88:c4:c7:ef:a1:30:3a:3c: ac:a5:39:b7:8d:a0:73:13:ba:5e:ad:18:af:62:62: 83:d4:6c:ff:30:07:28:aa:4c:78:cf:28:07:ae:a1: 04:c4:0f:a1:4f:b3:92:ba:8c:7a:45:b8:7f:48:60: ce:95:c6:bc:4e:96:ee:70:35:59:5d:be:e7:cd:79: dc:fb:dd:97:06:90:fb:c0:b2:04:b5:71:f4:86:5a: 20:9d:b7:c1:2d:44:b0:65:9c:cd:63:64:8a:01:3e: 72:ca:ec:04:ac:ad:a5:bd:fb:a9:d6:6b:05:b7:26: 6a:67:1c:5f:2d:8e:d2:b9:c2:09:cc:20:52:5d:82: ee:c7:bf:33:ff:92:61:fb:65:ba:1f:a3:42:2e:70: a3:0c:5b:32:75:8a:98:a3:90:02:7e:b5:16:c7:73: 2c:ea:6a:02:7f:38:d5:b9:d2:b0:39:92:f1:3e:77: d5:47:c7:81:45:3e:e4:5d:80:f7:41:b0:e7:bb:65: 5a:1d:b8:be:e5:5a:0b:64:ac:a1:94:bb:7a:db:4d: 49:ae:0f:4a:68:f4:9f:13:df:aa:c9:18:76:4e:40: db:ab:a2:70:38:f5:cd:4d:e3:ee:0e:bd:b4:38:94: 2d:d0:ea:32:fb:8f:a1:9a:e9:5a:63:9b:67:09:24: 69:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:45:A3:5B:D5:AD:36:1D:98:5A:87:BE:80:70:CD:3B:85:7E:B7:B9 X509v3 Authority Key Identifier: keyid:93:3C:4C:D6:D8:43:5C:0F:8B:E2:F5:23:47:26:D6:61:0F:7E:DA:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzxM1thDXA-L4vUjRybWYQ9-2jo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:3f:20:27:c2:c2:4b:9a:df:d5:4d:b4:af:64:66:d7:fe:87: cc:fe:ae:d1:47:56:1d:f6:e2:ac:01:0e:c5:b0:89:06:63:e7: fa:58:2b:fd:6b:60:9a:8d:8c:c7:77:73:73:0b:06:81:b3:b4: 54:55:6b:2d:e5:92:21:56:db:d4:29:e0:7e:82:d0:95:5e:c2: c1:73:0e:66:d1:9a:91:53:94:f7:36:7f:a0:75:c9:fb:4d:c1: 9a:af:4e:3b:fb:20:34:43:82:7e:ec:89:cc:ad:cd:04:5c:22: c2:00:61:5d:b3:91:1d:cc:30:c0:ef:16:b1:52:c7:b7:eb:e6: 3c:62:28:e2:88:18:a9:e3:a0:39:6f:53:29:dc:17:97:6f:3f: 84:af:50:08:93:4c:88:08:25:79:71:71:0e:99:99:20:29:86: d2:f2:bb:1e:90:e8:85:24:fc:33:f1:7c:1e:79:07:0a:83:46: 5f:89:ae:f4:22:84:34:51:0e:35:b0:43:1b:b5:12:3d:dd:49: 7f:b4:43:d1:88:c0:69:bc:6b:1e:57:fa:a7:6f:52:c0:00:d7: ee:7e:1d:9e:c8:ea:ea:dd:93:0e:e0:ba:bf:9e:96:0f:af:56: 94:b1:bd:96:0f:0b:f2:43:6b:49:f2:35:cf:f5:57:73:bc:ca: cc:3d:c7:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDHEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQwREUxMTAvBgNVBAUTKDkzM0M0Q0Q2RDg0MzVDMEY4QkUyRjUyMzQ3MjZENjYx MEY3RURBM0EwHhcNMjUxMjE4MTgyMDQ1WhcNMjUxMjI1MTgyMDQ1WjAYMRYwFAYD VQQDDA02OTQ0NDVmZC04MTg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxj4u++8qiMTH76EwOjyspTm3jaBzE7perRivYmKD1Gz/MAcoqkx4zygHrqEE xA+hT7OSuox6Rbh/SGDOlca8TpbucDVZXb7nzXnc+92XBpD7wLIEtXH0hlognbfB LUSwZZzNY2SKAT5yyuwErK2lvfup1msFtyZqZxxfLY7SucIJzCBSXYLux78z/5Jh +2W6H6NCLnCjDFsydYqYo5ACfrUWx3Ms6moCfzjVudKwOZLxPnfVR8eBRT7kXYD3 QbDnu2VaHbi+5VoLZKyhlLt6201Jrg9KaPSfE9+qyRh2TkDbq6JwOPXNTePuDr20 OJQt0Ooy+4+hmulaY5tnCSRpYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKtFo1vV rTYdmFqHvoBwzTuFfre5MB8GA1UdIwQYMBaAFJM8TNbYQ1wPi+L1I0cm1mEPfto6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDBERS9EQTQ1RDQzMDE1 MjUxMUVBODBEQkYwMDlDNEY5QUUwMi9renhNMXRoRFhBLUw0dlVqUnliV1lROS0y am8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t6eE0xdGhEWEEtTDR2VWpSeWJXWVE5LTJqby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDBERS9EQTQ1RDQzMDE1MjUxMUVBODBEQkYwMDlDNEY5QUUwMi9renhNMXRoRFhB LUw0dlVqUnliV1lROS0yam8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQClPyAnwsJLmt/VTbSvZGbX/ofM/q7RR1Yd9uKsAQ7FsIkGY+f6WCv9 a2CajYzHd3NzCwaBs7RUVWst5ZIhVtvUKeB+gtCVXsLBcw5m0ZqRU5T3Nn+gdcn7 TcGar047+yA0Q4J+7InMrc0EXCLCAGFds5EdzDDA7xaxUse36+Y8YijiiBip46A5 b1Mp3BeXbz+Er1AIk0yICCV5cXEOmZkgKYbS8rsekOiFJPwz8XweeQcKg0Zfia70 IoQ0UQ41sEMbtRI93Ul/tEPRiMBpvGseV/qnb1LAANfufh2eyOrq3ZMO4Lq/npYP r1aUsb2WDwvyQ2tJ8jXP9VdzvMrMPcfh -----END CERTIFICATE-----Generated at Fri Dec 19 23:57:58 2025 by rpki-client