This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.mft File: kyv2OTHDR-dryQidQb4k9jcPJYI.mft (raw, json) Hash identifier: QiejvJU52A5b3wlwuKEtDbWcC5qlc9YRGR7GPdv2fdA= Subject key identifier: 19:97:B8:FD:9E:05:60:4A:E1:D3:B4:38:73:FC:97:AB:C2:2A:CA:E4 Authority key identifier: 93:2B:F6:39:31:C3:47:E7:6B:C9:08:9D:41:BE:24:F6:37:0F:25:82 Certificate issuer: /CN=A919879C/serialNumber=932BF63931C347E76BC9089D41BE24F6370F2582 Certificate serial: 02F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kyv2OTHDR-dryQidQb4k9jcPJYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.mft Manifest number: 02F1 Signing time: Sun 21 Dec 2025 00:28:05 +0000 Manifest this update: Sun 21 Dec 2025 00:28:04 +0000 Manifest next update: Sun 28 Dec 2025 00:28:04 +0000 Files and hashes: 1: kyv2OTHDR-dryQidQb4k9jcPJYI.crl (hash: QxZ6pdsWxMy/7O/xYwC/zm/91jIzerKKeVu0BBOfqyw=) 2: E7C34456073711ED8BA93630C4F9AE02.roa (hash: 16sJIK7yDSO7A/N450AB9k39DyJDrn04igY89yyJfys=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.crl rsync://rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kyv2OTHDR-dryQidQb4k9jcPJYI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 00:28:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 758 (0x2f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919879C, serialNumber=932BF63931C347E76BC9089D41BE24F6370F2582 Validity Not Before: Dec 21 00:28:04 2025 GMT Not After : Dec 28 00:28:04 2025 GMT Subject: CN=69473f14-0386 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:45:17:0e:be:de:1c:50:b5:8b:55:77:0f:f6: be:ef:35:4d:00:44:3d:32:18:9d:e4:2e:a3:ae:15: 44:d2:a8:4f:1f:5a:4f:95:47:79:70:2a:69:5a:19: b4:68:f3:0c:aa:69:98:e3:02:8b:6b:29:72:ce:b7: 41:68:e7:38:f1:a6:f3:44:40:d3:c2:d2:dc:82:49: a1:48:7b:a3:0c:f1:a2:8e:32:ed:92:c5:93:2c:a6: 6d:58:d0:13:73:14:7c:16:73:af:e3:e4:73:96:d6: 79:50:29:c8:a8:e5:08:96:3c:93:15:67:59:d8:10: c1:7d:f3:a2:a5:df:e5:a4:2f:f3:bf:b4:93:7e:06: 60:74:74:05:83:44:d5:2c:37:fa:d2:d1:97:44:6e: 87:e7:2a:f6:80:2a:3e:fb:51:ef:4b:aa:8d:5c:26: 97:bf:9a:aa:c3:43:bd:d8:59:0d:26:6d:a6:64:65: 9b:44:6a:e9:9f:57:24:a1:4b:14:03:14:74:4f:03: a4:c8:98:79:08:5a:e4:58:01:11:50:61:b1:4c:fe: 9b:9a:77:2b:97:bb:18:7b:fb:02:c4:78:6c:6c:f7: cb:e5:bf:bc:61:b9:46:f5:74:43:a5:52:48:3d:cd: 2b:ce:d2:4c:b1:24:06:96:1c:c0:82:ba:de:2c:94: 7d:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:97:B8:FD:9E:05:60:4A:E1:D3:B4:38:73:FC:97:AB:C2:2A:CA:E4 X509v3 Authority Key Identifier: keyid:93:2B:F6:39:31:C3:47:E7:6B:C9:08:9D:41:BE:24:F6:37:0F:25:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kyv2OTHDR-dryQidQb4k9jcPJYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption dc:2c:22:77:dc:2e:ba:4c:c1:7a:0b:55:33:f1:8c:5a:0d:5d: f8:c3:d2:7a:8d:5d:2b:2a:fc:b5:81:af:63:3a:7b:28:32:aa: c8:ec:9a:d7:bb:92:3c:70:3f:9a:d8:c9:c4:a7:fd:81:13:b1: b9:d4:78:d8:e4:30:ec:e9:cb:cc:07:d2:77:54:c7:ef:00:90: 9c:2f:29:46:c6:de:10:60:ca:73:73:3f:57:95:ab:9c:17:73: 97:f5:8a:11:ea:7b:f3:99:e4:cd:8c:97:e9:88:a1:1f:d6:ae: a9:8c:e5:fc:3a:a8:f3:50:e7:44:d7:31:90:c7:b4:41:d2:40: 81:61:73:72:b1:31:46:6f:f2:2c:28:f9:16:e2:76:ea:09:59: a2:87:f6:e5:b3:2e:43:8e:6d:4c:62:ef:2b:04:5a:cd:fe:7b: ac:0c:fe:a5:86:b6:a7:a0:e0:c1:b9:11:01:5a:d0:d3:4d:1b: 2c:f9:b6:af:1f:cf:18:30:79:21:cf:66:db:31:8d:e0:94:94: f9:bd:b8:64:95:f5:4a:5b:00:71:e2:b8:7d:22:59:ce:51:ba: 8e:22:a0:44:32:9c:db:e9:14:1f:0e:f9:84:1c:fd:8f:51:52: 18:70:dd:71:dd:af:17:fe:14:b2:cd:62:c5:c7:af:44:e4:bd: 6e:0a:5e:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAvYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTg3OUMxMTAvBgNVBAUTKDkzMkJGNjM5MzFDMzQ3RTc2QkM5MDg5RDQxQkUyNEY2 MzcwRjI1ODIwHhcNMjUxMjIxMDAyODA0WhcNMjUxMjI4MDAyODA0WjAYMRYwFAYD VQQDDA02OTQ3M2YxNC0wMzg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv0UXDr7eHFC1i1V3D/a+7zVNAEQ9Mhid5C6jrhVE0qhPH1pPlUd5cCppWhm0 aPMMqmmY4wKLaylyzrdBaOc48abzREDTwtLcgkmhSHujDPGijjLtksWTLKZtWNAT cxR8FnOv4+RzltZ5UCnIqOUIljyTFWdZ2BDBffOipd/lpC/zv7STfgZgdHQFg0TV LDf60tGXRG6H5yr2gCo++1HvS6qNXCaXv5qqw0O92FkNJm2mZGWbRGrpn1ckoUsU AxR0TwOkyJh5CFrkWAERUGGxTP6bmncrl7sYe/sCxHhsbPfL5b+8YblG9XRDpVJI Pc0rztJMsSQGlhzAgrreLJR95QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBmXuP2e BWBK4dO0OHP8l6vCKsrkMB8GA1UdIwQYMBaAFJMr9jkxw0fna8kInUG+JPY3DyWC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5ODc5Qy9FMUQyMDI5MjA3 MzQxMUVEQjA0RDM3MkRDNEY5QUUwMi9reXYyT1RIRFItZHJ5UWlkUWI0azlqY1BK WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t5djJPVEhEUi1kcnlRaWRRYjRrOWpjUEpZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 ODc5Qy9FMUQyMDI5MjA3MzQxMUVEQjA0RDM3MkRDNEY5QUUwMi9reXYyT1RIRFIt ZHJ5UWlkUWI0azlqY1BKWUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDcLCJ33C66TMF6C1Uz8YxaDV34w9J6jV0rKvy1ga9jOnsoMqrI7JrX u5I8cD+a2MnEp/2BE7G51HjY5DDs6cvMB9J3VMfvAJCcLylGxt4QYMpzcz9Xlauc F3OX9YoR6nvzmeTNjJfpiKEf1q6pjOX8OqjzUOdE1zGQx7RB0kCBYXNysTFGb/Is KPkW4nbqCVmih/blsy5Djm1MYu8rBFrN/nusDP6lhranoODBuREBWtDTTRss+bav H88YMHkhz2bbMY3glJT5vbhklfVKWwBx4rh9IlnOUbqOIqBEMpzb6RQfDvmEHP2P UVIYcN1x3a8X/hSyzWLFx69E5L1uCl58 -----END CERTIFICATE-----Generated at Mon Dec 22 18:59:35 2025 by rpki-client