This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.mft File: kI2z-bdG9SC7uahMhT9pJsFeub0.mft (raw, json) Hash identifier: MnMvvXiYGKSXfKaGjM0Vswj3Ff0ssmoQE8FAARCJsLk= Subject key identifier: A0:78:58:64:22:A6:94:5C:8F:4D:D3:F5:1B:D9:6E:E4:FE:C3:1B:AC Authority key identifier: 90:8D:B3:F9:B7:46:F5:20:BB:B9:A8:4C:85:3F:69:26:C1:5E:B9:BD Certificate issuer: /CN=A919A909/serialNumber=908DB3F9B746F520BBB9A84C853F6926C15EB9BD Certificate serial: 0122 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI2z-bdG9SC7uahMhT9pJsFeub0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.mft Manifest number: 011F Signing time: Sun 21 Dec 2025 03:55:44 +0000 Manifest this update: Sun 21 Dec 2025 03:55:44 +0000 Manifest next update: Sun 28 Dec 2025 03:55:44 +0000 Files and hashes: 1: kI2z-bdG9SC7uahMhT9pJsFeub0.crl (hash: qwAUEPIF+Git7EqA2TsbQfZniVPTAp9GUU2E5TNMejs=) 2: 879152E62E4811EF929FE162C4F9AE02.roa (hash: cr46hMBXMjVoUuUCIeS55LaT84JtFcqvVMAfnbq95f8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.crl rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI2z-bdG9SC7uahMhT9pJsFeub0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 03:55:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 290 (0x122) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A909, serialNumber=908DB3F9B746F520BBB9A84C853F6926C15EB9BD Validity Not Before: Dec 21 03:55:44 2025 GMT Not After : Dec 28 03:55:44 2025 GMT Subject: CN=69476fc0-b51e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:70:dd:f1:66:50:ca:f1:73:a6:37:7b:92:bc: 77:5c:a0:c3:34:41:23:43:35:ac:df:2d:e2:42:f5: f5:c6:b1:17:86:81:e2:0b:a9:2a:09:0c:7f:e1:15: 00:d8:f6:0d:0a:db:65:92:fc:a2:48:d0:6d:0e:07: a2:5f:65:53:88:5c:17:cf:9f:32:dd:97:fe:fd:ed: c4:29:1f:ef:a8:82:f1:74:84:22:b3:75:df:64:64: 12:78:47:5a:f9:e3:fd:4e:5d:f4:c1:7a:1f:7a:21: 61:3b:ed:15:87:d9:bb:2c:99:22:fb:fe:ad:f1:00: 58:ba:01:85:7a:d9:fc:4a:12:f7:af:78:26:78:92: b0:66:bc:b4:ca:aa:b3:a5:68:9b:d4:5b:70:81:48: d8:62:b5:f3:75:7c:ce:00:16:c6:ff:9b:70:2f:c6: db:22:d5:53:5a:74:ca:ba:6d:f2:7b:c1:9d:57:f1: 06:a7:6b:65:eb:69:92:6e:2c:76:48:72:44:4e:05: 9a:86:8c:6a:ab:c1:52:3f:bb:f2:b4:b9:52:2f:f5: cc:90:b6:ff:9d:8b:a1:ae:19:c9:b5:b8:7e:4a:b1: fc:ee:79:d6:ce:c1:32:8f:a4:0c:f4:45:7f:37:6e: 22:ce:7d:4d:52:42:64:ad:5d:6c:5f:b5:7c:24:ad: 1b:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:78:58:64:22:A6:94:5C:8F:4D:D3:F5:1B:D9:6E:E4:FE:C3:1B:AC X509v3 Authority Key Identifier: keyid:90:8D:B3:F9:B7:46:F5:20:BB:B9:A8:4C:85:3F:69:26:C1:5E:B9:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI2z-bdG9SC7uahMhT9pJsFeub0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:76:5c:7f:92:fd:f1:ea:a2:15:71:9d:ec:bc:d3:68:e9:fb: 71:b1:34:ec:ae:96:d7:75:ee:ed:c1:10:6d:81:3d:65:c4:1e: 47:80:3d:c0:05:23:f8:88:b1:76:6d:c3:bc:66:05:19:93:0a: be:9c:c7:f1:2c:65:f9:08:2e:0f:14:09:e5:5b:c7:e2:11:a8: 31:ad:0f:c4:28:ea:14:8d:66:12:19:e8:db:60:c8:01:ac:bb: 74:e4:22:f0:eb:3d:b9:c2:2c:56:04:0c:b5:80:82:4c:8b:95: 89:fb:b1:38:c0:08:14:5a:ca:50:8f:5c:0b:4f:3b:97:47:7a: 2b:f3:9a:d4:de:9c:a2:e5:ea:1e:b2:6f:04:d0:5e:63:31:3c: 3f:b3:18:92:18:81:74:f9:74:7d:52:03:d1:88:80:1f:bc:1c: 15:14:22:15:48:42:86:04:c6:8f:88:25:9c:6b:cd:00:97:4e: af:a5:e7:f5:91:9a:c2:94:0e:70:89:e6:13:7d:7d:67:6a:01: c3:24:88:31:c4:43:2f:1f:77:50:61:b0:77:29:95:fd:6c:d9: 7e:98:de:91:f4:58:80:08:49:92:3d:33:f7:82:6b:62:f2:f9: 33:f4:90:22:6c:9a:f6:75:ac:cb:02:71:b7:df:71:3f:fc:7c: 80:77:7e:d4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE5MDkxMTAvBgNVBAUTKDkwOERCM0Y5Qjc0NkY1MjBCQkI5QTg0Qzg1M0Y2OTI2 QzE1RUI5QkQwHhcNMjUxMjIxMDM1NTQ0WhcNMjUxMjI4MDM1NTQ0WjAYMRYwFAYD VQQDDA02OTQ3NmZjMC1iNTFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlXDd8WZQyvFzpjd7krx3XKDDNEEjQzWs3y3iQvX1xrEXhoHiC6kqCQx/4RUA 2PYNCttlkvyiSNBtDgeiX2VTiFwXz58y3Zf+/e3EKR/vqILxdIQis3XfZGQSeEda +eP9Tl30wXofeiFhO+0Vh9m7LJki+/6t8QBYugGFetn8ShL3r3gmeJKwZry0yqqz pWib1FtwgUjYYrXzdXzOABbG/5twL8bbItVTWnTKum3ye8GdV/EGp2tl62mSbix2 SHJETgWahoxqq8FSP7vytLlSL/XMkLb/nYuhrhnJtbh+SrH87nnWzsEyj6QM9EV/ N24izn1NUkJkrV1sX7V8JK0btQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKB4WGQi ppRcj03T9RvZbuT+wxusMB8GA1UdIwQYMBaAFJCNs/m3RvUgu7moTIU/aSbBXrm9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTkwOS8yMDlFRERDRTJB MzMxMUVGQkU5QUE4NTlDNEY5QUUwMi9rSTJ6LWJkRzlTQzd1YWhNaFQ5cEpzRmV1 YjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tJMnotYmRHOVNDN3VhaE1oVDlwSnNGZXViMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTkwOS8yMDlFRERDRTJBMzMxMUVGQkU5QUE4NTlDNEY5QUUwMi9rSTJ6LWJkRzlT Qzd1YWhNaFQ5cEpzRmV1YjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCddlx/kv3x6qIVcZ3svNNo6ftxsTTsrpbXde7twRBtgT1lxB5HgD3A BSP4iLF2bcO8ZgUZkwq+nMfxLGX5CC4PFAnlW8fiEagxrQ/EKOoUjWYSGejbYMgB rLt05CLw6z25wixWBAy1gIJMi5WJ+7E4wAgUWspQj1wLTzuXR3or85rU3pyi5eoe sm8E0F5jMTw/sxiSGIF0+XR9UgPRiIAfvBwVFCIVSEKGBMaPiCWca80Al06vpef1 kZrClA5wieYTfX1nagHDJIgxxEMvH3dQYbB3KZX9bNl+mN6R9FiACEmSPTP3gmti 8vkz9JAibJr2dazLAnG333E//HyAd37U -----END CERTIFICATE-----Generated at Sun Dec 21 13:15:26 2025 by rpki-client