This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919C8F9/DC6B3614FE6D11EBB83F2B22C4F9AE02/KUrNCNoZE4w376-ydKHndXceRT4.mft File: KUrNCNoZE4w376-ydKHndXceRT4.mft (raw, json) Hash identifier: SO8xdiIxCJjznsxDuetYiFqT2dd6CRuM8rrk8qUejns= Subject key identifier: 58:2D:08:DC:E5:F4:17:39:59:2D:FA:4B:58:14:14:77:71:F5:D8:FB Authority key identifier: 29:4A:CD:08:DA:19:13:8C:37:EF:AF:B2:74:A1:E7:75:77:1E:45:3E Certificate issuer: /CN=A919C8F9/serialNumber=294ACD08DA19138C37EFAFB274A1E775771E453E Certificate serial: 0594 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KUrNCNoZE4w376-ydKHndXceRT4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C8F9/DC6B3614FE6D11EBB83F2B22C4F9AE02/KUrNCNoZE4w376-ydKHndXceRT4.mft Manifest number: 058E Signing time: Sat 20 Dec 2025 22:30:53 +0000 Manifest this update: Sat 20 Dec 2025 22:30:52 +0000 Manifest next update: Sat 27 Dec 2025 22:30:52 +0000 Files and hashes: 1: KUrNCNoZE4w376-ydKHndXceRT4.crl (hash: 1f3VQ9nJtTGuCIYqdHimTs/LR22pXoqeLFdnM0VXhf0=) 2: 2D7BD4EA03DD11ECA448405BC4F9AE02.roa (hash: KKWKrtsh/34nl8r+0Ut1+Gkgstz0StRYtgWm9ide930=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C8F9/DC6B3614FE6D11EBB83F2B22C4F9AE02/KUrNCNoZE4w376-ydKHndXceRT4.crl rsync://rpki.apnic.net/member_repository/A919C8F9/DC6B3614FE6D11EBB83F2B22C4F9AE02/KUrNCNoZE4w376-ydKHndXceRT4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KUrNCNoZE4w376-ydKHndXceRT4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 22:30:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1428 (0x594) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C8F9, serialNumber=294ACD08DA19138C37EFAFB274A1E775771E453E Validity Not Before: Dec 20 22:30:52 2025 GMT Not After : Dec 27 22:30:52 2025 GMT Subject: CN=6947239c-8777 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fb:ed:2d:82:51:98:a5:13:94:c0:ae:84:54:37: d9:c5:65:d5:75:c8:a7:62:8d:55:d4:fc:56:d3:d8: 3a:57:97:ea:89:e7:41:39:97:07:2b:aa:5e:fa:6d: 64:a8:4c:cc:f1:fd:65:4e:12:98:9d:d6:65:4c:40: 52:e4:59:94:d2:6e:99:77:f7:8c:d1:40:87:d7:1b: 4c:06:2a:43:cb:34:9b:f3:da:af:b1:d8:01:7a:48: 1f:6c:59:10:06:a4:9b:69:3c:e6:9f:2c:7e:80:29: 4e:b1:66:89:9f:a2:59:0d:4e:85:05:5b:9d:dc:4a: de:0d:de:62:97:fc:df:cb:5a:cb:27:e3:20:82:8b: e3:18:27:ba:0c:7b:52:73:88:f0:9b:0e:5f:65:ab: 1f:dc:75:c0:ff:02:2a:f8:7b:01:1d:df:61:ee:f6: cf:d0:40:d2:5d:12:c5:0b:14:84:cb:b0:0c:43:de: ee:bf:4c:89:d4:bc:56:3e:6a:08:ad:c0:13:cf:1b: cd:17:ca:6e:e6:5b:6b:c6:43:ed:f8:41:8b:d7:f6: f3:e3:dd:ee:40:20:7d:62:27:b2:b8:a4:e4:31:91: cc:4f:f2:fd:4d:a8:26:0b:90:d5:f9:a1:9b:1b:76: 08:2a:4c:15:05:b9:03:54:49:03:38:ac:2f:66:1e: 36:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:2D:08:DC:E5:F4:17:39:59:2D:FA:4B:58:14:14:77:71:F5:D8:FB X509v3 Authority Key Identifier: keyid:29:4A:CD:08:DA:19:13:8C:37:EF:AF:B2:74:A1:E7:75:77:1E:45:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C8F9/DC6B3614FE6D11EBB83F2B22C4F9AE02/KUrNCNoZE4w376-ydKHndXceRT4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KUrNCNoZE4w376-ydKHndXceRT4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C8F9/DC6B3614FE6D11EBB83F2B22C4F9AE02/KUrNCNoZE4w376-ydKHndXceRT4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:09:b5:df:8a:a4:80:94:7a:ff:e4:c1:49:cb:2b:c8:50:3c: 79:95:64:5a:6f:ec:9b:fe:60:ac:cb:6e:ec:40:45:38:02:db: ab:ad:19:42:78:72:c8:3d:22:e5:a3:56:83:64:10:82:dd:1f: f0:65:b4:49:99:ad:4b:26:6d:19:f1:85:d7:dd:cc:a9:47:cb: 96:5d:96:55:08:15:b7:73:26:4c:5d:7f:8f:2d:8a:50:a2:3c: 76:9e:35:92:b0:eb:83:08:54:e0:a7:ff:08:54:44:4f:da:98: 95:4c:36:a8:3b:87:42:22:6b:62:03:1d:cf:ab:b2:9f:ad:ff: 01:5d:c6:10:bf:55:69:9d:88:30:48:8b:5b:53:0a:24:f5:5f: 9a:5f:60:52:f9:47:bb:0a:c8:e1:a4:07:94:d1:47:eb:09:5b: 37:d9:93:41:98:5b:06:e8:77:08:52:dd:a2:fd:93:d4:38:6b: ed:3b:04:5f:d2:28:ff:bb:f5:bb:63:57:f7:e0:69:0d:b2:56: a3:5d:c3:ae:ec:a4:cd:35:08:22:09:e8:d3:f4:db:69:2a:c2: fb:5c:d6:b6:2d:fa:99:9e:f1:e0:27:62:07:14:e1:9f:9b:54: ba:e4:a7:ad:ec:87:d9:93:7c:65:e9:6a:9b:e1:17:6c:f7:74: 85:9f:7b:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBZQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUM4RjkxMTAvBgNVBAUTKDI5NEFDRDA4REExOTEzOEMzN0VGQUZCMjc0QTFFNzc1 NzcxRTQ1M0UwHhcNMjUxMjIwMjIzMDUyWhcNMjUxMjI3MjIzMDUyWjAYMRYwFAYD VQQDDA02OTQ3MjM5Yy04Nzc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA++0tglGYpROUwK6EVDfZxWXVdcinYo1V1PxW09g6V5fqiedBOZcHK6pe+m1k qEzM8f1lThKYndZlTEBS5FmU0m6Zd/eM0UCH1xtMBipDyzSb89qvsdgBekgfbFkQ BqSbaTzmnyx+gClOsWaJn6JZDU6FBVud3EreDd5il/zfy1rLJ+MggovjGCe6DHtS c4jwmw5fZasf3HXA/wIq+HsBHd9h7vbP0EDSXRLFCxSEy7AMQ97uv0yJ1LxWPmoI rcATzxvNF8pu5ltrxkPt+EGL1/bz493uQCB9YieyuKTkMZHMT/L9TagmC5DV+aGb G3YIKkwVBbkDVEkDOKwvZh42VQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFgtCNzl 9Bc5WS36S1gUFHdx9dj7MB8GA1UdIwQYMBaAFClKzQjaGROMN++vsnSh53V3HkU+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzhGOS9EQzZCMzYxNEZF NkQxMUVCQjgzRjJCMjJDNEY5QUUwMi9LVXJOQ05vWkU0dzM3Ni15ZEtIbmRYY2VS VDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tVck5DTm9aRTR3Mzc2LXlkS0huZFhjZVJUNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QzhGOS9EQzZCMzYxNEZFNkQxMUVCQjgzRjJCMjJDNEY5QUUwMi9LVXJOQ05vWkU0 dzM3Ni15ZEtIbmRYY2VSVDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKCbXfiqSAlHr/5MFJyyvIUDx5lWRab+yb/mCsy27sQEU4AturrRlC eHLIPSLlo1aDZBCC3R/wZbRJma1LJm0Z8YXX3cypR8uWXZZVCBW3cyZMXX+PLYpQ ojx2njWSsOuDCFTgp/8IVERP2piVTDaoO4dCImtiAx3Pq7Kfrf8BXcYQv1VpnYgw SItbUwok9V+aX2BS+Ue7CsjhpAeU0UfrCVs32ZNBmFsG6HcIUt2i/ZPUOGvtOwRf 0ij/u/W7Y1f34GkNslajXcOu7KTNNQgiCejT9NtpKsL7XNa2LfqZnvHgJ2IHFOGf m1S65Ket7IfZk3xl6Wqb4Rds93SFn3tK -----END CERTIFICATE-----Generated at Mon Dec 22 14:30:28 2025 by rpki-client