This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.mft File: KbaocCpK1kSocQZLZAet5JPmOo0.mft (raw, json) Hash identifier: e4pCXWWAD8vWBFekvw2Maiu+nU9AoShAyxuC8/8Coi4= Subject key identifier: 08:8D:13:EF:F4:33:4A:19:FB:DF:70:4E:53:1E:52:48:02:64:1B:C1 Authority key identifier: 29:B6:A8:70:2A:4A:D6:44:A8:71:06:4B:64:07:AD:E4:93:E6:3A:8D Certificate issuer: /CN=A919EAF3/serialNumber=29B6A8702A4AD644A871064B6407ADE493E63A8D Certificate serial: 19F7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KbaocCpK1kSocQZLZAet5JPmOo0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.mft Manifest number: 19E8 Signing time: Sat 20 Dec 2025 16:09:57 +0000 Manifest this update: Sat 20 Dec 2025 16:09:56 +0000 Manifest next update: Sat 27 Dec 2025 16:09:56 +0000 Files and hashes: 1: KbaocCpK1kSocQZLZAet5JPmOo0.crl (hash: 6q8zg9y195Npq+dHkVwPiueu991GI562QIe9V63LhTM=) 2: E7729178378211EF822BAA6EC4F9AE02.roa (hash: 9LBAFHVyWvEKSALgxe/WVtOrUQqJ4PPcHQSe6I3XcVM=) 3: 92AEE092378211EFAEB6B36DC4F9AE02.roa (hash: vof6OG8sAX0uHAvhetFYEpdSjwUJhtpp1UkP8lk0Gm0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.crl rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KbaocCpK1kSocQZLZAet5JPmOo0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 16:09:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6647 (0x19f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EAF3, serialNumber=29B6A8702A4AD644A871064B6407ADE493E63A8D Validity Not Before: Dec 20 16:09:56 2025 GMT Not After : Dec 27 16:09:56 2025 GMT Subject: CN=6946ca55-dfb9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:ad:2e:9c:62:1f:b6:9f:c0:ee:93:8e:37:0a: aa:18:c8:d2:fb:8b:1e:15:07:6d:c9:d5:5d:dd:34: 38:a8:ca:28:a6:5d:6c:74:6b:34:16:55:59:30:dd: b6:2f:be:d8:87:c8:01:72:88:15:65:8f:b3:67:a2: 36:56:b4:1f:f9:d3:9b:65:a1:89:bb:19:6e:92:63: cf:40:5f:3b:84:4b:2f:2d:25:17:78:ea:a5:9d:14: 89:d7:aa:b0:e9:b8:63:cf:a2:02:5f:27:e1:60:05: fb:b5:4d:38:48:52:c7:49:ab:20:88:b2:9e:83:9e: f8:1c:d6:af:b2:cf:c6:56:69:2a:41:d0:00:1b:07: 01:cd:8d:8e:28:84:1b:ea:76:72:16:c9:2b:03:7f: 04:b0:32:2c:69:06:68:7f:6e:39:3e:ee:10:5b:dd: 98:6d:a6:35:7e:3f:43:a6:10:d5:e1:04:42:9c:45: ed:fa:c0:62:46:7a:25:c9:05:e4:fb:d1:60:ce:73: fe:ee:ee:2a:d6:3c:d8:d1:eb:16:d1:37:df:b9:37: 07:7a:49:98:99:78:c7:fc:c2:1a:9f:7e:22:fd:a1: f1:39:03:a3:00:2e:db:e6:fa:17:c5:73:29:f4:43: 1e:8d:a3:d8:aa:2d:e7:a2:58:ec:de:71:51:24:0b: 5b:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:8D:13:EF:F4:33:4A:19:FB:DF:70:4E:53:1E:52:48:02:64:1B:C1 X509v3 Authority Key Identifier: keyid:29:B6:A8:70:2A:4A:D6:44:A8:71:06:4B:64:07:AD:E4:93:E6:3A:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KbaocCpK1kSocQZLZAet5JPmOo0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:d0:ed:d7:d5:26:ed:65:7e:7f:5b:68:fa:63:03:85:67:6d: 1f:dc:93:ed:a2:8c:c9:da:c4:c0:f3:83:b3:16:12:88:fb:5e: 82:ff:ed:14:44:7a:74:04:de:ba:bc:7c:30:42:c7:1e:0c:b7: 26:2d:65:06:d8:9b:26:47:9b:84:0c:98:3b:e4:1a:a8:db:52: e8:20:ef:a5:70:a0:fa:db:47:37:a7:5a:1f:e1:fb:08:2b:0e: a5:b5:bf:0b:6b:a5:b4:03:3b:62:89:ef:34:4e:39:d8:f2:6b: 7e:65:7b:d5:c5:0f:c0:9b:15:76:03:ea:bf:9d:4d:74:9b:21: fc:c6:81:a6:67:e0:73:38:af:cf:8c:3c:24:3e:2e:94:7c:cd: 99:d0:fe:fc:44:62:1e:a8:d2:42:d3:95:f4:87:66:b5:82:e1: fe:57:90:af:4f:74:ad:52:91:30:6c:7f:da:16:26:2b:39:fb: 5d:c6:b1:52:fa:13:d0:8a:3d:39:a3:16:52:3a:a1:ee:d4:2e: ef:e0:0a:df:a8:55:11:17:e0:5f:63:9a:03:be:6d:20:be:af: 07:9c:3a:34:88:18:d5:34:d2:f6:ab:58:d9:bd:46:8d:79:1e: 94:30:20:29:c9:00:0b:1f:c3:28:e5:c2:b2:1a:2a:7b:b8:79: 92:d0:b4:96 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGfcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVBRjMxMTAvBgNVBAUTKDI5QjZBODcwMkE0QUQ2NDRBODcxMDY0QjY0MDdBREU0 OTNFNjNBOEQwHhcNMjUxMjIwMTYwOTU2WhcNMjUxMjI3MTYwOTU2WjAYMRYwFAYD VQQDDA02OTQ2Y2E1NS1kZmI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5a0unGIftp/A7pOONwqqGMjS+4seFQdtydVd3TQ4qMoopl1sdGs0FlVZMN22 L77Yh8gBcogVZY+zZ6I2VrQf+dObZaGJuxlukmPPQF87hEsvLSUXeOqlnRSJ16qw 6bhjz6ICXyfhYAX7tU04SFLHSasgiLKeg574HNavss/GVmkqQdAAGwcBzY2OKIQb 6nZyFskrA38EsDIsaQZof245Pu4QW92YbaY1fj9DphDV4QRCnEXt+sBiRnolyQXk +9FgznP+7u4q1jzY0esW0TffuTcHekmYmXjH/MIan34i/aHxOQOjAC7b5voXxXMp 9EMejaPYqi3noljs3nFRJAtb2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAiNE+/0 M0oZ+99wTlMeUkgCZBvBMB8GA1UdIwQYMBaAFCm2qHAqStZEqHEGS2QHreST5jqN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUFGMy85M0JCNTAyRTZE MTgxMUU3QTgxNURBODBDNEY5QUUwMi9LYmFvY0NwSzFrU29jUVpMWkFldDVKUG1P bzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0tiYW9jQ3BLMWtTb2NRWkxaQWV0NUpQbU9vMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RUFGMy85M0JCNTAyRTZEMTgxMUU3QTgxNURBODBDNEY5QUUwMi9LYmFvY0NwSzFr U29jUVpMWkFldDVKUG1PbzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAR0O3X1SbtZX5/W2j6YwOFZ20f3JPtoozJ2sTA84OzFhKI+16C/+0U RHp0BN66vHwwQsceDLcmLWUG2JsmR5uEDJg75Bqo21LoIO+lcKD620c3p1of4fsI Kw6ltb8La6W0Aztiie80TjnY8mt+ZXvVxQ/AmxV2A+q/nU10myH8xoGmZ+BzOK/P jDwkPi6UfM2Z0P78RGIeqNJC05X0h2a1guH+V5CvT3StUpEwbH/aFiYrOftdxrFS +hPQij05oxZSOqHu1C7v4ArfqFURF+BfY5oDvm0gvq8HnDo0iBjVNNL2q1jZvUaN eR6UMCApyQALH8Mo5cKyGip7uHmS0LSW -----END CERTIFICATE-----Generated at Mon Dec 22 01:29:22 2025 by rpki-client