This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBA0E/DBBED206C00511EDA255FA10C4F9AE02/km2a3G-4c9dlu0EicoDB8RhG7hc.mft File: km2a3G-4c9dlu0EicoDB8RhG7hc.mft (raw, json) Hash identifier: P9dwvFmjoKN2pBwQ0mllkUyWY+YY2xHIfWxiiIsgC5Q= Subject key identifier: A4:0E:61:1A:7F:7D:F6:98:24:F1:C4:CA:11:E7:92:EE:3E:08:2F:73 Authority key identifier: 92:6D:9A:DC:6F:B8:73:D7:65:BB:41:22:72:80:C1:F1:18:46:EE:17 Certificate issuer: /CN=A91EBA0E/serialNumber=926D9ADC6FB873D765BB41227280C1F11846EE17 Certificate serial: 0220 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/km2a3G-4c9dlu0EicoDB8RhG7hc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBA0E/DBBED206C00511EDA255FA10C4F9AE02/km2a3G-4c9dlu0EicoDB8RhG7hc.mft Manifest number: 0215 Signing time: Fri 19 Dec 2025 01:33:50 +0000 Manifest this update: Fri 19 Dec 2025 01:33:49 +0000 Manifest next update: Fri 26 Dec 2025 01:33:49 +0000 Files and hashes: 1: km2a3G-4c9dlu0EicoDB8RhG7hc.crl (hash: 4qAkJnd3Ca46dCpR7sfTYHzzmjkguP3Fm1uJp7EUyR8=) 2: 1B5E26228FA911EF90043A7CC4F9AE02.roa (hash: B6AplExmLrIT4R5ziT3lWEDw+OK86D2hSg+6JuEpzR0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBA0E/DBBED206C00511EDA255FA10C4F9AE02/km2a3G-4c9dlu0EicoDB8RhG7hc.crl rsync://rpki.apnic.net/member_repository/A91EBA0E/DBBED206C00511EDA255FA10C4F9AE02/km2a3G-4c9dlu0EicoDB8RhG7hc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/km2a3G-4c9dlu0EicoDB8RhG7hc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 01:33:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 544 (0x220) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBA0E, serialNumber=926D9ADC6FB873D765BB41227280C1F11846EE17 Validity Not Before: Dec 19 01:33:49 2025 GMT Not After : Dec 26 01:33:49 2025 GMT Subject: CN=6944ab7e-2c82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:d1:fd:2a:92:c7:8d:ce:b9:15:95:dc:74:3a: 87:53:f9:c1:8b:16:02:2d:d0:23:b7:2c:c5:3d:60: 4b:84:2c:0d:3c:95:d6:35:d3:9b:36:27:99:9a:f1: d1:2c:d4:4f:c2:24:d9:fb:1f:ea:f0:d7:84:b7:89: 5f:ff:87:aa:ae:0a:7e:1f:15:ec:a3:41:ce:46:f1: 24:2c:76:54:0b:3d:a8:f0:7c:d7:dc:18:de:c0:29: 7e:aa:f2:51:67:b5:90:cf:b9:16:45:a2:7f:07:b0: f5:43:05:e5:04:ee:64:e0:66:b3:6b:81:99:c6:79: 19:a2:31:04:e2:8e:59:d4:37:91:56:79:b1:75:a3: fd:89:16:a4:04:fc:6b:15:13:27:7a:15:53:19:2a: 29:43:ff:76:c0:7f:d9:76:db:f6:6c:19:b4:3f:01: c1:5e:47:6e:2d:46:e5:bd:00:f4:2c:40:dc:84:b1: 21:83:9a:85:5b:b5:e6:be:2a:a8:99:4b:86:e0:48: 3b:58:ab:a0:0d:52:9c:b3:12:03:01:ef:f2:2f:28: 45:22:46:16:77:6a:11:84:9f:53:bf:f1:51:a1:77: ce:94:e0:4c:da:e8:4b:1b:b3:b6:1d:71:00:6a:eb: 40:bf:25:5f:2e:37:16:fd:c1:86:bf:8d:05:8c:05: 38:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:0E:61:1A:7F:7D:F6:98:24:F1:C4:CA:11:E7:92:EE:3E:08:2F:73 X509v3 Authority Key Identifier: keyid:92:6D:9A:DC:6F:B8:73:D7:65:BB:41:22:72:80:C1:F1:18:46:EE:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBA0E/DBBED206C00511EDA255FA10C4F9AE02/km2a3G-4c9dlu0EicoDB8RhG7hc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/km2a3G-4c9dlu0EicoDB8RhG7hc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBA0E/DBBED206C00511EDA255FA10C4F9AE02/km2a3G-4c9dlu0EicoDB8RhG7hc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:6e:80:81:5d:25:5d:7e:c9:2e:5c:9a:e9:ce:95:d5:52:45: 2e:b6:f6:59:44:2d:c3:ad:99:a5:48:60:74:57:84:40:7b:f6: a7:1b:65:6a:fa:0b:e7:6a:dc:ef:e3:e1:d3:6d:8e:00:dc:f6: e2:f0:64:09:8d:20:5c:ad:e9:09:29:b8:58:90:51:af:cf:de: db:20:94:b7:fb:9b:b3:a4:4d:79:6d:78:dc:cb:ed:7b:d3:18: c4:2d:aa:54:00:0d:36:4e:eb:be:fa:22:e9:a5:34:b2:38:c3: 43:91:27:72:50:6e:a0:c0:e3:23:4a:84:8e:a9:c1:aa:bc:ba: 2f:40:09:b6:5e:fb:aa:50:c1:96:a5:84:a2:71:00:c8:27:63: ee:44:63:20:97:32:9f:51:b8:e5:d6:79:f3:91:8c:52:bc:36: 8f:d7:7b:79:48:bf:ec:ec:1f:47:ba:67:88:2e:0c:2c:b8:25: 18:c5:d5:12:67:32:f0:82:a2:ca:20:2f:fc:56:75:55:18:1f: 93:ab:b9:37:cd:0d:c2:a5:c0:d9:04:d1:0d:5d:c9:73:c2:04: f2:c4:52:37:d9:37:bb:90:48:d8:d7:16:5c:c2:8e:86:6f:71: 68:84:28:18:27:86:d1:a4:5b:76:02:40:12:bd:2e:13:9a:e5: c0:00:bc:78 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJBMEUxMTAvBgNVBAUTKDkyNkQ5QURDNkZCODczRDc2NUJCNDEyMjcyODBDMUYx MTg0NkVFMTcwHhcNMjUxMjE5MDEzMzQ5WhcNMjUxMjI2MDEzMzQ5WjAYMRYwFAYD VQQDDA02OTQ0YWI3ZS0yYzgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA29H9KpLHjc65FZXcdDqHU/nBixYCLdAjtyzFPWBLhCwNPJXWNdObNieZmvHR LNRPwiTZ+x/q8NeEt4lf/4eqrgp+HxXso0HORvEkLHZUCz2o8HzX3BjewCl+qvJR Z7WQz7kWRaJ/B7D1QwXlBO5k4Gaza4GZxnkZojEE4o5Z1DeRVnmxdaP9iRakBPxr FRMnehVTGSopQ/92wH/Zdtv2bBm0PwHBXkduLUblvQD0LEDchLEhg5qFW7Xmviqo mUuG4Eg7WKugDVKcsxIDAe/yLyhFIkYWd2oRhJ9Tv/FRoXfOlOBM2uhLG7O2HXEA autAvyVfLjcW/cGGv40FjAU4CQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKQOYRp/ ffaYJPHEyhHnku4+CC9zMB8GA1UdIwQYMBaAFJJtmtxvuHPXZbtBInKAwfEYRu4X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkEwRS9EQkJFRDIwNkMw MDUxMUVEQTI1NUZBMTBDNEY5QUUwMi9rbTJhM0ctNGM5ZGx1MEVpY29EQjhSaEc3 aGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ttMmEzRy00YzlkbHUwRWljb0RCOFJoRzdoYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkEwRS9EQkJFRDIwNkMwMDUxMUVEQTI1NUZBMTBDNEY5QUUwMi9rbTJhM0ctNGM5 ZGx1MEVpY29EQjhSaEc3aGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqboCBXSVdfskuXJrpzpXVUkUutvZZRC3DrZmlSGB0V4RAe/anG2Vq +gvnatzv4+HTbY4A3Pbi8GQJjSBcrekJKbhYkFGvz97bIJS3+5uzpE15bXjcy+17 0xjELapUAA02Tuu++iLppTSyOMNDkSdyUG6gwOMjSoSOqcGqvLovQAm2XvuqUMGW pYSicQDIJ2PuRGMglzKfUbjl1nnzkYxSvDaP13t5SL/s7B9HumeILgwsuCUYxdUS ZzLwgqLKIC/8VnVVGB+Tq7k3zQ3CpcDZBNENXclzwgTyxFI32Te7kEjY1xZcwo6G b3FohCgYJ4bRpFt2AkASvS4TmuXAALx4 -----END CERTIFICATE-----Generated at Fri Dec 19 20:10:44 2025 by rpki-client