This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9115CB5/D9FD2DFEF37F11EBB283E74AC4F9AE02/kfSTmrrtQPo2bsx2NZ3KK8tozkc.mft File: kfSTmrrtQPo2bsx2NZ3KK8tozkc.mft (raw, json) Hash identifier: ++ZM6Mnd8RqNp2Ap/SGoDoXsIfNxhcA1qJWlA/e6Qtw= Subject key identifier: AC:20:C9:61:3C:13:88:39:69:86:7A:A9:C9:EF:8E:42:5A:17:5C:E4 Authority key identifier: 91:F4:93:9A:BA:ED:40:FA:36:6E:CC:76:35:9D:CA:2B:CB:68:CE:47 Certificate issuer: /CN=A9115CB5/serialNumber=91F4939ABAED40FA366ECC76359DCA2BCB68CE47 Certificate serial: 05BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfSTmrrtQPo2bsx2NZ3KK8tozkc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9115CB5/D9FD2DFEF37F11EBB283E74AC4F9AE02/kfSTmrrtQPo2bsx2NZ3KK8tozkc.mft Manifest number: 05B0 Signing time: Mon 22 Dec 2025 22:15:41 +0000 Manifest this update: Mon 22 Dec 2025 22:15:40 +0000 Manifest next update: Mon 29 Dec 2025 22:15:40 +0000 Files and hashes: 1: kfSTmrrtQPo2bsx2NZ3KK8tozkc.crl (hash: MJAxeGGajgSt7EMFDoutHNHWQfLy5zvwZxPg9uF0Mj4=) 2: C41538940B4711EC99840631C4F9AE02.roa (hash: jmBBk9G7I6kWRNtiv9uf3HqTLrY1UbUUMPlSvnBT+V4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9115CB5/D9FD2DFEF37F11EBB283E74AC4F9AE02/kfSTmrrtQPo2bsx2NZ3KK8tozkc.crl rsync://rpki.apnic.net/member_repository/A9115CB5/D9FD2DFEF37F11EBB283E74AC4F9AE02/kfSTmrrtQPo2bsx2NZ3KK8tozkc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfSTmrrtQPo2bsx2NZ3KK8tozkc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 22:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1468 (0x5bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9115CB5, serialNumber=91F4939ABAED40FA366ECC76359DCA2BCB68CE47 Validity Not Before: Dec 22 22:15:40 2025 GMT Not After : Dec 29 22:15:40 2025 GMT Subject: CN=6949c30d-3660 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:b8:74:cf:e1:6f:0a:ce:b4:6d:58:eb:63:04: 1a:93:7e:bf:fc:ff:62:e5:23:1d:fc:2e:7b:30:ee: 4d:8e:d3:bb:e4:ff:5f:6c:bf:02:e1:b3:c9:8b:5f: b7:00:20:72:38:e0:5e:6a:5c:8e:93:a7:97:23:8c: c6:11:27:af:0f:aa:76:16:81:35:2d:1a:eb:de:e6: d6:be:2b:bf:17:d5:c8:83:4e:2b:53:cb:32:a0:ec: 98:5a:2c:54:ba:e2:8f:28:5d:7d:8f:e1:ae:f2:7a: db:3f:4f:9e:96:5a:98:26:ec:44:8a:6e:9e:85:ba: 47:b0:12:94:41:43:80:e0:a5:55:d1:f0:61:d5:ff: cd:82:c9:c6:0e:9b:bd:b0:2f:83:ed:2b:d6:87:24: 2e:87:96:f5:63:9b:2f:3d:e3:e7:62:9e:97:3d:2d: 64:a5:07:95:07:60:2d:05:8e:9d:e7:eb:2a:a3:b9: 4e:11:b7:8e:27:a2:fb:66:7d:97:59:26:25:6e:80: bc:4a:4f:e3:1a:3b:ce:e4:4e:e4:17:40:16:23:58: b9:08:e3:55:6e:79:dd:68:16:2f:be:e8:2b:68:c8: 6a:bf:f4:47:8c:df:ca:2d:ec:a5:31:3a:30:19:fe: fc:20:8d:94:41:df:7c:2c:b4:ac:34:b0:7f:3b:17: 8f:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:20:C9:61:3C:13:88:39:69:86:7A:A9:C9:EF:8E:42:5A:17:5C:E4 X509v3 Authority Key Identifier: keyid:91:F4:93:9A:BA:ED:40:FA:36:6E:CC:76:35:9D:CA:2B:CB:68:CE:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9115CB5/D9FD2DFEF37F11EBB283E74AC4F9AE02/kfSTmrrtQPo2bsx2NZ3KK8tozkc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfSTmrrtQPo2bsx2NZ3KK8tozkc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9115CB5/D9FD2DFEF37F11EBB283E74AC4F9AE02/kfSTmrrtQPo2bsx2NZ3KK8tozkc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:ad:53:68:02:12:f0:25:b8:28:8d:46:f5:fa:79:fb:b9:cf: be:8f:4a:d2:5c:cd:c5:9d:65:3d:13:ff:6a:98:36:87:d9:c6: 12:ad:fb:6c:ad:9b:ad:0c:d4:e8:3e:55:22:31:47:7a:3f:eb: 02:31:30:c7:9e:f9:54:c8:0c:57:0f:44:d9:36:d5:25:14:7b: f8:f5:ea:a5:e0:00:13:75:f2:a3:44:34:0e:c7:0f:39:1f:00: de:b3:df:26:79:d6:30:b6:91:68:ec:d0:0f:72:e6:a3:36:7b: 5f:ba:e5:73:c9:27:71:05:f5:a0:88:bc:70:32:56:a9:17:1a: 7f:ea:4d:c5:8a:c7:4c:ed:dd:a0:db:7a:28:9b:4f:69:28:3c: 0a:c4:91:0e:52:b6:06:c1:e8:da:54:64:1c:02:e8:ef:8b:fa: df:bf:15:e3:b9:b3:47:f3:0a:b9:aa:0f:49:2f:db:33:c0:83: 26:23:c5:7e:16:29:82:7b:39:4b:27:9f:a1:c5:23:0c:4f:ff: 53:c8:6d:0a:db:41:77:d4:7d:75:b4:8f:09:0a:ee:bc:14:8a: a4:f9:d5:89:c0:60:15:6b:58:73:4a:a8:5e:41:0e:ed:0e:d2: a9:22:93:1b:b4:0c:98:c2:43:c5:5b:ac:71:8d:d1:88:62:e9: 36:3d:75:1f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBbwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTVDQjUxMTAvBgNVBAUTKDkxRjQ5MzlBQkFFRDQwRkEzNjZFQ0M3NjM1OURDQTJC Q0I2OENFNDcwHhcNMjUxMjIyMjIxNTQwWhcNMjUxMjI5MjIxNTQwWjAYMRYwFAYD VQQDDA02OTQ5YzMwZC0zNjYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsbh0z+FvCs60bVjrYwQak36//P9i5SMd/C57MO5NjtO75P9fbL8C4bPJi1+3 ACByOOBealyOk6eXI4zGESevD6p2FoE1LRrr3ubWviu/F9XIg04rU8syoOyYWixU uuKPKF19j+Gu8nrbP0+ellqYJuxEim6ehbpHsBKUQUOA4KVV0fBh1f/NgsnGDpu9 sC+D7SvWhyQuh5b1Y5svPePnYp6XPS1kpQeVB2AtBY6d5+sqo7lOEbeOJ6L7Zn2X WSYlboC8Sk/jGjvO5E7kF0AWI1i5CONVbnndaBYvvugraMhqv/RHjN/KLeylMTow Gf78II2UQd98LLSsNLB/OxeP4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKwgyWE8 E4g5aYZ6qcnvjkJaF1zkMB8GA1UdIwQYMBaAFJH0k5q67UD6Nm7MdjWdyivLaM5H MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNUNCNS9EOUZEMkRGRUYz N0YxMUVCQjI4M0U3NEFDNEY5QUUwMi9rZlNUbXJydFFQbzJic3gyTlozS0s4dG96 a2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tmU1RtcnJ0UVBvMmJzeDJOWjNLSzh0b3prYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NUNCNS9EOUZEMkRGRUYzN0YxMUVCQjI4M0U3NEFDNEY5QUUwMi9rZlNUbXJydFFQ bzJic3gyTlozS0s4dG96a2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsrVNoAhLwJbgojUb1+nn7uc++j0rSXM3FnWU9E/9qmDaH2cYSrfts rZutDNToPlUiMUd6P+sCMTDHnvlUyAxXD0TZNtUlFHv49eql4AATdfKjRDQOxw85 HwDes98medYwtpFo7NAPcuajNntfuuVzySdxBfWgiLxwMlapFxp/6k3FisdM7d2g 23oom09pKDwKxJEOUrYGwejaVGQcAujvi/rfvxXjubNH8wq5qg9JL9szwIMmI8V+ FimCezlLJ5+hxSMMT/9TyG0K20F31H11tI8JCu68FIqk+dWJwGAVa1hzSqheQQ7t DtKpIpMbtAyYwkPFW6xxjdGIYuk2PXUf -----END CERTIFICATE-----Generated at Wed Dec 24 15:43:03 2025 by rpki-client