This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911972D/99EE950CA68211ECB4E3EC3AC4F9AE02/KiZlwxQeS_P9LwBKrimlmHETod8.mft File: KiZlwxQeS_P9LwBKrimlmHETod8.mft (raw, json) Hash identifier: WSTlmdEjK5BQ1pqpLTIl+AtfrPoeCDg4m0gnixb+gmw= Subject key identifier: 05:FF:75:78:B5:C8:E6:86:B0:84:8E:08:69:CB:35:FE:D1:4F:DB:76 Authority key identifier: 2A:26:65:C3:14:1E:4B:F3:FD:2F:00:4A:AE:29:A5:98:71:13:A1:DF Certificate issuer: /CN=A911972D/serialNumber=2A2665C3141E4BF3FD2F004AAE29A5987113A1DF Certificate serial: 03F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KiZlwxQeS_P9LwBKrimlmHETod8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911972D/99EE950CA68211ECB4E3EC3AC4F9AE02/KiZlwxQeS_P9LwBKrimlmHETod8.mft Manifest number: 03EA Signing time: Mon 22 Dec 2025 23:35:58 +0000 Manifest this update: Mon 22 Dec 2025 23:35:57 +0000 Manifest next update: Mon 29 Dec 2025 23:35:57 +0000 Files and hashes: 1: KiZlwxQeS_P9LwBKrimlmHETod8.crl (hash: F2s09dA1oo1lc6aOD7u9cOTkRKgpf3VO7hXKvjSlK28=) 2: B067CCDCA8C511EC8F560C42C4F9AE02.roa (hash: 3k13Zb4rUCPiQVhmHXmV79sBuRx9W6om0fkw2CRWuLk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911972D/99EE950CA68211ECB4E3EC3AC4F9AE02/KiZlwxQeS_P9LwBKrimlmHETod8.crl rsync://rpki.apnic.net/member_repository/A911972D/99EE950CA68211ECB4E3EC3AC4F9AE02/KiZlwxQeS_P9LwBKrimlmHETod8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KiZlwxQeS_P9LwBKrimlmHETod8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 23:35:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1008 (0x3f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911972D, serialNumber=2A2665C3141E4BF3FD2F004AAE29A5987113A1DF Validity Not Before: Dec 22 23:35:57 2025 GMT Not After : Dec 29 23:35:57 2025 GMT Subject: CN=6949d5de-a2b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:ff:64:17:86:a1:55:6f:94:17:8f:69:20:0a: 02:64:15:f1:9b:03:81:1d:9c:de:10:d1:c6:4a:c6: 5e:d8:4f:ab:9d:52:53:6d:19:30:57:25:ea:70:d6: 71:c2:fe:f7:56:bf:54:bb:3f:b4:d3:8a:1e:a5:37: 2a:53:10:7b:46:78:73:f4:7d:59:66:a7:4f:b7:02: ce:72:7e:8c:bb:bb:23:84:94:e9:19:9f:42:d1:c9: cd:d6:c0:cd:88:45:dc:c4:35:38:d0:95:09:61:7c: 5b:f2:cf:da:b1:67:5b:dd:e8:b6:04:a6:34:ec:b6: 1d:b5:84:28:0c:5c:ed:ff:a8:22:8c:a4:91:af:dc: fb:91:6b:ac:05:b9:81:8e:0e:9b:38:3f:d6:1b:a7: 92:e4:78:e3:52:71:71:0a:7e:81:c5:e5:c0:02:e0: b3:27:ff:1d:c7:b8:7e:28:c5:75:fd:6a:3b:80:52: a4:b4:c3:2f:d3:f6:79:1a:74:e1:ae:a4:47:96:bb: a6:fb:1e:2d:a3:db:6e:33:ba:fa:dd:e5:03:ab:3e: 62:00:70:dc:db:34:63:18:0a:63:ca:8a:1b:26:25: 5d:5b:55:0a:20:34:3d:b2:22:9a:36:51:ad:79:89: c2:8a:40:29:c1:ee:33:a4:1e:f4:7b:13:ed:be:c2: 85:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:FF:75:78:B5:C8:E6:86:B0:84:8E:08:69:CB:35:FE:D1:4F:DB:76 X509v3 Authority Key Identifier: keyid:2A:26:65:C3:14:1E:4B:F3:FD:2F:00:4A:AE:29:A5:98:71:13:A1:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911972D/99EE950CA68211ECB4E3EC3AC4F9AE02/KiZlwxQeS_P9LwBKrimlmHETod8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KiZlwxQeS_P9LwBKrimlmHETod8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911972D/99EE950CA68211ECB4E3EC3AC4F9AE02/KiZlwxQeS_P9LwBKrimlmHETod8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:d2:d3:e2:5f:dc:6d:3f:99:16:1f:12:a9:5a:0b:1b:53:78: 09:a7:35:8f:50:94:22:8c:97:04:03:76:11:aa:2d:98:35:a9: f8:8a:d1:1a:c1:53:a3:65:ff:e4:9f:11:9a:15:47:bc:1c:3b: 1f:b8:20:92:2a:68:52:15:15:61:fb:d8:03:ef:93:88:64:f7: ba:92:73:28:cf:8e:6e:9c:71:dd:0c:63:8d:4a:54:0d:b6:61: 5a:13:7e:fe:db:78:cf:dd:82:81:8e:7b:e4:22:36:4b:10:f2: f9:1d:b7:4d:f0:d3:2a:cc:ba:91:ce:f0:ee:df:00:01:35:86: 3d:0e:f0:01:86:b9:54:42:26:7e:b8:e4:93:b1:a2:14:ef:ff: 6b:3d:ac:f4:7d:ec:5b:01:1b:61:7d:e4:d6:f6:dd:4b:e0:da: 14:d5:e8:9b:70:77:70:ed:b1:3c:25:91:9b:45:4d:7a:33:e0: 83:d0:f9:c3:a6:ea:36:e8:a3:5e:39:91:2d:b0:28:a6:bf:37: 93:53:af:ea:b2:6d:91:e7:c6:2f:86:0e:a7:ac:f9:6d:58:a1: 42:a6:67:01:a5:aa:77:91:4d:16:74:0f:48:69:c6:96:9e:6e: 67:64:15:d2:96:a7:10:b6:ca:24:3e:77:7e:1b:10:02:55:cf: 03:5a:62:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA/AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTk3MkQxMTAvBgNVBAUTKDJBMjY2NUMzMTQxRTRCRjNGRDJGMDA0QUFFMjlBNTk4 NzExM0ExREYwHhcNMjUxMjIyMjMzNTU3WhcNMjUxMjI5MjMzNTU3WjAYMRYwFAYD VQQDDA02OTQ5ZDVkZS1hMmI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn/9kF4ahVW+UF49pIAoCZBXxmwOBHZzeENHGSsZe2E+rnVJTbRkwVyXqcNZx wv73Vr9Uuz+004oepTcqUxB7Rnhz9H1ZZqdPtwLOcn6Mu7sjhJTpGZ9C0cnN1sDN iEXcxDU40JUJYXxb8s/asWdb3ei2BKY07LYdtYQoDFzt/6gijKSRr9z7kWusBbmB jg6bOD/WG6eS5HjjUnFxCn6BxeXAAuCzJ/8dx7h+KMV1/Wo7gFKktMMv0/Z5GnTh rqRHlrum+x4to9tuM7r63eUDqz5iAHDc2zRjGApjyoobJiVdW1UKIDQ9siKaNlGt eYnCikApwe4zpB70exPtvsKF+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAX/dXi1 yOaGsISOCGnLNf7RT9t2MB8GA1UdIwQYMBaAFComZcMUHkvz/S8ASq4ppZhxE6Hf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTcyRC85OUVFOTUwQ0E2 ODIxMUVDQjRFM0VDM0FDNEY5QUUwMi9LaVpsd3hRZVNfUDlMd0JLcmltbG1IRVRv ZDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tpWmx3eFFlU19QOUx3QktyaW1sbUhFVG9kOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTcyRC85OUVFOTUwQ0E2ODIxMUVDQjRFM0VDM0FDNEY5QUUwMi9LaVpsd3hRZVNf UDlMd0JLcmltbG1IRVRvZDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAc0tPiX9xtP5kWHxKpWgsbU3gJpzWPUJQijJcEA3YRqi2YNan4itEa wVOjZf/knxGaFUe8HDsfuCCSKmhSFRVh+9gD75OIZPe6knMoz45unHHdDGONSlQN tmFaE37+23jP3YKBjnvkIjZLEPL5HbdN8NMqzLqRzvDu3wABNYY9DvABhrlUQiZ+ uOSTsaIU7/9rPaz0fexbARthfeTW9t1L4NoU1eibcHdw7bE8JZGbRU16M+CD0PnD puo26KNeOZEtsCimvzeTU6/qsm2R58Yvhg6nrPltWKFCpmcBpap3kU0WdA9IacaW nm5nZBXSlqcQtsokPnd+GxACVc8DWmJu -----END CERTIFICATE-----Generated at Wed Dec 24 09:22:05 2025 by rpki-client