This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.mft File: KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.mft (raw, json) Hash identifier: uA5nvRqpk1YopkLtOZWBSpNJWjcm+2B45tGBbUWAYxc= Subject key identifier: 12:AE:04:BA:55:AE:1B:2F:BC:CC:3B:8E:D3:A6:81:82:57:FF:79:40 Authority key identifier: 2B:13:1A:A1:0D:7E:6B:FE:A3:67:E8:1B:73:D7:FD:B0:AC:01:D6:78 Certificate issuer: /CN=A912F3B6/serialNumber=2B131AA10D7E6BFEA367E81B73D7FDB0AC01D678 Certificate serial: 0111 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.mft Manifest number: 0109 Signing time: Tue 09 Dec 2025 03:07:23 +0000 Manifest this update: Tue 09 Dec 2025 03:07:23 +0000 Manifest next update: Tue 16 Dec 2025 03:07:23 +0000 Files and hashes: 1: KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.crl (hash: sDjq/CLp7WqyIo2Dg7QO8GfKw3VhzSTXNVgJZFPh9Us=) 2: D91E3ADC498E11EF908FD222C4F9AE02.roa (hash: ZZDdEUCyxIX0Eybvqkeb03mNWg+YxSkSpegb3mdW8RE=) 3: D9C5B55A498E11EF908FD222C4F9AE02.roa (hash: CGn0Q55/AX22nfT4AGCKBK/ILhvxf+/fmsvng3DA1pY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.crl rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Dec 2025 03:07:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 273 (0x111) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912F3B6, serialNumber=2B131AA10D7E6BFEA367E81B73D7FDB0AC01D678 Validity Not Before: Dec 9 03:07:23 2025 GMT Not After : Dec 16 03:07:23 2025 GMT Subject: CN=6937926b-3bec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:5a:7f:1d:9d:ff:8f:c9:28:34:4f:bc:bc:e5: 50:d1:7e:01:24:a8:a7:81:6c:ee:b3:3d:18:2d:33: 4e:c7:d2:08:bc:c9:b3:66:78:5f:c7:99:77:b5:5f: fc:61:c5:a3:51:1a:ae:3a:15:b6:9c:09:51:d8:62: c5:34:a4:8a:28:6b:b9:a8:2a:90:99:ff:0b:d1:b1: 0a:3a:d0:31:c2:e8:d7:c1:2c:0b:6a:9b:a6:79:98: f0:90:58:5a:66:19:62:b7:b9:cb:49:a5:28:b7:1c: 10:27:a0:e7:d4:1e:f1:98:44:a9:db:20:12:c7:b6: 60:cf:fb:0f:63:51:4c:5f:c2:2b:e9:b5:34:68:7d: 3c:88:d4:32:47:04:be:13:ae:d0:81:78:42:88:c0: 03:6f:ac:8a:fb:ea:2f:bb:20:3d:9e:e9:41:8d:17: ef:15:17:71:dc:4b:e9:f4:80:46:59:62:f3:80:64: 8e:f3:c0:09:b9:13:1c:df:b9:7a:95:9f:0b:73:36: 42:24:e6:92:e1:8d:b3:50:99:9d:e8:99:02:ff:06: 8c:65:06:4e:71:57:ee:64:89:42:e8:5c:7d:c9:27: 1e:5f:28:f1:b2:6c:d6:89:30:11:14:40:69:af:4f: 09:49:f5:e1:67:ea:1b:57:fe:78:8e:4d:f0:88:b7: ff:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:AE:04:BA:55:AE:1B:2F:BC:CC:3B:8E:D3:A6:81:82:57:FF:79:40 X509v3 Authority Key Identifier: keyid:2B:13:1A:A1:0D:7E:6B:FE:A3:67:E8:1B:73:D7:FD:B0:AC:01:D6:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:03:55:93:16:1f:59:d7:11:9b:7e:ee:ad:e0:ed:22:00:39: f9:a6:93:31:f0:22:67:70:42:ce:44:d1:60:e1:42:bf:f5:a6: 08:3c:60:e0:47:54:af:36:0d:73:b2:f6:2e:d0:ce:54:18:86: a1:6a:02:0d:43:64:ee:9c:4f:c1:ee:4d:4a:5e:b9:5a:84:f0: 7a:d4:c9:28:c0:39:a4:7b:9a:ca:d5:b0:90:ce:7e:cc:49:c3: 1a:64:8d:2f:a2:c6:db:fe:cf:58:b5:e8:c2:b4:1c:a9:b6:1f: b3:1a:bb:e8:77:24:d7:c2:28:3c:ba:21:5b:f8:93:6c:6a:6c: 4f:70:54:32:98:73:b9:77:36:dd:df:4c:57:20:6b:0c:ae:a2: fe:b2:35:24:f8:e5:19:b5:c1:c7:b5:c4:61:fa:1a:c8:57:bb: a4:02:2f:f7:c5:c7:54:81:fd:51:92:cb:f8:3f:d4:9f:12:33: 24:cd:da:59:11:8f:8d:e4:ed:be:e1:6d:12:66:09:c1:18:2f: c8:10:a8:5c:9f:76:9c:35:68:1e:32:be:5a:ac:81:8e:03:1e: af:9c:88:e0:de:ea:b0:53:1f:6d:05:a5:dc:55:d1:f7:f2:e9: 72:67:50:ff:dd:f1:cb:47:78:66:f7:bc:68:b3:a6:57:a9:f8: 7d:2c:c1:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAREwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkYzQjYxMTAvBgNVBAUTKDJCMTMxQUExMEQ3RTZCRkVBMzY3RTgxQjczRDdGREIw QUMwMUQ2NzgwHhcNMjUxMjA5MDMwNzIzWhcNMjUxMjE2MDMwNzIzWjAYMRYwFAYD VQQDEw02OTM3OTI2Yi0zYmVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAylp/HZ3/j8koNE+8vOVQ0X4BJKingWzusz0YLTNOx9IIvMmzZnhfx5l3tV/8 YcWjURquOhW2nAlR2GLFNKSKKGu5qCqQmf8L0bEKOtAxwujXwSwLapumeZjwkFha Zhlit7nLSaUotxwQJ6Dn1B7xmESp2yASx7Zgz/sPY1FMX8Ir6bU0aH08iNQyRwS+ E67QgXhCiMADb6yK++ovuyA9nulBjRfvFRdx3Evp9IBGWWLzgGSO88AJuRMc37l6 lZ8LczZCJOaS4Y2zUJmd6JkC/waMZQZOcVfuZIlC6Fx9ySceXyjxsmzWiTARFEBp r08JSfXhZ+obV/54jk3wiLf/WQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBKuBLpV rhsvvMw7jtOmgYJX/3lAMB8GA1UdIwQYMBaAFCsTGqENfmv+o2foG3PX/bCsAdZ4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRjNCNi81MEYwMTFDODQ4 QkExMUVGQkQ0NTE2M0RDNEY5QUUwMi9LeE1hb1ExLWFfNmpaLWdiYzlmOXNLd0Ix bmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0t4TWFvUTEtYV82alotZ2JjOWY5c0t3QjFuZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RjNCNi81MEYwMTFDODQ4QkExMUVGQkQ0NTE2M0RDNEY5QUUwMi9LeE1hb1ExLWFf NmpaLWdiYzlmOXNLd0IxbmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWA1WTFh9Z1xGbfu6t4O0iADn5ppMx8CJncELORNFg4UK/9aYIPGDg R1SvNg1zsvYu0M5UGIahagINQ2TunE/B7k1KXrlahPB61MkowDmke5rK1bCQzn7M ScMaZI0vosbb/s9YtejCtBypth+zGrvodyTXwig8uiFb+JNsamxPcFQymHO5dzbd 30xXIGsMrqL+sjUk+OUZtcHHtcRh+hrIV7ukAi/3xcdUgf1Rksv4P9SfEjMkzdpZ EY+N5O2+4W0SZgnBGC/IEKhcn3acNWgeMr5arIGOAx6vnIjg3uqwUx9tBaXcVdH3 8ulyZ1D/3fHLR3hm97xos6ZXqfh9LMHm -----END CERTIFICATE-----Generated at Thu Dec 11 19:03:43 2025 by rpki-client