This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912F6E3/F2FB8250B5DD11EF97D9FA34C4F9AE02/K_CuZ5DS8B3R22c4MTLcQDtnRSI.mft File: K_CuZ5DS8B3R22c4MTLcQDtnRSI.mft (raw, json) Hash identifier: qrJKrzG16fwvq3h2qRwbD0GksYbp99OpL3VkT4+Au8M= Subject key identifier: 02:D1:39:C9:A2:69:53:3E:7C:55:3B:CE:46:B9:BD:77:1F:3A:02:15 Authority key identifier: 2B:F0:AE:67:90:D2:F0:1D:D1:DB:67:38:31:32:DC:40:3B:67:45:22 Certificate issuer: /CN=A912F6E3/serialNumber=2BF0AE6790D2F01DD1DB67383132DC403B674522 Certificate serial: C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K_CuZ5DS8B3R22c4MTLcQDtnRSI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912F6E3/F2FB8250B5DD11EF97D9FA34C4F9AE02/K_CuZ5DS8B3R22c4MTLcQDtnRSI.mft Manifest number: C4 Signing time: Tue 23 Dec 2025 05:03:21 +0000 Manifest this update: Tue 23 Dec 2025 05:03:20 +0000 Manifest next update: Tue 30 Dec 2025 05:03:20 +0000 Files and hashes: 1: K_CuZ5DS8B3R22c4MTLcQDtnRSI.crl (hash: cDVYpFm9tgDrSDZkbMaadbkHv55eikwc+xV+pCckbP8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912F6E3/F2FB8250B5DD11EF97D9FA34C4F9AE02/K_CuZ5DS8B3R22c4MTLcQDtnRSI.crl rsync://rpki.apnic.net/member_repository/A912F6E3/F2FB8250B5DD11EF97D9FA34C4F9AE02/K_CuZ5DS8B3R22c4MTLcQDtnRSI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K_CuZ5DS8B3R22c4MTLcQDtnRSI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 05:03:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 196 (0xc4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912F6E3, serialNumber=2BF0AE6790D2F01DD1DB67383132DC403B674522 Validity Not Before: Dec 23 05:03:20 2025 GMT Not After : Dec 30 05:03:20 2025 GMT Subject: CN=694a2299-9f33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:73:0a:bd:8d:96:47:8a:d2:81:85:a2:5c:f8: fb:59:a0:0c:9c:b4:7e:f3:72:c4:47:d4:1b:91:ba: 48:b2:67:18:54:10:ba:d8:6c:1e:72:d7:36:71:91: 85:6d:14:9a:c6:24:e5:4c:b9:08:48:81:1f:7c:a1: 36:da:9c:d0:77:4b:e8:bc:8e:51:f8:a6:a6:90:f3: 7e:a1:66:59:f7:78:56:51:34:0f:c5:20:46:53:6c: c9:1c:86:1c:d8:ae:a8:fe:f8:8e:39:ad:16:cd:fc: 80:ac:5b:b2:93:7a:72:d9:5a:21:28:14:d7:82:a4: b6:ba:a2:61:4c:0b:27:92:ed:17:ce:df:17:92:9a: f4:99:b2:55:cf:c9:4c:75:09:cc:d5:ad:82:09:72: 35:5a:01:ad:a1:25:e9:a5:54:29:4d:c9:67:d0:78: 78:df:f5:d9:c1:b7:46:ff:94:d3:87:42:ac:74:b4: 68:f1:f7:7b:4c:12:a0:f2:98:00:54:be:bf:c1:84: 30:6a:30:a2:24:39:8c:2d:2f:a7:79:98:b8:c8:e0: 60:c9:22:1e:62:04:b7:9d:6f:f1:ae:b1:d3:85:d2: 37:69:4d:ff:a9:e0:99:e3:77:b2:a4:13:d2:0e:0f: e4:a6:86:53:56:da:0a:11:78:dc:f8:6c:79:70:51: df:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:D1:39:C9:A2:69:53:3E:7C:55:3B:CE:46:B9:BD:77:1F:3A:02:15 X509v3 Authority Key Identifier: keyid:2B:F0:AE:67:90:D2:F0:1D:D1:DB:67:38:31:32:DC:40:3B:67:45:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912F6E3/F2FB8250B5DD11EF97D9FA34C4F9AE02/K_CuZ5DS8B3R22c4MTLcQDtnRSI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K_CuZ5DS8B3R22c4MTLcQDtnRSI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912F6E3/F2FB8250B5DD11EF97D9FA34C4F9AE02/K_CuZ5DS8B3R22c4MTLcQDtnRSI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:db:5b:a1:f6:20:4d:14:c8:14:7d:7b:37:e7:9f:f0:6e:8f: 5a:f1:bd:89:cf:2e:1a:d0:ad:21:25:8e:2f:11:86:cd:12:94: 85:1a:77:5e:e5:b4:58:34:7f:2f:e9:7f:79:eb:4c:58:fa:a5: 2d:e9:2f:aa:40:8b:82:f8:f0:ff:3c:a1:47:54:9e:72:91:74: 14:7e:d6:15:cb:18:ab:b6:50:03:12:8c:00:85:a8:e5:72:77: a4:5e:1c:c2:ac:75:44:e0:ee:01:cf:27:2c:93:e7:0e:84:a4: 84:7a:66:6e:6b:5e:e1:b9:85:7c:db:8c:86:e4:38:a0:b8:90: 33:0b:bf:20:87:70:38:eb:8b:37:a1:3a:bf:bc:f5:79:21:f5: 8e:99:06:77:aa:ad:e7:02:fb:98:f2:e4:60:18:3d:9b:5b:03: cf:1c:aa:1f:ad:f6:e0:1b:26:30:06:1a:22:02:ba:97:b3:dd: b8:f9:92:63:4a:cd:64:8f:a0:04:e5:ed:41:c3:6c:d3:de:79: e1:c5:67:c5:32:a0:82:82:2b:05:34:22:1d:5e:30:b1:f9:46: 09:e1:36:ea:32:18:f2:8c:0a:a4:b2:3a:6a:be:24:b4:fd:db: a6:32:44:14:38:af:cb:43:a9:5c:f1:a0:26:d3:a0:51:bc:6f: 1f:55:29:47 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkY2RTMxMTAvBgNVBAUTKDJCRjBBRTY3OTBEMkYwMUREMURCNjczODMxMzJEQzQw M0I2NzQ1MjIwHhcNMjUxMjIzMDUwMzIwWhcNMjUxMjMwMDUwMzIwWjAYMRYwFAYD VQQDDA02OTRhMjI5OS05ZjMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4nMKvY2WR4rSgYWiXPj7WaAMnLR+83LER9QbkbpIsmcYVBC62Gwectc2cZGF bRSaxiTlTLkISIEffKE22pzQd0vovI5R+KamkPN+oWZZ93hWUTQPxSBGU2zJHIYc 2K6o/viOOa0WzfyArFuyk3py2VohKBTXgqS2uqJhTAsnku0Xzt8Xkpr0mbJVz8lM dQnM1a2CCXI1WgGtoSXppVQpTcln0Hh43/XZwbdG/5TTh0KsdLRo8fd7TBKg8pgA VL6/wYQwajCiJDmMLS+neZi4yOBgySIeYgS3nW/xrrHThdI3aU3/qeCZ43eypBPS Dg/kpoZTVtoKEXjc+Gx5cFHfBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFALROcmi aVM+fFU7zka5vXcfOgIVMB8GA1UdIwQYMBaAFCvwrmeQ0vAd0dtnODEy3EA7Z0Ui MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRjZFMy9GMkZCODI1MEI1 REQxMUVGOTdEOUZBMzRDNEY5QUUwMi9LX0N1WjVEUzhCM1IyMmM0TVRMY1FEdG5S U0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tfQ3VaNURTOEIzUjIyYzRNVExjUUR0blJTSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RjZFMy9GMkZCODI1MEI1REQxMUVGOTdEOUZBMzRDNEY5QUUwMi9LX0N1WjVEUzhC M1IyMmM0TVRMY1FEdG5SU0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBG21uh9iBNFMgUfXs355/wbo9a8b2Jzy4a0K0hJY4vEYbNEpSFGnde 5bRYNH8v6X9560xY+qUt6S+qQIuC+PD/PKFHVJ5ykXQUftYVyxirtlADEowAhajl cnekXhzCrHVE4O4Bzycsk+cOhKSEemZua17huYV824yG5DiguJAzC78gh3A464s3 oTq/vPV5IfWOmQZ3qq3nAvuY8uRgGD2bWwPPHKofrfbgGyYwBhoiArqXs924+ZJj Ss1kj6AE5e1Bw2zT3nnhxWfFMqCCgisFNCIdXjCx+UYJ4TbqMhjyjAqksjpqviS0 /dumMkQUOK/LQ6lc8aAm06BRvG8fVSlH -----END CERTIFICATE-----Generated at Wed Dec 24 14:11:57 2025 by rpki-client