This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.mft File: kB-Ykfv38n1Bah7gazGwFlquHcU.mft (raw, json) Hash identifier: 6HOXBC6TZUT9rSaiXigPodsDh92UIuKVYeCRYCIr4bA= Subject key identifier: D4:FA:CB:1A:10:5F:F8:DF:68:13:D8:B2:36:F6:AE:00:05:94:BD:42 Authority key identifier: 90:1F:98:91:FB:F7:F2:7D:41:6A:1E:E0:6B:31:B0:16:5A:AE:1D:C5 Certificate issuer: /CN=A9132D93/serialNumber=901F9891FBF7F27D416A1EE06B31B0165AAE1DC5 Certificate serial: 044D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kB-Ykfv38n1Bah7gazGwFlquHcU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.mft Manifest number: 0449 Signing time: Thu 18 Dec 2025 23:34:24 +0000 Manifest this update: Thu 18 Dec 2025 23:34:23 +0000 Manifest next update: Thu 25 Dec 2025 23:34:23 +0000 Files and hashes: 1: kB-Ykfv38n1Bah7gazGwFlquHcU.crl (hash: CzMZF7Nb22BXswM4PufpQZUYalwBlEPpHvFT6HzPYp8=) 2: 4E0503CA7F3F11ECBB0EA972C4F9AE02.roa (hash: zGO+SfCUiN93pLbUpzCLUs56wrah6tVni3k+tYi9qSM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.crl rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kB-Ykfv38n1Bah7gazGwFlquHcU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 23:34:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1101 (0x44d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132D93, serialNumber=901F9891FBF7F27D416A1EE06B31B0165AAE1DC5 Validity Not Before: Dec 18 23:34:23 2025 GMT Not After : Dec 25 23:34:23 2025 GMT Subject: CN=69448f80-9d9c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:8f:8f:c7:d5:4b:e3:33:a1:c3:66:f7:bb:ca: 89:21:c4:76:33:de:06:8b:8e:72:41:2c:ff:c9:13: 89:65:d0:d8:1f:59:24:b9:bb:91:96:e6:ab:85:23: 8d:60:c7:4c:e6:64:7d:5b:23:14:d2:5c:ac:23:33: 40:57:a5:60:4b:6b:48:d2:2a:9f:74:37:d1:4b:f1: ee:3c:9f:e7:e1:9f:d3:90:19:fa:aa:39:a0:12:3a: 1f:50:22:e8:02:bf:51:dd:1c:ca:e8:1b:1a:10:1e: 1f:1c:f8:29:82:00:46:d1:d8:0a:0e:dd:9b:fe:51: 2a:e6:7c:5f:68:21:39:49:01:f5:5e:3c:c0:b6:7a: fa:e7:77:02:f4:d0:39:b4:f3:af:42:66:50:4b:a5: 3f:83:34:45:05:8e:13:e3:f6:7c:6f:4f:ee:5c:7f: 04:ad:b2:38:ed:47:86:54:e1:20:a1:9c:f6:6a:3f: 3c:99:df:34:1a:95:ca:dd:b8:fb:46:c7:81:16:24: be:fd:5c:85:45:a9:39:49:72:d6:11:9b:47:41:07: ec:d0:24:ba:90:59:d2:10:0b:27:b6:d7:eb:b1:0b: bf:a3:39:84:41:46:96:1b:5e:62:b2:23:8d:32:b0: b9:76:d8:76:1f:20:31:f1:31:85:9f:b2:a4:3e:03: a1:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:FA:CB:1A:10:5F:F8:DF:68:13:D8:B2:36:F6:AE:00:05:94:BD:42 X509v3 Authority Key Identifier: keyid:90:1F:98:91:FB:F7:F2:7D:41:6A:1E:E0:6B:31:B0:16:5A:AE:1D:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kB-Ykfv38n1Bah7gazGwFlquHcU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:12:8f:42:f6:e3:86:a7:1f:c6:d4:92:5c:52:3c:3a:bd:c5: 78:65:87:aa:8b:80:85:d7:ed:40:8c:4a:1e:be:3a:e1:75:91: 43:23:50:0d:72:9f:63:44:73:ec:f0:3e:05:cb:d0:69:ec:af: f6:97:3e:5a:91:21:79:05:5b:95:cf:a8:4b:c8:6c:65:b4:bf: fb:17:87:cc:83:16:d2:57:42:36:34:24:22:ea:32:cc:e8:ce: 3e:bf:8e:b1:8b:e3:2b:1e:bf:6a:45:1f:df:87:d4:47:f3:83: f2:0a:ad:18:78:dd:7c:90:6d:15:72:f1:73:dc:9f:0a:24:07: 29:84:68:3f:87:bf:6d:6e:41:f9:81:8f:e7:d6:bd:46:96:bc: d8:d4:a9:67:3b:89:c3:76:d2:20:2c:42:b2:98:d9:db:28:94: 30:22:36:b9:17:77:3e:99:b3:7c:dc:2f:5e:58:b2:82:d5:cf: 58:57:f4:5a:9b:26:59:52:3c:5c:e5:79:50:9b:cc:70:9c:1c: 79:03:41:03:06:50:0c:ce:06:91:f5:ca:61:31:fa:b0:0c:0b: 97:14:30:84:0a:1e:34:c4:40:86:24:ac:5d:8f:50:92:d0:c0: 83:ee:4e:44:26:ed:d3:b6:c2:8c:87:43:07:3f:8a:94:a3:a2: c2:6a:49:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBE0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJEOTMxMTAvBgNVBAUTKDkwMUY5ODkxRkJGN0YyN0Q0MTZBMUVFMDZCMzFCMDE2 NUFBRTFEQzUwHhcNMjUxMjE4MjMzNDIzWhcNMjUxMjI1MjMzNDIzWjAYMRYwFAYD VQQDDA02OTQ0OGY4MC05ZDljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4Y+Px9VL4zOhw2b3u8qJIcR2M94Gi45yQSz/yROJZdDYH1kkubuRluarhSON YMdM5mR9WyMU0lysIzNAV6VgS2tI0iqfdDfRS/HuPJ/n4Z/TkBn6qjmgEjofUCLo Ar9R3RzK6BsaEB4fHPgpggBG0dgKDt2b/lEq5nxfaCE5SQH1XjzAtnr653cC9NA5 tPOvQmZQS6U/gzRFBY4T4/Z8b0/uXH8ErbI47UeGVOEgoZz2aj88md80GpXK3bj7 RseBFiS+/VyFRak5SXLWEZtHQQfs0CS6kFnSEAsnttfrsQu/ozmEQUaWG15isiON MrC5dth2HyAx8TGFn7KkPgOhkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNT6yxoQ X/jfaBPYsjb2rgAFlL1CMB8GA1UdIwQYMBaAFJAfmJH79/J9QWoe4GsxsBZarh3F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkQ5My8wRjg3NEE3NDdG M0QxMUVDOEExRENDNzFDNEY5QUUwMi9rQi1Za2Z2MzhuMUJhaDdnYXpHd0ZscXVI Y1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tCLVlrZnYzOG4xQmFoN2dhekd3RmxxdUhjVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MkQ5My8wRjg3NEE3NDdGM0QxMUVDOEExRENDNzFDNEY5QUUwMi9rQi1Za2Z2Mzhu MUJhaDdnYXpHd0ZscXVIY1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYEo9C9uOGpx/G1JJcUjw6vcV4ZYeqi4CF1+1AjEoevjrhdZFDI1AN cp9jRHPs8D4Fy9Bp7K/2lz5akSF5BVuVz6hLyGxltL/7F4fMgxbSV0I2NCQi6jLM 6M4+v46xi+MrHr9qRR/fh9RH84PyCq0YeN18kG0VcvFz3J8KJAcphGg/h79tbkH5 gY/n1r1GlrzY1KlnO4nDdtIgLEKymNnbKJQwIja5F3c+mbN83C9eWLKC1c9YV/Ra myZZUjxc5XlQm8xwnBx5A0EDBlAMzgaR9cphMfqwDAuXFDCECh40xECGJKxdj1CS 0MCD7k5EJu3TtsKMh0MHP4qUo6LCakmh -----END CERTIFICATE-----Generated at Fri Dec 19 12:40:18 2025 by rpki-client