This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.mft File: KtPYi16OCwUUGjvJL4XkJzoFYqE.mft (raw, json) Hash identifier: 3egiMgcqxzCgB9r57PAj1r/t2PWjmfz6C/NY2Y9MV3M= Subject key identifier: 9A:94:BF:D1:D9:4D:AF:BD:1F:61:CE:21:3F:CC:66:68:46:E4:15:18 Authority key identifier: 2A:D3:D8:8B:5E:8E:0B:05:14:1A:3B:C9:2F:85:E4:27:3A:05:62:A1 Certificate issuer: /CN=A9132F27/serialNumber=2AD3D88B5E8E0B05141A3BC92F85E4273A0562A1 Certificate serial: 015C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KtPYi16OCwUUGjvJL4XkJzoFYqE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.mft Manifest number: 015A Signing time: Wed 03 Dec 2025 02:35:56 +0000 Manifest this update: Wed 03 Dec 2025 02:35:55 +0000 Manifest next update: Wed 10 Dec 2025 02:35:55 +0000 Files and hashes: 1: KtPYi16OCwUUGjvJL4XkJzoFYqE.crl (hash: oH+2AgXyNI6Q7vg2IR/VAYpsuG5FWGakHbkv+O7hqT0=) 2: 1D74CCE2BB6D11EEB670B00CC4F9AE02.roa (hash: c7azquHGHrdqjZWXwOVhESd2h6ZSF7h+7L/HwU2cJDw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.crl rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KtPYi16OCwUUGjvJL4XkJzoFYqE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 02:35:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 348 (0x15c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132F27, serialNumber=2AD3D88B5E8E0B05141A3BC92F85E4273A0562A1 Validity Not Before: Dec 3 02:35:55 2025 GMT Not After : Dec 10 02:35:55 2025 GMT Subject: CN=692fa20c-c89a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:1c:cf:fd:5a:8f:03:21:e2:83:f9:c7:0f:8f: f4:9d:6f:5a:4f:ab:17:d0:21:fd:57:c2:ff:25:40: b1:04:09:15:fc:3b:6b:49:bf:d6:48:36:87:54:3c: bf:af:94:19:12:b8:35:07:c0:3d:49:13:7a:11:6f: 8c:43:5e:2d:f5:c2:54:fd:db:2c:d7:6c:6d:30:7c: 71:e9:95:a1:5a:9f:d5:7d:4b:71:af:99:c9:fd:9a: cb:4d:25:82:34:b6:8f:d7:d0:1e:0c:b6:0a:30:4b: 85:6a:b3:c1:6d:7a:87:7d:d3:c4:52:99:7b:a4:74: 12:69:f3:27:e3:2a:8c:b4:c3:f3:77:0e:6d:ae:5a: cc:65:6a:93:1e:25:4c:19:9a:7f:e8:07:ec:8b:79: 63:b8:a4:0b:3f:95:85:65:92:d6:49:9b:ea:32:fc: f5:84:54:01:b5:bd:6f:de:6d:57:4c:e6:a9:a5:0d: be:0b:4f:2a:f2:52:d9:b2:ab:0b:b3:6e:45:2d:7d: 46:9d:93:52:f1:24:15:22:b2:f6:f4:fc:46:be:2f: 7e:56:78:28:ef:e3:77:2d:76:6f:27:8b:92:2f:60: 6c:27:c1:fd:a0:5d:a2:7f:b0:c0:04:3f:76:63:6a: e5:8a:15:b9:b7:4c:b3:52:02:33:70:64:d1:31:31: 73:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:94:BF:D1:D9:4D:AF:BD:1F:61:CE:21:3F:CC:66:68:46:E4:15:18 X509v3 Authority Key Identifier: keyid:2A:D3:D8:8B:5E:8E:0B:05:14:1A:3B:C9:2F:85:E4:27:3A:05:62:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KtPYi16OCwUUGjvJL4XkJzoFYqE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:e4:b2:4b:6c:59:b8:ad:bb:f4:d7:81:1d:2f:10:25:1c:0f: b7:b6:a0:a5:1b:4c:70:7c:d5:3d:aa:11:b2:1b:69:e6:6d:7b: 00:0b:41:0e:33:dc:ca:73:ca:85:cc:09:c0:93:2f:dc:2d:0c: 26:4e:d8:e5:8c:ee:cc:13:c3:0e:64:d5:e5:f9:61:75:68:45: 2a:c9:d7:09:81:b1:2c:c5:1e:e3:a2:6a:f7:0e:95:4d:03:4e: 72:37:3f:65:d1:6c:af:8b:a9:b3:d7:20:d2:ec:d1:88:62:2e: 36:76:72:bf:00:b3:32:da:83:2c:95:b0:87:35:24:4c:51:14: 68:4e:d9:67:f8:cb:ee:03:36:d9:10:b3:62:3a:45:ca:70:8e: 8d:2f:5a:10:21:71:e3:c3:b2:b3:b8:35:60:9c:19:bb:54:ee: e8:9d:1d:da:0b:6c:06:93:5a:5a:07:52:ba:07:6a:2e:31:36: fe:29:7d:0a:5f:22:e1:e2:28:c7:eb:e8:dd:77:94:1f:d0:b8: e5:2f:ae:c5:d4:b5:45:9a:40:5d:83:d4:48:d8:57:df:de:42: ae:2f:3b:74:91:99:71:81:13:d4:e0:f7:2e:e2:09:26:1f:c9: bb:9a:f5:43:8e:3f:00:7e:f3:2e:a3:ed:d9:7f:b9:3c:b3:84: dd:40:3d:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJGMjcxMTAvBgNVBAUTKDJBRDNEODhCNUU4RTBCMDUxNDFBM0JDOTJGODVFNDI3 M0EwNTYyQTEwHhcNMjUxMjAzMDIzNTU1WhcNMjUxMjEwMDIzNTU1WjAYMRYwFAYD VQQDEw02OTJmYTIwYy1jODlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsRzP/VqPAyHig/nHD4/0nW9aT6sX0CH9V8L/JUCxBAkV/DtrSb/WSDaHVDy/ r5QZErg1B8A9SRN6EW+MQ14t9cJU/dss12xtMHxx6ZWhWp/VfUtxr5nJ/ZrLTSWC NLaP19AeDLYKMEuFarPBbXqHfdPEUpl7pHQSafMn4yqMtMPzdw5trlrMZWqTHiVM GZp/6Afsi3ljuKQLP5WFZZLWSZvqMvz1hFQBtb1v3m1XTOappQ2+C08q8lLZsqsL s25FLX1GnZNS8SQVIrL29PxGvi9+Vngo7+N3LXZvJ4uSL2BsJ8H9oF2if7DABD92 Y2rlihW5t0yzUgIzcGTRMTFzOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJqUv9HZ Ta+9H2HOIT/MZmhG5BUYMB8GA1UdIwQYMBaAFCrT2ItejgsFFBo7yS+F5Cc6BWKh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkYyNy83QUNERjlBQUJC NkMxMUVFQTY4MEFFNkRDNEY5QUUwMi9LdFBZaTE2T0N3VVVHanZKTDRYa0p6b0ZZ cUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0t0UFlpMTZPQ3dVVUdqdkpMNFhrSnpvRllxRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MkYyNy83QUNERjlBQUJCNkMxMUVFQTY4MEFFNkRDNEY5QUUwMi9LdFBZaTE2T0N3 VVVHanZKTDRYa0p6b0ZZcUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBh5LJLbFm4rbv014EdLxAlHA+3tqClG0xwfNU9qhGyG2nmbXsAC0EO M9zKc8qFzAnAky/cLQwmTtjljO7ME8MOZNXl+WF1aEUqydcJgbEsxR7jomr3DpVN A05yNz9l0Wyvi6mz1yDS7NGIYi42dnK/ALMy2oMslbCHNSRMURRoTtln+MvuAzbZ ELNiOkXKcI6NL1oQIXHjw7KzuDVgnBm7VO7onR3aC2wGk1paB1K6B2ouMTb+KX0K XyLh4ijH6+jdd5Qf0LjlL67F1LVFmkBdg9RI2Fff3kKuLzt0kZlxgRPU4Pcu4gkm H8m7mvVDjj8AfvMuo+3Zf7k8s4TdQD0Y -----END CERTIFICATE-----Generated at Wed Dec 3 15:50:56 2025 by rpki-client