This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9138679/CB2CB3CEEA7711EFA5635680C4F9AE02/koDwcHR3Uzh7a6ZXMtbdeZKzUME.mft File: koDwcHR3Uzh7a6ZXMtbdeZKzUME.mft (raw, json) Hash identifier: lwi3OL4MZpmfKFy2j+eWSeOgpcyYl5GkaDEjxYg289w= Subject key identifier: 13:E0:27:50:00:CA:5C:CD:F7:BA:00:D9:F5:96:69:AA:49:D8:A9:02 Authority key identifier: 92:80:F0:70:74:77:53:38:7B:6B:A6:57:32:D6:DD:79:92:B3:50:C1 Certificate issuer: /CN=A9138679/serialNumber=9280F070747753387B6BA65732D6DD7992B350C1 Certificate serial: A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/koDwcHR3Uzh7a6ZXMtbdeZKzUME.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9138679/CB2CB3CEEA7711EFA5635680C4F9AE02/koDwcHR3Uzh7a6ZXMtbdeZKzUME.mft Manifest number: A1 Signing time: Tue 23 Dec 2025 05:15:46 +0000 Manifest this update: Tue 23 Dec 2025 05:15:46 +0000 Manifest next update: Tue 30 Dec 2025 05:15:46 +0000 Files and hashes: 1: koDwcHR3Uzh7a6ZXMtbdeZKzUME.crl (hash: YAIYAe0niSRd9lz02CUzJ4GSY3/KNPiWfBwo351kk+0=) 2: 2CD223FCEA7811EF92D8DC39C4F9AE02.roa (hash: guOkrCtWFoq8Lg0AXDAskb6dB7b68BfvYrXJ0gD0vek=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9138679/CB2CB3CEEA7711EFA5635680C4F9AE02/koDwcHR3Uzh7a6ZXMtbdeZKzUME.crl rsync://rpki.apnic.net/member_repository/A9138679/CB2CB3CEEA7711EFA5635680C4F9AE02/koDwcHR3Uzh7a6ZXMtbdeZKzUME.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/koDwcHR3Uzh7a6ZXMtbdeZKzUME.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 05:15:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 163 (0xa3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9138679, serialNumber=9280F070747753387B6BA65732D6DD7992B350C1 Validity Not Before: Dec 23 05:15:46 2025 GMT Not After : Dec 30 05:15:46 2025 GMT Subject: CN=694a2582-97f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:55:b7:07:58:8f:6b:42:17:e4:54:d6:ce:58: 37:e2:ea:b3:a8:8f:ba:1e:ff:07:fb:71:6d:0c:fd: fc:93:28:df:82:68:62:17:cc:1a:71:18:d2:20:6b: 72:7d:1b:7d:dd:12:16:98:b3:52:ed:65:92:0f:4b: e2:95:4e:c9:7f:44:e6:cb:66:04:48:c5:d3:03:ea: 11:93:9a:ac:b6:4a:61:44:12:35:9d:84:dd:9e:92: e5:bc:f0:4d:4e:51:83:a4:10:9f:df:48:b0:2e:a8: 54:c6:56:e3:0f:f8:6c:6c:90:37:0e:bd:d8:64:8b: 9d:70:12:c7:2c:5f:6f:0c:41:2e:a1:5b:81:f2:b9: 1a:ad:2e:14:76:bf:b9:a5:02:9e:41:fe:28:6f:b5: be:11:a0:5c:3e:13:43:ff:fc:df:b2:2f:ab:bf:29: 76:2b:00:56:88:7c:bf:76:7c:00:d5:d2:0f:89:16: 7c:4a:22:86:ee:a2:20:5a:8e:4e:5b:4d:6b:aa:f5: 19:08:74:fb:91:bf:0b:41:72:77:58:0e:92:cd:a9: c0:b6:be:54:17:ad:81:30:8d:cd:f1:05:3c:bf:f8: 28:65:4b:87:4a:3c:cf:ad:9e:2d:68:4a:77:ef:1c: 28:33:9c:d0:7e:80:5f:4e:13:4b:10:87:e8:13:9b: 57:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:E0:27:50:00:CA:5C:CD:F7:BA:00:D9:F5:96:69:AA:49:D8:A9:02 X509v3 Authority Key Identifier: keyid:92:80:F0:70:74:77:53:38:7B:6B:A6:57:32:D6:DD:79:92:B3:50:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9138679/CB2CB3CEEA7711EFA5635680C4F9AE02/koDwcHR3Uzh7a6ZXMtbdeZKzUME.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/koDwcHR3Uzh7a6ZXMtbdeZKzUME.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9138679/CB2CB3CEEA7711EFA5635680C4F9AE02/koDwcHR3Uzh7a6ZXMtbdeZKzUME.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:1d:29:95:18:00:e9:a0:d2:8c:bd:4f:c9:b2:ab:c9:f4:be: 95:28:c7:c9:99:f1:30:1e:2c:a6:61:85:0c:ef:cf:23:82:5d: 8b:79:36:cb:b2:76:7b:7c:26:93:0f:9f:f3:35:c9:96:08:ca: e0:56:57:6c:60:33:a3:22:92:be:dc:80:e3:ff:1c:4c:53:c9: cf:18:39:6c:f2:4c:a2:7d:be:fa:17:f0:3b:9b:d1:e0:80:37: 9c:0b:cd:0b:7c:6e:36:a0:3d:41:97:89:29:25:80:b6:77:6f: 4e:0a:92:51:4c:8b:19:3d:11:35:b3:90:f4:84:fe:58:88:ec: 7a:77:d8:49:fb:51:a2:2c:2a:f2:c5:af:05:73:5e:85:a9:08: ff:f5:87:1f:e0:14:4f:92:89:04:5f:1e:ff:f8:7c:7b:9a:79: 54:e8:9a:bc:4b:13:c3:79:d0:91:e0:b1:ed:6e:f9:dd:56:2c: a6:cb:4b:ca:53:c7:47:d4:2f:bc:7e:cc:24:f8:f8:dc:3d:aa: 21:e2:3f:6a:29:fb:27:54:69:e8:57:b6:e0:12:67:71:b0:53: 6b:d6:b1:4b:21:b7:01:b7:43:4a:6a:45:c2:86:58:a0:1f:f3: 0b:12:9d:72:49:87:31:31:48:72:3d:a4:f4:74:e1:3a:5b:3c: 90:4d:38:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzg2NzkxMTAvBgNVBAUTKDkyODBGMDcwNzQ3NzUzMzg3QjZCQTY1NzMyRDZERDc5 OTJCMzUwQzEwHhcNMjUxMjIzMDUxNTQ2WhcNMjUxMjMwMDUxNTQ2WjAYMRYwFAYD VQQDDA02OTRhMjU4Mi05N2Y5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsFW3B1iPa0IX5FTWzlg34uqzqI+6Hv8H+3FtDP38kyjfgmhiF8wacRjSIGty fRt93RIWmLNS7WWSD0vilU7Jf0Tmy2YESMXTA+oRk5qstkphRBI1nYTdnpLlvPBN TlGDpBCf30iwLqhUxlbjD/hsbJA3Dr3YZIudcBLHLF9vDEEuoVuB8rkarS4Udr+5 pQKeQf4ob7W+EaBcPhND//zfsi+rvyl2KwBWiHy/dnwA1dIPiRZ8SiKG7qIgWo5O W01rqvUZCHT7kb8LQXJ3WA6SzanAtr5UF62BMI3N8QU8v/goZUuHSjzPrZ4taEp3 7xwoM5zQfoBfThNLEIfoE5tXSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBPgJ1AA ylzN97oA2fWWaapJ2KkCMB8GA1UdIwQYMBaAFJKA8HB0d1M4e2umVzLW3XmSs1DB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODY3OS9DQjJDQjNDRUVB NzcxMUVGQTU2MzU2ODBDNEY5QUUwMi9rb0R3Y0hSM1V6aDdhNlpYTXRiZGVaS3pV TUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tvRHdjSFIzVXpoN2E2WlhNdGJkZVpLelVNRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODY3OS9DQjJDQjNDRUVBNzcxMUVGQTU2MzU2ODBDNEY5QUUwMi9rb0R3Y0hSM1V6 aDdhNlpYTXRiZGVaS3pVTUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARHSmVGADpoNKMvU/JsqvJ9L6VKMfJmfEwHiymYYUM788jgl2LeTbL snZ7fCaTD5/zNcmWCMrgVldsYDOjIpK+3IDj/xxMU8nPGDls8kyifb76F/A7m9Hg gDecC80LfG42oD1Bl4kpJYC2d29OCpJRTIsZPRE1s5D0hP5YiOx6d9hJ+1GiLCry xa8Fc16FqQj/9Ycf4BRPkokEXx7/+Hx7mnlU6Jq8SxPDedCR4LHtbvndViymy0vK U8dH1C+8fswk+PjcPaoh4j9qKfsnVGnoV7bgEmdxsFNr1rFLIbcBt0NKakXChlig H/MLEp1ySYcxMUhyPaT0dOE6WzyQTTij -----END CERTIFICATE-----Generated at Tue Dec 23 22:26:14 2025 by rpki-client