This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9140E40/E3611BD6D38B11E58392F54DC4F9AE02/K5TrpHjp0RKx5QoN4zDSrYWOHNA.mft File: K5TrpHjp0RKx5QoN4zDSrYWOHNA.mft (raw, json) Hash identifier: Db37Y53QYHt/Uij/yPp1AkxzCCh1EQRTt8MDlJ4E+m8= Subject key identifier: A1:7E:41:B1:8E:9F:7F:9E:B9:BD:CB:22:ED:A9:45:34:51:6D:8A:78 Authority key identifier: 2B:94:EB:A4:78:E9:D1:12:B1:E5:0A:0D:E3:30:D2:AD:85:8E:1C:D0 Certificate issuer: /CN=A9140E40/serialNumber=2B94EBA478E9D112B1E50A0DE330D2AD858E1CD0 Certificate serial: 2202 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K5TrpHjp0RKx5QoN4zDSrYWOHNA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140E40/E3611BD6D38B11E58392F54DC4F9AE02/K5TrpHjp0RKx5QoN4zDSrYWOHNA.mft Manifest number: 2202 Signing time: Mon 22 Dec 2025 15:42:03 +0000 Manifest this update: Mon 22 Dec 2025 15:42:02 +0000 Manifest next update: Mon 29 Dec 2025 15:42:02 +0000 Files and hashes: 1: K5TrpHjp0RKx5QoN4zDSrYWOHNA.crl (hash: X1XYloyBPMW9NZ1oEmRs8hkDmuAaASEsBrcmg5pxrwo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140E40/E3611BD6D38B11E58392F54DC4F9AE02/K5TrpHjp0RKx5QoN4zDSrYWOHNA.crl rsync://rpki.apnic.net/member_repository/A9140E40/E3611BD6D38B11E58392F54DC4F9AE02/K5TrpHjp0RKx5QoN4zDSrYWOHNA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K5TrpHjp0RKx5QoN4zDSrYWOHNA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 15:42:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8706 (0x2202) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140E40, serialNumber=2B94EBA478E9D112B1E50A0DE330D2AD858E1CD0 Validity Not Before: Dec 22 15:42:02 2025 GMT Not After : Dec 29 15:42:02 2025 GMT Subject: CN=694966ca-000c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:aa:67:fc:2a:29:d9:ff:6f:1c:a3:8d:cf:e9: 7e:84:57:c4:f9:cc:7c:ca:1a:92:5e:d8:66:60:79: 20:57:b9:82:92:86:cd:26:ad:83:a1:2f:04:d3:fc: f7:f8:e4:8f:b3:31:b8:ba:c6:94:a2:27:77:57:15: 2a:49:bb:3a:ee:71:96:05:7d:19:71:89:61:46:d8: e9:dd:5d:e8:af:18:a6:12:0d:23:c8:5a:17:c1:fb: 26:2d:fc:69:fe:07:86:62:10:9e:d3:94:df:8f:44: 6e:da:e7:9d:f7:ef:4b:c9:31:50:5c:91:48:60:37: f5:5a:ba:9b:76:1e:38:c0:d9:fd:9c:77:37:44:e3: 1d:16:b4:ed:bd:23:a4:8f:e1:8c:a9:f3:a2:c4:bf: 85:6b:28:2c:04:21:1c:78:c8:f0:70:40:ae:2a:bb: 19:a6:21:e1:fe:30:ea:81:12:5f:1e:79:7c:47:cf: d0:bb:c2:97:70:a1:34:c2:ad:23:d3:46:a2:87:89: f6:28:6a:4e:4f:62:4f:a0:46:f5:61:b0:b1:db:ca: c5:c0:70:92:e0:c1:00:19:30:28:0d:05:c2:96:7d: 54:3b:30:eb:65:08:fc:f3:73:9f:20:9a:c6:b5:0f: c0:32:99:05:7a:8a:60:b6:48:c4:05:f9:c3:f9:79: 2c:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:7E:41:B1:8E:9F:7F:9E:B9:BD:CB:22:ED:A9:45:34:51:6D:8A:78 X509v3 Authority Key Identifier: keyid:2B:94:EB:A4:78:E9:D1:12:B1:E5:0A:0D:E3:30:D2:AD:85:8E:1C:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140E40/E3611BD6D38B11E58392F54DC4F9AE02/K5TrpHjp0RKx5QoN4zDSrYWOHNA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K5TrpHjp0RKx5QoN4zDSrYWOHNA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140E40/E3611BD6D38B11E58392F54DC4F9AE02/K5TrpHjp0RKx5QoN4zDSrYWOHNA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:87:48:58:e4:81:1d:64:7a:9d:03:9f:cc:ef:97:8b:45:7c: 5e:76:24:a0:aa:89:e1:f0:e9:86:b1:de:db:31:91:03:f6:ac: 7f:a6:7d:22:81:fd:8a:b5:f4:f8:ca:cb:a8:ce:22:da:11:16: e9:bb:66:7a:e3:45:f1:90:cf:d2:79:1c:ac:a5:3f:bc:b4:47: 7a:29:58:40:39:17:f9:77:3b:f2:5f:f3:05:c2:5e:32:3f:c8: 11:87:04:27:f8:1c:7d:0e:40:f2:7a:7a:2f:b8:1c:63:29:bf: c1:48:a1:79:0c:c4:55:c3:b3:5b:60:05:b2:3f:75:0b:6a:bc: d9:3a:fb:3a:6d:a2:d9:f2:bc:66:a1:95:2d:68:75:4f:5c:f3: 27:a6:19:39:9f:c7:1f:96:dc:13:7d:ef:4b:10:e2:4e:47:55: 4c:6a:3e:1b:1a:53:d5:30:a7:75:cd:21:ee:f9:03:a6:d4:17: f0:fc:56:bb:ff:48:4b:f0:3e:ea:85:9c:f6:6a:8d:c5:33:6e: 47:bc:4b:48:21:40:77:41:77:0a:c7:a8:ac:c4:b3:27:6d:dc: cc:21:86:62:cb:17:62:75:b3:30:ad:13:4d:30:4e:52:aa:46: 7b:10:eb:58:ec:e8:4d:82:b8:3b:75:7d:4d:5c:77:28:32:f8: fa:60:42:68 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIgIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBFNDAxMTAvBgNVBAUTKDJCOTRFQkE0NzhFOUQxMTJCMUU1MEEwREUzMzBEMkFE ODU4RTFDRDAwHhcNMjUxMjIyMTU0MjAyWhcNMjUxMjI5MTU0MjAyWjAYMRYwFAYD VQQDDA02OTQ5NjZjYS0wMDBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr6pn/Cop2f9vHKONz+l+hFfE+cx8yhqSXthmYHkgV7mCkobNJq2DoS8E0/z3 +OSPszG4usaUoid3VxUqSbs67nGWBX0ZcYlhRtjp3V3orximEg0jyFoXwfsmLfxp /geGYhCe05Tfj0Ru2ued9+9LyTFQXJFIYDf1Wrqbdh44wNn9nHc3ROMdFrTtvSOk j+GMqfOixL+FaygsBCEceMjwcECuKrsZpiHh/jDqgRJfHnl8R8/Qu8KXcKE0wq0j 00aih4n2KGpOT2JPoEb1YbCx28rFwHCS4MEAGTAoDQXCln1UOzDrZQj883OfIJrG tQ/AMpkFeopgtkjEBfnD+XksCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKF+QbGO n3+eub3LIu2pRTRRbYp4MB8GA1UdIwQYMBaAFCuU66R46dESseUKDeMw0q2FjhzQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEU0MC9FMzYxMUJENkQz OEIxMUU1ODM5MkY1NERDNEY5QUUwMi9LNVRycEhqcDBSS3g1UW9ONHpEU3JZV09I TkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0s1VHJwSGpwMFJLeDVRb040ekRTcllXT0hOQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MEU0MC9FMzYxMUJENkQzOEIxMUU1ODM5MkY1NERDNEY5QUUwMi9LNVRycEhqcDBS S3g1UW9ONHpEU3JZV09ITkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASh0hY5IEdZHqdA5/M75eLRXxediSgqonh8OmGsd7bMZED9qx/pn0i gf2KtfT4ysuoziLaERbpu2Z640XxkM/SeRyspT+8tEd6KVhAORf5dzvyX/MFwl4y P8gRhwQn+Bx9DkDyenovuBxjKb/BSKF5DMRVw7NbYAWyP3ULarzZOvs6baLZ8rxm oZUtaHVPXPMnphk5n8cfltwTfe9LEOJOR1VMaj4bGlPVMKd1zSHu+QOm1Bfw/Fa7 /0hL8D7qhZz2ao3FM25HvEtIIUB3QXcKx6isxLMnbdzMIYZiyxdidbMwrRNNME5S qkZ7EOtY7OhNgrg7dX1NXHcoMvj6YEJo -----END CERTIFICATE-----Generated at Wed Dec 24 14:12:11 2025 by rpki-client