This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9142E1E/D409F82AD16911EFB76FB520C4F9AE02/KO2nuV1ejUVip1l0xt19pkwqKoY.mft File: KO2nuV1ejUVip1l0xt19pkwqKoY.mft (raw, json) Hash identifier: Ktn7RMz/fMJZIZtCbr8g6fz61+kIlEzB1ZCWCtkGWtY= Subject key identifier: EE:42:C3:C8:F2:79:94:88:90:4A:AC:AD:AE:70:02:BE:D6:13:8B:FD Authority key identifier: 28:ED:A7:B9:5D:5E:8D:45:62:A7:59:74:C6:DD:7D:A6:4C:2A:2A:86 Certificate issuer: /CN=A9142E1E/serialNumber=28EDA7B95D5E8D4562A75974C6DD7DA64C2A2A86 Certificate serial: A7 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/KO2nuV1ejUVip1l0xt19pkwqKoY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142E1E/D409F82AD16911EFB76FB520C4F9AE02/KO2nuV1ejUVip1l0xt19pkwqKoY.mft Manifest number: A7 Signing time: Fri 05 Dec 2025 03:33:48 +0000 Manifest this update: Fri 05 Dec 2025 03:33:48 +0000 Manifest next update: Fri 12 Dec 2025 03:33:48 +0000 Files and hashes: 1: KO2nuV1ejUVip1l0xt19pkwqKoY.crl (hash: CuiNiYAVHjYzOG5EAV0dY5zifjMOlrge1/yzr+IktCA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142E1E/D409F82AD16911EFB76FB520C4F9AE02/KO2nuV1ejUVip1l0xt19pkwqKoY.crl rsync://rpki.apnic.net/member_repository/A9142E1E/D409F82AD16911EFB76FB520C4F9AE02/KO2nuV1ejUVip1l0xt19pkwqKoY.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/KO2nuV1ejUVip1l0xt19pkwqKoY.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 03:33:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 167 (0xa7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142E1E, serialNumber=28EDA7B95D5E8D4562A75974C6DD7DA64C2A2A86 Validity Not Before: Dec 5 03:33:48 2025 GMT Not After : Dec 12 03:33:48 2025 GMT Subject: CN=6932529c-c0a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:e4:93:43:92:7f:9e:de:19:f1:bb:a2:80:07: 3c:9d:7d:27:ab:7b:9e:34:dc:79:04:51:7a:4c:10: 9b:bb:e8:84:07:08:46:d1:6b:32:4e:3e:d5:5f:a9: 97:5c:77:9c:56:4a:b0:58:c1:b6:7a:11:09:28:29: c9:a9:bb:ce:9b:fd:92:6f:b9:31:29:d2:d9:4e:fa: ed:fe:6e:6f:20:16:6d:2a:ee:90:fc:60:b9:20:99: 00:c9:a8:15:f8:56:3c:7a:4d:bf:9e:35:ff:be:a1: 64:69:53:6a:32:36:f4:ec:d7:5f:fc:98:c5:dd:b2: 0f:8c:dc:61:d9:b2:73:e7:14:ed:5e:75:9c:b8:40: af:d1:39:85:f7:c0:57:1c:82:a7:7d:c2:3d:4e:3e: 08:0b:8c:04:62:c9:51:d4:8e:e1:a1:ec:25:fc:a4: f9:ea:b3:9c:55:bc:43:ad:52:ec:88:db:b3:5c:39: 93:06:6d:fa:fd:7a:9e:76:45:0d:d3:e1:31:b6:3d: 38:c3:f5:1f:c0:6c:46:6d:58:b7:9c:b6:43:7a:bd: 31:cc:44:c3:4c:8e:35:17:a2:2f:61:34:96:bf:3a: 2b:34:0c:91:10:b3:42:28:1e:0c:b0:61:e0:bc:0a: 4f:13:8e:37:2f:96:20:8e:d5:0c:30:a2:42:1f:43: 08:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:42:C3:C8:F2:79:94:88:90:4A:AC:AD:AE:70:02:BE:D6:13:8B:FD X509v3 Authority Key Identifier: keyid:28:ED:A7:B9:5D:5E:8D:45:62:A7:59:74:C6:DD:7D:A6:4C:2A:2A:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142E1E/D409F82AD16911EFB76FB520C4F9AE02/KO2nuV1ejUVip1l0xt19pkwqKoY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/KO2nuV1ejUVip1l0xt19pkwqKoY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142E1E/D409F82AD16911EFB76FB520C4F9AE02/KO2nuV1ejUVip1l0xt19pkwqKoY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:1a:fd:e0:b0:9c:70:d1:c6:d0:ca:65:cf:cf:7d:09:86:fd: 12:88:54:01:7d:cd:12:cc:f6:6b:48:54:79:60:bc:3e:ff:30: 48:9f:81:10:56:6e:e7:8f:c3:06:4a:a8:f0:fe:f2:a5:f0:13: 6b:98:ad:00:79:2e:ed:96:3b:c6:04:ce:a4:0d:91:1d:1d:95: b7:e2:30:78:1e:e8:90:ea:b8:31:c1:1a:4f:53:bf:6e:e0:15: bb:ff:f6:4e:d8:08:30:82:01:8c:dd:58:7c:93:04:c0:14:22: 3d:76:4e:3e:30:a3:5f:00:6e:25:81:a8:87:4b:57:48:ae:2c: 45:7d:78:5e:98:c0:72:91:c7:69:e8:e1:5d:54:a6:1d:37:09: 8f:f1:58:0a:15:68:5f:f9:2a:47:04:23:fa:13:10:a6:f3:7d: ff:f0:3b:ab:a9:7a:f5:48:1b:98:10:49:99:02:f4:d5:0c:81: a9:94:ba:db:a0:87:83:76:b4:52:02:34:e5:9b:5b:98:99:26: 6b:8a:9f:3d:d9:74:68:6d:21:12:03:29:21:86:db:f3:50:20: af:36:14:c9:aa:8b:1d:39:79:bb:23:b3:cf:0e:1b:15:f5:76: 4c:89:3d:8d:86:a4:a1:9d:ca:f6:18:ce:05:8e:06:e8:45:5f: 81:75:9c:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDJFMUUxMTAvBgNVBAUTKDI4RURBN0I5NUQ1RThENDU2MkE3NTk3NEM2REQ3REE2 NEMyQTJBODYwHhcNMjUxMjA1MDMzMzQ4WhcNMjUxMjEyMDMzMzQ4WjAYMRYwFAYD VQQDEw02OTMyNTI5Yy1jMGE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArOSTQ5J/nt4Z8buigAc8nX0nq3ueNNx5BFF6TBCbu+iEBwhG0WsyTj7VX6mX XHecVkqwWMG2ehEJKCnJqbvOm/2Sb7kxKdLZTvrt/m5vIBZtKu6Q/GC5IJkAyagV +FY8ek2/njX/vqFkaVNqMjb07Ndf/JjF3bIPjNxh2bJz5xTtXnWcuECv0TmF98BX HIKnfcI9Tj4IC4wEYslR1I7hoewl/KT56rOcVbxDrVLsiNuzXDmTBm36/XqedkUN 0+Extj04w/UfwGxGbVi3nLZDer0xzETDTI41F6IvYTSWvzorNAyRELNCKB4MsGHg vApPE443L5YgjtUMMKJCH0MI0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO5Cw8jy eZSIkEqsra5wAr7WE4v9MB8GA1UdIwQYMBaAFCjtp7ldXo1FYqdZdMbdfaZMKiqG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MkUxRS9ENDA5RjgyQUQx NjkxMUVGQjc2RkI1MjBDNEY5QUUwMi9LTzJudVYxZWpVVmlwMWwweHQxOXBrd3FL b1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0tPMm51VjFlalVWaXAxbDB4dDE5cGt3cUtvWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MkUxRS9ENDA5RjgyQUQxNjkxMUVGQjc2RkI1MjBDNEY5QUUwMi9LTzJudVYxZWpV VmlwMWwweHQxOXBrd3FLb1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+Gv3gsJxw0cbQymXPz30Jhv0SiFQBfc0SzPZrSFR5YLw+/zBIn4EQ Vm7nj8MGSqjw/vKl8BNrmK0AeS7tljvGBM6kDZEdHZW34jB4HuiQ6rgxwRpPU79u 4BW7//ZO2AgwggGM3Vh8kwTAFCI9dk4+MKNfAG4lgaiHS1dIrixFfXhemMBykcdp 6OFdVKYdNwmP8VgKFWhf+SpHBCP6ExCm833/8DurqXr1SBuYEEmZAvTVDIGplLrb oIeDdrRSAjTlm1uYmSZrip892XRobSESAykhhtvzUCCvNhTJqosdOXm7I7PPDhsV 9XZMiT2NhqShncr2GM4FjgboRV+BdZzI -----END CERTIFICATE-----Generated at Sat Dec 6 20:09:18 2025 by rpki-client