This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9144DEA/3BF5F2E05AE111EFA7563C2CC4F9AE02/K8rPYWW1h0BZDllxhDPYGD_5Rm0.mft File: K8rPYWW1h0BZDllxhDPYGD_5Rm0.mft (raw, json) Hash identifier: W+pZdVqtQi3wfyRbCZEYgjN8oIaUmBvrG6A+/o2lFQc= Subject key identifier: CD:6D:9C:00:41:3A:94:47:BD:6E:C5:B4:C1:9A:07:94:34:9A:FE:FD Authority key identifier: 2B:CA:CF:61:65:B5:87:40:59:0E:59:71:84:33:D8:18:3F:F9:46:6D Certificate issuer: /CN=A9144DEA/serialNumber=2BCACF6165B58740590E59718433D8183FF9466D Certificate serial: 0103 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K8rPYWW1h0BZDllxhDPYGD_5Rm0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144DEA/3BF5F2E05AE111EFA7563C2CC4F9AE02/K8rPYWW1h0BZDllxhDPYGD_5Rm0.mft Manifest number: FF Signing time: Wed 17 Dec 2025 04:39:19 +0000 Manifest this update: Wed 17 Dec 2025 04:39:18 +0000 Manifest next update: Wed 24 Dec 2025 04:39:18 +0000 Files and hashes: 1: K8rPYWW1h0BZDllxhDPYGD_5Rm0.crl (hash: y48IsAxFeEuNoVGdyXcX4lHUZs9DS37XYeGDv1jn74A=) 2: DC10E79AABF211F0AF7B0010C4F9AE02.roa (hash: kOI61p4/B4LXkDisnwb4hFVAMcT2xvAngvAHEK0PHx4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144DEA/3BF5F2E05AE111EFA7563C2CC4F9AE02/K8rPYWW1h0BZDllxhDPYGD_5Rm0.crl rsync://rpki.apnic.net/member_repository/A9144DEA/3BF5F2E05AE111EFA7563C2CC4F9AE02/K8rPYWW1h0BZDllxhDPYGD_5Rm0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K8rPYWW1h0BZDllxhDPYGD_5Rm0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Dec 2025 04:39:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 259 (0x103) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144DEA, serialNumber=2BCACF6165B58740590E59718433D8183FF9466D Validity Not Before: Dec 17 04:39:18 2025 GMT Not After : Dec 24 04:39:18 2025 GMT Subject: CN=694233f7-c823 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:f3:57:26:5b:ab:ab:e7:1c:5b:1e:49:a6:dd: b7:a4:95:75:3d:2d:8e:37:3f:fd:8b:3c:ea:1e:d8: 51:e8:6d:d1:ce:c8:ff:79:f5:78:4b:ff:81:92:24: ac:4a:4b:eb:b1:b6:6c:0f:ee:a4:70:d3:36:d5:3e: b5:33:dc:10:33:73:06:6e:a9:ab:1b:87:75:f8:82: fe:e1:eb:50:3c:23:e1:65:f6:7c:a4:42:ff:54:bd: a6:76:da:9e:65:e8:1f:c4:61:bb:8e:82:85:bc:9a: c6:2d:cd:06:39:b3:e1:c9:b3:2a:8a:87:39:c2:02: 77:31:cc:46:82:eb:f7:5c:39:d2:84:12:43:3b:f5: 84:7e:6e:8e:ea:81:ac:de:b8:c2:64:0c:06:5c:c1: 3c:d2:19:8e:69:01:8f:99:75:b9:ba:3a:6c:4e:f8: a0:dc:4a:9a:cc:52:55:ff:d3:27:86:5e:ce:b0:9e: de:8a:69:1d:ca:cc:42:ae:e4:42:52:ea:65:99:79: 3b:ad:47:d6:c2:d5:8e:17:4c:2d:0b:0f:91:0d:74: 5c:98:ff:ae:6b:ca:ae:9d:f2:bd:e5:22:b3:6b:a0: a1:0a:fa:14:ff:03:dd:39:e4:3b:48:fe:bd:be:07: 7c:41:31:c2:69:97:bb:2f:a7:99:b0:fa:37:f7:fe: 7d:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:6D:9C:00:41:3A:94:47:BD:6E:C5:B4:C1:9A:07:94:34:9A:FE:FD X509v3 Authority Key Identifier: keyid:2B:CA:CF:61:65:B5:87:40:59:0E:59:71:84:33:D8:18:3F:F9:46:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144DEA/3BF5F2E05AE111EFA7563C2CC4F9AE02/K8rPYWW1h0BZDllxhDPYGD_5Rm0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K8rPYWW1h0BZDllxhDPYGD_5Rm0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144DEA/3BF5F2E05AE111EFA7563C2CC4F9AE02/K8rPYWW1h0BZDllxhDPYGD_5Rm0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:80:1a:d5:ef:da:a4:da:d0:81:dd:1b:eb:9f:49:89:df:14: 93:a4:0e:96:9e:d5:96:82:cc:6f:15:72:70:9d:84:ff:14:48: 22:2f:a2:aa:4e:c7:f4:05:35:52:3d:c5:fe:5f:b6:b1:32:74: 4b:ef:53:8c:74:cf:aa:dc:e5:3e:58:b2:b6:46:17:b4:81:d4: fa:6d:3a:bf:f7:f1:3b:5f:e0:ab:f9:d5:22:f3:eb:2f:c9:4f: 8f:c8:04:3c:ef:09:66:5d:f1:be:15:23:f0:86:0d:64:3c:5b: 53:20:fe:f2:c7:0d:4d:9f:67:5a:cf:ab:04:cd:09:e7:70:5c: a1:d8:0c:fb:9e:c7:68:1b:67:94:f6:ed:24:49:9a:c5:c1:e7: 1b:cf:eb:45:ae:6f:84:aa:99:80:72:b3:bf:83:87:7d:4f:93: 4b:06:3d:7d:4d:ca:e0:d7:49:4d:76:7d:18:42:ab:37:43:a2: a6:2b:b3:40:37:e0:63:f5:bd:8a:f8:99:fe:20:9f:86:f1:57: 63:8f:64:a7:08:35:a2:9c:22:e0:b1:53:ba:dd:28:b6:b8:61: b3:cc:ee:c0:6b:d1:aa:59:70:f2:c3:db:1f:e9:6e:e1:89:c6: bd:03:c1:04:31:09:3a:0f:47:2a:71:8a:5d:f7:3e:b1:2e:67: a5:46:d9:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDRERUExMTAvBgNVBAUTKDJCQ0FDRjYxNjVCNTg3NDA1OTBFNTk3MTg0MzNEODE4 M0ZGOTQ2NkQwHhcNMjUxMjE3MDQzOTE4WhcNMjUxMjI0MDQzOTE4WjAYMRYwFAYD VQQDDA02OTQyMzNmNy1jODIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArvNXJlurq+ccWx5Jpt23pJV1PS2ONz/9izzqHthR6G3Rzsj/efV4S/+BkiSs SkvrsbZsD+6kcNM21T61M9wQM3MGbqmrG4d1+IL+4etQPCPhZfZ8pEL/VL2mdtqe ZegfxGG7joKFvJrGLc0GObPhybMqioc5wgJ3McxGguv3XDnShBJDO/WEfm6O6oGs 3rjCZAwGXME80hmOaQGPmXW5ujpsTvig3EqazFJV/9Mnhl7OsJ7eimkdysxCruRC UuplmXk7rUfWwtWOF0wtCw+RDXRcmP+ua8qunfK95SKza6ChCvoU/wPdOeQ7SP69 vgd8QTHCaZe7L6eZsPo39/595wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM1tnABB OpRHvW7FtMGaB5Q0mv79MB8GA1UdIwQYMBaAFCvKz2FltYdAWQ5ZcYQz2Bg/+UZt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NERFQS8zQkY1RjJFMDVB RTExMUVGQTc1NjNDMkNDNEY5QUUwMi9LOHJQWVdXMWgwQlpEbGx4aERQWUdEXzVS bTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0s4clBZV1cxaDBCWkRsbHhoRFBZR0RfNVJtMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NERFQS8zQkY1RjJFMDVBRTExMUVGQTc1NjNDMkNDNEY5QUUwMi9LOHJQWVdXMWgw QlpEbGx4aERQWUdEXzVSbTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBIgBrV79qk2tCB3Rvrn0mJ3xSTpA6WntWWgsxvFXJwnYT/FEgiL6Kq Tsf0BTVSPcX+X7axMnRL71OMdM+q3OU+WLK2Rhe0gdT6bTq/9/E7X+Cr+dUi8+sv yU+PyAQ87wlmXfG+FSPwhg1kPFtTIP7yxw1Nn2daz6sEzQnncFyh2Az7nsdoG2eU 9u0kSZrFwecbz+tFrm+EqpmAcrO/g4d9T5NLBj19Tcrg10lNdn0YQqs3Q6KmK7NA N+Bj9b2K+Jn+IJ+G8Vdjj2SnCDWinCLgsVO63Si2uGGzzO7Aa9GqWXDyw9sf6W7h ica9A8EEMQk6D0cqcYpd9z6xLmelRtkN -----END CERTIFICATE-----Generated at Thu Dec 18 08:53:15 2025 by rpki-client