This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9146C84/2A9BB026EBB111EC86DE3565C4F9AE02/KWYvUTolTw218H21gZ--rkD3vxU.mft File: KWYvUTolTw218H21gZ--rkD3vxU.mft (raw, json) Hash identifier: xl3WSK6MPHENJbMU7OryqAuqm95PkXNlzt1A6ZzXKBA= Subject key identifier: AF:EF:7A:FC:33:BA:65:B0:8D:98:22:CE:DE:2D:6D:85:C8:FC:66:94 Authority key identifier: 29:66:2F:51:3A:25:4F:0D:B5:F0:7D:B5:81:9F:BE:AE:40:F7:BF:15 Certificate issuer: /CN=A9146C84/serialNumber=29662F513A254F0DB5F07DB5819FBEAE40F7BF15 Certificate serial: 0340 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KWYvUTolTw218H21gZ--rkD3vxU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146C84/2A9BB026EBB111EC86DE3565C4F9AE02/KWYvUTolTw218H21gZ--rkD3vxU.mft Manifest number: 0330 Signing time: Mon 08 Dec 2025 23:24:25 +0000 Manifest this update: Mon 08 Dec 2025 23:24:24 +0000 Manifest next update: Mon 15 Dec 2025 23:24:24 +0000 Files and hashes: 1: KWYvUTolTw218H21gZ--rkD3vxU.crl (hash: yE0T9iU7xKa7uM/UCY606xIjvSyYlvQ86HUVUTNFEAg=) 2: F09C691AEBB511ECA410BF6DC4F9AE02.roa (hash: 3t64o2UXNsxTNPIx1fcvAHHTrkMYu5vuFZ50YkMkLZI=) 3: EF6D9D70EBB511ECA410BF6DC4F9AE02.roa (hash: HZusuoH1up8FDoOQyhT/1qoC+ff/aBBAonRcZ28YjMI=) 4: F123461AEBB511ECA410BF6DC4F9AE02.roa (hash: Eku/YHWxKxpsRX6ogTNh3LDNRp5rXVLPBXYqCNfR56g=) 5: EFF97098EBB511ECA410BF6DC4F9AE02.roa (hash: 3ncZT46pze+jMf4M4LYzFO82k2evN1uShAP1OkhdIKI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146C84/2A9BB026EBB111EC86DE3565C4F9AE02/KWYvUTolTw218H21gZ--rkD3vxU.crl rsync://rpki.apnic.net/member_repository/A9146C84/2A9BB026EBB111EC86DE3565C4F9AE02/KWYvUTolTw218H21gZ--rkD3vxU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KWYvUTolTw218H21gZ--rkD3vxU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Dec 2025 23:24:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 832 (0x340) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146C84, serialNumber=29662F513A254F0DB5F07DB5819FBEAE40F7BF15 Validity Not Before: Dec 8 23:24:24 2025 GMT Not After : Dec 15 23:24:24 2025 GMT Subject: CN=69375e28-2f12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:08:17:b0:1a:47:90:3e:60:cc:d1:23:86:bc: 97:b3:4a:6d:20:14:3e:0e:4c:38:b3:de:09:ce:cc: 26:56:91:35:55:c1:58:66:bb:dc:f3:c9:04:95:23: ce:f0:c6:af:7a:38:a4:f4:45:e1:b2:00:3b:4a:9e: b4:a5:ec:f4:d5:f4:45:b3:b5:46:ea:55:92:2c:ae: d1:30:6f:b7:aa:a9:bd:c5:9d:7b:c7:f1:04:d4:70: 8a:ad:da:d8:3d:81:6d:33:62:3d:0e:b0:05:14:57: ac:61:b5:f3:df:4c:e8:23:66:50:84:70:2f:9e:a9: 7a:3b:70:c6:8f:42:9c:80:4d:ac:f7:e7:2d:a8:14: 53:48:60:33:53:19:f7:48:75:26:48:00:55:7c:3a: 9f:a0:ea:e9:6a:c4:4e:4c:a5:0d:44:fc:87:0c:6e: 25:8a:3e:17:2b:30:e4:a0:b4:e7:0f:4a:8b:65:b4: 1e:de:6d:fd:8b:15:7e:4b:62:1d:0e:2d:94:fc:ec: e2:a7:25:1a:65:b0:e5:97:f0:f1:5b:83:4d:d5:c2: 71:af:54:06:6a:32:eb:98:35:56:e1:ed:bc:04:6c: d0:eb:9c:a0:91:54:30:26:ff:2b:21:26:8e:31:10: 5e:f2:ad:da:d2:86:6f:98:29:09:fb:d6:0e:4c:3a: ab:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:EF:7A:FC:33:BA:65:B0:8D:98:22:CE:DE:2D:6D:85:C8:FC:66:94 X509v3 Authority Key Identifier: keyid:29:66:2F:51:3A:25:4F:0D:B5:F0:7D:B5:81:9F:BE:AE:40:F7:BF:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146C84/2A9BB026EBB111EC86DE3565C4F9AE02/KWYvUTolTw218H21gZ--rkD3vxU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KWYvUTolTw218H21gZ--rkD3vxU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146C84/2A9BB026EBB111EC86DE3565C4F9AE02/KWYvUTolTw218H21gZ--rkD3vxU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:2a:13:cf:36:ae:bf:79:de:7a:c1:11:b3:f9:a0:15:0c:60: 11:5e:2e:57:7e:12:b3:07:93:cb:e9:8d:e0:87:24:9b:17:be: 5a:ff:77:a2:89:88:66:92:08:f1:c8:40:32:ea:61:56:e0:cc: 1f:e0:29:19:53:25:d7:13:a2:9f:c9:f1:18:50:48:f6:2b:40: 3a:6c:2a:37:22:5d:ed:1a:ce:b2:ae:04:bd:4f:b1:c3:13:89: 55:61:7e:37:2c:b4:5e:28:78:78:6c:86:e4:40:4e:ca:7e:82: e8:b6:e8:04:d0:42:06:5f:52:ba:43:be:85:2e:53:cd:3e:fe: f7:7d:e5:2f:93:7f:99:22:bb:a3:69:08:de:ab:88:14:b9:71: 43:12:40:20:18:51:24:5c:0f:8a:f5:0a:8c:98:ea:7b:38:51: 71:c7:09:26:a3:6b:76:10:2c:61:f2:32:45:32:02:87:3f:6f: e9:a4:55:cb:2d:02:db:f1:62:48:e2:67:ad:3e:75:e3:87:3d: 8b:5e:f3:b8:79:66:c4:4a:1d:5b:d4:a4:fb:5d:02:3f:e9:4c: 55:f0:4d:e4:49:25:a3:75:c6:3d:ac:8b:ca:1b:90:23:77:a6: 2f:17:d6:78:13:2b:a0:b5:1a:3e:ab:5d:c2:69:36:ce:41:f9: 86:89:c9:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA0AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDZDODQxMTAvBgNVBAUTKDI5NjYyRjUxM0EyNTRGMERCNUYwN0RCNTgxOUZCRUFF NDBGN0JGMTUwHhcNMjUxMjA4MjMyNDI0WhcNMjUxMjE1MjMyNDI0WjAYMRYwFAYD VQQDEw02OTM3NWUyOC0yZjEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1ggXsBpHkD5gzNEjhryXs0ptIBQ+Dkw4s94JzswmVpE1VcFYZrvc88kElSPO 8Mavejik9EXhsgA7Sp60pez01fRFs7VG6lWSLK7RMG+3qqm9xZ17x/EE1HCKrdrY PYFtM2I9DrAFFFesYbXz30zoI2ZQhHAvnql6O3DGj0KcgE2s9+ctqBRTSGAzUxn3 SHUmSABVfDqfoOrpasROTKUNRPyHDG4lij4XKzDkoLTnD0qLZbQe3m39ixV+S2Id Di2U/OzipyUaZbDll/DxW4NN1cJxr1QGajLrmDVW4e28BGzQ65ygkVQwJv8rISaO MRBe8q3a0oZvmCkJ+9YOTDqrgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK/vevwz umWwjZgizt4tbYXI/GaUMB8GA1UdIwQYMBaAFClmL1E6JU8NtfB9tYGfvq5A978V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NkM4NC8yQTlCQjAyNkVC QjExMUVDODZERTM1NjVDNEY5QUUwMi9LV1l2VVRvbFR3MjE4SDIxZ1otLXJrRDN2 eFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXWXZVVG9sVHcyMThIMjFnWi0tcmtEM3Z4VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NkM4NC8yQTlCQjAyNkVCQjExMUVDODZERTM1NjVDNEY5QUUwMi9LV1l2VVRvbFR3 MjE4SDIxZ1otLXJrRDN2eFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCpKhPPNq6/ed56wRGz+aAVDGARXi5XfhKzB5PL6Y3ghySbF75a/3ei iYhmkgjxyEAy6mFW4Mwf4CkZUyXXE6KfyfEYUEj2K0A6bCo3Il3tGs6yrgS9T7HD E4lVYX43LLReKHh4bIbkQE7KfoLotugE0EIGX1K6Q76FLlPNPv73feUvk3+ZIruj aQjeq4gUuXFDEkAgGFEkXA+K9QqMmOp7OFFxxwkmo2t2ECxh8jJFMgKHP2/ppFXL LQLb8WJI4metPnXjhz2LXvO4eWbESh1b1KT7XQI/6UxV8E3kSSWjdcY9rIvKG5Aj d6YvF9Z4EyugtRo+q13CaTbOQfmGickL -----END CERTIFICATE-----Generated at Tue Dec 9 03:30:11 2025 by rpki-client