This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.mft File: kDo4Q2eaCxBdykhcPWSPPREnL7c.mft (raw, json) Hash identifier: UoyYwoIa0zcNFMJpgOVj4E22NIrUIAs09sgKGSu+6fw= Subject key identifier: 5E:08:D2:83:46:04:A4:BE:20:8C:0C:86:75:09:64:BF:D4:4F:A5:A2 Authority key identifier: 90:3A:38:43:67:9A:0B:10:5D:CA:48:5C:3D:64:8F:3D:11:27:2F:B7 Certificate issuer: /CN=A914E488/serialNumber=903A3843679A0B105DCA485C3D648F3D11272FB7 Certificate serial: 02AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDo4Q2eaCxBdykhcPWSPPREnL7c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.mft Manifest number: 02A7 Signing time: Tue 23 Dec 2025 00:28:28 +0000 Manifest this update: Tue 23 Dec 2025 00:28:27 +0000 Manifest next update: Tue 30 Dec 2025 00:28:27 +0000 Files and hashes: 1: kDo4Q2eaCxBdykhcPWSPPREnL7c.crl (hash: 4F+xwaJViCaogQHYsSJ7tHp/CNxvhzQLqz7O31A2as8=) 2: 606EB6AE240911EDBFA59C27C4F9AE02.roa (hash: NNo4SAwO23W3h7iwFhvtQVGgAhn5LQhxSRbEa+xKr7I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.crl rsync://rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDo4Q2eaCxBdykhcPWSPPREnL7c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 00:28:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 683 (0x2ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E488, serialNumber=903A3843679A0B105DCA485C3D648F3D11272FB7 Validity Not Before: Dec 23 00:28:27 2025 GMT Not After : Dec 30 00:28:27 2025 GMT Subject: CN=6949e22b-d010 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:47:e0:09:4d:0f:81:12:6e:b4:14:52:dd:23: f1:69:b9:7f:6d:50:50:08:23:6a:3f:76:5e:47:d9: f7:2f:86:46:1d:dc:90:cc:3a:e5:c1:9a:c2:da:43: 5a:7c:12:f0:fa:91:c1:98:4a:b8:fd:56:49:23:be: 2f:90:8b:a5:36:a6:8e:9b:0a:02:d4:e1:06:d2:38: d0:af:ba:f0:7f:93:c1:c1:4e:5e:99:9f:42:bf:08: 36:a3:55:4c:ca:28:9f:f4:54:01:28:fe:3a:7c:c4: 9a:ee:87:18:27:ea:bf:80:7a:b1:7f:ee:a8:62:9c: d3:e8:19:9a:26:a7:35:5d:56:59:77:52:78:1d:96: bb:1d:31:8c:aa:4d:88:6f:36:e1:cb:77:24:9a:d2: fe:83:08:6e:37:fb:c6:6e:40:b4:d7:cb:cf:b7:a8: 57:82:d9:93:9a:3a:95:7f:f3:df:d6:6c:ef:bd:43: a1:ba:63:66:45:26:2d:89:ff:06:db:b2:3f:ac:bc: 86:67:4f:b0:ca:28:fa:cb:0d:ad:74:4f:4c:67:c7: 7d:59:8b:2a:06:10:ee:fc:3c:95:d6:a0:5b:07:24: a0:64:9e:68:75:65:cc:7e:20:b9:ab:13:ff:09:db: 95:05:7a:9f:92:f2:b5:e7:25:23:92:92:76:82:07: 37:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:08:D2:83:46:04:A4:BE:20:8C:0C:86:75:09:64:BF:D4:4F:A5:A2 X509v3 Authority Key Identifier: keyid:90:3A:38:43:67:9A:0B:10:5D:CA:48:5C:3D:64:8F:3D:11:27:2F:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDo4Q2eaCxBdykhcPWSPPREnL7c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:cf:8e:bc:d4:44:f7:15:27:8a:fb:18:f6:b2:bd:d7:7f:42: 7f:69:86:4c:c0:79:9b:ad:c5:db:53:69:f5:9a:b4:ca:63:af: f1:19:e2:4e:3c:ad:f0:fa:8d:88:6a:05:a5:26:25:62:85:cd: 32:67:c0:f2:c2:a6:25:d7:c7:5c:63:0c:89:44:37:60:98:90: 21:80:21:fb:69:64:97:eb:79:be:fa:15:d4:17:c3:45:fd:ed: c6:c2:82:f2:eb:68:25:b9:4d:d8:fd:06:c0:88:d0:c7:6a:0b: ac:cd:a1:4f:51:5d:66:05:e0:63:21:fa:24:40:a1:7d:03:18: e5:86:26:74:29:ad:ff:bf:82:2f:3f:45:1c:a8:26:ff:7c:3d: 16:ac:5e:02:45:96:5b:8f:4b:20:9b:ed:bb:d7:21:47:f3:d5: f8:3c:41:08:4a:db:4c:6c:19:9f:df:8e:a7:12:df:7b:0e:f3: b0:da:01:9f:d5:7f:3d:d0:48:95:e2:4b:cc:d9:7e:6a:6b:74: 3c:67:3a:f2:88:96:f6:ea:b1:b5:de:47:c2:96:8f:4f:0c:c3: 87:49:32:45:c0:5f:34:c0:51:56:e2:11:f4:c6:64:15:c2:d1: 72:d8:da:95:0b:5a:74:1a:3b:d9:83:30:7e:b5:74:99:9f:51: 7c:ae:b6:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAqswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU0ODgxMTAvBgNVBAUTKDkwM0EzODQzNjc5QTBCMTA1RENBNDg1QzNENjQ4RjNE MTEyNzJGQjcwHhcNMjUxMjIzMDAyODI3WhcNMjUxMjMwMDAyODI3WjAYMRYwFAYD VQQDDA02OTQ5ZTIyYi1kMDEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmkfgCU0PgRJutBRS3SPxabl/bVBQCCNqP3ZeR9n3L4ZGHdyQzDrlwZrC2kNa fBLw+pHBmEq4/VZJI74vkIulNqaOmwoC1OEG0jjQr7rwf5PBwU5emZ9Cvwg2o1VM yiif9FQBKP46fMSa7ocYJ+q/gHqxf+6oYpzT6BmaJqc1XVZZd1J4HZa7HTGMqk2I bzbhy3ckmtL+gwhuN/vGbkC018vPt6hXgtmTmjqVf/Pf1mzvvUOhumNmRSYtif8G 27I/rLyGZ0+wyij6yw2tdE9MZ8d9WYsqBhDu/DyV1qBbBySgZJ5odWXMfiC5qxP/ CduVBXqfkvK15yUjkpJ2ggc3/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF4I0oNG BKS+IIwMhnUJZL/UT6WiMB8GA1UdIwQYMBaAFJA6OENnmgsQXcpIXD1kjz0RJy+3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTQ4OC9GODg2OThDQTI0 MDUxMUVEQjk4N0I4MjNDNEY5QUUwMi9rRG80UTJlYUN4QmR5a2hjUFdTUFBSRW5M N2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tEbzRRMmVhQ3hCZHlraGNQV1NQUFJFbkw3Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTQ4OC9GODg2OThDQTI0MDUxMUVEQjk4N0I4MjNDNEY5QUUwMi9rRG80UTJlYUN4 QmR5a2hjUFdTUFBSRW5MN2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqz4681ET3FSeK+xj2sr3Xf0J/aYZMwHmbrcXbU2n1mrTKY6/xGeJO PK3w+o2IagWlJiVihc0yZ8DywqYl18dcYwyJRDdgmJAhgCH7aWSX63m++hXUF8NF /e3GwoLy62gluU3Y/QbAiNDHaguszaFPUV1mBeBjIfokQKF9AxjlhiZ0Ka3/v4Iv P0UcqCb/fD0WrF4CRZZbj0sgm+271yFH89X4PEEISttMbBmf346nEt97DvOw2gGf 1X890EiV4kvM2X5qa3Q8ZzryiJb26rG13kfClo9PDMOHSTJFwF80wFFW4hH0xmQV wtFy2NqVC1p0GjvZgzB+tXSZn1F8rrY/ -----END CERTIFICATE-----Generated at Wed Dec 24 14:09:29 2025 by rpki-client