This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914F521/21658820C67E11E9AF3BA765C4F9AE02/KXaHZ1PWVWKnyoXj6ejfdQeXyUg.mft File: KXaHZ1PWVWKnyoXj6ejfdQeXyUg.mft (raw, json) Hash identifier: sS6SGbEnAtXT8lz3eD9jgzDNP41LtU3wAQhi+C4pyGg= Subject key identifier: 5B:D8:BE:C7:23:84:9A:24:C5:B2:E8:8A:8D:6A:22:29:81:73:FD:2E Authority key identifier: 29:76:87:67:53:D6:55:62:A7:CA:85:E3:E9:E8:DF:75:07:97:C9:48 Certificate issuer: /CN=A914F521/serialNumber=2976876753D65562A7CA85E3E9E8DF750797C948 Certificate serial: 0E23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KXaHZ1PWVWKnyoXj6ejfdQeXyUg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F521/21658820C67E11E9AF3BA765C4F9AE02/KXaHZ1PWVWKnyoXj6ejfdQeXyUg.mft Manifest number: 0E06 Signing time: Mon 22 Dec 2025 17:29:43 +0000 Manifest this update: Mon 22 Dec 2025 17:29:42 +0000 Manifest next update: Mon 29 Dec 2025 17:29:42 +0000 Files and hashes: 1: KXaHZ1PWVWKnyoXj6ejfdQeXyUg.crl (hash: H2eg/Kl53yG3bcfoSWsvF4un26Tlxeq1K0JXwGrXI9Q=) 2: 757320342E4011EEBC464879C4F9AE02.roa (hash: P37lIdcSAoW+RqsdCkFvhSnyXLO3TfyFSiBj1G2ZldU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F521/21658820C67E11E9AF3BA765C4F9AE02/KXaHZ1PWVWKnyoXj6ejfdQeXyUg.crl rsync://rpki.apnic.net/member_repository/A914F521/21658820C67E11E9AF3BA765C4F9AE02/KXaHZ1PWVWKnyoXj6ejfdQeXyUg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KXaHZ1PWVWKnyoXj6ejfdQeXyUg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 17:29:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3619 (0xe23) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F521, serialNumber=2976876753D65562A7CA85E3E9E8DF750797C948 Validity Not Before: Dec 22 17:29:42 2025 GMT Not After : Dec 29 17:29:42 2025 GMT Subject: CN=69498007-adcb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:04:8e:a5:05:0f:9b:f4:47:65:43:34:18:71: c8:bc:41:22:bb:9a:ae:10:32:ad:fb:98:0d:84:f3: 33:84:85:e2:cc:e8:92:ee:77:d5:3a:cc:0d:0a:63: 20:78:2b:e2:ed:b2:1c:73:ae:8c:5f:ac:45:c0:88: 99:1c:ee:3b:5e:03:c5:71:ac:fd:23:75:1f:2c:58: a7:fd:86:57:90:08:a1:29:6e:c1:d9:20:5c:cd:7f: 95:6c:4f:91:eb:46:77:a5:fd:6a:07:1b:b6:64:16: c1:20:cf:34:80:a4:33:17:d2:bc:62:9a:fd:3a:cc: b4:56:bc:fb:ab:07:fa:b7:4d:5c:ca:39:a5:1e:1d: a1:ea:09:13:88:9d:d4:28:43:4a:a6:27:2f:c9:71: 2e:9f:dc:f8:46:a8:e2:b8:e7:da:5d:af:8a:3c:69: 8d:b3:a7:f2:6d:a9:16:4d:69:f0:62:bc:c8:c3:f6: 2a:da:a3:48:9a:57:84:2d:85:16:12:4f:c8:b4:c2: 3a:af:bb:0f:e5:c3:1c:7a:bd:36:84:7d:23:38:a8: c2:3e:48:03:f8:a9:29:4e:1b:2b:6b:b1:0a:1c:01: 30:79:6c:11:21:69:57:d2:1f:47:9d:f2:81:47:87: 1b:4d:1c:1b:30:73:d9:be:ab:f1:cb:d7:58:90:8c: 4a:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:D8:BE:C7:23:84:9A:24:C5:B2:E8:8A:8D:6A:22:29:81:73:FD:2E X509v3 Authority Key Identifier: keyid:29:76:87:67:53:D6:55:62:A7:CA:85:E3:E9:E8:DF:75:07:97:C9:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F521/21658820C67E11E9AF3BA765C4F9AE02/KXaHZ1PWVWKnyoXj6ejfdQeXyUg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KXaHZ1PWVWKnyoXj6ejfdQeXyUg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F521/21658820C67E11E9AF3BA765C4F9AE02/KXaHZ1PWVWKnyoXj6ejfdQeXyUg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:cd:6a:40:23:3b:5a:be:9f:ab:db:cf:26:cd:e8:bc:d2:10: 9e:91:75:81:21:c6:49:8d:ac:51:95:39:72:af:bb:33:b6:28: 86:e0:5a:ec:56:4c:03:0b:7d:ba:8d:70:a7:fb:28:29:46:d6: 94:4b:c9:e7:69:a4:c1:4a:37:2a:cc:96:e7:fc:a4:57:26:c4: 0c:a6:82:8f:3d:42:f2:4e:22:8b:39:1f:bc:b5:3b:61:15:ea: a5:e0:bb:26:92:9c:52:b7:1a:96:ea:16:c8:63:29:60:5b:b6: 40:18:50:03:20:e7:0a:af:3c:2b:00:5a:d9:92:cb:06:5d:e4: 75:b4:46:a8:b9:40:16:f6:8b:fd:f7:b6:87:fb:8c:e2:af:a3: 8c:93:d9:ab:8a:68:6c:e3:e6:39:ba:8f:20:38:93:80:c3:8b: 64:c0:51:79:04:ac:7d:54:9f:1a:f5:66:fb:e9:b4:f1:5e:ab: 78:00:f1:bc:58:34:09:6b:a0:61:23:d3:34:70:86:14:cf:0f: 77:dc:08:69:a5:66:05:77:b3:df:83:a2:cf:97:17:68:73:3a: 3b:cb:7b:47:91:99:ab:27:10:08:86:08:da:ce:5b:1e:05:80: e8:7e:33:6e:5e:50:56:1e:a5:d4:57:be:38:57:ee:3e:8d:4d: f4:77:63:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDiMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEY1MjExMTAvBgNVBAUTKDI5NzY4NzY3NTNENjU1NjJBN0NBODVFM0U5RThERjc1 MDc5N0M5NDgwHhcNMjUxMjIyMTcyOTQyWhcNMjUxMjI5MTcyOTQyWjAYMRYwFAYD VQQDDA02OTQ5ODAwNy1hZGNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkwSOpQUPm/RHZUM0GHHIvEEiu5quEDKt+5gNhPMzhIXizOiS7nfVOswNCmMg eCvi7bIcc66MX6xFwIiZHO47XgPFcaz9I3UfLFin/YZXkAihKW7B2SBczX+VbE+R 60Z3pf1qBxu2ZBbBIM80gKQzF9K8Ypr9Osy0Vrz7qwf6t01cyjmlHh2h6gkTiJ3U KENKpicvyXEun9z4RqjiuOfaXa+KPGmNs6fybakWTWnwYrzIw/Yq2qNImleELYUW Ek/ItMI6r7sP5cMcer02hH0jOKjCPkgD+KkpThsra7EKHAEweWwRIWlX0h9HnfKB R4cbTRwbMHPZvqvxy9dYkIxKJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFvYvscj hJokxbLoio1qIimBc/0uMB8GA1UdIwQYMBaAFCl2h2dT1lVip8qF4+no33UHl8lI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjUyMS8yMTY1ODgyMEM2 N0UxMUU5QUYzQkE3NjVDNEY5QUUwMi9LWGFIWjFQV1ZXS255b1hqNmVqZmRRZVh5 VWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tYYUhaMVBXVldLbnlvWGo2ZWpmZFFlWHlVZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjUyMS8yMTY1ODgyMEM2N0UxMUU5QUYzQkE3NjVDNEY5QUUwMi9LWGFIWjFQV1ZX S255b1hqNmVqZmRRZVh5VWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRzWpAIztavp+r288mzei80hCekXWBIcZJjaxRlTlyr7sztiiG4Frs VkwDC326jXCn+ygpRtaUS8nnaaTBSjcqzJbn/KRXJsQMpoKPPULyTiKLOR+8tTth Feql4LsmkpxStxqW6hbIYylgW7ZAGFADIOcKrzwrAFrZkssGXeR1tEaouUAW9ov9 97aH+4zir6OMk9mrimhs4+Y5uo8gOJOAw4tkwFF5BKx9VJ8a9Wb76bTxXqt4APG8 WDQJa6BhI9M0cIYUzw933AhppWYFd7Pfg6LPlxdoczo7y3tHkZmrJxAIhgjazlse BYDofjNuXlBWHqXUV744V+4+jU30d2MF -----END CERTIFICATE-----Generated at Tue Dec 23 20:21:00 2025 by rpki-client