This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9151265/05709AEA521F11ECB3D0192BC4F9AE02/kakyPLNEJvPZyJDjl4Ag1BezWfU.mft File: kakyPLNEJvPZyJDjl4Ag1BezWfU.mft (raw, json) Hash identifier: yI+6MX0MB1SEBTjHgVLUXqM53XfxkFOwupxrm7hmqBw= Subject key identifier: A4:EA:E1:BB:B4:AD:9C:34:C2:81:92:0E:1B:B2:D4:CF:B4:04:28:C9 Authority key identifier: 91:A9:32:3C:B3:44:26:F3:D9:C8:90:E3:97:80:20:D4:17:B3:59:F5 Certificate issuer: /CN=A9151265/serialNumber=91A9323CB34426F3D9C890E3978020D417B359F5 Certificate serial: 04C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kakyPLNEJvPZyJDjl4Ag1BezWfU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9151265/05709AEA521F11ECB3D0192BC4F9AE02/kakyPLNEJvPZyJDjl4Ag1BezWfU.mft Manifest number: 04C1 Signing time: Mon 22 Dec 2025 22:57:20 +0000 Manifest this update: Mon 22 Dec 2025 22:57:20 +0000 Manifest next update: Mon 29 Dec 2025 22:57:20 +0000 Files and hashes: 1: kakyPLNEJvPZyJDjl4Ag1BezWfU.crl (hash: uxG9hlDQu45JI8BsyfXdA7bgy0kUQsnYJ8OHGV70/4A=) 2: B1334FD4522011ECB0594C2BC4F9AE02.roa (hash: L/DAW8Ka/ZQ70dTAaIp8b3yTT3hMsyA6jtH7bmtzLEk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9151265/05709AEA521F11ECB3D0192BC4F9AE02/kakyPLNEJvPZyJDjl4Ag1BezWfU.crl rsync://rpki.apnic.net/member_repository/A9151265/05709AEA521F11ECB3D0192BC4F9AE02/kakyPLNEJvPZyJDjl4Ag1BezWfU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kakyPLNEJvPZyJDjl4Ag1BezWfU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 22:57:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1223 (0x4c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9151265, serialNumber=91A9323CB34426F3D9C890E3978020D417B359F5 Validity Not Before: Dec 22 22:57:20 2025 GMT Not After : Dec 29 22:57:20 2025 GMT Subject: CN=6949ccd0-6702 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:db:8a:b3:bd:e0:10:c6:20:bd:ea:7e:41:e1: 57:a3:b4:bd:a8:46:cc:18:c8:77:5d:fc:2c:33:42: 44:c7:ef:a7:98:12:fa:11:12:8f:23:e6:05:7b:48: 1e:86:ac:bc:58:72:d1:c0:32:d9:6f:88:2b:52:90: dd:5f:24:a3:93:86:f8:d7:0a:78:b5:34:01:52:aa: 86:b7:25:b6:e6:2b:bb:37:66:c6:61:db:ff:45:f9: 1a:ca:13:7a:a6:ec:e7:8f:4e:d1:9d:58:46:ac:4f: 4c:65:2c:82:75:c3:b6:12:07:30:8c:8b:cc:c3:76: 9c:48:61:05:7c:51:75:87:3b:6b:32:2f:06:38:2e: 0f:f2:74:df:64:e0:31:c9:e1:d4:37:65:b0:91:51: 88:3d:f3:a8:59:71:d1:b4:5e:33:a9:f1:4b:82:32: 12:bd:7d:fb:2d:c3:3b:c4:b9:41:dc:18:ad:32:dc: d9:41:f5:b9:61:f3:eb:60:ab:e4:da:38:a3:77:d2: 10:a5:15:da:bf:8e:29:82:a4:cd:31:1e:93:dc:f0: 16:db:68:cf:e2:a6:b4:3a:e7:1a:2f:7d:a7:92:04: 82:84:6f:54:45:23:3f:d5:7f:a8:f5:de:13:24:b9: 02:01:4d:b9:69:5e:07:02:f0:92:da:06:09:ab:76: 68:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:EA:E1:BB:B4:AD:9C:34:C2:81:92:0E:1B:B2:D4:CF:B4:04:28:C9 X509v3 Authority Key Identifier: keyid:91:A9:32:3C:B3:44:26:F3:D9:C8:90:E3:97:80:20:D4:17:B3:59:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9151265/05709AEA521F11ECB3D0192BC4F9AE02/kakyPLNEJvPZyJDjl4Ag1BezWfU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kakyPLNEJvPZyJDjl4Ag1BezWfU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151265/05709AEA521F11ECB3D0192BC4F9AE02/kakyPLNEJvPZyJDjl4Ag1BezWfU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:fa:03:8f:f0:7a:92:4b:b6:da:26:6c:88:62:ab:b9:2d:bb: 43:fc:e0:06:21:dd:fc:2c:23:a4:11:c6:11:62:3f:6e:8c:b6: 30:3b:99:75:71:e0:57:2c:a7:82:ec:17:21:2e:fe:f2:5b:e9: 6e:b0:cb:86:6b:44:5b:dd:e4:e3:81:41:c7:f0:61:5c:9a:83: fd:7a:2b:6f:3c:f9:2c:ab:d5:c7:79:45:c4:60:69:24:b4:0f: 2c:de:45:ee:33:51:db:00:fb:9b:e8:90:e8:41:8d:84:90:47: 52:79:f1:73:8b:94:fe:ba:56:76:d0:8f:3d:15:cf:2c:07:53: 45:bd:22:e4:eb:0d:21:24:20:b4:bb:a3:c4:2a:ff:99:a5:63: ec:37:b2:d5:27:10:fe:82:3f:92:c0:85:39:45:30:00:8f:62: e6:a0:46:16:86:4f:8e:a3:c6:2b:0a:0f:87:81:97:24:77:13: 2c:49:f0:e1:ac:00:b7:8f:8b:ec:4d:a4:6c:e3:93:55:55:a0: 0a:13:e1:62:12:ba:85:c6:b3:9f:a0:5b:ba:2e:1b:7d:b8:aa: 7b:87:10:dc:1c:9e:43:41:77:8a:0d:49:18:26:2d:65:04:c8: e2:47:5f:04:44:5b:84:d6:2a:a5:7c:53:62:9c:f9:e5:c2:d2: 19:72:bf:b5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBMcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx NTEyNjUxMTAvBgNVBAUTKDkxQTkzMjNDQjM0NDI2RjNEOUM4OTBFMzk3ODAyMEQ0 MTdCMzU5RjUwHhcNMjUxMjIyMjI1NzIwWhcNMjUxMjI5MjI1NzIwWjAYMRYwFAYD VQQDDA02OTQ5Y2NkMC02NzAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvtuKs73gEMYgvep+QeFXo7S9qEbMGMh3XfwsM0JEx++nmBL6ERKPI+YFe0ge hqy8WHLRwDLZb4grUpDdXySjk4b41wp4tTQBUqqGtyW25iu7N2bGYdv/RfkayhN6 puznj07RnVhGrE9MZSyCdcO2EgcwjIvMw3acSGEFfFF1hztrMi8GOC4P8nTfZOAx yeHUN2WwkVGIPfOoWXHRtF4zqfFLgjISvX37LcM7xLlB3BitMtzZQfW5YfPrYKvk 2jijd9IQpRXav44pgqTNMR6T3PAW22jP4qa0OucaL32nkgSChG9URSM/1X+o9d4T JLkCAU25aV4HAvCS2gYJq3ZocwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKTq4bu0 rZw0woGSDhuy1M+0BCjJMB8GA1UdIwQYMBaAFJGpMjyzRCbz2ciQ45eAINQXs1n1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTI2NS8wNTcwOUFFQTUy MUYxMUVDQjNEMDE5MkJDNEY5QUUwMi9rYWt5UExORUp2UFp5SkRqbDRBZzFCZXpX ZlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tha3lQTE5FSnZQWnlKRGpsNEFnMUJleldmVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MTI2NS8wNTcwOUFFQTUyMUYxMUVDQjNEMDE5MkJDNEY5QUUwMi9rYWt5UExORUp2 UFp5SkRqbDRBZzFCZXpXZlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAn+gOP8HqSS7baJmyIYqu5LbtD/OAGId38LCOkEcYRYj9ujLYwO5l1 ceBXLKeC7BchLv7yW+lusMuGa0Rb3eTjgUHH8GFcmoP9eitvPPksq9XHeUXEYGkk tA8s3kXuM1HbAPub6JDoQY2EkEdSefFzi5T+ulZ20I89Fc8sB1NFvSLk6w0hJCC0 u6PEKv+ZpWPsN7LVJxD+gj+SwIU5RTAAj2LmoEYWhk+Oo8YrCg+HgZckdxMsSfDh rAC3j4vsTaRs45NVVaAKE+FiErqFxrOfoFu6Lht9uKp7hxDcHJ5DQXeKDUkYJi1l BMjiR18ERFuE1iqlfFNinPnlwtIZcr+1 -----END CERTIFICATE-----Generated at Wed Dec 24 17:40:18 2025 by rpki-client