This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9152329/C7FAD368A26811EF9D914118C4F9AE02/KTrGQFMJ3pSVFof-Fylq3c2Vcvw.mft File: KTrGQFMJ3pSVFof-Fylq3c2Vcvw.mft (raw, json) Hash identifier: pefj6GE0lrj9VLsdHLb2r5DlrnDXxrLD4kMHjNLRQzM= Subject key identifier: 51:39:F6:C4:A5:14:04:B5:5E:71:1B:45:C2:96:72:CD:6A:37:6C:D4 Authority key identifier: 29:3A:C6:40:53:09:DE:94:95:16:87:FE:17:29:6A:DD:CD:95:72:FC Certificate issuer: /CN=A9152329/serialNumber=293AC6405309DE94951687FE17296ADDCD9572FC Certificate serial: C9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KTrGQFMJ3pSVFof-Fylq3c2Vcvw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152329/C7FAD368A26811EF9D914118C4F9AE02/KTrGQFMJ3pSVFof-Fylq3c2Vcvw.mft Manifest number: C7 Signing time: Wed 03 Dec 2025 04:12:45 +0000 Manifest this update: Wed 03 Dec 2025 04:12:45 +0000 Manifest next update: Wed 10 Dec 2025 04:12:45 +0000 Files and hashes: 1: KTrGQFMJ3pSVFof-Fylq3c2Vcvw.crl (hash: 3grj5ZS77EoptH54QFP/5oyUxqftiBQZM4ZPB2ya3tQ=) 2: 38161248A26911EFBF6D0319C4F9AE02.roa (hash: n0Thufh5JkG5zit4bqbChTpHcB8GdZqVj3xLM+DLazE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152329/C7FAD368A26811EF9D914118C4F9AE02/KTrGQFMJ3pSVFof-Fylq3c2Vcvw.crl rsync://rpki.apnic.net/member_repository/A9152329/C7FAD368A26811EF9D914118C4F9AE02/KTrGQFMJ3pSVFof-Fylq3c2Vcvw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KTrGQFMJ3pSVFof-Fylq3c2Vcvw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 04:12:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 201 (0xc9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152329, serialNumber=293AC6405309DE94951687FE17296ADDCD9572FC Validity Not Before: Dec 3 04:12:45 2025 GMT Not After : Dec 10 04:12:45 2025 GMT Subject: CN=692fb8bd-61e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:d0:af:ec:76:c9:c1:b2:7e:3f:6a:aa:63:5c: e1:61:7b:5d:a3:06:a7:6a:12:46:6a:32:68:13:81: a3:89:34:a9:a6:ba:c7:2b:2a:a3:18:1b:8d:3d:b1: 54:f8:3d:ae:92:fb:dd:e6:00:ef:c0:d9:56:ae:aa: bd:57:c2:6a:60:48:53:c7:40:f2:46:6f:22:5c:1b: 35:b1:14:f1:f7:91:3b:45:ca:05:b3:e8:a9:fb:3d: e7:8c:23:86:92:a8:54:6d:a3:fc:a2:bb:f0:2c:b7: 6a:44:73:cf:f8:3a:5a:af:2b:75:65:4d:e5:85:5d: 6c:5d:bc:fd:40:8e:11:37:78:7e:e1:db:1d:55:e0: 04:0c:8c:03:c5:ef:2b:ac:db:37:0a:2f:f4:d0:d2: dc:bc:83:d7:29:63:23:8e:68:4c:3b:74:5e:0a:a5: 24:f8:6d:a5:7d:56:b5:40:8f:2c:e8:0f:25:54:9f: a0:f8:88:71:ef:4a:ba:b9:70:a3:ff:97:33:c1:44: ef:fb:60:2e:f9:a1:73:fb:eb:13:ed:b5:50:0e:2c: 1b:f6:d6:61:8a:6c:5d:af:9d:01:f0:71:c8:53:93: ad:05:cc:3e:d0:de:b6:17:8e:55:a1:2b:04:a6:62: 2c:04:cc:ef:d5:46:94:41:b7:40:78:a0:b6:aa:47: c9:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:39:F6:C4:A5:14:04:B5:5E:71:1B:45:C2:96:72:CD:6A:37:6C:D4 X509v3 Authority Key Identifier: keyid:29:3A:C6:40:53:09:DE:94:95:16:87:FE:17:29:6A:DD:CD:95:72:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152329/C7FAD368A26811EF9D914118C4F9AE02/KTrGQFMJ3pSVFof-Fylq3c2Vcvw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KTrGQFMJ3pSVFof-Fylq3c2Vcvw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152329/C7FAD368A26811EF9D914118C4F9AE02/KTrGQFMJ3pSVFof-Fylq3c2Vcvw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cf:70:0c:13:df:02:d2:57:50:50:7e:71:42:fb:ea:68:51:a9: f3:09:5e:1b:07:cb:04:c2:de:a2:e8:75:0d:09:51:31:1b:5c: 63:88:77:e2:db:bb:80:75:d9:71:4c:17:68:ee:fe:9e:16:d4: 1c:93:c3:e3:89:0a:3e:e3:d8:32:81:c7:bc:dd:c2:26:23:a9: 1a:1e:46:2a:6a:df:47:86:d7:7c:80:f8:b3:cc:da:18:9d:f7: 3c:9c:1e:1e:51:09:1d:5e:91:36:8a:de:cb:cf:d2:67:be:7e: 03:3a:b6:2e:01:ed:6c:07:b7:f6:13:9b:63:59:9a:ab:3f:78: 79:14:c9:a4:32:8b:98:00:1e:7f:29:d8:da:fd:c7:b8:31:cb: c3:09:86:8a:c4:39:2b:d5:11:05:3a:5b:80:df:c8:e6:de:5f: 00:19:ed:c8:7c:98:38:05:7f:92:71:a2:2d:de:25:96:ce:04: 3e:17:68:fa:eb:a6:55:b0:09:0c:33:6d:81:ba:ea:27:31:8c: 24:b5:08:f7:63:22:0d:d2:6d:bc:e2:4c:99:34:09:0a:bb:a6: d0:9f:e5:46:cf:b5:f5:92:04:1b:25:84:52:88:4e:b4:5f:5b: e1:e2:b6:77:98:31:9d:5f:46:9d:ba:b4:af:b3:ef:31:9e:af: 1d:b3:d4:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTIzMjkxMTAvBgNVBAUTKDI5M0FDNjQwNTMwOURFOTQ5NTE2ODdGRTE3Mjk2QURE Q0Q5NTcyRkMwHhcNMjUxMjAzMDQxMjQ1WhcNMjUxMjEwMDQxMjQ1WjAYMRYwFAYD VQQDEw02OTJmYjhiZC02MWU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq9Cv7HbJwbJ+P2qqY1zhYXtdowanahJGajJoE4GjiTSpprrHKyqjGBuNPbFU +D2ukvvd5gDvwNlWrqq9V8JqYEhTx0DyRm8iXBs1sRTx95E7RcoFs+ip+z3njCOG kqhUbaP8orvwLLdqRHPP+Dparyt1ZU3lhV1sXbz9QI4RN3h+4dsdVeAEDIwDxe8r rNs3Ci/00NLcvIPXKWMjjmhMO3ReCqUk+G2lfVa1QI8s6A8lVJ+g+Ihx70q6uXCj /5czwUTv+2Au+aFz++sT7bVQDiwb9tZhimxdr50B8HHIU5OtBcw+0N62F45VoSsE pmIsBMzv1UaUQbdAeKC2qkfJfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFE59sSl FAS1XnEbRcKWcs1qN2zUMB8GA1UdIwQYMBaAFCk6xkBTCd6UlRaH/hcpat3NlXL8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjMyOS9DN0ZBRDM2OEEy NjgxMUVGOUQ5MTQxMThDNEY5QUUwMi9LVHJHUUZNSjNwU1ZGb2YtRnlscTNjMlZj dncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0tUckdRRk1KM3BTVkZvZi1GeWxxM2MyVmN2dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjMyOS9DN0ZBRDM2OEEyNjgxMUVGOUQ5MTQxMThDNEY5QUUwMi9LVHJHUUZNSjNw U1ZGb2YtRnlscTNjMlZjdncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDPcAwT3wLSV1BQfnFC++poUanzCV4bB8sEwt6i6HUNCVExG1xjiHfi 27uAddlxTBdo7v6eFtQck8PjiQo+49gygce83cImI6kaHkYqat9Hhtd8gPizzNoY nfc8nB4eUQkdXpE2it7Lz9Jnvn4DOrYuAe1sB7f2E5tjWZqrP3h5FMmkMouYAB5/ Kdja/ce4McvDCYaKxDkr1REFOluA38jm3l8AGe3IfJg4BX+ScaIt3iWWzgQ+F2j6 66ZVsAkMM22BuuonMYwktQj3YyIN0m284kyZNAkKu6bQn+VGz7X1kgQbJYRSiE60 X1vh4rZ3mDGdX0adurSvs+8xnq8ds9RQ -----END CERTIFICATE-----Generated at Wed Dec 3 15:32:05 2025 by rpki-client