This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.mft File: KrJDLDrVEo7XPpnEYNBhH69NIg4.mft (raw, json) Hash identifier: mGhKI3D2AtW66OJ/48lBEypeeAlrQqZDi+6Q/8aYxg8= Subject key identifier: 15:D8:FE:82:A1:F7:67:5C:A0:DD:69:17:42:0F:79:DD:4C:AB:9F:92 Authority key identifier: 2A:B2:43:2C:3A:D5:12:8E:D7:3E:99:C4:60:D0:61:1F:AF:4D:22:0E Certificate issuer: /CN=A9153850/serialNumber=2AB2432C3AD5128ED73E99C460D0611FAF4D220E Certificate serial: A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KrJDLDrVEo7XPpnEYNBhH69NIg4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.mft Manifest number: 9D Signing time: Tue 23 Dec 2025 05:26:10 +0000 Manifest this update: Tue 23 Dec 2025 05:26:09 +0000 Manifest next update: Tue 30 Dec 2025 05:26:09 +0000 Files and hashes: 1: KrJDLDrVEo7XPpnEYNBhH69NIg4.crl (hash: 4N2j3/Al2XUOfVlQGx+bcd6U4nySanIYtbQ29QJDo8U=) 2: FC7F121AAA6F11F0BCFEBD63C4F9AE02.roa (hash: ACjymaT82Ts20I3seIpJ3qFJasSA4FVf/+MM9Q+0Im8=) 3: D6246110AA6F11F0AD515C63C4F9AE02.roa (hash: RGGyK8DspBxTZffeC/YcsDxozPm/op0sIdvWa7dUrhw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.crl rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KrJDLDrVEo7XPpnEYNBhH69NIg4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 05:26:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 168 (0xa8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153850, serialNumber=2AB2432C3AD5128ED73E99C460D0611FAF4D220E Validity Not Before: Dec 23 05:26:09 2025 GMT Not After : Dec 30 05:26:09 2025 GMT Subject: CN=694a27f2-45da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:a9:7f:f3:d1:f3:5c:c6:e0:0b:31:3c:72:d3: e7:a7:ae:de:eb:0c:2d:ab:50:68:0a:7d:fd:9f:0b: 99:67:be:0e:83:45:66:38:13:ea:ee:cd:cb:23:4c: e2:6f:27:be:a8:38:a2:96:32:91:5e:e8:9b:c8:b3: 5a:e3:2d:f2:15:82:09:f3:72:33:08:58:53:19:18: 37:0e:66:56:97:28:8b:49:a1:99:fa:80:75:fe:c1: 56:cd:84:0c:5f:fd:c6:3c:5e:5c:74:1f:13:b8:5c: 11:1e:3d:f3:4e:fb:85:4e:20:ac:b1:90:4e:5a:ce: 55:cc:9c:b2:3c:5a:2f:8d:cc:05:cb:86:3f:0e:ec: ea:89:45:71:6d:03:1d:4d:9e:6f:53:73:8a:87:ed: b2:bc:5d:37:25:3a:ff:17:99:26:66:95:51:72:10: 13:bc:56:f3:9a:df:24:26:57:08:34:a3:dc:5f:b0: 6a:bf:57:01:5f:97:0e:e5:74:72:31:2d:26:7d:f4: 59:06:84:78:ea:02:d1:e1:a1:7e:bd:d2:9a:4d:0c: fa:95:31:6a:97:62:df:20:ff:bb:ed:93:60:a2:17: f5:d9:d0:83:3a:12:ad:54:34:31:80:26:b6:6e:6a: 80:39:b6:bb:1f:26:1a:87:ac:f5:0e:ac:11:df:97: ab:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:D8:FE:82:A1:F7:67:5C:A0:DD:69:17:42:0F:79:DD:4C:AB:9F:92 X509v3 Authority Key Identifier: keyid:2A:B2:43:2C:3A:D5:12:8E:D7:3E:99:C4:60:D0:61:1F:AF:4D:22:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KrJDLDrVEo7XPpnEYNBhH69NIg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:71:c5:86:24:24:b1:34:57:22:dd:7b:38:9d:d3:74:cb:94: e8:e9:bb:0e:d9:a9:d3:69:6d:f7:10:cc:86:79:64:27:d8:0b: 6c:d4:f6:69:75:d5:bd:9a:27:c7:aa:c5:2c:a7:66:12:65:fe: 04:31:ee:6f:6c:e6:cf:c4:15:28:cf:0c:11:f9:53:f4:9b:13: c3:3d:6f:22:80:7f:3a:4f:e4:2e:ca:49:c5:dc:af:58:ef:73: 99:f1:9a:84:32:11:be:fe:51:0f:4e:16:c0:00:94:04:52:53: 67:72:1c:d6:2c:a9:84:2e:b6:ff:e5:aa:d7:17:31:83:74:9b: 1c:66:e9:5c:85:34:88:2f:fe:df:2c:8f:46:dc:aa:6a:7e:21: ea:18:db:73:c8:2d:44:da:a0:68:23:09:1d:18:e1:dd:a3:ba: 8f:36:fd:12:41:06:5f:da:8c:b9:64:72:fc:1b:a2:d3:69:47: 36:bd:ca:42:55:d6:84:a3:1f:0c:48:34:65:17:b3:a6:01:14: 29:b4:9c:4b:f4:7f:0b:c1:62:d3:f1:ac:78:28:c0:33:4a:dd: ed:2d:79:c8:d7:20:dc:06:d3:d7:84:a1:78:79:e7:20:c6:b7: b3:af:12:2f:a5:38:84:c7:44:8e:80:3d:da:52:ea:d2:4a:fe: df:84:1e:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM4NTAxMTAvBgNVBAUTKDJBQjI0MzJDM0FENTEyOEVENzNFOTlDNDYwRDA2MTFG QUY0RDIyMEUwHhcNMjUxMjIzMDUyNjA5WhcNMjUxMjMwMDUyNjA5WjAYMRYwFAYD VQQDDA02OTRhMjdmMi00NWRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuql/89HzXMbgCzE8ctPnp67e6wwtq1BoCn39nwuZZ74Og0VmOBPq7s3LI0zi bye+qDiiljKRXuibyLNa4y3yFYIJ83IzCFhTGRg3DmZWlyiLSaGZ+oB1/sFWzYQM X/3GPF5cdB8TuFwRHj3zTvuFTiCssZBOWs5VzJyyPFovjcwFy4Y/DuzqiUVxbQMd TZ5vU3OKh+2yvF03JTr/F5kmZpVRchATvFbzmt8kJlcINKPcX7Bqv1cBX5cO5XRy MS0mffRZBoR46gLR4aF+vdKaTQz6lTFql2LfIP+77ZNgohf12dCDOhKtVDQxgCa2 bmqAOba7HyYah6z1DqwR35erbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBXY/oKh 92dcoN1pF0IPed1Mq5+SMB8GA1UdIwQYMBaAFCqyQyw61RKO1z6ZxGDQYR+vTSIO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Mzg1MC83QjNCMzdENDAx ODYxMUYwQjA1QjRDNTlDNEY5QUUwMi9LckpETERyVkVvN1hQcG5FWU5CaEg2OU5J ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tySkRMRHJWRW83WFBwbkVZTkJoSDY5TklnNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Mzg1MC83QjNCMzdENDAxODYxMUYwQjA1QjRDNTlDNEY5QUUwMi9LckpETERyVkVv N1hQcG5FWU5CaEg2OU5JZzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBaccWGJCSxNFci3Xs4ndN0y5To6bsO2anTaW33EMyGeWQn2Ats1PZp ddW9mifHqsUsp2YSZf4EMe5vbObPxBUozwwR+VP0mxPDPW8igH86T+QuyknF3K9Y 73OZ8ZqEMhG+/lEPThbAAJQEUlNnchzWLKmELrb/5arXFzGDdJscZulchTSIL/7f LI9G3KpqfiHqGNtzyC1E2qBoIwkdGOHdo7qPNv0SQQZf2oy5ZHL8G6LTaUc2vcpC VdaEox8MSDRlF7OmARQptJxL9H8LwWLT8ax4KMAzSt3tLXnI1yDcBtPXhKF4eecg xrezrxIvpTiEx0SOgD3aUurSSv7fhB4q -----END CERTIFICATE-----Generated at Wed Dec 24 14:11:26 2025 by rpki-client