This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9154E3F/3C3E620E18E211F09BE99557C4F9AE02/KL7nBASyQwlkwwKSkNPqYEyRDrE.mft File: KL7nBASyQwlkwwKSkNPqYEyRDrE.mft (raw, json) Hash identifier: oAjnlPHlYcqeJVU/Csshf5tr8w8978bOA4qShst4xqI= Subject key identifier: A0:B0:F6:DD:AF:3B:46:5B:75:BC:D2:0A:43:C0:29:A4:C2:3D:02:49 Authority key identifier: 28:BE:E7:04:04:B2:43:09:64:C3:02:92:90:D3:EA:60:4C:91:0E:B1 Certificate issuer: /CN=A9154E3F/serialNumber=28BEE70404B2430964C3029290D3EA604C910EB1 Certificate serial: 81 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KL7nBASyQwlkwwKSkNPqYEyRDrE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154E3F/3C3E620E18E211F09BE99557C4F9AE02/KL7nBASyQwlkwwKSkNPqYEyRDrE.mft Manifest number: 80 Signing time: Tue 23 Dec 2025 05:36:14 +0000 Manifest this update: Tue 23 Dec 2025 05:36:14 +0000 Manifest next update: Tue 30 Dec 2025 05:36:14 +0000 Files and hashes: 1: KL7nBASyQwlkwwKSkNPqYEyRDrE.crl (hash: 2KU0apJLG5NlTYu4/CUbaM/iGcxsiIkhXbVb14rcyLU=) 2: C028C06E18E211F081A75558C4F9AE02.roa (hash: +HdHyMhgt4vT3DS5nsB5YQiE8tKIuj7aqeWwrUFKUm0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154E3F/3C3E620E18E211F09BE99557C4F9AE02/KL7nBASyQwlkwwKSkNPqYEyRDrE.crl rsync://rpki.apnic.net/member_repository/A9154E3F/3C3E620E18E211F09BE99557C4F9AE02/KL7nBASyQwlkwwKSkNPqYEyRDrE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KL7nBASyQwlkwwKSkNPqYEyRDrE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 05:36:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 129 (0x81) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154E3F, serialNumber=28BEE70404B2430964C3029290D3EA604C910EB1 Validity Not Before: Dec 23 05:36:14 2025 GMT Not After : Dec 30 05:36:14 2025 GMT Subject: CN=694a2a4e-d101 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:17:24:60:e4:9c:b9:69:be:1f:86:cc:94:12: 14:b4:02:13:59:7a:e8:cf:c5:43:a4:35:f5:9c:a8: dd:d9:d9:2c:82:81:45:74:15:86:5b:51:9d:33:ce: 4f:23:15:c2:7a:fc:a4:e5:02:f6:45:bd:d4:a7:8c: 86:71:53:72:d1:fd:e5:2a:bb:d2:eb:f1:1e:fc:f2: 65:13:b4:1e:5a:f0:e3:d7:a3:96:1b:7f:09:c9:b2: 67:95:ba:a3:92:b0:9a:ec:ee:bf:a2:a6:6a:ba:cd: 60:f5:0b:d2:8b:5c:05:60:c4:d1:4a:3a:f8:65:57: d4:e1:51:34:1a:02:f9:09:18:0b:ce:60:b0:90:32: f0:d2:f9:77:00:04:2b:e4:c6:8f:00:44:68:83:f7: c3:65:90:8d:c6:48:85:2b:81:86:46:cb:96:bc:bc: 4d:3d:59:cf:0d:65:fc:4c:20:81:d7:f7:76:b3:b2: 3a:cc:d5:cc:5e:ac:64:1a:ed:43:2c:ad:01:f8:30: e4:eb:fa:73:e0:32:26:40:5e:96:31:95:0b:83:47: c6:94:4d:7a:ca:1d:68:6c:5c:10:33:77:ef:cf:48: ec:19:f4:69:ae:e9:29:bd:1f:02:a4:a7:e0:00:d2: 5f:ed:2a:e0:01:9e:57:60:ab:0d:53:d2:dc:16:f0: fd:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:B0:F6:DD:AF:3B:46:5B:75:BC:D2:0A:43:C0:29:A4:C2:3D:02:49 X509v3 Authority Key Identifier: keyid:28:BE:E7:04:04:B2:43:09:64:C3:02:92:90:D3:EA:60:4C:91:0E:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154E3F/3C3E620E18E211F09BE99557C4F9AE02/KL7nBASyQwlkwwKSkNPqYEyRDrE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KL7nBASyQwlkwwKSkNPqYEyRDrE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154E3F/3C3E620E18E211F09BE99557C4F9AE02/KL7nBASyQwlkwwKSkNPqYEyRDrE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:3b:a3:2f:e3:46:1b:06:67:79:56:b8:54:3a:25:a8:72:bd: fc:65:aa:7b:66:f9:96:e3:0c:bd:10:c6:45:61:c6:0a:64:ef: c8:c8:2a:ba:d0:89:8b:09:b5:4e:38:71:73:a8:1b:82:fa:3d: a3:d2:6d:ed:61:2a:73:de:87:e9:5d:34:29:c7:57:0e:c7:b6: c5:0e:ec:ec:f6:57:5e:bb:73:98:3b:77:db:dd:d3:b4:11:d7: 64:04:a1:dd:c2:4a:b8:fc:3f:41:bb:c7:52:66:ba:d5:b8:a7: bc:a8:ca:b0:80:4b:12:bd:bb:ba:de:d2:5f:cf:26:00:39:82: ac:23:11:94:71:a4:03:cf:3b:e0:44:08:82:e3:9e:e6:3e:54: 79:c7:47:99:e1:91:0d:c1:dc:cd:5c:78:2c:c0:f0:9e:07:47: dd:3e:26:c8:0a:4b:59:26:cb:1f:7b:e5:62:27:b9:8c:c7:87: 96:29:0f:00:5c:e7:7e:b5:d4:ff:11:f6:af:56:72:39:52:9d: c6:b0:ba:4d:1d:72:fd:9b:b4:f5:08:da:1b:eb:19:b5:bf:87: 45:ca:4a:00:2b:2d:f4:ac:bd:53:42:a1:b7:58:f7:73:b4:36: cf:11:5a:16:45:fd:35:6a:a0:15:4d:47:c8:50:21:8a:3e:3b: 25:2a:10:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTRFM0YxMTAvBgNVBAUTKDI4QkVFNzA0MDRCMjQzMDk2NEMzMDI5MjkwRDNFQTYw NEM5MTBFQjEwHhcNMjUxMjIzMDUzNjE0WhcNMjUxMjMwMDUzNjE0WjAYMRYwFAYD VQQDDA02OTRhMmE0ZS1kMTAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnBckYOScuWm+H4bMlBIUtAITWXroz8VDpDX1nKjd2dksgoFFdBWGW1GdM85P IxXCevyk5QL2Rb3Up4yGcVNy0f3lKrvS6/Ee/PJlE7QeWvDj16OWG38JybJnlbqj krCa7O6/oqZqus1g9QvSi1wFYMTRSjr4ZVfU4VE0GgL5CRgLzmCwkDLw0vl3AAQr 5MaPAERog/fDZZCNxkiFK4GGRsuWvLxNPVnPDWX8TCCB1/d2s7I6zNXMXqxkGu1D LK0B+DDk6/pz4DImQF6WMZULg0fGlE16yh1obFwQM3fvz0jsGfRprukpvR8CpKfg ANJf7SrgAZ5XYKsNU9LcFvD9BwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKCw9t2v O0ZbdbzSCkPAKaTCPQJJMB8GA1UdIwQYMBaAFCi+5wQEskMJZMMCkpDT6mBMkQ6x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NEUzRi8zQzNFNjIwRTE4 RTIxMUYwOUJFOTk1NTdDNEY5QUUwMi9LTDduQkFTeVF3bGt3d0tTa05QcVlFeVJE ckUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tMN25CQVN5UXdsa3d3S1NrTlBxWUV5UkRyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NEUzRi8zQzNFNjIwRTE4RTIxMUYwOUJFOTk1NTdDNEY5QUUwMi9LTDduQkFTeVF3 bGt3d0tTa05QcVlFeVJEckUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMO6Mv40YbBmd5VrhUOiWocr38Zap7ZvmW4wy9EMZFYcYKZO/IyCq6 0ImLCbVOOHFzqBuC+j2j0m3tYSpz3ofpXTQpx1cOx7bFDuzs9ldeu3OYO3fb3dO0 EddkBKHdwkq4/D9Bu8dSZrrVuKe8qMqwgEsSvbu63tJfzyYAOYKsIxGUcaQDzzvg RAiC457mPlR5x0eZ4ZENwdzNXHgswPCeB0fdPibICktZJssfe+ViJ7mMx4eWKQ8A XOd+tdT/EfavVnI5Up3GsLpNHXL9m7T1CNob6xm1v4dFykoAKy30rL1TQqG3WPdz tDbPEVoWRf01aqAVTUfIUCGKPjslKhAA -----END CERTIFICATE-----Generated at Wed Dec 24 15:46:41 2025 by rpki-client