This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9158650/7758D2C2BDA711EDAECD4A5DC4F9AE02/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.mft File: KBfUqGRK7EGa3M7jDE6Hok0v9Xs.mft (raw, json) Hash identifier: fptrNKD6OpxPV4KjDPsBa1dPe45Ws8Znf4ugE5dD5Ic= Subject key identifier: 29:C8:C2:BA:FD:96:AB:A6:25:79:E8:AC:C3:F7:22:4D:93:F1:E7:D5 Authority key identifier: 28:17:D4:A8:64:4A:EC:41:9A:DC:CE:E3:0C:4E:87:A2:4D:2F:F5:7B Certificate issuer: /CN=A9158650/serialNumber=2817D4A8644AEC419ADCCEE30C4E87A24D2FF57B Certificate serial: 0212 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158650/7758D2C2BDA711EDAECD4A5DC4F9AE02/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.mft Manifest number: 020D Signing time: Tue 23 Dec 2025 01:20:40 +0000 Manifest this update: Tue 23 Dec 2025 01:20:40 +0000 Manifest next update: Tue 30 Dec 2025 01:20:40 +0000 Files and hashes: 1: KBfUqGRK7EGa3M7jDE6Hok0v9Xs.crl (hash: 3uxJ+iRgmVMzDmcOzz9mBc/a9CsmHwNGAQu3teBoZyo=) 2: EA5A9A32BDAA11ED92995562C4F9AE02.roa (hash: /EEXvT665opKL7OI/mui0sN2NqpuGn4U8tvIvrJ8aw8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158650/7758D2C2BDA711EDAECD4A5DC4F9AE02/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.crl rsync://rpki.apnic.net/member_repository/A9158650/7758D2C2BDA711EDAECD4A5DC4F9AE02/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 01:20:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 530 (0x212) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158650, serialNumber=2817D4A8644AEC419ADCCEE30C4E87A24D2FF57B Validity Not Before: Dec 23 01:20:40 2025 GMT Not After : Dec 30 01:20:40 2025 GMT Subject: CN=6949ee68-3927 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:2e:49:83:f4:3c:f5:a1:72:ea:27:13:b0:4f: 11:77:ea:66:d2:fa:b3:a1:5e:de:93:77:25:b1:f7: 06:d2:16:94:ec:31:8f:93:d8:cb:89:66:3c:a3:e4: 84:a5:4c:84:4a:10:a5:78:00:9c:04:ea:49:ad:17: 0e:6c:76:87:b5:54:a6:be:91:e2:eb:64:d0:e3:b0: ea:a8:b2:8d:6a:5c:1b:27:5a:61:05:e3:c1:43:da: 6e:db:b2:db:1e:e2:2b:14:bf:0f:44:2e:8c:8b:da: f6:b1:f5:5d:eb:f3:22:ed:cc:7e:21:fc:95:bb:28: 4e:55:16:89:34:95:62:31:4b:c6:a4:ba:d3:b4:02: 3a:39:1a:c1:e6:21:ab:5c:34:d2:03:9b:b5:7c:9f: f0:8d:e1:98:d9:38:b8:09:b9:dc:12:0b:a0:23:97: 78:63:94:78:3e:8f:65:ef:e2:0a:2b:b5:0a:79:18: 6d:f0:35:fc:bb:39:fb:15:08:3c:d3:b2:c1:82:d5: 55:13:84:d7:b6:06:45:50:ff:68:4c:0a:22:e0:8c: e0:c4:5b:a2:cb:0e:d8:49:51:36:ca:12:19:26:bc: 89:c6:64:53:3b:ae:b6:36:ef:38:21:66:2b:c3:4f: 52:a6:9f:fc:6b:48:a1:9d:fe:bd:33:aa:dc:89:30: e5:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:C8:C2:BA:FD:96:AB:A6:25:79:E8:AC:C3:F7:22:4D:93:F1:E7:D5 X509v3 Authority Key Identifier: keyid:28:17:D4:A8:64:4A:EC:41:9A:DC:CE:E3:0C:4E:87:A2:4D:2F:F5:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158650/7758D2C2BDA711EDAECD4A5DC4F9AE02/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158650/7758D2C2BDA711EDAECD4A5DC4F9AE02/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:06:93:bf:0b:4b:73:e1:aa:8e:b4:f7:73:6e:7d:6f:09:b0: dd:73:90:53:76:7c:43:10:46:64:1b:ae:f1:14:24:67:f8:c4: f9:9f:27:12:9c:37:f4:51:ef:3e:b6:82:0a:9d:80:e3:41:43: 8a:af:b8:0b:23:80:42:cb:1a:cb:65:59:9f:13:7e:3b:c9:62: 6a:47:2e:c2:7e:38:fc:2f:c0:41:6a:4a:bd:7e:c7:16:93:16: 7e:cd:9b:91:27:3e:dc:d0:ee:6e:97:42:51:12:e4:31:13:b2: eb:1f:25:23:6d:94:8e:04:0a:d4:c0:98:a8:2b:dc:e7:90:80: e8:2a:d6:50:7b:b8:d0:84:21:28:20:7f:5e:d0:6b:13:68:16: bd:49:31:e9:56:e7:ae:60:a6:fa:27:c0:e6:b4:31:b0:e2:a6: 0f:6c:b9:d7:6f:a8:d1:4b:bb:6d:24:34:df:83:0f:b3:02:d3: e6:53:9a:fa:5a:f4:32:37:46:dc:83:5c:f0:c1:5d:ef:32:50: 53:d4:62:4c:a5:9c:21:5a:09:48:05:6c:c1:5c:55:fa:15:62: 5f:ac:bd:ec:38:90:c2:34:9a:37:64:b1:1c:8e:ea:b2:4e:14: bb:0f:0d:48:c9:65:58:05:08:3b:dc:52:78:c6:32:8d:d1:e4: c9:07:ab:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg2NTAxMTAvBgNVBAUTKDI4MTdENEE4NjQ0QUVDNDE5QURDQ0VFMzBDNEU4N0Ey NEQyRkY1N0IwHhcNMjUxMjIzMDEyMDQwWhcNMjUxMjMwMDEyMDQwWjAYMRYwFAYD VQQDDA02OTQ5ZWU2OC0zOTI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuy5Jg/Q89aFy6icTsE8Rd+pm0vqzoV7ek3clsfcG0haU7DGPk9jLiWY8o+SE pUyEShCleACcBOpJrRcObHaHtVSmvpHi62TQ47DqqLKNalwbJ1phBePBQ9pu27Lb HuIrFL8PRC6Mi9r2sfVd6/Mi7cx+IfyVuyhOVRaJNJViMUvGpLrTtAI6ORrB5iGr XDTSA5u1fJ/wjeGY2Ti4CbncEgugI5d4Y5R4Po9l7+IKK7UKeRht8DX8uzn7FQg8 07LBgtVVE4TXtgZFUP9oTAoi4IzgxFuiyw7YSVE2yhIZJryJxmRTO662Nu84IWYr w09Spp/8a0ihnf69M6rciTDlzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCnIwrr9 lqumJXnorMP3Ik2T8efVMB8GA1UdIwQYMBaAFCgX1KhkSuxBmtzO4wxOh6JNL/V7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODY1MC83NzU4RDJDMkJE QTcxMUVEQUVDRDRBNURDNEY5QUUwMi9LQmZVcUdSSzdFR2EzTTdqREU2SG9rMHY5 WHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tCZlVxR1JLN0VHYTNNN2pERTZIb2swdjlYcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODY1MC83NzU4RDJDMkJEQTcxMUVEQUVDRDRBNURDNEY5QUUwMi9LQmZVcUdSSzdF R2EzTTdqREU2SG9rMHY5WHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+BpO/C0tz4aqOtPdzbn1vCbDdc5BTdnxDEEZkG67xFCRn+MT5nycS nDf0Ue8+toIKnYDjQUOKr7gLI4BCyxrLZVmfE347yWJqRy7Cfjj8L8BBakq9fscW kxZ+zZuRJz7c0O5ul0JREuQxE7LrHyUjbZSOBArUwJioK9znkIDoKtZQe7jQhCEo IH9e0GsTaBa9STHpVueuYKb6J8DmtDGw4qYPbLnXb6jRS7ttJDTfgw+zAtPmU5r6 WvQyN0bcg1zwwV3vMlBT1GJMpZwhWglIBWzBXFX6FWJfrL3sOJDCNJo3ZLEcjuqy ThS7Dw1IyWVYBQg73FJ4xjKN0eTJB6u2 -----END CERTIFICATE-----Generated at Wed Dec 24 17:40:22 2025 by rpki-client