This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.mft File: KdFsmNs9W_ZLa5IEwJYAhgzSlFI.mft (raw, json) Hash identifier: 7j1EEH9Ny7V7rDtlFwUjoml8M/HAmlgD7SIS0FqOVEg= Subject key identifier: 85:D2:47:94:C4:63:75:6F:46:99:60:43:38:76:B2:7C:AB:2B:9D:3B Authority key identifier: 29:D1:6C:98:DB:3D:5B:F6:4B:6B:92:04:C0:96:00:86:0C:D2:94:52 Certificate issuer: /CN=A916022F/serialNumber=29D16C98DB3D5BF64B6B9204C09600860CD29452 Certificate serial: 1133 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.mft Manifest number: 24AD Signing time: Wed 24 Dec 2025 16:44:06 +0000 Manifest this update: Wed 24 Dec 2025 16:44:05 +0000 Manifest next update: Wed 31 Dec 2025 16:44:05 +0000 Files and hashes: 1: KdFsmNs9W_ZLa5IEwJYAhgzSlFI.crl (hash: G8+S1DXi83AORDInlmdiVL8nP6eQMa9f0Ybq8Hs1icI=) 2: DE0A75A605EB11EA94CD7287C4F9AE02.roa (hash: dRGqWnvgsIsN2pbF+Ps/gIu/drVJ5zxN2ZisSAeqSPE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.crl rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Dec 2025 16:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4403 (0x1133) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916022F, serialNumber=29D16C98DB3D5BF64B6B9204C09600860CD29452 Validity Not Before: Dec 24 16:44:05 2025 GMT Not After : Dec 31 16:44:05 2025 GMT Subject: CN=694c1856-a689 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:41:89:74:c1:0b:a6:9c:cf:54:9f:48:f4:14: dc:f6:fe:72:88:7f:1c:99:3b:de:0a:17:67:d2:2f: 75:10:e6:69:b2:28:31:cf:51:76:16:16:01:07:0d: 6d:79:e0:34:ab:56:c1:ba:0f:de:e8:c1:22:66:a1: 65:5f:02:6f:0a:bd:3f:5e:0b:2b:70:02:5b:5f:d1: 55:c1:fc:32:ee:2b:16:47:dd:3b:9b:a1:3c:e9:f0: e9:8c:ae:28:eb:26:8f:b7:3e:0d:81:58:da:f3:97: d8:27:a2:b9:39:08:cb:8f:7e:f0:e6:7a:cb:e3:03: aa:9d:79:74:4d:1e:08:f9:2f:eb:d5:00:50:ca:6a: 77:bb:fa:47:95:20:ea:35:76:94:97:d7:ff:94:25: 73:5c:11:18:30:17:7f:4f:c9:fb:0a:18:a8:87:14: f7:60:41:8c:2d:a2:68:c5:0e:34:ee:09:a5:24:d4: 4e:93:23:4e:de:ec:de:f4:84:fb:af:d8:00:83:67: 23:98:8c:23:25:8d:af:3d:7b:ef:5f:b5:ab:59:20: 3a:69:76:89:bd:57:02:20:a9:bd:32:e3:ea:6d:dd: 86:2c:43:6a:ae:7e:8f:21:af:00:de:d0:0c:c9:f0: d9:6c:75:91:fd:34:47:50:4d:31:7c:53:dc:8b:a4: 5e:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:D2:47:94:C4:63:75:6F:46:99:60:43:38:76:B2:7C:AB:2B:9D:3B X509v3 Authority Key Identifier: keyid:29:D1:6C:98:DB:3D:5B:F6:4B:6B:92:04:C0:96:00:86:0C:D2:94:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bc:e8:d4:fa:bb:45:95:1e:47:05:eb:a1:8d:c1:14:bf:ad:34: ad:e1:67:94:ab:be:a2:b6:32:85:62:a0:52:b3:a0:5c:f8:a8: be:b9:38:50:be:ad:7b:99:97:14:5a:a6:06:f5:55:27:a5:ab: 52:ef:b8:bb:ac:5c:1a:67:03:ab:1a:1a:2a:db:de:88:cb:40: b2:57:92:17:54:d9:9e:d4:90:21:f1:d0:e6:5d:f8:44:b7:88: 59:85:a1:32:d9:5b:a6:62:dd:74:b7:9e:50:8e:4f:cb:7e:fe: 08:bb:b0:4a:4e:a6:bc:1d:ea:ab:fa:4a:92:86:0b:d7:26:80: 9b:2d:72:43:b9:15:31:09:9e:38:82:99:9a:2b:5a:cc:5e:58: ef:a8:9e:ab:08:ec:50:a3:31:77:a7:43:4d:7d:ac:f7:25:19: 18:2c:ec:90:20:96:87:69:19:62:90:59:7d:c0:8e:20:fb:94: 9f:d7:0d:d9:f1:0e:a0:97:ff:54:63:65:e2:58:d7:58:4f:cc: b2:05:39:18:2b:96:79:69:30:1c:ce:a7:c4:a9:79:6b:00:2d: fd:87:f2:f8:56:a8:e5:44:01:af:b2:5b:af:eb:c6:14:81:db: 21:85:1e:53:22:9f:06:01:99:af:db:a0:de:cf:89:21:23:40: 0c:0e:22:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICETMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjAyMkYxMTAvBgNVBAUTKDI5RDE2Qzk4REIzRDVCRjY0QjZCOTIwNEMwOTYwMDg2 MENEMjk0NTIwHhcNMjUxMjI0MTY0NDA1WhcNMjUxMjMxMTY0NDA1WjAYMRYwFAYD VQQDDA02OTRjMTg1Ni1hNjg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA70GJdMELppzPVJ9I9BTc9v5yiH8cmTveChdn0i91EOZpsigxz1F2FhYBBw1t eeA0q1bBug/e6MEiZqFlXwJvCr0/XgsrcAJbX9FVwfwy7isWR907m6E86fDpjK4o 6yaPtz4NgVja85fYJ6K5OQjLj37w5nrL4wOqnXl0TR4I+S/r1QBQymp3u/pHlSDq NXaUl9f/lCVzXBEYMBd/T8n7ChiohxT3YEGMLaJoxQ407gmlJNROkyNO3uze9IT7 r9gAg2cjmIwjJY2vPXvvX7WrWSA6aXaJvVcCIKm9MuPqbd2GLENqrn6PIa8A3tAM yfDZbHWR/TRHUE0xfFPci6ReewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIXSR5TE Y3VvRplgQzh2snyrK507MB8GA1UdIwQYMBaAFCnRbJjbPVv2S2uSBMCWAIYM0pRS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDIyRi85RUM3QUZCNEFB N0QxMUU4ODYxNDQ1MjRDNEY5QUUwMi9LZEZzbU5zOVdfWkxhNUlFd0pZQWhnelNs RkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tkRnNtTnM5V19aTGE1SUV3SllBaGd6U2xGSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDIyRi85RUM3QUZCNEFBN0QxMUU4ODYxNDQ1MjRDNEY5QUUwMi9LZEZzbU5zOVdf WkxhNUlFd0pZQWhnelNsRkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC86NT6u0WVHkcF66GNwRS/rTSt4WeUq76itjKFYqBSs6Bc+Ki+uThQ vq17mZcUWqYG9VUnpatS77i7rFwaZwOrGhoq296Iy0CyV5IXVNme1JAh8dDmXfhE t4hZhaEy2VumYt10t55Qjk/Lfv4Iu7BKTqa8Heqr+kqShgvXJoCbLXJDuRUxCZ44 gpmaK1rMXljvqJ6rCOxQozF3p0NNfaz3JRkYLOyQIJaHaRlikFl9wI4g+5Sf1w3Z 8Q6gl/9UY2XiWNdYT8yyBTkYK5Z5aTAczqfEqXlrAC39h/L4VqjlRAGvsluv68YU gdshhR5TIp8GAZmv26Dez4khI0AMDiJs -----END CERTIFICATE-----Generated at Wed Dec 24 19:29:46 2025 by rpki-client