This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91608B2/C95A49AE4A5211F0989D700FC4F9AE02/KcmzN9Z7DxREgXmLTVsNc9eIrys.mft File: KcmzN9Z7DxREgXmLTVsNc9eIrys.mft (raw, json) Hash identifier: XD8YH3L4EczfF0E6rblHAdXdIruwL9wKK1kxIs0uRxk= Subject key identifier: 38:06:44:3B:8C:5A:ED:E2:8E:AA:36:39:17:41:F0:EA:8B:91:20:8A Authority key identifier: 29:C9:B3:37:D6:7B:0F:14:44:81:79:8B:4D:5B:0D:73:D7:88:AF:2B Certificate issuer: /CN=A91608B2/serialNumber=29C9B337D67B0F144481798B4D5B0D73D788AF2B Certificate serial: 64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KcmzN9Z7DxREgXmLTVsNc9eIrys.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91608B2/C95A49AE4A5211F0989D700FC4F9AE02/KcmzN9Z7DxREgXmLTVsNc9eIrys.mft Manifest number: 63 Signing time: Sun 21 Dec 2025 06:05:46 +0000 Manifest this update: Sun 21 Dec 2025 06:05:46 +0000 Manifest next update: Sun 28 Dec 2025 06:05:46 +0000 Files and hashes: 1: KcmzN9Z7DxREgXmLTVsNc9eIrys.crl (hash: olTkMguBWf1caLBAm0Rp6/UG2LbRgXHOkwiMaTZMR5I=) 2: 13B4125A4A5311F08B06EF0FC4F9AE02.roa (hash: JRzGJdFSse2irDcL+W7kuHv+w+d8AeO+g8YTYnBtHyU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91608B2/C95A49AE4A5211F0989D700FC4F9AE02/KcmzN9Z7DxREgXmLTVsNc9eIrys.crl rsync://rpki.apnic.net/member_repository/A91608B2/C95A49AE4A5211F0989D700FC4F9AE02/KcmzN9Z7DxREgXmLTVsNc9eIrys.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KcmzN9Z7DxREgXmLTVsNc9eIrys.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 06:05:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 100 (0x64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91608B2, serialNumber=29C9B337D67B0F144481798B4D5B0D73D788AF2B Validity Not Before: Dec 21 06:05:46 2025 GMT Not After : Dec 28 06:05:46 2025 GMT Subject: CN=69478e3a-b837 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:45:40:43:e3:4f:e5:12:af:b6:03:04:6f:a1: 2e:49:f2:32:a5:2e:e2:61:07:46:dc:e8:72:05:79: a6:57:de:62:63:83:92:7d:39:a1:62:4b:66:ae:02: 41:25:67:a2:5f:e2:f1:36:88:c4:f7:38:97:f5:c6: 15:3d:2c:12:6e:3d:20:98:e1:55:9f:70:ac:07:b0: 25:88:f6:44:47:2f:9c:db:23:12:98:4b:bf:9f:25: e8:4b:1c:5f:79:fe:1e:57:19:69:b9:e5:61:0f:02: cf:4e:51:81:55:bf:1d:17:2f:41:00:ba:85:68:03: 1a:94:fb:f6:db:6d:bf:d6:38:81:1c:77:95:2c:c7: e9:4b:73:bc:af:e1:24:5d:f9:84:94:12:33:ea:0a: b9:bc:b4:34:c4:ed:6a:cf:19:d9:8b:d6:12:8a:58: 72:40:10:bb:75:2a:f9:ce:33:43:dc:01:ce:15:72: dd:61:66:cc:a4:60:9f:89:2c:9b:86:a2:24:2e:8a: e5:b6:5b:66:a1:57:2f:50:24:29:76:75:e0:04:b6: c4:a7:cc:6c:6b:81:e9:1a:73:12:e2:ad:03:a9:f4: 34:00:65:06:73:50:1b:3c:f9:14:36:98:80:5f:61: 10:d7:db:c2:c2:90:8e:64:02:8c:38:35:3d:27:64: bd:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:06:44:3B:8C:5A:ED:E2:8E:AA:36:39:17:41:F0:EA:8B:91:20:8A X509v3 Authority Key Identifier: keyid:29:C9:B3:37:D6:7B:0F:14:44:81:79:8B:4D:5B:0D:73:D7:88:AF:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91608B2/C95A49AE4A5211F0989D700FC4F9AE02/KcmzN9Z7DxREgXmLTVsNc9eIrys.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KcmzN9Z7DxREgXmLTVsNc9eIrys.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91608B2/C95A49AE4A5211F0989D700FC4F9AE02/KcmzN9Z7DxREgXmLTVsNc9eIrys.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:b9:e8:40:80:b4:f5:56:e0:61:85:02:75:ae:ff:f6:80:a3: f7:92:5c:2b:5c:1b:2c:df:db:89:10:fa:fe:c9:84:42:6f:f7: 80:c9:b5:d2:b4:b3:3d:5a:f7:cb:5c:e2:92:38:3c:41:60:c8: af:a1:bc:06:e9:7a:b7:0f:b6:f3:c2:e6:87:3c:83:a6:d2:ae: dd:28:9a:b8:03:39:a7:f8:bd:59:c9:a8:71:40:86:a2:a2:9f: 0a:12:ba:fc:52:fd:b4:c6:21:81:5f:74:de:26:f5:3d:64:3e: 49:d3:7d:69:6c:2b:33:a3:74:60:8a:1c:c7:ca:56:e8:fa:60: 45:62:d5:57:b7:a8:d0:50:89:d5:da:79:4d:8e:b0:80:65:07: 51:d2:2b:89:e6:8f:bd:8a:bf:53:90:8a:42:55:e4:e7:d7:fa: 8d:0c:db:fa:d1:ec:8a:4e:16:0f:25:46:17:ad:6e:1e:02:56: eb:16:00:17:6e:45:9e:a9:d6:1c:c0:c7:78:3a:09:55:c6:a0: 9d:19:c6:ff:ae:95:84:c4:0d:ee:c8:33:09:6f:d8:82:a4:f8: b6:99:e7:93:0a:57:af:1a:5c:05:a6:25:3d:e0:fb:49:f4:7d: e0:ca:7d:6d:fa:b8:70:d0:e3:c3:a9:17:1c:25:26:5c:b4:79: 01:ce:ea:4f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 MDhCMjExMC8GA1UEBRMoMjlDOUIzMzdENjdCMEYxNDQ0ODE3OThCNEQ1QjBENzNE Nzg4QUYyQjAeFw0yNTEyMjEwNjA1NDZaFw0yNTEyMjgwNjA1NDZaMBgxFjAUBgNV BAMMDTY5NDc4ZTNhLWI4MzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCkRUBD40/lEq+2AwRvoS5J8jKlLuJhB0bc6HIFeaZX3mJjg5J9OaFiS2auAkEl Z6Jf4vE2iMT3OJf1xhU9LBJuPSCY4VWfcKwHsCWI9kRHL5zbIxKYS7+fJehLHF95 /h5XGWm55WEPAs9OUYFVvx0XL0EAuoVoAxqU+/bbbb/WOIEcd5Usx+lLc7yv4SRd +YSUEjPqCrm8tDTE7WrPGdmL1hKKWHJAELt1KvnOM0PcAc4Vct1hZsykYJ+JLJuG oiQuiuW2W2ahVy9QJCl2deAEtsSnzGxrgekacxLirQOp9DQAZQZzUBs8+RQ2mIBf YRDX28LCkI5kAow4NT0nZL33AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUOAZEO4xa 7eKOqjY5F0Hw6ouRIIowHwYDVR0jBBgwFoAUKcmzN9Z7DxREgXmLTVsNc9eIrysw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYwOEIyL0M5NUE0OUFFNEE1 MjExRjA5ODlENzAwRkM0RjlBRTAyL0tjbXpOOVo3RHhSRWdYbUxUVnNOYzllSXJ5 cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvS2Ntek45WjdEeFJFZ1htTFRWc05jOWVJcnlzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYw OEIyL0M5NUE0OUFFNEE1MjExRjA5ODlENzAwRkM0RjlBRTAyL0tjbXpOOVo3RHhS RWdYbUxUVnNOYzllSXJ5cy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABC56ECAtPVW4GGFAnWu//aAo/eSXCtcGyzf24kQ+v7JhEJv94DJtdK0 sz1a98tc4pI4PEFgyK+hvAbpercPtvPC5oc8g6bSrt0omrgDOaf4vVnJqHFAhqKi nwoSuvxS/bTGIYFfdN4m9T1kPknTfWlsKzOjdGCKHMfKVuj6YEVi1Ve3qNBQidXa eU2OsIBlB1HSK4nmj72Kv1OQikJV5OfX+o0M2/rR7IpOFg8lRhetbh4CVusWABdu RZ6p1hzAx3g6CVXGoJ0Zxv+ulYTEDe7IMwlv2IKk+LaZ55MKV68aXAWmJT3g+0n0 feDKfW36uHDQ48OpFxwlJly0eQHO6k8= -----END CERTIFICATE-----Generated at Mon Dec 22 12:18:35 2025 by rpki-client