This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.mft File: VKpPIROg0aG37lUSvq5TcextpCE.mft (raw, json) Hash identifier: hXsRCtfuzL12esWEcaAZqztivMCUHTDnVagX2PGBZYw= Subject key identifier: B8:26:FC:87:B1:2A:AF:56:6B:0E:AE:E4:52:7C:7B:CD:1A:1C:74:3E Authority key identifier: 54:AA:4F:21:13:A0:D1:A1:B7:EE:55:12:BE:AE:53:71:EC:6D:A4:21 Certificate issuer: /CN=A9165556/serialNumber=54AA4F2113A0D1A1B7EE5512BEAE5371EC6DA421 Certificate serial: 0140 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKpPIROg0aG37lUSvq5TcextpCE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.mft Manifest number: 013D Signing time: Tue 23 Dec 2025 03:30:09 +0000 Manifest this update: Tue 23 Dec 2025 03:30:08 +0000 Manifest next update: Tue 30 Dec 2025 03:30:08 +0000 Files and hashes: 1: VKpPIROg0aG37lUSvq5TcextpCE.crl (hash: 3LjfUHvCLVJl1XN74BccwP1nsk5dkb4YLXOFh0Tr5rQ=) 2: E135D94C04A511EF84B5D783C4F9AE02.roa (hash: ntYNg2NxlTO59svip/Wfi9QINiH7RWI4kV7Rh6n46eE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.crl rsync://rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKpPIROg0aG37lUSvq5TcextpCE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 03:30:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 320 (0x140) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165556, serialNumber=54AA4F2113A0D1A1B7EE5512BEAE5371EC6DA421 Validity Not Before: Dec 23 03:30:08 2025 GMT Not After : Dec 30 03:30:08 2025 GMT Subject: CN=694a0cc1-136d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:49:40:17:46:06:db:00:1a:98:60:3b:06:fe: 1b:80:c5:84:c5:32:65:21:36:f3:91:73:cd:d9:1c: f0:5e:5d:a3:56:de:33:84:f3:23:31:e7:20:8c:60: 04:5e:95:38:d5:b1:3c:ec:e5:56:7a:18:18:96:1a: 42:1f:fd:a2:43:8e:0d:38:a8:bb:e9:11:36:17:41: 7e:14:c9:61:e1:05:a9:5e:cb:d7:e1:f4:0c:08:33: 8a:1a:95:cf:ee:52:92:e1:0b:7a:d6:02:95:9b:af: b2:58:04:5c:9f:16:2f:70:cc:94:2d:7f:7d:ae:1b: 43:73:a2:e4:10:5f:fa:9f:16:d5:4a:79:83:e7:68: cd:95:ce:99:f7:ee:48:11:24:e4:1f:3c:44:fd:c6: 9a:c4:49:87:cc:47:67:6c:ce:12:eb:8d:b8:46:b6: 41:95:ee:68:28:d6:fe:88:13:f6:2a:58:21:aa:56: 23:4b:ea:d8:9c:d2:aa:b4:9a:f4:bc:3c:fa:7a:ff: 24:bf:44:56:fb:0b:74:c4:75:16:10:1b:31:7c:3b: 05:2a:b6:65:14:40:b2:bf:39:ac:f1:88:01:bb:37: 65:8d:da:0f:c7:ea:19:4a:91:3b:9f:2c:18:d1:7d: ee:40:07:e1:17:a9:7b:a7:f1:0f:5c:70:c9:e2:8b: a8:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:26:FC:87:B1:2A:AF:56:6B:0E:AE:E4:52:7C:7B:CD:1A:1C:74:3E X509v3 Authority Key Identifier: keyid:54:AA:4F:21:13:A0:D1:A1:B7:EE:55:12:BE:AE:53:71:EC:6D:A4:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKpPIROg0aG37lUSvq5TcextpCE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:cb:30:66:c9:b0:a7:52:be:48:6d:60:cb:fb:6d:a2:7b:e2: c8:5b:b8:5e:85:55:94:05:32:e7:a8:71:28:46:40:e1:90:21: 39:ef:b0:c2:6b:e6:da:e8:7e:44:0e:37:54:c5:d8:66:94:4c: 70:17:56:46:bd:3b:a9:2f:75:2a:be:6c:9a:ca:87:68:46:bb: 3b:32:93:dc:d0:6d:6d:38:61:83:b4:8e:16:3b:2e:34:2d:54: ad:10:9f:4b:c2:41:ac:e7:07:9f:31:89:41:1d:7e:5e:a5:80: df:26:c7:cc:fe:a7:7a:7d:f9:e5:cb:33:6b:02:b0:87:64:dc: 25:10:bd:ed:83:15:3f:93:b6:57:7a:2f:dc:db:46:55:b4:6d: 44:03:8b:23:b6:3f:66:3a:28:a4:f8:a5:40:d7:32:c1:37:5c: 07:93:d4:c4:ae:c2:dc:2f:af:ed:48:0a:d7:ad:43:0b:74:99: 41:f2:b0:15:ac:f4:4a:f3:88:2a:ea:df:98:58:0d:e0:ca:66: 1f:83:7c:4c:7f:0d:20:4f:7d:f3:3b:2d:23:f6:85:6b:60:84: 3c:8b:24:9c:e7:fd:67:45:44:e5:ef:5d:cc:4b:7a:69:86:e2: 2d:34:24:25:e2:92:dd:69:fe:6a:90:7d:31:c0:cd:70:6b:8b: 89:e0:dd:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU1NTYxMTAvBgNVBAUTKDU0QUE0RjIxMTNBMEQxQTFCN0VFNTUxMkJFQUU1Mzcx RUM2REE0MjEwHhcNMjUxMjIzMDMzMDA4WhcNMjUxMjMwMDMzMDA4WjAYMRYwFAYD VQQDDA02OTRhMGNjMS0xMzZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvElAF0YG2wAamGA7Bv4bgMWExTJlITbzkXPN2RzwXl2jVt4zhPMjMecgjGAE XpU41bE87OVWehgYlhpCH/2iQ44NOKi76RE2F0F+FMlh4QWpXsvX4fQMCDOKGpXP 7lKS4Qt61gKVm6+yWARcnxYvcMyULX99rhtDc6LkEF/6nxbVSnmD52jNlc6Z9+5I ESTkHzxE/caaxEmHzEdnbM4S6424RrZBle5oKNb+iBP2KlghqlYjS+rYnNKqtJr0 vDz6ev8kv0RW+wt0xHUWEBsxfDsFKrZlFECyvzms8YgBuzdljdoPx+oZSpE7nywY 0X3uQAfhF6l7p/EPXHDJ4ouokQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLgm/Iex Kq9Waw6u5FJ8e80aHHQ+MB8GA1UdIwQYMBaAFFSqTyEToNGht+5VEr6uU3HsbaQh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTU1Ni9CMTQ1RDAyRTAx N0MxMUVGQjg2NDMyNUFDNEY5QUUwMi9WS3BQSVJPZzBhRzM3bFVTdnE1VGNleHRw Q0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZLcFBJUk9nMGFHMzdsVVN2cTVUY2V4dHBDRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTU1Ni9CMTQ1RDAyRTAxN0MxMUVGQjg2NDMyNUFDNEY5QUUwMi9WS3BQSVJPZzBh RzM3bFVTdnE1VGNleHRwQ0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQyzBmybCnUr5IbWDL+22ie+LIW7hehVWUBTLnqHEoRkDhkCE577DC a+ba6H5EDjdUxdhmlExwF1ZGvTupL3UqvmyayodoRrs7MpPc0G1tOGGDtI4WOy40 LVStEJ9LwkGs5wefMYlBHX5epYDfJsfM/qd6ffnlyzNrArCHZNwlEL3tgxU/k7ZX ei/c20ZVtG1EA4sjtj9mOiik+KVA1zLBN1wHk9TErsLcL6/tSArXrUMLdJlB8rAV rPRK84gq6t+YWA3gymYfg3xMfw0gT33zOy0j9oVrYIQ8iySc5/1nRUTl713MS3pp huItNCQl4pLdaf5qkH0xwM1wa4uJ4N0b -----END CERTIFICATE-----Generated at Wed Dec 24 14:10:43 2025 by rpki-client