This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.mft File: _-KgNynzLTIiepnJJRWMgspUuVc.mft (raw, json) Hash identifier: 2orPUexjVbrlNSFeDFl1gL2IeLeqSoB/sQr+YMqpr6w= Subject key identifier: 08:40:B0:66:12:09:0E:08:14:22:82:EF:0D:17:E8:1B:E2:62:34:2F Authority key identifier: FF:E2:A0:37:29:F3:2D:32:22:7A:99:C9:25:15:8C:82:CA:54:B9:57 Certificate issuer: /CN=A917225D/serialNumber=FFE2A03729F32D32227A99C925158C82CA54B957 Certificate serial: 351B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_-KgNynzLTIiepnJJRWMgspUuVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.mft Manifest number: 3509 Signing time: Mon 22 Dec 2025 14:23:05 +0000 Manifest this update: Mon 22 Dec 2025 14:23:04 +0000 Manifest next update: Mon 29 Dec 2025 14:23:04 +0000 Files and hashes: 1: _-KgNynzLTIiepnJJRWMgspUuVc.crl (hash: kGhmFPuAAvouzdlIPDkPeng/Irb8nRRQ0g4OrBmtdww=) 2: A0121BD4871711EA924C6626C4F9AE02.roa (hash: TsmW3wUGCspNY1UcKJcNnUuuDH7qDphY3UYVmmAdbDA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.crl rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_-KgNynzLTIiepnJJRWMgspUuVc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 14:23:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13595 (0x351b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917225D, serialNumber=FFE2A03729F32D32227A99C925158C82CA54B957 Validity Not Before: Dec 22 14:23:04 2025 GMT Not After : Dec 29 14:23:04 2025 GMT Subject: CN=69495448-14ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:ab:8c:88:7f:d1:7e:b6:0e:f5:be:8a:50:91: 9d:9b:2c:77:aa:10:73:dd:43:b2:81:75:9c:26:f7: 5a:28:ca:dd:e9:1d:d0:3b:46:42:51:31:c0:80:9a: 4e:99:86:14:1c:d0:a9:fb:23:b7:62:b0:e7:02:05: 35:77:f6:c1:95:47:01:67:8e:4b:e1:11:a3:13:5c: de:63:a8:b0:8b:54:5e:e1:b9:19:4c:d3:04:e6:90: 05:01:7c:fc:01:e3:6a:49:fd:d5:b8:1d:29:20:8c: ca:82:f8:5c:86:25:ee:db:ec:ce:26:a3:58:15:d8: 33:49:b4:4c:c6:1c:0e:05:50:97:cf:2f:99:72:6e: 25:91:e3:53:cc:cf:17:a4:3d:1f:3d:a7:52:e2:11: b3:bc:7c:9d:93:62:09:10:7d:01:bf:de:9d:9e:dd: 4d:8b:ac:88:6d:8f:2e:50:87:0a:5f:e9:1c:e1:80: ac:94:a5:b7:84:89:9b:84:7b:2f:d2:55:ab:a8:26: d2:ad:3c:83:34:82:e6:8c:44:d6:ee:ff:56:11:65: a2:27:a5:b8:a0:46:98:f4:b8:67:a3:73:0d:6c:8d: 18:65:03:d5:1b:bb:91:75:12:76:1e:80:d2:97:50: 5a:90:14:9c:c4:06:d5:30:2f:5f:cb:2f:5e:24:f2: ef:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:40:B0:66:12:09:0E:08:14:22:82:EF:0D:17:E8:1B:E2:62:34:2F X509v3 Authority Key Identifier: keyid:FF:E2:A0:37:29:F3:2D:32:22:7A:99:C9:25:15:8C:82:CA:54:B9:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_-KgNynzLTIiepnJJRWMgspUuVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:aa:5c:a9:6b:81:d2:f8:8b:40:f2:81:cc:8c:96:3e:e3:02: 83:2f:76:bc:ff:a1:28:37:32:3f:58:99:8c:06:cb:48:25:d7: ad:df:b2:04:f0:da:ec:57:c7:c0:90:dd:33:5c:6a:65:8f:d9: 3b:e6:74:a7:32:22:17:97:34:a8:49:5a:c4:49:73:19:24:13: 31:9f:f8:35:58:f7:32:c3:87:17:eb:40:35:0e:db:0d:ba:14: b2:47:3c:33:75:9f:c5:06:b1:48:57:1b:20:34:b0:95:33:23: 68:40:7d:03:ec:53:c0:30:7e:9f:fd:51:5e:ee:45:86:7c:b8: a1:f9:7f:71:c8:b1:55:17:70:07:89:03:8e:9a:bf:ed:c4:e6: 71:ba:c3:0d:9f:48:d8:80:13:38:96:c2:85:c9:09:e6:ce:ae: 9f:20:60:3f:bb:de:9a:d7:6f:f5:e0:42:e9:c6:0b:97:81:2c: 20:d9:db:78:b2:9f:e9:cb:a8:1d:23:a3:f5:d5:e6:c2:eb:e3: e8:39:2a:7e:b2:54:dd:d9:0b:99:31:d9:91:b5:66:8a:e5:c5: cd:15:6c:03:ff:b5:09:99:8b:9e:f1:d2:73:d7:81:56:cb:46: ef:fe:84:c0:71:41:68:0b:33:19:18:1f:e8:b4:60:03:c4:a0: b0:c7:96:ee -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNRswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzIyNUQxMTAvBgNVBAUTKEZGRTJBMDM3MjlGMzJEMzIyMjdBOTlDOTI1MTU4Qzgy Q0E1NEI5NTcwHhcNMjUxMjIyMTQyMzA0WhcNMjUxMjI5MTQyMzA0WjAYMRYwFAYD VQQDDA02OTQ5NTQ0OC0xNGFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzquMiH/RfrYO9b6KUJGdmyx3qhBz3UOygXWcJvdaKMrd6R3QO0ZCUTHAgJpO mYYUHNCp+yO3YrDnAgU1d/bBlUcBZ45L4RGjE1zeY6iwi1Re4bkZTNME5pAFAXz8 AeNqSf3VuB0pIIzKgvhchiXu2+zOJqNYFdgzSbRMxhwOBVCXzy+Zcm4lkeNTzM8X pD0fPadS4hGzvHydk2IJEH0Bv96dnt1Ni6yIbY8uUIcKX+kc4YCslKW3hImbhHsv 0lWrqCbSrTyDNILmjETW7v9WEWWiJ6W4oEaY9Lhno3MNbI0YZQPVG7uRdRJ2HoDS l1BakBScxAbVMC9fyy9eJPLvTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAhAsGYS CQ4IFCKC7w0X6BviYjQvMB8GA1UdIwQYMBaAFP/ioDcp8y0yInqZySUVjILKVLlX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MjI1RC8xRjU1MDgzMDFE ODQxMUUyOTE3QkQwRDkwOEIwMkNEMi9fLUtnTnluekxUSWllcG5KSlJXTWdzcFV1 VmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL18tS2dOeW56TFRJaWVwbkpKUldNZ3NwVXVWYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MjI1RC8xRjU1MDgzMDFEODQxMUUyOTE3QkQwRDkwOEIwMkNEMi9fLUtnTnluekxU SWllcG5KSlJXTWdzcFV1VmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDqlypa4HS+ItA8oHMjJY+4wKDL3a8/6EoNzI/WJmMBstIJdet37IE 8NrsV8fAkN0zXGplj9k75nSnMiIXlzSoSVrESXMZJBMxn/g1WPcyw4cX60A1DtsN uhSyRzwzdZ/FBrFIVxsgNLCVMyNoQH0D7FPAMH6f/VFe7kWGfLih+X9xyLFVF3AH iQOOmr/txOZxusMNn0jYgBM4lsKFyQnmzq6fIGA/u96a12/14ELpxguXgSwg2dt4 sp/py6gdI6P11ebC6+PoOSp+slTd2QuZMdmRtWaK5cXNFWwD/7UJmYue8dJz14FW y0bv/oTAcUFoCzMZGB/otGADxKCwx5bu -----END CERTIFICATE-----Generated at Mon Dec 22 17:52:19 2025 by rpki-client