This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918748C/A74DA77264B411EAB38A340DC4F9AE02/KJYksuALd009OQ9aCtELW8NfVtg.mft File: KJYksuALd009OQ9aCtELW8NfVtg.mft (raw, json) Hash identifier: RMdPlajN5nZa9yG44DxRSIhG16krEBSKii2WRjGIVZ4= Subject key identifier: 23:46:EB:A7:56:86:75:48:0E:49:A3:5B:2D:A7:C6:3B:01:68:30:BF Authority key identifier: 28:96:24:B2:E0:0B:77:4D:3D:39:0F:5A:0A:D1:0B:5B:C3:5F:56:D8 Certificate issuer: /CN=A918748C/serialNumber=289624B2E00B774D3D390F5A0AD10B5BC35F56D8 Certificate serial: 0AEE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KJYksuALd009OQ9aCtELW8NfVtg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918748C/A74DA77264B411EAB38A340DC4F9AE02/KJYksuALd009OQ9aCtELW8NfVtg.mft Manifest number: 0AD1 Signing time: Mon 22 Dec 2025 18:55:30 +0000 Manifest this update: Mon 22 Dec 2025 18:55:30 +0000 Manifest next update: Mon 29 Dec 2025 18:55:30 +0000 Files and hashes: 1: KJYksuALd009OQ9aCtELW8NfVtg.crl (hash: v0ncAzfMEYhZfabuotCH4R4oEqgUE8tSATgRrO1Cx+Y=) 2: 53C1347EB60D11F0AD4B0751C4F9AE02.roa (hash: vbzoDXxoxDAXMA+SBS3V9UK64+8j7fYiBs+VYN+R5aY=) 3: DCE066622C7811EC97C8D979C4F9AE02.roa (hash: 0+FYOd7cEHhPhl5/EXB24cdR/+U1VPktvi4vWKzamkI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918748C/A74DA77264B411EAB38A340DC4F9AE02/KJYksuALd009OQ9aCtELW8NfVtg.crl rsync://rpki.apnic.net/member_repository/A918748C/A74DA77264B411EAB38A340DC4F9AE02/KJYksuALd009OQ9aCtELW8NfVtg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KJYksuALd009OQ9aCtELW8NfVtg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 18:55:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2798 (0xaee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918748C, serialNumber=289624B2E00B774D3D390F5A0AD10B5BC35F56D8 Validity Not Before: Dec 22 18:55:30 2025 GMT Not After : Dec 29 18:55:30 2025 GMT Subject: CN=69499422-1099 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:8d:8e:7b:16:c0:f0:c7:13:cb:c1:d7:6b:0e: f4:38:63:28:76:65:22:6c:ef:9a:66:b4:96:8d:12: 7d:f0:08:5c:0c:7b:0f:a0:2a:15:71:59:26:17:65: a2:93:59:7e:fb:e7:36:3c:a6:2e:8e:94:ce:31:79: f6:a4:53:22:fc:a2:89:8e:c1:8a:75:3f:fb:0b:f8: aa:fd:78:11:21:49:da:74:4f:db:62:a1:0b:fe:7b: 90:c8:5f:da:94:5a:db:e8:5a:8b:fb:5a:16:ed:b7: 15:93:a5:52:3f:2d:6a:12:a1:ba:42:a8:84:d3:9b: e8:47:29:3a:46:18:e5:ae:ba:57:3f:6a:f5:23:cf: 68:bc:e0:6e:7e:04:1b:f2:a9:1f:24:c9:8a:65:4b: ad:46:ea:8a:fb:dd:32:5c:8b:95:ff:28:8b:3a:44: e0:f4:68:ef:08:d0:9d:e9:09:24:63:27:aa:b7:b1: c2:98:02:ea:fa:24:1a:d3:ec:c4:7a:d6:a9:2d:0d: ff:18:c2:9f:01:56:38:35:9f:3e:07:12:88:19:98: bf:1c:97:f9:2d:7c:50:35:74:10:99:35:ad:61:dc: 42:82:54:1e:73:93:c3:94:3c:4a:48:6e:70:74:21: 6b:3d:b1:da:1c:35:2f:2e:1d:d1:0c:cc:35:75:3e: 0e:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:46:EB:A7:56:86:75:48:0E:49:A3:5B:2D:A7:C6:3B:01:68:30:BF X509v3 Authority Key Identifier: keyid:28:96:24:B2:E0:0B:77:4D:3D:39:0F:5A:0A:D1:0B:5B:C3:5F:56:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918748C/A74DA77264B411EAB38A340DC4F9AE02/KJYksuALd009OQ9aCtELW8NfVtg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KJYksuALd009OQ9aCtELW8NfVtg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918748C/A74DA77264B411EAB38A340DC4F9AE02/KJYksuALd009OQ9aCtELW8NfVtg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:59:78:46:6d:17:1e:64:6e:44:86:6f:0d:b3:94:c1:81:6c: 00:08:99:59:36:9c:96:f3:74:e7:77:4a:6c:c9:1e:a8:b9:34: b2:65:de:d1:b5:2f:2f:62:0d:33:6f:53:46:3e:2f:e1:9c:9e: 08:ee:a5:98:f8:e7:b3:90:02:ce:c8:ec:a7:67:b0:46:70:70: 2a:19:f8:44:b3:36:16:be:1a:e0:36:47:d7:fc:ca:e5:e8:64: 0d:95:12:6b:da:ef:ca:39:32:b2:2a:80:e4:47:18:fe:29:57: be:47:d5:38:89:03:53:4a:e4:db:b8:fe:45:b2:97:e1:ab:5e: 04:be:6a:6d:05:a1:e8:63:51:ad:17:99:78:c2:2f:d7:e5:90: af:3c:ed:d8:9b:20:04:9b:e4:cc:32:05:91:04:a3:8e:3a:17: 79:dc:70:21:08:15:7b:60:50:cd:6a:6b:28:1b:df:ba:25:d3: 68:33:ef:79:5f:e6:a6:2c:9b:12:30:6b:38:ed:0f:6f:3c:57: 51:d5:37:9a:50:4b:52:83:98:a2:2d:25:34:d8:e9:c4:8c:a1: 16:50:4c:d6:72:d2:5e:af:48:a6:d4:53:9e:31:4f:e3:fd:9a: 5c:ac:96:ed:39:ce:c7:35:fa:d1:1e:51:0e:15:fa:ef:47:16: 18:dc:9b:6f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCu4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODc0OEMxMTAvBgNVBAUTKDI4OTYyNEIyRTAwQjc3NEQzRDM5MEY1QTBBRDEwQjVC QzM1RjU2RDgwHhcNMjUxMjIyMTg1NTMwWhcNMjUxMjI5MTg1NTMwWjAYMRYwFAYD VQQDDA02OTQ5OTQyMi0xMDk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9o2OexbA8McTy8HXaw70OGModmUibO+aZrSWjRJ98AhcDHsPoCoVcVkmF2Wi k1l+++c2PKYujpTOMXn2pFMi/KKJjsGKdT/7C/iq/XgRIUnadE/bYqEL/nuQyF/a lFrb6FqL+1oW7bcVk6VSPy1qEqG6QqiE05voRyk6RhjlrrpXP2r1I89ovOBufgQb 8qkfJMmKZUutRuqK+90yXIuV/yiLOkTg9GjvCNCd6QkkYyeqt7HCmALq+iQa0+zE etapLQ3/GMKfAVY4NZ8+BxKIGZi/HJf5LXxQNXQQmTWtYdxCglQec5PDlDxKSG5w dCFrPbHaHDUvLh3RDMw1dT4ObwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCNG66dW hnVIDkmjWy2nxjsBaDC/MB8GA1UdIwQYMBaAFCiWJLLgC3dNPTkPWgrRC1vDX1bY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzQ4Qy9BNzREQTc3MjY0 QjQxMUVBQjM4QTM0MERDNEY5QUUwMi9LSllrc3VBTGQwMDlPUTlhQ3RFTFc4TmZW dGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tKWWtzdUFMZDAwOU9ROWFDdEVMVzhOZlZ0Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzQ4Qy9BNzREQTc3MjY0QjQxMUVBQjM4QTM0MERDNEY5QUUwMi9LSllrc3VBTGQw MDlPUTlhQ3RFTFc4TmZWdGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB1WXhGbRceZG5Ehm8Ns5TBgWwACJlZNpyW83Tnd0psyR6ouTSyZd7R tS8vYg0zb1NGPi/hnJ4I7qWY+OezkALOyOynZ7BGcHAqGfhEszYWvhrgNkfX/Mrl 6GQNlRJr2u/KOTKyKoDkRxj+KVe+R9U4iQNTSuTbuP5Fspfhq14EvmptBaHoY1Gt F5l4wi/X5ZCvPO3YmyAEm+TMMgWRBKOOOhd53HAhCBV7YFDNamsoG9+6JdNoM+95 X+amLJsSMGs47Q9vPFdR1TeaUEtSg5iiLSU02OnEjKEWUEzWctJer0im1FOeMU/j /ZpcrJbtOc7HNfrRHlEOFfrvRxYY3Jtv -----END CERTIFICATE-----Generated at Tue Dec 23 18:53:45 2025 by rpki-client