This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9187729/1312F908889411ECB20B8372C4F9AE02/K0QMfEWQAwVRV2J95yFOnKwSi0w.mft File: K0QMfEWQAwVRV2J95yFOnKwSi0w.mft (raw, json) Hash identifier: Xs1UX45MEEymicz3HkR6OblwYkUSMHPdL0GXFFPwyZk= Subject key identifier: 24:2E:74:3B:68:05:95:77:F3:75:9B:60:50:EF:50:78:64:19:B7:EC Authority key identifier: 2B:44:0C:7C:45:90:03:05:51:57:62:7D:E7:21:4E:9C:AC:12:8B:4C Certificate issuer: /CN=A9187729/serialNumber=2B440C7C459003055157627DE7214E9CAC128B4C Certificate serial: 0439 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K0QMfEWQAwVRV2J95yFOnKwSi0w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9187729/1312F908889411ECB20B8372C4F9AE02/K0QMfEWQAwVRV2J95yFOnKwSi0w.mft Manifest number: 0434 Signing time: Mon 22 Dec 2025 23:21:20 +0000 Manifest this update: Mon 22 Dec 2025 23:21:19 +0000 Manifest next update: Mon 29 Dec 2025 23:21:19 +0000 Files and hashes: 1: K0QMfEWQAwVRV2J95yFOnKwSi0w.crl (hash: gzs/5eV2UaYTvT1czeMbidLhS7PqVCZ8iFoimUqZXQU=) 2: 394B48F6889811EC9D1DF920C4F9AE02.roa (hash: l0TDwbIQKnn22v377SYBCTiXJEwlU244XaVGT+AApO8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9187729/1312F908889411ECB20B8372C4F9AE02/K0QMfEWQAwVRV2J95yFOnKwSi0w.crl rsync://rpki.apnic.net/member_repository/A9187729/1312F908889411ECB20B8372C4F9AE02/K0QMfEWQAwVRV2J95yFOnKwSi0w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K0QMfEWQAwVRV2J95yFOnKwSi0w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 23:21:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1081 (0x439) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9187729, serialNumber=2B440C7C459003055157627DE7214E9CAC128B4C Validity Not Before: Dec 22 23:21:19 2025 GMT Not After : Dec 29 23:21:19 2025 GMT Subject: CN=6949d26f-7481 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:d6:bc:99:d0:97:ff:ee:4b:c2:75:43:69:fe: 03:df:6a:ac:49:35:31:a0:84:42:bd:07:24:6e:7d: a2:8b:b4:fd:34:55:43:63:57:8b:ef:ec:a4:c9:5a: 24:30:fb:fc:ec:b8:33:18:85:61:6e:3d:69:04:02: ac:89:6b:9d:06:e5:42:6f:b5:1b:35:d2:53:62:f0: 9b:d7:96:27:f3:a2:31:c4:e1:ef:26:69:3c:89:35: 4e:18:d2:a7:f2:b0:81:a1:0f:30:cb:5e:e0:98:66: 9a:43:80:27:35:63:d6:0a:a5:b9:e7:c9:e6:a1:b9: 46:91:0a:90:14:15:e0:38:1c:d7:86:cd:93:42:ff: 5b:d7:bd:d4:64:32:ca:47:18:b2:80:0f:fb:b7:ec: a6:c2:4e:57:7e:60:de:1f:1c:71:9a:63:0f:92:c9: 76:f7:1b:cc:90:21:0a:ea:e3:b6:37:46:b2:ee:df: 12:14:91:c7:aa:8f:57:80:9a:d0:13:a6:ff:53:6d: 98:59:e4:0f:d7:71:65:55:66:21:cc:88:2d:18:07: 84:4c:39:b7:ca:9e:fc:ee:cd:88:f0:11:11:c8:12: ce:e9:f4:16:62:80:f0:82:48:59:41:75:89:50:3c: b9:ea:cd:ee:3e:87:6e:80:d8:22:34:e8:37:15:cc: f9:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:2E:74:3B:68:05:95:77:F3:75:9B:60:50:EF:50:78:64:19:B7:EC X509v3 Authority Key Identifier: keyid:2B:44:0C:7C:45:90:03:05:51:57:62:7D:E7:21:4E:9C:AC:12:8B:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9187729/1312F908889411ECB20B8372C4F9AE02/K0QMfEWQAwVRV2J95yFOnKwSi0w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K0QMfEWQAwVRV2J95yFOnKwSi0w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9187729/1312F908889411ECB20B8372C4F9AE02/K0QMfEWQAwVRV2J95yFOnKwSi0w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:89:32:88:47:a6:e7:93:02:d5:d9:80:39:3a:8d:9c:97:f9: 24:f0:7d:91:d0:74:fd:0a:01:a7:d7:b1:75:0d:1d:15:3c:e8: 76:2a:84:50:11:89:f8:3a:cc:26:43:8b:ac:f6:41:7f:b4:33: 2a:5b:b1:ae:2b:a6:b8:e0:37:63:dd:ce:1e:9c:c3:ad:32:b5: fa:b2:7e:41:30:16:f7:a0:bc:18:f2:b0:a6:d0:5a:3f:2e:99: f2:97:75:33:d1:ac:34:71:45:f7:50:1c:ea:cd:24:00:e4:43: 38:2b:e0:41:a8:23:f9:5f:be:ae:e5:ea:e8:de:6b:32:16:53: 0c:e4:8f:e8:4e:f9:c9:8d:e9:ca:ae:f7:03:eb:ff:2c:41:0f: 2f:d0:9c:92:f2:b7:6c:53:75:86:f2:f6:bf:20:34:63:32:1e: c8:8c:92:67:fe:19:2f:46:0a:ab:67:a7:36:a5:1f:b5:d5:2e: 63:d2:12:fa:46:dc:1c:09:1c:ab:6e:59:dc:5c:ac:88:0c:ce: ab:c5:ac:af:a8:e4:e3:28:1f:58:91:fd:bc:ed:fd:29:5f:90: 5a:3c:e9:2a:e9:c9:59:b7:be:71:b4:b5:83:d6:56:f4:94:65: c0:41:5e:ca:b7:ee:ba:74:14:9a:e8:cb:0f:69:82:1a:d1:88: 0f:f3:94:4c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBDkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODc3MjkxMTAvBgNVBAUTKDJCNDQwQzdDNDU5MDAzMDU1MTU3NjI3REU3MjE0RTlD QUMxMjhCNEMwHhcNMjUxMjIyMjMyMTE5WhcNMjUxMjI5MjMyMTE5WjAYMRYwFAYD VQQDDA02OTQ5ZDI2Zi03NDgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxda8mdCX/+5LwnVDaf4D32qsSTUxoIRCvQckbn2ii7T9NFVDY1eL7+ykyVok MPv87LgzGIVhbj1pBAKsiWudBuVCb7UbNdJTYvCb15Yn86IxxOHvJmk8iTVOGNKn 8rCBoQ8wy17gmGaaQ4AnNWPWCqW558nmoblGkQqQFBXgOBzXhs2TQv9b173UZDLK RxiygA/7t+ymwk5XfmDeHxxxmmMPksl29xvMkCEK6uO2N0ay7t8SFJHHqo9XgJrQ E6b/U22YWeQP13FlVWYhzIgtGAeETDm3yp787s2I8BERyBLO6fQWYoDwgkhZQXWJ UDy56s3uPodugNgiNOg3Fcz5SwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCQudDto BZV383WbYFDvUHhkGbfsMB8GA1UdIwQYMBaAFCtEDHxFkAMFUVdifechTpysEotM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzcyOS8xMzEyRjkwODg4 OTQxMUVDQjIwQjgzNzJDNEY5QUUwMi9LMFFNZkVXUUF3VlJWMko5NXlGT25Ld1Np MHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0swUU1mRVdRQXdWUlYySjk1eUZPbkt3U2kwdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzcyOS8xMzEyRjkwODg4OTQxMUVDQjIwQjgzNzJDNEY5QUUwMi9LMFFNZkVXUUF3 VlJWMko5NXlGT25Ld1NpMHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByiTKIR6bnkwLV2YA5Oo2cl/kk8H2R0HT9CgGn17F1DR0VPOh2KoRQ EYn4OswmQ4us9kF/tDMqW7GuK6a44Ddj3c4enMOtMrX6sn5BMBb3oLwY8rCm0Fo/ Lpnyl3Uz0aw0cUX3UBzqzSQA5EM4K+BBqCP5X76u5ero3msyFlMM5I/oTvnJjenK rvcD6/8sQQ8v0JyS8rdsU3WG8va/IDRjMh7IjJJn/hkvRgqrZ6c2pR+11S5j0hL6 RtwcCRyrblncXKyIDM6rxayvqOTjKB9Ykf287f0pX5BaPOkq6clZt75xtLWD1lb0 lGXAQV7Kt+66dBSa6MsPaYIa0YgP85RM -----END CERTIFICATE-----Generated at Wed Dec 24 14:09:48 2025 by rpki-client