This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft File: VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft (raw, json) Hash identifier: IYnHNyOyvlAGAFo+5kP9ltCkNvHsTofKx1aVJ4m1AvU= Subject key identifier: 5E:75:A6:3B:96:27:2E:57:2A:AD:86:91:B3:E1:6A:54:A1:5E:83:0F Authority key identifier: 54:A5:D8:FB:F8:4E:3E:DF:31:FA:24:E4:5C:6C:67:2A:93:B6:5A:D0 Certificate issuer: /CN=A9189AA3/serialNumber=54A5D8FBF84E3EDF31FA24E45C6C672A93B65AD0 Certificate serial: 019A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKXY-_hOPt8x-iTkXGxnKpO2WtA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft Manifest number: 0194 Signing time: Tue 23 Dec 2025 02:30:25 +0000 Manifest this update: Tue 23 Dec 2025 02:30:25 +0000 Manifest next update: Tue 30 Dec 2025 02:30:25 +0000 Files and hashes: 1: VKXY-_hOPt8x-iTkXGxnKpO2WtA.crl (hash: /WS+bjTvWMXTxertNqxfgKFyiT91X78kGwBxOR6WoOI=) 2: 230576C0784C11EE9C354422C4F9AE02.roa (hash: 5/tz+zV+KYTuT4GPIpqQGv7xmSUoiPQVsrX2Ae3OaPk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.crl rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKXY-_hOPt8x-iTkXGxnKpO2WtA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 02:30:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 410 (0x19a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189AA3, serialNumber=54A5D8FBF84E3EDF31FA24E45C6C672A93B65AD0 Validity Not Before: Dec 23 02:30:25 2025 GMT Not After : Dec 30 02:30:25 2025 GMT Subject: CN=6949fec1-9235 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:8d:d6:49:f1:7b:71:00:94:44:26:5e:1e:40: ea:99:a1:e4:74:e3:db:39:26:5e:dd:1d:9d:eb:c9: d2:38:f0:b7:98:f9:21:ac:c9:4f:ea:93:21:3c:8b: 86:45:15:ff:db:35:c7:25:5b:77:96:77:99:7e:93: 35:70:da:78:3f:ad:1b:4c:11:3a:92:77:17:90:c7: d3:e0:7b:e8:50:bd:f8:ce:ea:6e:57:ac:b3:8c:4a: f9:ed:19:2d:4a:04:18:05:a7:a4:01:7c:b5:a0:63: ce:dc:b6:d7:8d:de:a6:70:d6:55:53:3f:fd:47:9f: 1b:79:c5:05:c6:fb:a4:4e:51:ee:e7:25:8e:8c:5f: 38:55:f1:ac:80:6d:2d:79:9e:c7:12:f7:dc:d7:ac: 9a:61:ea:a1:a4:54:47:9c:85:05:4e:4b:48:e9:84: 26:c5:05:72:48:e8:79:41:c3:40:c8:58:37:e2:36: b8:bf:9d:d3:88:3b:7c:3b:74:91:9b:d7:e0:41:c1: 2d:53:2c:e6:24:62:c4:3f:5c:cb:85:e8:07:89:6d: 57:ac:6f:0f:ff:1f:19:ac:07:3b:bd:8e:77:ff:a6: cc:9f:25:47:53:d8:39:e1:60:e6:14:5f:79:d4:7b: d4:84:69:6a:07:19:a7:6c:24:c4:ae:a3:65:cf:2a: 3d:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:75:A6:3B:96:27:2E:57:2A:AD:86:91:B3:E1:6A:54:A1:5E:83:0F X509v3 Authority Key Identifier: keyid:54:A5:D8:FB:F8:4E:3E:DF:31:FA:24:E4:5C:6C:67:2A:93:B6:5A:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKXY-_hOPt8x-iTkXGxnKpO2WtA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:74:86:b4:76:58:10:e4:7e:bc:cb:86:0c:70:41:9a:58:86: b5:01:2b:cf:a3:76:36:3c:e5:53:e8:a0:83:1f:c1:8a:42:ff: 95:71:75:d6:70:55:e9:9a:76:24:51:ad:17:f7:9a:b8:09:3c: ed:1a:61:86:ba:d6:58:3a:51:56:32:86:cf:dd:28:8c:b5:5b: 39:6e:f3:a5:be:24:66:12:69:1d:e7:88:3f:b2:16:7c:95:5a: de:ea:1d:dd:29:5b:f0:9d:1a:12:5f:df:4b:28:ac:77:4d:43: de:35:2e:df:a0:bd:8b:26:91:89:a7:4f:de:51:f0:14:e3:3d: be:8e:2e:f7:c7:2e:e5:6f:fc:bf:43:3e:40:ce:4a:e8:1b:f3: 60:6b:91:be:cc:9f:eb:94:a1:73:8d:80:f4:0c:37:a4:ae:fe: 94:4d:61:87:a8:5f:56:51:49:de:fe:52:bb:44:bc:b0:28:65: 8b:be:cd:76:53:60:12:79:72:46:42:ff:37:f3:3b:cf:ac:6c: 22:75:81:b2:61:8c:0e:e4:32:a5:ff:0b:c4:96:80:8b:43:4c: ff:0d:d0:18:29:b8:98:79:28:63:4a:ac:40:24:16:13:4a:c0: 46:5e:26:88:ca:99:d3:9c:71:de:e1:5d:f4:52:ca:26:f3:b9: 8e:9c:44:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODlBQTMxMTAvBgNVBAUTKDU0QTVEOEZCRjg0RTNFREYzMUZBMjRFNDVDNkM2NzJB OTNCNjVBRDAwHhcNMjUxMjIzMDIzMDI1WhcNMjUxMjMwMDIzMDI1WjAYMRYwFAYD VQQDDA02OTQ5ZmVjMS05MjM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Y3WSfF7cQCURCZeHkDqmaHkdOPbOSZe3R2d68nSOPC3mPkhrMlP6pMhPIuG RRX/2zXHJVt3lneZfpM1cNp4P60bTBE6kncXkMfT4HvoUL34zupuV6yzjEr57Rkt SgQYBaekAXy1oGPO3LbXjd6mcNZVUz/9R58becUFxvukTlHu5yWOjF84VfGsgG0t eZ7HEvfc16yaYeqhpFRHnIUFTktI6YQmxQVySOh5QcNAyFg34ja4v53TiDt8O3SR m9fgQcEtUyzmJGLEP1zLhegHiW1XrG8P/x8ZrAc7vY53/6bMnyVHU9g54WDmFF95 1HvUhGlqBxmnbCTErqNlzyo9vwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF51pjuW Jy5XKq2GkbPhalShXoMPMB8GA1UdIwQYMBaAFFSl2Pv4Tj7fMfok5FxsZyqTtlrQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OUFBMy8wQTJDQjc4Njc4 NEIxMUVFQTREN0RCNzdDNEY5QUUwMi9WS1hZLV9oT1B0OHgtaVRrWEd4bktwTzJX dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZLWFktX2hPUHQ4eC1pVGtYR3huS3BPMld0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OUFBMy8wQTJDQjc4Njc4NEIxMUVFQTREN0RCNzdDNEY5QUUwMi9WS1hZLV9oT1B0 OHgtaVRrWEd4bktwTzJXdEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrdIa0dlgQ5H68y4YMcEGaWIa1ASvPo3Y2POVT6KCDH8GKQv+VcXXW cFXpmnYkUa0X95q4CTztGmGGutZYOlFWMobP3SiMtVs5bvOlviRmEmkd54g/shZ8 lVre6h3dKVvwnRoSX99LKKx3TUPeNS7foL2LJpGJp0/eUfAU4z2+ji73xy7lb/y/ Qz5AzkroG/Nga5G+zJ/rlKFzjYD0DDekrv6UTWGHqF9WUUne/lK7RLywKGWLvs12 U2ASeXJGQv838zvPrGwidYGyYYwO5DKl/wvEloCLQ0z/DdAYKbiYeShjSqxAJBYT SsBGXiaIypnTnHHe4V30Usom87mOnEQN -----END CERTIFICATE-----Generated at Wed Dec 24 15:43:12 2025 by rpki-client