This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9198553/A59BFFE4D2ED11EF8DEE5120C4F9AE02/kw3fQQEGkDvrmRnJm94BY4cGVa4.mft File: kw3fQQEGkDvrmRnJm94BY4cGVa4.mft (raw, json) Hash identifier: rFZX+RVlVyJz73hB5vD3WVsQ8xnZnwN2K1t+WqsuEyE= Subject key identifier: C2:AC:BB:F2:02:AC:83:F8:13:5C:DE:60:D8:6C:26:BC:84:0E:ED:BF Authority key identifier: 93:0D:DF:41:01:06:90:3B:EB:99:19:C9:9B:DE:01:63:87:06:55:AE Certificate issuer: /CN=A9198553/serialNumber=930DDF410106903BEB9919C99BDE0163870655AE Certificate serial: B4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kw3fQQEGkDvrmRnJm94BY4cGVa4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198553/A59BFFE4D2ED11EF8DEE5120C4F9AE02/kw3fQQEGkDvrmRnJm94BY4cGVa4.mft Manifest number: B1 Signing time: Sun 21 Dec 2025 05:15:19 +0000 Manifest this update: Sun 21 Dec 2025 05:15:18 +0000 Manifest next update: Sun 28 Dec 2025 05:15:18 +0000 Files and hashes: 1: kw3fQQEGkDvrmRnJm94BY4cGVa4.crl (hash: tCmdzLvbvsCawqm3GVf/aXR4eptGzInzbxQImnV9gL0=) 2: 5042D03ED2EF11EFBA610425C4F9AE02.roa (hash: Td45KF7s5KJjDmYTPbjMG6cwXZMtoTfhOtwsLcRRVB4=) 3: B56BC994E18A11EF94F99968C4F9AE02.roa (hash: gzNobaLbEvK3FJ3mC0CiPYdWO820L9Sv8IKQdUKftFE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198553/A59BFFE4D2ED11EF8DEE5120C4F9AE02/kw3fQQEGkDvrmRnJm94BY4cGVa4.crl rsync://rpki.apnic.net/member_repository/A9198553/A59BFFE4D2ED11EF8DEE5120C4F9AE02/kw3fQQEGkDvrmRnJm94BY4cGVa4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kw3fQQEGkDvrmRnJm94BY4cGVa4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 05:15:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 180 (0xb4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198553, serialNumber=930DDF410106903BEB9919C99BDE0163870655AE Validity Not Before: Dec 21 05:15:18 2025 GMT Not After : Dec 28 05:15:18 2025 GMT Subject: CN=69478267-08b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:65:6a:c5:b8:a0:54:66:d2:74:7b:12:9b:c5: 8b:ab:84:28:f6:f3:82:fa:d5:41:cc:b1:d0:56:d0: af:48:fe:e7:58:5b:65:be:ba:70:44:1b:71:66:87: c3:71:b7:4f:9a:a1:d3:38:d6:14:3a:8a:1e:ea:7d: dd:a4:be:fe:a8:98:67:e2:9f:25:1a:31:df:76:78: 20:34:92:e0:4f:2a:94:14:d8:2d:f0:2a:4e:1b:b7: 2b:1e:c7:49:11:12:03:bb:cf:5b:50:48:ee:2a:e9: 2f:31:ce:19:14:d2:1e:bb:16:20:d9:84:0d:ab:74: 35:ee:e5:d3:1d:6f:bd:43:c1:32:71:22:de:f0:80: c5:c1:f3:8c:df:19:94:56:f6:79:ad:fe:14:60:d5: df:87:6b:da:06:a8:65:74:de:c8:b9:51:81:ae:27: df:c6:a2:ab:cf:cb:f2:d7:79:10:b5:7d:d0:1f:5d: 36:14:52:59:a5:72:48:6e:74:bb:1c:57:a9:13:af: 66:d7:d2:5b:e1:b8:91:f9:a8:8b:1e:a0:5b:3b:c7: 17:23:95:49:c6:39:b6:f5:ff:21:c2:8d:c3:76:2a: e3:d5:9c:a7:a9:18:e2:78:3b:6d:d8:4c:51:13:d6: dc:d3:33:71:68:8c:2d:5e:b8:a4:43:98:f1:68:78: db:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:AC:BB:F2:02:AC:83:F8:13:5C:DE:60:D8:6C:26:BC:84:0E:ED:BF X509v3 Authority Key Identifier: keyid:93:0D:DF:41:01:06:90:3B:EB:99:19:C9:9B:DE:01:63:87:06:55:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198553/A59BFFE4D2ED11EF8DEE5120C4F9AE02/kw3fQQEGkDvrmRnJm94BY4cGVa4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kw3fQQEGkDvrmRnJm94BY4cGVa4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198553/A59BFFE4D2ED11EF8DEE5120C4F9AE02/kw3fQQEGkDvrmRnJm94BY4cGVa4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:37:32:7d:40:cd:5f:5d:3a:8e:d3:80:96:47:54:15:8a:8a: e0:a9:96:8d:d8:02:05:26:3d:c1:fa:07:67:bd:60:68:34:8f: 62:67:9b:8f:9f:7b:87:8b:e9:e2:0f:2b:e4:53:54:33:da:75: d3:bc:76:6d:c6:06:91:a6:fa:68:41:c6:a3:eb:93:a8:b1:8a: 82:1f:96:27:89:a9:07:4b:ba:52:85:a3:be:a3:47:c1:a8:31: c2:02:09:0a:94:df:cb:01:4e:71:47:2a:8c:c6:95:cb:d0:b7: c5:cb:45:85:49:92:c1:86:1d:dc:b9:12:11:95:a0:30:e8:c7: d5:c5:56:89:18:45:9d:9c:e8:70:fe:0a:8a:39:37:a4:a8:3e: d4:84:6d:7b:8c:ad:24:e6:01:1f:bf:8c:14:da:8d:bd:99:7b: e7:8b:47:f0:59:2e:e1:a1:bd:2a:43:75:dc:88:c2:44:4a:31: a0:b4:b7:56:44:83:ba:e1:b6:fe:bd:c1:9c:71:68:13:cd:40: e7:bf:f1:1b:12:e3:e2:3b:0a:8c:31:3f:d5:c9:55:3b:17:77: da:55:c9:75:93:0f:21:6e:35:25:cc:77:bb:b6:5a:7e:ff:bd: 18:da:05:7f:4d:ee:c2:7e:f1:b6:8d:1b:04:3d:f9:f0:f3:8e: bd:39:6f:41 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTg1NTMxMTAvBgNVBAUTKDkzMERERjQxMDEwNjkwM0JFQjk5MTlDOTlCREUwMTYz ODcwNjU1QUUwHhcNMjUxMjIxMDUxNTE4WhcNMjUxMjI4MDUxNTE4WjAYMRYwFAYD VQQDDA02OTQ3ODI2Ny0wOGI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0GVqxbigVGbSdHsSm8WLq4Qo9vOC+tVBzLHQVtCvSP7nWFtlvrpwRBtxZofD cbdPmqHTONYUOooe6n3dpL7+qJhn4p8lGjHfdnggNJLgTyqUFNgt8CpOG7crHsdJ ERIDu89bUEjuKukvMc4ZFNIeuxYg2YQNq3Q17uXTHW+9Q8EycSLe8IDFwfOM3xmU VvZ5rf4UYNXfh2vaBqhldN7IuVGBriffxqKrz8vy13kQtX3QH102FFJZpXJIbnS7 HFepE69m19Jb4biR+aiLHqBbO8cXI5VJxjm29f8hwo3Ddirj1ZynqRjieDtt2ExR E9bc0zNxaIwtXrikQ5jxaHjbrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMKsu/IC rIP4E1zeYNhsJryEDu2/MB8GA1UdIwQYMBaAFJMN30EBBpA765kZyZveAWOHBlWu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5ODU1My9BNTlCRkZFNEQy RUQxMUVGOERFRTUxMjBDNEY5QUUwMi9rdzNmUVFFR2tEdnJtUm5KbTk0Qlk0Y0dW YTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2t3M2ZRUUVHa0R2cm1SbkptOTRCWTRjR1ZhNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 ODU1My9BNTlCRkZFNEQyRUQxMUVGOERFRTUxMjBDNEY5QUUwMi9rdzNmUVFFR2tE dnJtUm5KbTk0Qlk0Y0dWYTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/NzJ9QM1fXTqO04CWR1QViorgqZaN2AIFJj3B+gdnvWBoNI9iZ5uP n3uHi+niDyvkU1Qz2nXTvHZtxgaRpvpoQcaj65OosYqCH5YniakHS7pShaO+o0fB qDHCAgkKlN/LAU5xRyqMxpXL0LfFy0WFSZLBhh3cuRIRlaAw6MfVxVaJGEWdnOhw /gqKOTekqD7UhG17jK0k5gEfv4wU2o29mXvni0fwWS7hob0qQ3XciMJESjGgtLdW RIO64bb+vcGccWgTzUDnv/EbEuPiOwqMMT/VyVU7F3faVcl1kw8hbjUlzHe7tlp+ /70Y2gV/Te7CfvG2jRsEPfnw8469OW9B -----END CERTIFICATE-----Generated at Mon Dec 22 00:25:22 2025 by rpki-client