This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.mft File: kyv2OTHDR-dryQidQb4k9jcPJYI.mft (raw, json) Hash identifier: oT9KOrvK1LtssFyDOvgGQG06e4Xj/OB4ZBd7PiAeiBo= Subject key identifier: 0B:F4:47:B9:6C:FD:6B:3D:15:A5:84:AA:94:35:6F:99:C7:F0:4C:AB Authority key identifier: 93:2B:F6:39:31:C3:47:E7:6B:C9:08:9D:41:BE:24:F6:37:0F:25:82 Certificate issuer: /CN=A919879C/serialNumber=932BF63931C347E76BC9089D41BE24F6370F2582 Certificate serial: 02F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kyv2OTHDR-dryQidQb4k9jcPJYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.mft Manifest number: 02F2 Signing time: Tue 23 Dec 2025 00:14:38 +0000 Manifest this update: Tue 23 Dec 2025 00:14:37 +0000 Manifest next update: Tue 30 Dec 2025 00:14:37 +0000 Files and hashes: 1: kyv2OTHDR-dryQidQb4k9jcPJYI.crl (hash: I4O0Xqn8cHOgLZfuQhaa6zmlcElHUzCDXI26/b+kYC4=) 2: E7C34456073711ED8BA93630C4F9AE02.roa (hash: 16sJIK7yDSO7A/N450AB9k39DyJDrn04igY89yyJfys=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.crl rsync://rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kyv2OTHDR-dryQidQb4k9jcPJYI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 00:14:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 759 (0x2f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919879C, serialNumber=932BF63931C347E76BC9089D41BE24F6370F2582 Validity Not Before: Dec 23 00:14:37 2025 GMT Not After : Dec 30 00:14:37 2025 GMT Subject: CN=6949deed-215b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:30:2e:b3:0f:ad:b6:a3:c3:56:8e:f5:ae:f5: 55:8b:ce:cf:05:62:18:d8:ad:42:38:f3:69:7f:9f: 49:74:d1:01:a1:57:fc:46:39:a3:43:ea:19:8b:a2: 97:27:37:7b:5b:6f:08:33:5c:69:d4:c5:8b:3f:7c: 10:7b:66:7f:97:5f:9a:c8:f0:ed:1f:af:57:29:9d: 2a:6d:1b:e3:8c:53:68:89:f2:86:2d:02:6d:14:83: a8:5c:41:13:f5:07:00:d8:89:3b:9a:2a:fa:88:76: 90:80:d1:66:26:07:7a:ad:da:4b:65:b6:5b:76:7d: 5f:fc:9b:fa:33:a7:46:3a:eb:15:81:79:9b:af:60: 7b:84:08:15:11:3e:87:d6:37:88:fa:24:4a:07:11: 4b:11:f2:61:b2:54:12:b7:0e:27:fd:97:ee:86:0e: 26:2b:00:cf:fb:48:d0:5e:61:3e:e7:a6:33:5f:c6: 76:52:4f:89:86:d9:19:01:97:61:2a:8e:68:a3:32: 83:5c:9b:3d:09:b0:8f:aa:62:bb:0d:17:70:3b:d5: f3:3d:f1:c5:86:d0:34:23:b2:51:89:e3:f8:19:c2: 54:a6:30:76:1e:78:45:31:54:4b:ef:2a:26:3b:04: 45:6d:3d:7a:37:55:70:a9:62:2f:ba:dc:7e:ca:3d: 6f:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:F4:47:B9:6C:FD:6B:3D:15:A5:84:AA:94:35:6F:99:C7:F0:4C:AB X509v3 Authority Key Identifier: keyid:93:2B:F6:39:31:C3:47:E7:6B:C9:08:9D:41:BE:24:F6:37:0F:25:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kyv2OTHDR-dryQidQb4k9jcPJYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:18:58:24:37:71:9c:e3:82:2a:df:af:1d:43:6d:1d:1c:ef: 88:4e:03:63:58:46:c9:ee:13:36:f7:f3:3e:d1:6d:9a:10:8b: 52:73:ae:0e:1c:4e:96:2e:62:f7:51:1b:0d:3d:3a:86:d8:d4: 2e:df:1b:83:05:4e:67:b5:45:11:08:d1:40:07:48:f3:b0:cf: 63:46:25:74:c1:fb:11:c1:9b:bc:7d:6b:d8:ad:57:33:c7:bc: c3:40:54:9b:b5:68:19:3d:72:68:56:2a:8e:3c:47:4f:8e:71: e4:21:c5:77:90:55:ed:b6:a2:5a:f3:4f:50:b9:7c:1c:6c:8a: a3:9f:04:39:7e:35:7c:ed:c2:fc:32:77:af:f6:40:46:43:1e: 66:c0:06:29:91:07:ca:3e:74:d4:78:a7:35:d5:35:88:72:38: 14:86:93:18:d2:76:90:47:7b:ed:f2:66:d2:67:35:84:77:bf: b7:d9:5a:4f:6a:32:da:1d:2e:c5:91:b8:61:13:5b:fe:f0:c8: 01:09:d3:82:6f:00:5a:2b:43:6c:41:d1:05:9c:77:c1:41:c1: 03:6e:d1:f6:f7:f9:64:19:64:d4:08:be:d3:c4:69:55:dd:bd: 00:f6:81:c1:c2:c9:0f:c6:7b:7c:a5:bd:72:a8:a9:8b:d4:c9: 81:21:c4:d4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAvcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTg3OUMxMTAvBgNVBAUTKDkzMkJGNjM5MzFDMzQ3RTc2QkM5MDg5RDQxQkUyNEY2 MzcwRjI1ODIwHhcNMjUxMjIzMDAxNDM3WhcNMjUxMjMwMDAxNDM3WjAYMRYwFAYD VQQDDA02OTQ5ZGVlZC0yMTViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqTAusw+ttqPDVo71rvVVi87PBWIY2K1COPNpf59JdNEBoVf8RjmjQ+oZi6KX Jzd7W28IM1xp1MWLP3wQe2Z/l1+ayPDtH69XKZ0qbRvjjFNoifKGLQJtFIOoXEET 9QcA2Ik7mir6iHaQgNFmJgd6rdpLZbZbdn1f/Jv6M6dGOusVgXmbr2B7hAgVET6H 1jeI+iRKBxFLEfJhslQStw4n/Zfuhg4mKwDP+0jQXmE+56YzX8Z2Uk+JhtkZAZdh Ko5oozKDXJs9CbCPqmK7DRdwO9XzPfHFhtA0I7JRieP4GcJUpjB2HnhFMVRL7yom OwRFbT16N1VwqWIvutx+yj1v5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAv0R7ls /Ws9FaWEqpQ1b5nH8EyrMB8GA1UdIwQYMBaAFJMr9jkxw0fna8kInUG+JPY3DyWC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5ODc5Qy9FMUQyMDI5MjA3 MzQxMUVEQjA0RDM3MkRDNEY5QUUwMi9reXYyT1RIRFItZHJ5UWlkUWI0azlqY1BK WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t5djJPVEhEUi1kcnlRaWRRYjRrOWpjUEpZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 ODc5Qy9FMUQyMDI5MjA3MzQxMUVEQjA0RDM3MkRDNEY5QUUwMi9reXYyT1RIRFIt ZHJ5UWlkUWI0azlqY1BKWUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWGFgkN3Gc44Iq368dQ20dHO+ITgNjWEbJ7hM29/M+0W2aEItSc64O HE6WLmL3URsNPTqG2NQu3xuDBU5ntUURCNFAB0jzsM9jRiV0wfsRwZu8fWvYrVcz x7zDQFSbtWgZPXJoViqOPEdPjnHkIcV3kFXttqJa809QuXwcbIqjnwQ5fjV87cL8 Mnev9kBGQx5mwAYpkQfKPnTUeKc11TWIcjgUhpMY0naQR3vt8mbSZzWEd7+32VpP ajLaHS7FkbhhE1v+8MgBCdOCbwBaK0NsQdEFnHfBQcEDbtH29/lkGWTUCL7TxGlV 3b0A9oHBwskPxnt8pb1yqKmL1MmBIcTU -----END CERTIFICATE-----Generated at Wed Dec 24 14:11:59 2025 by rpki-client