This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.mft File: kI2z-bdG9SC7uahMhT9pJsFeub0.mft (raw, json) Hash identifier: UyyoBQlX6SepeW89dga+x3Dk+8M8XdGP7zvnBbu+yi0= Subject key identifier: A9:20:8A:3B:5B:AC:C3:50:AF:03:B7:CF:27:84:B7:5E:D5:24:A7:13 Authority key identifier: 90:8D:B3:F9:B7:46:F5:20:BB:B9:A8:4C:85:3F:69:26:C1:5E:B9:BD Certificate issuer: /CN=A919A909/serialNumber=908DB3F9B746F520BBB9A84C853F6926C15EB9BD Certificate serial: 011C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI2z-bdG9SC7uahMhT9pJsFeub0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.mft Manifest number: 0119 Signing time: Tue 09 Dec 2025 02:53:16 +0000 Manifest this update: Tue 09 Dec 2025 02:53:16 +0000 Manifest next update: Tue 16 Dec 2025 02:53:16 +0000 Files and hashes: 1: kI2z-bdG9SC7uahMhT9pJsFeub0.crl (hash: Ry2pbYsX/CqqeEYpdzboPQ36qYYa+z/Ca3sq3AaR2DE=) 2: 879152E62E4811EF929FE162C4F9AE02.roa (hash: cr46hMBXMjVoUuUCIeS55LaT84JtFcqvVMAfnbq95f8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.crl rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI2z-bdG9SC7uahMhT9pJsFeub0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Dec 2025 02:53:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 284 (0x11c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A909, serialNumber=908DB3F9B746F520BBB9A84C853F6926C15EB9BD Validity Not Before: Dec 9 02:53:16 2025 GMT Not After : Dec 16 02:53:16 2025 GMT Subject: CN=69378f1c-8df3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:8e:89:ee:02:89:2c:20:44:90:ec:a1:dc:68: 3e:ef:86:5e:08:bf:0c:e8:a3:74:c4:39:6b:3a:be: e1:e3:b6:6c:50:41:ac:78:4a:35:da:47:5b:b1:1d: 5a:5d:c2:0a:52:d2:8d:ef:40:72:d1:90:12:47:b6: a7:49:b3:ea:9b:7e:0a:09:5c:0f:ff:3e:c8:6b:db: 3e:ee:1d:49:1d:4d:b1:df:9e:fb:cb:0f:69:52:40: 35:f9:63:83:83:aa:9a:19:42:b5:c4:00:92:16:ba: 71:94:e2:85:54:9b:3e:8c:a7:47:0c:a8:bf:aa:c5: 40:86:01:35:7b:cc:3e:28:1b:ce:3f:b3:15:d9:1e: 85:a9:86:05:60:79:47:1a:8d:ac:35:8c:12:a6:0d: 74:88:a1:05:49:04:2b:44:37:0c:22:08:6a:87:e3: 60:3e:b3:57:58:21:5f:b6:34:c8:cd:36:93:c9:c8: 8c:61:5a:16:37:15:0a:d7:4c:84:86:03:7d:f3:1f: 8a:a7:03:01:c4:7a:6f:03:c5:44:86:ea:99:fd:9b: 68:11:2b:34:ae:ba:37:a4:be:5a:68:e0:8f:3f:e2: b9:4d:57:ac:d1:81:42:8d:f0:7f:5e:36:c7:a1:21: 23:84:c8:e3:61:09:b7:11:3a:0e:ac:f1:ea:bf:10: 3a:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:20:8A:3B:5B:AC:C3:50:AF:03:B7:CF:27:84:B7:5E:D5:24:A7:13 X509v3 Authority Key Identifier: keyid:90:8D:B3:F9:B7:46:F5:20:BB:B9:A8:4C:85:3F:69:26:C1:5E:B9:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI2z-bdG9SC7uahMhT9pJsFeub0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:8d:b2:65:06:6e:d1:95:df:ca:22:e5:25:ed:48:cc:e4:2d: de:3f:a8:7c:c9:3b:4d:11:74:a2:1d:61:ac:78:57:54:5d:53: c6:37:cb:1c:46:9e:29:a5:82:13:ab:a8:2b:92:97:3c:f2:4b: 29:d1:60:ad:b2:47:c7:9c:54:bf:f6:41:5c:ac:3f:d1:6a:77: ad:ea:fb:2a:ac:a6:81:f1:b8:3c:8f:a7:70:19:f5:de:f5:e4: d6:14:ce:ad:3c:fd:30:60:5a:c0:f2:ff:fb:4c:15:f5:6e:e2: ea:e8:9f:70:da:59:26:68:f4:56:f3:1a:58:1d:07:be:9e:9a: 3a:6a:c3:b4:87:f0:2a:c9:6f:d5:58:fd:6b:7b:4d:08:e0:38: 6c:41:03:84:2c:bd:f8:f3:d0:90:62:50:06:fa:f7:53:42:03: 87:ba:7d:79:4e:29:b0:cf:5a:ce:f3:b0:3f:fb:44:bc:70:2a: 53:53:31:77:ae:57:05:f8:fd:a1:8c:44:f9:eb:41:e2:a3:60: cf:97:bb:3c:b6:f9:1e:85:34:03:58:74:2d:ac:fe:1e:71:91: e2:ec:f5:dc:fa:e7:ab:b0:b2:c4:17:16:11:40:c3:ae:9f:cd: a2:11:05:30:23:fe:09:cb:02:c2:ed:c4:0a:e0:42:b8:4b:10: 97:8f:33:57 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE5MDkxMTAvBgNVBAUTKDkwOERCM0Y5Qjc0NkY1MjBCQkI5QTg0Qzg1M0Y2OTI2 QzE1RUI5QkQwHhcNMjUxMjA5MDI1MzE2WhcNMjUxMjE2MDI1MzE2WjAYMRYwFAYD VQQDEw02OTM3OGYxYy04ZGYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3o6J7gKJLCBEkOyh3Gg+74ZeCL8M6KN0xDlrOr7h47ZsUEGseEo12kdbsR1a XcIKUtKN70By0ZASR7anSbPqm34KCVwP/z7Ia9s+7h1JHU2x3577yw9pUkA1+WOD g6qaGUK1xACSFrpxlOKFVJs+jKdHDKi/qsVAhgE1e8w+KBvOP7MV2R6FqYYFYHlH Go2sNYwSpg10iKEFSQQrRDcMIghqh+NgPrNXWCFftjTIzTaTyciMYVoWNxUK10yE hgN98x+KpwMBxHpvA8VEhuqZ/ZtoESs0rro3pL5aaOCPP+K5TVes0YFCjfB/XjbH oSEjhMjjYQm3EToOrPHqvxA67wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKkgijtb rMNQrwO3zyeEt17VJKcTMB8GA1UdIwQYMBaAFJCNs/m3RvUgu7moTIU/aSbBXrm9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTkwOS8yMDlFRERDRTJB MzMxMUVGQkU5QUE4NTlDNEY5QUUwMi9rSTJ6LWJkRzlTQzd1YWhNaFQ5cEpzRmV1 YjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tJMnotYmRHOVNDN3VhaE1oVDlwSnNGZXViMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTkwOS8yMDlFRERDRTJBMzMxMUVGQkU5QUE4NTlDNEY5QUUwMi9rSTJ6LWJkRzlT Qzd1YWhNaFQ5cEpzRmV1YjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWjbJlBm7Rld/KIuUl7UjM5C3eP6h8yTtNEXSiHWGseFdUXVPGN8sc Rp4ppYITq6grkpc88ksp0WCtskfHnFS/9kFcrD/Ranet6vsqrKaB8bg8j6dwGfXe 9eTWFM6tPP0wYFrA8v/7TBX1buLq6J9w2lkmaPRW8xpYHQe+npo6asO0h/AqyW/V WP1re00I4DhsQQOELL3489CQYlAG+vdTQgOHun15Timwz1rO87A/+0S8cCpTUzF3 rlcF+P2hjET560Hio2DPl7s8tvkehTQDWHQtrP4ecZHi7PXc+uersLLEFxYRQMOu n82iEQUwI/4JywLC7cQK4EK4SxCXjzNX -----END CERTIFICATE-----Generated at Fri Dec 12 00:09:41 2025 by rpki-client