This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.mft File: kI2z-bdG9SC7uahMhT9pJsFeub0.mft (raw, json) Hash identifier: XPBagXrh5heV1ZhMdRTDt5OorvmdGyaLfEVoO65SHA4= Subject key identifier: A8:D4:58:70:A0:71:51:00:CC:5E:E9:7A:AC:16:0E:C6:F5:1F:00:5B Authority key identifier: 90:8D:B3:F9:B7:46:F5:20:BB:B9:A8:4C:85:3F:69:26:C1:5E:B9:BD Certificate issuer: /CN=A919A909/serialNumber=908DB3F9B746F520BBB9A84C853F6926C15EB9BD Certificate serial: 0121 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI2z-bdG9SC7uahMhT9pJsFeub0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.mft Manifest number: 011E Signing time: Fri 19 Dec 2025 03:54:30 +0000 Manifest this update: Fri 19 Dec 2025 03:54:29 +0000 Manifest next update: Fri 26 Dec 2025 03:54:29 +0000 Files and hashes: 1: kI2z-bdG9SC7uahMhT9pJsFeub0.crl (hash: rgSsaoQETgyM5vrokQFwKZAfA3e53EyDPWzsdSwF5qc=) 2: 879152E62E4811EF929FE162C4F9AE02.roa (hash: cr46hMBXMjVoUuUCIeS55LaT84JtFcqvVMAfnbq95f8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.crl rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI2z-bdG9SC7uahMhT9pJsFeub0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 03:54:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 289 (0x121) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A909, serialNumber=908DB3F9B746F520BBB9A84C853F6926C15EB9BD Validity Not Before: Dec 19 03:54:29 2025 GMT Not After : Dec 26 03:54:29 2025 GMT Subject: CN=6944cc75-a2b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:cc:45:45:e9:6b:0b:97:b1:c7:57:f2:b2:14: 8d:f3:0c:f8:45:1a:fa:6d:d7:a1:f2:89:50:9f:5a: 91:d2:40:bb:f5:b1:92:1f:e5:a4:cf:8a:2e:fd:e0: 8d:d8:15:41:df:43:86:3d:fe:b0:09:31:fb:ea:46: 47:1c:09:fa:24:34:cb:95:1d:fe:9e:f2:48:f9:cf: 34:7f:1b:8c:53:c3:dc:50:8e:e2:a2:92:bc:66:04: 0a:61:8b:ee:23:9b:f4:31:be:ab:e7:c5:7e:6c:80: 1a:04:3c:e2:3a:e2:10:12:9c:f2:f5:45:e1:1a:a9: 16:d9:dc:2b:41:86:d5:43:d6:13:a0:3a:20:8f:35: 3b:46:14:c4:0b:1c:8c:5c:a7:a4:b4:76:d8:6e:0f: cd:0a:99:4d:9c:61:8a:6a:b0:b2:38:59:50:2f:07: 10:5b:1c:3c:7a:67:45:0b:85:50:f0:2f:0b:d2:0e: 29:e9:3a:75:9c:47:fe:a7:75:00:18:99:0e:49:80: ad:9f:9c:6e:2a:5b:3c:0f:6f:e5:d1:4e:16:b7:66: a9:be:ee:38:94:9e:8f:0b:17:e9:e5:0d:81:3f:87: ea:ae:60:6a:f1:1c:73:8f:37:6b:da:5f:b4:32:62: 27:5f:98:77:53:69:46:2f:c1:4d:de:bd:bd:b3:d1: 0e:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:D4:58:70:A0:71:51:00:CC:5E:E9:7A:AC:16:0E:C6:F5:1F:00:5B X509v3 Authority Key Identifier: keyid:90:8D:B3:F9:B7:46:F5:20:BB:B9:A8:4C:85:3F:69:26:C1:5E:B9:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI2z-bdG9SC7uahMhT9pJsFeub0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:bf:86:51:32:b4:d5:3e:47:b9:e2:23:9e:9a:9c:53:d8:e6: 5d:b6:77:36:31:63:75:11:3f:03:f5:b5:0c:99:a9:a2:db:ab: ee:31:cb:52:40:bf:d9:a9:9c:0b:80:90:5d:14:29:43:00:1c: dd:04:ac:e0:55:d5:28:3a:03:cb:24:69:b5:d1:16:e6:7d:19: ad:42:1e:80:db:4a:c6:4c:33:c2:12:7b:07:71:b0:c6:1d:5f: a1:fb:61:65:05:1d:28:df:4f:4f:d7:72:45:f3:da:ec:bb:ab: aa:71:87:32:f1:84:94:6a:ab:1a:ff:39:b2:45:c4:a0:30:f9: 6e:8c:08:9d:8f:8d:c2:be:cb:ca:0b:ce:6c:8b:b0:bb:fa:e2: 78:63:2b:cf:e8:d1:24:97:7a:2c:28:d2:44:67:a8:14:41:8d: d0:a4:47:c8:ae:94:c6:81:6b:ef:31:89:f4:e0:6e:99:4b:f0: f8:64:4c:27:81:2b:f5:bf:f7:58:84:d0:cc:77:44:23:6d:0f: 77:1b:33:fb:7a:90:8f:0f:7f:a9:1f:2b:e2:42:a6:ae:7f:d8: 47:f3:31:f7:3a:eb:7e:e3:c5:bd:2a:db:4d:ec:61:0b:ae:63: 22:6d:2b:ee:8e:05:e4:f6:d6:38:86:ec:34:d2:53:7e:99:7e: 36:8b:4e:4e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE5MDkxMTAvBgNVBAUTKDkwOERCM0Y5Qjc0NkY1MjBCQkI5QTg0Qzg1M0Y2OTI2 QzE1RUI5QkQwHhcNMjUxMjE5MDM1NDI5WhcNMjUxMjI2MDM1NDI5WjAYMRYwFAYD VQQDDA02OTQ0Y2M3NS1hMmI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1cxFRelrC5exx1fyshSN8wz4RRr6bdeh8olQn1qR0kC79bGSH+Wkz4ou/eCN 2BVB30OGPf6wCTH76kZHHAn6JDTLlR3+nvJI+c80fxuMU8PcUI7iopK8ZgQKYYvu I5v0Mb6r58V+bIAaBDziOuIQEpzy9UXhGqkW2dwrQYbVQ9YToDogjzU7RhTECxyM XKektHbYbg/NCplNnGGKarCyOFlQLwcQWxw8emdFC4VQ8C8L0g4p6Tp1nEf+p3UA GJkOSYCtn5xuKls8D2/l0U4Wt2apvu44lJ6PCxfp5Q2BP4fqrmBq8Rxzjzdr2l+0 MmInX5h3U2lGL8FN3r29s9EO8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKjUWHCg cVEAzF7peqwWDsb1HwBbMB8GA1UdIwQYMBaAFJCNs/m3RvUgu7moTIU/aSbBXrm9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTkwOS8yMDlFRERDRTJB MzMxMUVGQkU5QUE4NTlDNEY5QUUwMi9rSTJ6LWJkRzlTQzd1YWhNaFQ5cEpzRmV1 YjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tJMnotYmRHOVNDN3VhaE1oVDlwSnNGZXViMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTkwOS8yMDlFRERDRTJBMzMxMUVGQkU5QUE4NTlDNEY5QUUwMi9rSTJ6LWJkRzlT Qzd1YWhNaFQ5cEpzRmV1YjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2v4ZRMrTVPke54iOempxT2OZdtnc2MWN1ET8D9bUMmami26vuMctS QL/ZqZwLgJBdFClDABzdBKzgVdUoOgPLJGm10RbmfRmtQh6A20rGTDPCEnsHcbDG HV+h+2FlBR0o309P13JF89rsu6uqcYcy8YSUaqsa/zmyRcSgMPlujAidj43CvsvK C85si7C7+uJ4YyvP6NEkl3osKNJEZ6gUQY3QpEfIrpTGgWvvMYn04G6ZS/D4ZEwn gSv1v/dYhNDMd0QjbQ93GzP7epCPD3+pHyviQqauf9hH8zH3Out+48W9KttN7GEL rmMibSvujgXk9tY4huw00lN+mX42i05O -----END CERTIFICATE-----Generated at Sat Dec 20 07:15:59 2025 by rpki-client