This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919C8F9/DC6B3614FE6D11EBB83F2B22C4F9AE02/KUrNCNoZE4w376-ydKHndXceRT4.mft File: KUrNCNoZE4w376-ydKHndXceRT4.mft (raw, json) Hash identifier: +eRvjZxKtXC5sLd060k0LApRfR/vKUotIjexROWoQMQ= Subject key identifier: 05:36:A4:5A:D6:61:B8:0D:5B:8A:02:9A:30:F4:B5:6F:64:BD:41:BB Authority key identifier: 29:4A:CD:08:DA:19:13:8C:37:EF:AF:B2:74:A1:E7:75:77:1E:45:3E Certificate issuer: /CN=A919C8F9/serialNumber=294ACD08DA19138C37EFAFB274A1E775771E453E Certificate serial: 058B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KUrNCNoZE4w376-ydKHndXceRT4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C8F9/DC6B3614FE6D11EBB83F2B22C4F9AE02/KUrNCNoZE4w376-ydKHndXceRT4.mft Manifest number: 0585 Signing time: Tue 02 Dec 2025 22:11:20 +0000 Manifest this update: Tue 02 Dec 2025 22:11:19 +0000 Manifest next update: Tue 09 Dec 2025 22:11:19 +0000 Files and hashes: 1: KUrNCNoZE4w376-ydKHndXceRT4.crl (hash: zDMtyDIC56nxlXW7BZKtXzldEr+v2QNv2MnJy4pHc1I=) 2: 2D7BD4EA03DD11ECA448405BC4F9AE02.roa (hash: KKWKrtsh/34nl8r+0Ut1+Gkgstz0StRYtgWm9ide930=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C8F9/DC6B3614FE6D11EBB83F2B22C4F9AE02/KUrNCNoZE4w376-ydKHndXceRT4.crl rsync://rpki.apnic.net/member_repository/A919C8F9/DC6B3614FE6D11EBB83F2B22C4F9AE02/KUrNCNoZE4w376-ydKHndXceRT4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KUrNCNoZE4w376-ydKHndXceRT4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 22:11:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1419 (0x58b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C8F9, serialNumber=294ACD08DA19138C37EFAFB274A1E775771E453E Validity Not Before: Dec 2 22:11:19 2025 GMT Not After : Dec 9 22:11:19 2025 GMT Subject: CN=692f6407-578d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:7a:b0:a8:49:1e:fc:5c:31:cc:5f:8a:91:04: 9a:1c:83:83:22:35:74:25:f7:c4:a0:8a:75:14:c5: a6:35:01:4e:9f:6d:81:be:a2:68:af:4e:a0:1a:87: e0:78:64:49:a2:53:14:54:69:7b:81:8a:bc:40:14: b3:42:79:ed:2e:04:2e:eb:20:50:1b:04:03:6a:e4: 54:ff:3f:b6:08:4a:36:e5:ca:3b:73:7e:36:a6:4e: 79:94:8c:12:61:76:0a:2c:ef:e5:ba:da:5c:19:93: 84:47:66:57:71:69:6c:ff:c3:d9:75:93:64:b5:2e: 36:43:71:93:db:59:45:db:3d:c3:f0:75:a1:bd:92: 43:22:81:af:60:9f:e3:dc:67:b3:ee:13:fa:45:f6: 33:ca:0e:43:f8:6b:78:86:2e:5c:9b:9c:b6:25:a2: f8:b6:f5:8f:c4:ea:be:9d:19:27:df:07:4b:b2:ad: 75:68:32:c7:4a:5e:8d:7c:93:30:58:99:01:32:81: c8:95:21:d4:5c:86:b7:62:82:fa:07:59:55:48:ee: be:25:47:7d:5f:4c:70:ce:6f:62:aa:01:20:51:ed: 1a:35:09:97:0b:a1:41:f5:43:83:71:31:d0:23:e9: 45:47:98:a3:e4:7d:62:b9:7b:84:f2:18:c6:12:db: 18:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:36:A4:5A:D6:61:B8:0D:5B:8A:02:9A:30:F4:B5:6F:64:BD:41:BB X509v3 Authority Key Identifier: keyid:29:4A:CD:08:DA:19:13:8C:37:EF:AF:B2:74:A1:E7:75:77:1E:45:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C8F9/DC6B3614FE6D11EBB83F2B22C4F9AE02/KUrNCNoZE4w376-ydKHndXceRT4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KUrNCNoZE4w376-ydKHndXceRT4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C8F9/DC6B3614FE6D11EBB83F2B22C4F9AE02/KUrNCNoZE4w376-ydKHndXceRT4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:e7:30:71:42:db:19:b5:f3:c9:46:de:d1:a1:53:43:9e:d0: c5:87:b2:cd:27:57:b0:40:4e:6c:fb:d1:cf:2b:86:52:d8:21: db:64:cf:29:a8:f7:25:fd:95:1c:a1:4e:c6:2d:97:fd:da:ef: 8c:21:7b:0b:c6:6a:ec:8b:83:15:9f:d8:99:b9:49:e7:ab:a2: 1f:bf:c6:d6:54:55:72:7f:4f:4c:17:82:24:ed:07:9d:7f:b7: cf:0b:59:79:96:ff:98:20:10:f5:f7:dd:f6:4c:0b:74:ac:37: a2:2c:7f:22:21:95:d8:59:56:8e:51:10:41:81:be:9e:9b:62: 88:66:b2:e6:ca:66:f7:86:84:81:19:91:d9:96:d3:e8:ef:66: 27:c8:7c:91:12:48:76:d7:81:28:7e:89:a3:4c:f2:17:b2:ed: c6:dd:9a:4a:9f:b1:f8:d5:98:73:94:1e:ef:1a:c4:ed:30:2f: 8c:e5:b8:bd:84:5f:71:93:22:a4:3e:8d:33:1a:98:ea:aa:83: d2:4e:c0:2f:a6:18:cd:89:3e:8e:57:4e:dc:0c:6d:a8:46:5a: 96:ed:e5:0a:f6:ef:15:83:8f:75:23:b1:8f:46:ef:52:b9:22: e5:46:45:90:f8:e4:9b:45:33:eb:49:d7:87:6a:fd:f6:0b:d1: e6:e3:96:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBYswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUM4RjkxMTAvBgNVBAUTKDI5NEFDRDA4REExOTEzOEMzN0VGQUZCMjc0QTFFNzc1 NzcxRTQ1M0UwHhcNMjUxMjAyMjIxMTE5WhcNMjUxMjA5MjIxMTE5WjAYMRYwFAYD VQQDEw02OTJmNjQwNy01NzhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxnqwqEke/FwxzF+KkQSaHIODIjV0JffEoIp1FMWmNQFOn22BvqJor06gGofg eGRJolMUVGl7gYq8QBSzQnntLgQu6yBQGwQDauRU/z+2CEo25co7c342pk55lIwS YXYKLO/lutpcGZOER2ZXcWls/8PZdZNktS42Q3GT21lF2z3D8HWhvZJDIoGvYJ/j 3Gez7hP6RfYzyg5D+Gt4hi5cm5y2JaL4tvWPxOq+nRkn3wdLsq11aDLHSl6NfJMw WJkBMoHIlSHUXIa3YoL6B1lVSO6+JUd9X0xwzm9iqgEgUe0aNQmXC6FB9UODcTHQ I+lFR5ij5H1iuXuE8hjGEtsYlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAU2pFrW YbgNW4oCmjD0tW9kvUG7MB8GA1UdIwQYMBaAFClKzQjaGROMN++vsnSh53V3HkU+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzhGOS9EQzZCMzYxNEZF NkQxMUVCQjgzRjJCMjJDNEY5QUUwMi9LVXJOQ05vWkU0dzM3Ni15ZEtIbmRYY2VS VDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tVck5DTm9aRTR3Mzc2LXlkS0huZFhjZVJUNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QzhGOS9EQzZCMzYxNEZFNkQxMUVCQjgzRjJCMjJDNEY5QUUwMi9LVXJOQ05vWkU0 dzM3Ni15ZEtIbmRYY2VSVDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCj5zBxQtsZtfPJRt7RoVNDntDFh7LNJ1ewQE5s+9HPK4ZS2CHbZM8p qPcl/ZUcoU7GLZf92u+MIXsLxmrsi4MVn9iZuUnnq6Ifv8bWVFVyf09MF4Ik7Qed f7fPC1l5lv+YIBD19932TAt0rDeiLH8iIZXYWVaOURBBgb6em2KIZrLmymb3hoSB GZHZltPo72YnyHyREkh214EofomjTPIXsu3G3ZpKn7H41ZhzlB7vGsTtMC+M5bi9 hF9xkyKkPo0zGpjqqoPSTsAvphjNiT6OV07cDG2oRlqW7eUK9u8Vg491I7GPRu9S uSLlRkWQ+OSbRTPrSdeHav32C9Hm45Zh -----END CERTIFICATE-----Generated at Wed Dec 3 12:43:26 2025 by rpki-client