This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/Ktu3GxFSPKM5Ll832dx2shHb4IM.mft File: Ktu3GxFSPKM5Ll832dx2shHb4IM.mft (raw, json) Hash identifier: MIyIMTaK5iDefgl7xJuUxwpLd9658qI2l144U5Ax8B8= Subject key identifier: 03:2C:7D:5B:95:1A:4D:DD:02:1A:3B:36:CA:1F:9D:97:84:42:57:D1 Authority key identifier: 2A:DB:B7:1B:11:52:3C:A3:39:2E:5F:37:D9:DC:76:B2:11:DB:E0:83 Certificate issuer: /CN=A91C8347/serialNumber=2ADBB71B11523CA3392E5F37D9DC76B211DBE083 Certificate serial: 0165 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ktu3GxFSPKM5Ll832dx2shHb4IM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/Ktu3GxFSPKM5Ll832dx2shHb4IM.mft Manifest number: 0151 Signing time: Fri 19 Dec 2025 03:36:21 +0000 Manifest this update: Fri 19 Dec 2025 03:36:21 +0000 Manifest next update: Fri 26 Dec 2025 03:36:21 +0000 Files and hashes: 1: Ktu3GxFSPKM5Ll832dx2shHb4IM.crl (hash: NUuicgXaY9JHm/gVOPItLDSVKq3I1zrapOhqbF0I004=) 2: F4777FBEEDDA11EF9731160CC4F9AE02.roa (hash: RlIbmp0Lo/M48Q8XdgnjXEwJZ7614fl+AY4B8ug41tA=) 3: 34C7EB4010F411EFB4CD9614C4F9AE02.roa (hash: 5QVyPmB1PRFpCtk6BRZ20HLOXQ8hVyEmcdVKPIlpB7E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/Ktu3GxFSPKM5Ll832dx2shHb4IM.crl rsync://rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/Ktu3GxFSPKM5Ll832dx2shHb4IM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ktu3GxFSPKM5Ll832dx2shHb4IM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 03:36:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 357 (0x165) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8347, serialNumber=2ADBB71B11523CA3392E5F37D9DC76B211DBE083 Validity Not Before: Dec 19 03:36:21 2025 GMT Not After : Dec 26 03:36:21 2025 GMT Subject: CN=6944c835-fdee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:2d:f7:6e:d5:4c:e0:b1:af:f9:12:fa:13:c5: 09:a0:26:a4:0d:4b:42:86:44:98:f5:7e:97:eb:32: 5c:b5:25:26:57:fb:e9:33:e7:b0:68:23:e8:75:7c: 52:a7:30:69:c9:b8:f3:0e:fa:29:c3:43:ea:97:e2: 26:59:82:96:9b:20:92:45:5a:cd:76:a4:ed:b2:b5: cb:6b:3a:e5:3c:24:15:b3:32:3e:c4:7b:f9:4d:8d: dc:cd:11:c0:38:11:2d:61:a2:4a:14:d5:d5:8d:55: 28:e8:27:6d:92:41:67:31:90:06:61:ff:ac:e4:19: 63:f2:0e:eb:84:56:bc:27:6b:8f:dc:59:fe:d6:46: ca:fb:17:7f:4b:00:f8:7b:f7:7b:40:8f:8f:5b:dc: 08:0d:d2:6b:07:35:8d:c7:15:4e:2c:c8:5a:f0:fb: 70:41:fe:f5:f9:20:00:99:5f:fb:49:06:ea:ba:7f: 69:a5:f9:0d:c3:43:db:6e:db:ee:02:43:b2:1d:fd: 7c:d9:aa:61:d4:34:91:33:61:de:df:17:7d:db:60: 55:20:69:77:c3:5f:2c:41:8d:1c:b6:33:2d:30:78: 7e:da:4d:73:8e:fe:06:2a:4e:5b:ba:77:88:a1:1e: 95:60:3f:8e:07:aa:f5:9e:25:d2:24:2a:ff:d7:a6: e0:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:2C:7D:5B:95:1A:4D:DD:02:1A:3B:36:CA:1F:9D:97:84:42:57:D1 X509v3 Authority Key Identifier: keyid:2A:DB:B7:1B:11:52:3C:A3:39:2E:5F:37:D9:DC:76:B2:11:DB:E0:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/Ktu3GxFSPKM5Ll832dx2shHb4IM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ktu3GxFSPKM5Ll832dx2shHb4IM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/Ktu3GxFSPKM5Ll832dx2shHb4IM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:84:17:68:64:3e:2d:98:36:3e:bd:00:09:ff:64:f4:27:50: 4b:b2:a6:df:14:f8:b1:89:91:7a:d1:87:0d:15:79:48:a8:89: 4b:b8:0d:c1:10:45:a2:6e:ea:a6:18:36:5e:93:b3:35:eb:b3: a7:70:5f:3f:fe:2e:b7:93:45:d5:3a:60:30:7e:34:d3:9f:23: cc:c5:86:74:87:e5:a8:4c:90:43:ed:06:7a:90:ac:7a:37:56: 6f:52:ca:c2:9b:dc:2a:f9:fe:70:e2:fc:61:06:4a:6f:a3:44: 6f:44:c4:2c:9c:8f:b7:56:4f:21:d7:ec:07:cf:51:99:f6:fe: dc:8c:62:29:ab:69:b6:1d:ef:15:88:d0:ab:2c:f4:47:00:e6: e6:79:88:ba:e5:7f:93:7e:dc:de:e0:c6:d7:8e:b3:4a:77:e9: 98:18:20:16:6f:d1:74:a4:5c:0a:e1:22:02:b0:14:6d:75:9a: bc:6b:1b:33:c5:18:ad:c8:1c:83:6d:2b:7a:61:18:31:cf:0b: 73:2f:3d:42:59:3a:1e:66:b1:cd:53:0d:23:a2:c9:6b:38:e0: ef:11:d2:1c:89:ec:0a:6d:ca:e4:f4:c1:51:a5:5c:7d:92:c6: fb:8a:c3:2a:f0:21:6e:5f:40:d3:0f:15:31:85:9f:67:a6:50: 8d:1f:49:06 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzgzNDcxMTAvBgNVBAUTKDJBREJCNzFCMTE1MjNDQTMzOTJFNUYzN0Q5REM3NkIy MTFEQkUwODMwHhcNMjUxMjE5MDMzNjIxWhcNMjUxMjI2MDMzNjIxWjAYMRYwFAYD VQQDDA02OTQ0YzgzNS1mZGVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxi33btVM4LGv+RL6E8UJoCakDUtChkSY9X6X6zJctSUmV/vpM+ewaCPodXxS pzBpybjzDvopw0Pql+ImWYKWmyCSRVrNdqTtsrXLazrlPCQVszI+xHv5TY3czRHA OBEtYaJKFNXVjVUo6CdtkkFnMZAGYf+s5Blj8g7rhFa8J2uP3Fn+1kbK+xd/SwD4 e/d7QI+PW9wIDdJrBzWNxxVOLMha8PtwQf71+SAAmV/7SQbqun9ppfkNw0Pbbtvu AkOyHf182aph1DSRM2He3xd922BVIGl3w18sQY0ctjMtMHh+2k1zjv4GKk5buneI oR6VYD+OB6r1niXSJCr/16bgywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAMsfVuV Gk3dAho7NsofnZeEQlfRMB8GA1UdIwQYMBaAFCrbtxsRUjyjOS5fN9ncdrIR2+CD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDODM0Ny9DM0U3MjE5MEY5 QTkxMUVFQTgyQTc5MUFDNEY5QUUwMi9LdHUzR3hGU1BLTTVMbDgzMmR4MnNoSGI0 SU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0t0dTNHeEZTUEtNNUxsODMyZHgyc2hIYjRJTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD ODM0Ny9DM0U3MjE5MEY5QTkxMUVFQTgyQTc5MUFDNEY5QUUwMi9LdHUzR3hGU1BL TTVMbDgzMmR4MnNoSGI0SU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBChBdoZD4tmDY+vQAJ/2T0J1BLsqbfFPixiZF60YcNFXlIqIlLuA3B EEWibuqmGDZek7M167OncF8//i63k0XVOmAwfjTTnyPMxYZ0h+WoTJBD7QZ6kKx6 N1ZvUsrCm9wq+f5w4vxhBkpvo0RvRMQsnI+3Vk8h1+wHz1GZ9v7cjGIpq2m2He8V iNCrLPRHAObmeYi65X+Tftze4MbXjrNKd+mYGCAWb9F0pFwK4SICsBRtdZq8axsz xRityByDbSt6YRgxzwtzLz1CWToeZrHNUw0joslrOODvEdIciewKbcrk9MFRpVx9 ksb7isMq8CFuX0DTDxUxhZ9nplCNH0kG -----END CERTIFICATE-----Generated at Sat Dec 20 16:55:51 2025 by rpki-client