This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9112320/6D705BCEFE7011EB9CFB9029C4F9AE02/kl2pi04IXWgNFte6GD8OpUJqGgM.mft File: kl2pi04IXWgNFte6GD8OpUJqGgM.mft (raw, json) Hash identifier: kjoOINicM62Az/H/iQTlWDf2ReUecF8TTsSm8oSg6hI= Subject key identifier: B7:78:BB:7D:79:62:9F:CD:D0:46:C4:75:EC:A1:CD:50:81:FE:BC:08 Authority key identifier: 92:5D:A9:8B:4E:08:5D:68:0D:16:D7:BA:18:3F:0E:A5:42:6A:1A:03 Certificate issuer: /CN=A9112320/serialNumber=925DA98B4E085D680D16D7BA183F0EA5426A1A03 Certificate serial: 05A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kl2pi04IXWgNFte6GD8OpUJqGgM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112320/6D705BCEFE7011EB9CFB9029C4F9AE02/kl2pi04IXWgNFte6GD8OpUJqGgM.mft Manifest number: 0593 Signing time: Thu 04 Dec 2025 21:53:42 +0000 Manifest this update: Thu 04 Dec 2025 21:53:41 +0000 Manifest next update: Thu 11 Dec 2025 21:53:41 +0000 Files and hashes: 1: kl2pi04IXWgNFte6GD8OpUJqGgM.crl (hash: dTfsQV8YHuuI717NfDB7bRTI7DtMn+mlNngQbrpycTY=) 2: C7B754BEF85311ED8D59CA87C4F9AE02.roa (hash: M+wNfsm6YQmLCJcAzey1G7TcdY1od2Gihz4uSm0Idd0=) 3: A87AE518D2E011EDA1EF340FC4F9AE02.roa (hash: XeS+UNfddkVQ+DW6xIplHBmjPx6deLGv6cSwFbKYRAo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112320/6D705BCEFE7011EB9CFB9029C4F9AE02/kl2pi04IXWgNFte6GD8OpUJqGgM.crl rsync://rpki.apnic.net/member_repository/A9112320/6D705BCEFE7011EB9CFB9029C4F9AE02/kl2pi04IXWgNFte6GD8OpUJqGgM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kl2pi04IXWgNFte6GD8OpUJqGgM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 21:53:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1445 (0x5a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112320, serialNumber=925DA98B4E085D680D16D7BA183F0EA5426A1A03 Validity Not Before: Dec 4 21:53:41 2025 GMT Not After : Dec 11 21:53:41 2025 GMT Subject: CN=693202e5-3a6d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:b4:4b:67:4c:43:3e:f1:e3:09:85:24:f1:c7: f5:bb:33:d0:5f:b6:4b:5e:2f:85:73:d1:10:73:18: 91:1c:59:a1:23:d2:14:62:5b:ad:d1:32:2f:b9:c9: f7:aa:99:ea:1b:0d:f3:14:56:51:6d:58:9f:da:f1: 14:c3:c7:3b:12:21:cd:00:f9:34:33:c8:32:4c:26: 23:c2:db:ba:7d:8b:e2:1c:49:af:fe:32:f5:e7:c1: ca:cb:b8:40:ec:d1:85:4a:62:43:09:87:a5:dc:b5: aa:b5:9f:d2:3a:93:37:a0:d9:cb:72:d0:18:34:4e: 5d:3e:9d:88:c9:b5:58:07:27:c4:dd:79:36:2a:13: 1f:0d:a3:88:4c:4b:b9:9c:12:47:59:05:50:f8:18: 6c:76:f8:74:5e:40:54:7f:10:f3:1a:d5:01:a3:48: de:ff:14:06:8e:ad:32:03:fa:fc:09:9b:10:16:84: 78:76:56:5c:56:ce:9f:94:1e:59:1d:c1:28:7e:1f: 0b:5e:d5:d1:35:7f:86:f7:87:05:08:82:b6:43:48: 91:81:35:24:7b:c8:34:ad:00:42:94:c6:a8:9f:18: dd:3f:5f:77:7d:d4:07:35:c1:1d:b3:7c:17:22:43: ed:46:f7:14:84:a5:c0:10:b0:9f:f4:6e:7c:ed:74: 03:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:78:BB:7D:79:62:9F:CD:D0:46:C4:75:EC:A1:CD:50:81:FE:BC:08 X509v3 Authority Key Identifier: keyid:92:5D:A9:8B:4E:08:5D:68:0D:16:D7:BA:18:3F:0E:A5:42:6A:1A:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112320/6D705BCEFE7011EB9CFB9029C4F9AE02/kl2pi04IXWgNFte6GD8OpUJqGgM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kl2pi04IXWgNFte6GD8OpUJqGgM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112320/6D705BCEFE7011EB9CFB9029C4F9AE02/kl2pi04IXWgNFte6GD8OpUJqGgM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:c5:f7:69:74:34:4c:91:ea:71:e5:a1:e7:3a:39:b7:37:62: e7:e2:65:0b:85:cd:74:b6:b1:67:7d:e7:d3:24:de:b7:34:74: 74:40:a1:6e:9a:b5:7a:66:0c:5f:16:14:ef:15:2e:94:99:95: f2:45:5d:4f:2d:59:b5:4e:b0:73:57:4b:01:bf:bc:5c:89:92: 1e:85:77:1f:35:68:7d:46:00:a4:68:44:5f:83:1d:2d:fe:38: 9f:84:40:11:eb:8f:58:1d:99:37:4c:76:a4:4b:68:9f:c8:0f: 97:6e:7d:37:fa:1b:a2:0c:ec:9a:0f:ef:4f:bb:46:44:a3:78: bf:28:71:57:90:88:4a:48:80:4a:48:ae:05:18:a8:7d:ef:e0: 0b:04:ac:1e:1c:44:5c:9f:f7:85:07:d6:ab:a0:e9:da:9c:d8: 1a:7e:77:19:71:32:3e:8b:b3:f6:1e:f1:d0:d4:ab:c9:3b:e4: e1:cf:b7:59:29:2b:35:2d:e4:c7:36:7c:5f:f7:59:d1:df:44: e5:f1:3b:0f:44:5f:67:cb:36:be:cd:d6:34:5c:35:9d:dd:d6: 9f:9f:a3:67:fd:6b:2f:76:f3:ef:c2:a9:70:69:69:b3:6c:df: 01:49:55:ae:ee:2c:a4:4b:12:79:15:44:fb:cc:b2:7a:ad:73: f3:2e:cc:d3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBaUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTIzMjAxMTAvBgNVBAUTKDkyNURBOThCNEUwODVENjgwRDE2RDdCQTE4M0YwRUE1 NDI2QTFBMDMwHhcNMjUxMjA0MjE1MzQxWhcNMjUxMjExMjE1MzQxWjAYMRYwFAYD VQQDEw02OTMyMDJlNS0zYTZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0bRLZ0xDPvHjCYUk8cf1uzPQX7ZLXi+Fc9EQcxiRHFmhI9IUYlut0TIvucn3 qpnqGw3zFFZRbVif2vEUw8c7EiHNAPk0M8gyTCYjwtu6fYviHEmv/jL158HKy7hA 7NGFSmJDCYel3LWqtZ/SOpM3oNnLctAYNE5dPp2IybVYByfE3Xk2KhMfDaOITEu5 nBJHWQVQ+Bhsdvh0XkBUfxDzGtUBo0je/xQGjq0yA/r8CZsQFoR4dlZcVs6flB5Z HcEofh8LXtXRNX+G94cFCIK2Q0iRgTUke8g0rQBClMaonxjdP193fdQHNcEds3wX IkPtRvcUhKXAELCf9G587XQDbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLd4u315 Yp/N0EbEdeyhzVCB/rwIMB8GA1UdIwQYMBaAFJJdqYtOCF1oDRbXuhg/DqVCahoD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjMyMC82RDcwNUJDRUZF NzAxMUVCOUNGQjkwMjlDNEY5QUUwMi9rbDJwaTA0SVhXZ05GdGU2R0Q4T3BVSnFH Z00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tsMnBpMDRJWFdnTkZ0ZTZHRDhPcFVKcUdnTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MjMyMC82RDcwNUJDRUZFNzAxMUVCOUNGQjkwMjlDNEY5QUUwMi9rbDJwaTA0SVhX Z05GdGU2R0Q4T3BVSnFHZ00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXxfdpdDRMkepx5aHnOjm3N2Ln4mULhc10trFnfefTJN63NHR0QKFu mrV6ZgxfFhTvFS6UmZXyRV1PLVm1TrBzV0sBv7xciZIehXcfNWh9RgCkaERfgx0t /jifhEAR649YHZk3THakS2ifyA+Xbn03+huiDOyaD+9Pu0ZEo3i/KHFXkIhKSIBK SK4FGKh97+ALBKweHERcn/eFB9aroOnanNgafncZcTI+i7P2HvHQ1KvJO+Thz7dZ KSs1LeTHNnxf91nR30Tl8TsPRF9nyza+zdY0XDWd3dafn6Nn/WsvdvPvwqlwaWmz bN8BSVWu7iykSxJ5FUT7zLJ6rXPzLszT -----END CERTIFICATE-----Generated at Sat Dec 6 14:28:59 2025 by rpki-client