This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911972D/99EE950CA68211ECB4E3EC3AC4F9AE02/KiZlwxQeS_P9LwBKrimlmHETod8.mft File: KiZlwxQeS_P9LwBKrimlmHETod8.mft (raw, json) Hash identifier: jNvqanPgqZfypAknXNIfxXV1M7XIURWXO/vfLdDTZxI= Subject key identifier: 15:FD:60:89:80:7A:6A:11:40:0F:3F:88:EB:D5:5D:10:63:3E:BB:F3 Authority key identifier: 2A:26:65:C3:14:1E:4B:F3:FD:2F:00:4A:AE:29:A5:98:71:13:A1:DF Certificate issuer: /CN=A911972D/serialNumber=2A2665C3141E4BF3FD2F004AAE29A5987113A1DF Certificate serial: 03E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KiZlwxQeS_P9LwBKrimlmHETod8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911972D/99EE950CA68211ECB4E3EC3AC4F9AE02/KiZlwxQeS_P9LwBKrimlmHETod8.mft Manifest number: 03E1 Signing time: Thu 04 Dec 2025 23:02:06 +0000 Manifest this update: Thu 04 Dec 2025 23:02:05 +0000 Manifest next update: Thu 11 Dec 2025 23:02:05 +0000 Files and hashes: 1: KiZlwxQeS_P9LwBKrimlmHETod8.crl (hash: oBa7jqVaxpcr9zklEUM8FcFPuWiVTUjNGPiOvkcnaX4=) 2: B067CCDCA8C511EC8F560C42C4F9AE02.roa (hash: 3k13Zb4rUCPiQVhmHXmV79sBuRx9W6om0fkw2CRWuLk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911972D/99EE950CA68211ECB4E3EC3AC4F9AE02/KiZlwxQeS_P9LwBKrimlmHETod8.crl rsync://rpki.apnic.net/member_repository/A911972D/99EE950CA68211ECB4E3EC3AC4F9AE02/KiZlwxQeS_P9LwBKrimlmHETod8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KiZlwxQeS_P9LwBKrimlmHETod8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 23:02:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 999 (0x3e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911972D, serialNumber=2A2665C3141E4BF3FD2F004AAE29A5987113A1DF Validity Not Before: Dec 4 23:02:05 2025 GMT Not After : Dec 11 23:02:05 2025 GMT Subject: CN=693212ee-6791 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:17:84:6a:0c:fb:e1:e6:80:90:4f:6d:91:42: 25:ea:f0:33:46:21:f3:b7:01:c9:16:c5:86:39:6a: 33:cd:21:7c:a6:13:a8:95:26:2d:48:27:a5:7e:b3: 9b:62:fd:af:ad:70:3e:ba:46:c3:8c:4e:b0:3c:4f: 7b:4d:a4:b1:21:d3:9e:a0:3e:31:16:42:25:d9:f4: ae:d1:f2:7b:a5:d9:a8:d5:86:d0:74:5b:1e:ba:51: 98:79:a9:2d:2d:43:03:f3:73:9d:f3:a3:70:66:c8: 4a:c6:f3:7b:f3:85:cc:a8:08:1e:e8:85:55:5e:59: 0f:ad:52:e5:d7:c5:c4:c4:f2:b9:2f:62:6e:e4:09: 5b:e6:29:d5:52:13:9a:8b:43:0d:36:dc:aa:4e:f5: 73:c3:b5:1b:10:d6:e0:25:61:ca:ad:e0:5c:cd:09: 60:66:21:6a:b3:76:53:cb:d3:99:ca:ac:0c:10:25: 48:9a:cf:85:66:84:51:0e:b5:1e:5a:32:0d:da:10: 6d:69:07:07:f5:0d:69:62:9f:07:d0:54:f0:17:bc: f7:90:10:2e:7d:34:f8:a2:3e:d1:70:90:44:62:54: bf:2a:78:e3:fa:32:2f:1e:01:51:72:63:58:bc:c2: 06:6e:1c:7d:9b:c3:12:d4:ad:4a:32:8b:53:7c:75: 48:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:FD:60:89:80:7A:6A:11:40:0F:3F:88:EB:D5:5D:10:63:3E:BB:F3 X509v3 Authority Key Identifier: keyid:2A:26:65:C3:14:1E:4B:F3:FD:2F:00:4A:AE:29:A5:98:71:13:A1:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911972D/99EE950CA68211ECB4E3EC3AC4F9AE02/KiZlwxQeS_P9LwBKrimlmHETod8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KiZlwxQeS_P9LwBKrimlmHETod8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911972D/99EE950CA68211ECB4E3EC3AC4F9AE02/KiZlwxQeS_P9LwBKrimlmHETod8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e7:6e:17:a2:cb:86:e4:b3:bf:55:da:6a:fa:f1:a4:50:51:21: 4c:b3:2a:40:65:df:ba:90:9a:99:20:99:4c:8d:f7:73:78:d6: 7d:d7:4b:d4:e6:01:bd:b2:4d:69:30:11:9a:e9:88:62:48:51: 7d:07:9d:e0:44:ac:6f:6b:28:a1:cb:b7:5b:b9:6e:5b:69:5b: 94:ee:9f:8a:f4:57:8e:7e:13:5d:f5:a6:67:04:8b:0f:22:46: 18:bb:78:d7:29:45:93:ec:f4:96:34:08:08:38:85:23:79:76: fa:9d:5e:7f:8d:9b:10:1b:49:79:42:8b:83:b3:f8:93:22:44: bb:de:19:83:d0:a1:4a:07:18:8b:c7:03:85:4f:a6:cc:85:41: 6b:fb:8d:7a:1a:4f:25:ba:12:37:70:16:2d:69:46:5e:43:e1: a6:51:7a:40:64:4e:8f:4f:47:77:9a:51:b3:fc:c8:25:6e:05: 00:a1:8f:f6:9e:46:0e:f5:05:62:3a:ed:e8:d7:b9:52:1b:fc: 51:3b:ad:a2:89:51:83:16:25:ca:6b:57:78:2d:26:66:6c:49: 4c:0d:59:30:8e:9c:f6:9d:a0:07:6b:56:50:40:1c:2c:43:9b: b4:43:32:31:07:8a:8e:86:85:87:82:8e:18:a5:9f:5c:6b:b9: 95:90:56:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA+cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTk3MkQxMTAvBgNVBAUTKDJBMjY2NUMzMTQxRTRCRjNGRDJGMDA0QUFFMjlBNTk4 NzExM0ExREYwHhcNMjUxMjA0MjMwMjA1WhcNMjUxMjExMjMwMjA1WjAYMRYwFAYD VQQDEw02OTMyMTJlZS02NzkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1ReEagz74eaAkE9tkUIl6vAzRiHztwHJFsWGOWozzSF8phOolSYtSCelfrOb Yv2vrXA+ukbDjE6wPE97TaSxIdOeoD4xFkIl2fSu0fJ7pdmo1YbQdFseulGYeakt LUMD83Od86NwZshKxvN784XMqAge6IVVXlkPrVLl18XExPK5L2Ju5Alb5inVUhOa i0MNNtyqTvVzw7UbENbgJWHKreBczQlgZiFqs3ZTy9OZyqwMECVIms+FZoRRDrUe WjIN2hBtaQcH9Q1pYp8H0FTwF7z3kBAufTT4oj7RcJBEYlS/Knjj+jIvHgFRcmNY vMIGbhx9m8MS1K1KMotTfHVI9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBX9YImA emoRQA8/iOvVXRBjPrvzMB8GA1UdIwQYMBaAFComZcMUHkvz/S8ASq4ppZhxE6Hf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTcyRC85OUVFOTUwQ0E2 ODIxMUVDQjRFM0VDM0FDNEY5QUUwMi9LaVpsd3hRZVNfUDlMd0JLcmltbG1IRVRv ZDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tpWmx3eFFlU19QOUx3QktyaW1sbUhFVG9kOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTcyRC85OUVFOTUwQ0E2ODIxMUVDQjRFM0VDM0FDNEY5QUUwMi9LaVpsd3hRZVNf UDlMd0JLcmltbG1IRVRvZDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDnbheiy4bks79V2mr68aRQUSFMsypAZd+6kJqZIJlMjfdzeNZ910vU 5gG9sk1pMBGa6YhiSFF9B53gRKxvayihy7dbuW5baVuU7p+K9FeOfhNd9aZnBIsP IkYYu3jXKUWT7PSWNAgIOIUjeXb6nV5/jZsQG0l5QouDs/iTIkS73hmD0KFKBxiL xwOFT6bMhUFr+416Gk8luhI3cBYtaUZeQ+GmUXpAZE6PT0d3mlGz/MglbgUAoY/2 nkYO9QViOu3o17lSG/xRO62iiVGDFiXKa1d4LSZmbElMDVkwjpz2naAHa1ZQQBws Q5u0QzIxB4qOhoWHgo4YpZ9ca7mVkFZs -----END CERTIFICATE-----Generated at Sat Dec 6 23:04:29 2025 by rpki-client