This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911F536/9A86DBD0C99A11EFB4CEEF1EC4F9AE02/KumFgVoQ3W0EUj_IHY2v1ya-eBY.mft File: KumFgVoQ3W0EUj_IHY2v1ya-eBY.mft (raw, json) Hash identifier: iuyqoym7uZgMu6LIzk9AryNZj7j1rgKZ3SW61pNfx0A= Subject key identifier: 24:C7:81:75:3E:94:AE:2C:F7:D0:FA:48:CC:05:EC:20:60:64:B3:47 Authority key identifier: 2A:E9:85:81:5A:10:DD:6D:04:52:3F:C8:1D:8D:AF:D7:26:BE:78:16 Certificate issuer: /CN=A911F536/serialNumber=2AE985815A10DD6D04523FC81D8DAFD726BE7816 Certificate serial: AF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KumFgVoQ3W0EUj_IHY2v1ya-eBY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F536/9A86DBD0C99A11EFB4CEEF1EC4F9AE02/KumFgVoQ3W0EUj_IHY2v1ya-eBY.mft Manifest number: AD Signing time: Fri 05 Dec 2025 04:07:24 +0000 Manifest this update: Fri 05 Dec 2025 04:07:23 +0000 Manifest next update: Fri 12 Dec 2025 04:07:23 +0000 Files and hashes: 1: KumFgVoQ3W0EUj_IHY2v1ya-eBY.crl (hash: C8B9tC5kcpDXzg56UIZc9IEB0WzkP/71fNzibltgeOc=) 2: F51AC6A6C99A11EFB5D4B020C4F9AE02.roa (hash: McJ+hP8GUu/Ld5Rarq2qGp1xUtwodZVqiVkbBVRJzkE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F536/9A86DBD0C99A11EFB4CEEF1EC4F9AE02/KumFgVoQ3W0EUj_IHY2v1ya-eBY.crl rsync://rpki.apnic.net/member_repository/A911F536/9A86DBD0C99A11EFB4CEEF1EC4F9AE02/KumFgVoQ3W0EUj_IHY2v1ya-eBY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KumFgVoQ3W0EUj_IHY2v1ya-eBY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:07:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 175 (0xaf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F536, serialNumber=2AE985815A10DD6D04523FC81D8DAFD726BE7816 Validity Not Before: Dec 5 04:07:23 2025 GMT Not After : Dec 12 04:07:23 2025 GMT Subject: CN=69325a7b-bc78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:98:84:2c:46:5e:ee:55:13:be:68:31:46:80: 0e:55:29:69:8f:5b:47:ce:66:52:63:74:10:13:7d: 4f:9f:af:47:18:2a:4d:e3:97:ff:03:97:ca:e5:c9: 52:09:2a:7d:b4:2d:94:62:39:9c:95:79:a5:a8:e7: 3c:40:d8:47:18:00:e2:87:6b:65:ee:6a:3a:cb:f1: 5b:ca:86:41:90:43:ef:2a:67:2c:a5:0f:64:a1:e9: 24:ec:ab:9a:97:3c:d6:2f:c5:25:a1:f7:87:72:77: 94:82:d1:15:39:03:4b:07:48:14:eb:55:99:03:eb: 2e:00:e7:c4:ee:e1:7d:04:9c:c2:4d:08:3d:72:2d: 5c:95:7d:46:d1:52:ba:52:7b:1f:02:b2:83:7e:17: c3:77:d6:e0:0d:00:d2:c0:ae:59:38:fd:d9:06:d3: 99:ec:5f:e6:2a:f1:fd:96:fc:f3:47:32:44:bd:14: 7f:f8:14:83:2f:52:64:17:13:ab:bf:ab:87:11:39: 2d:4b:c2:8c:49:af:79:56:15:e9:59:41:92:cd:8a: f5:3a:1d:72:fd:3a:e4:0d:b4:bc:2b:ff:fa:79:d6: f8:b2:9f:bc:f6:a3:11:15:d0:d5:e3:64:ac:ff:b1: fc:36:20:82:30:f0:c5:76:db:af:b9:ad:6a:5c:ef: 3d:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:C7:81:75:3E:94:AE:2C:F7:D0:FA:48:CC:05:EC:20:60:64:B3:47 X509v3 Authority Key Identifier: keyid:2A:E9:85:81:5A:10:DD:6D:04:52:3F:C8:1D:8D:AF:D7:26:BE:78:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F536/9A86DBD0C99A11EFB4CEEF1EC4F9AE02/KumFgVoQ3W0EUj_IHY2v1ya-eBY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KumFgVoQ3W0EUj_IHY2v1ya-eBY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F536/9A86DBD0C99A11EFB4CEEF1EC4F9AE02/KumFgVoQ3W0EUj_IHY2v1ya-eBY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:2d:27:09:54:f0:0e:43:3c:4a:c8:a8:44:7e:c4:0d:c6:82: 4a:e2:0a:4c:9e:de:63:97:1f:e4:a4:82:24:0b:8b:0d:e8:2d: b5:8f:bd:69:aa:59:ac:bf:1d:da:fe:ef:22:ea:03:e7:03:d3: 37:01:a5:ea:d4:07:80:b3:ea:f9:8c:bd:fa:a6:1b:ca:9f:34: f0:1e:73:53:f0:b2:cc:01:bc:fe:fd:71:71:55:cd:84:9e:49: 3a:d2:66:3b:3f:18:82:2f:9a:95:e0:ce:87:89:1f:53:a5:d5: 60:03:71:e2:90:6e:ab:b1:8d:65:8e:92:f4:65:d8:19:9f:80: 26:38:7d:f7:f6:4c:f7:20:fb:8c:de:12:4e:ef:b3:9d:90:f5: 05:56:10:3c:13:26:0e:db:58:c6:dd:1c:08:40:69:d8:56:5d: ed:94:6d:f8:13:61:8d:4f:32:a3:ca:2b:8a:7a:30:9b:d8:cd: 64:46:f2:27:ea:3d:a8:1a:e5:3f:c5:18:24:e9:0e:aa:0a:0d: 48:34:af:8f:8c:db:77:b3:53:83:2a:e1:46:25:69:d8:38:4c: b9:a3:b5:d0:16:80:9c:19:4d:3a:ba:e0:b1:bc:e0:af:8a:f2: 5c:25:7e:f3:d9:80:20:88:a1:98:48:87:d5:3b:d1:7e:42:f4: 9c:4c:c3:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAK8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUY1MzYxMTAvBgNVBAUTKDJBRTk4NTgxNUExMERENkQwNDUyM0ZDODFEOERBRkQ3 MjZCRTc4MTYwHhcNMjUxMjA1MDQwNzIzWhcNMjUxMjEyMDQwNzIzWjAYMRYwFAYD VQQDEw02OTMyNWE3Yi1iYzc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0piELEZe7lUTvmgxRoAOVSlpj1tHzmZSY3QQE31Pn69HGCpN45f/A5fK5clS CSp9tC2UYjmclXmlqOc8QNhHGADih2tl7mo6y/FbyoZBkEPvKmcspQ9koekk7Kua lzzWL8UlofeHcneUgtEVOQNLB0gU61WZA+suAOfE7uF9BJzCTQg9ci1clX1G0VK6 UnsfArKDfhfDd9bgDQDSwK5ZOP3ZBtOZ7F/mKvH9lvzzRzJEvRR/+BSDL1JkFxOr v6uHETktS8KMSa95VhXpWUGSzYr1Oh1y/TrkDbS8K//6edb4sp+89qMRFdDV42Ss /7H8NiCCMPDFdtuvua1qXO89PwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCTHgXU+ lK4s99D6SMwF7CBgZLNHMB8GA1UdIwQYMBaAFCrphYFaEN1tBFI/yB2Nr9cmvngW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjUzNi85QTg2REJEMEM5 OUExMUVGQjRDRUVGMUVDNEY5QUUwMi9LdW1GZ1ZvUTNXMEVVal9JSFkydjF5YS1l QlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0t1bUZnVm9RM1cwRVVqX0lIWTJ2MXlhLWVCWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RjUzNi85QTg2REJEMEM5OUExMUVGQjRDRUVGMUVDNEY5QUUwMi9LdW1GZ1ZvUTNX MEVVal9JSFkydjF5YS1lQlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHLScJVPAOQzxKyKhEfsQNxoJK4gpMnt5jlx/kpIIkC4sN6C21j71p qlmsvx3a/u8i6gPnA9M3AaXq1AeAs+r5jL36phvKnzTwHnNT8LLMAbz+/XFxVc2E nkk60mY7PxiCL5qV4M6HiR9TpdVgA3HikG6rsY1ljpL0ZdgZn4AmOH339kz3IPuM 3hJO77OdkPUFVhA8EyYO21jG3RwIQGnYVl3tlG34E2GNTzKjyiuKejCb2M1kRvIn 6j2oGuU/xRgk6Q6qCg1INK+PjNt3s1ODKuFGJWnYOEy5o7XQFoCcGU06uuCxvOCv ivJcJX7z2YAgiKGYSIfVO9F+QvScTMOR -----END CERTIFICATE-----Generated at Sat Dec 6 22:25:14 2025 by rpki-client