This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.mft File: KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.mft (raw, json) Hash identifier: CytZS3aBCao2fi+3YbTdIODCN9BJ9TDwxD30Itemczk= Subject key identifier: 1E:32:A4:7C:ED:5A:80:19:A7:49:AC:23:B3:EE:01:C3:C9:5E:6A:11 Authority key identifier: 2B:13:1A:A1:0D:7E:6B:FE:A3:67:E8:1B:73:D7:FD:B0:AC:01:D6:78 Certificate issuer: /CN=A912F3B6/serialNumber=2B131AA10D7E6BFEA367E81B73D7FDB0AC01D678 Certificate serial: 010F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.mft Manifest number: 0107 Signing time: Fri 05 Dec 2025 03:09:25 +0000 Manifest this update: Fri 05 Dec 2025 03:09:24 +0000 Manifest next update: Fri 12 Dec 2025 03:09:24 +0000 Files and hashes: 1: KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.crl (hash: qvEPj3PpktUwwUGrbjUC65CmEhhr1Mty53jVIWNn9e4=) 2: D91E3ADC498E11EF908FD222C4F9AE02.roa (hash: ZZDdEUCyxIX0Eybvqkeb03mNWg+YxSkSpegb3mdW8RE=) 3: D9C5B55A498E11EF908FD222C4F9AE02.roa (hash: CGn0Q55/AX22nfT4AGCKBK/ILhvxf+/fmsvng3DA1pY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.crl rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 03:09:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 271 (0x10f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912F3B6, serialNumber=2B131AA10D7E6BFEA367E81B73D7FDB0AC01D678 Validity Not Before: Dec 5 03:09:24 2025 GMT Not After : Dec 12 03:09:24 2025 GMT Subject: CN=69324ce5-7a96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:94:30:45:ba:2b:84:e2:60:a6:3a:af:e3:50: 3e:07:8c:99:8e:69:df:04:4e:22:40:3f:ed:c0:2d: c6:36:89:2b:0d:67:b2:ef:cf:aa:5e:56:47:cd:e0: f6:e0:da:ed:18:2a:46:0f:de:15:35:ac:da:7a:d2: 41:8d:48:a6:89:31:3d:91:9e:4a:4d:f2:98:14:87: ab:ae:16:69:48:86:76:82:d6:86:83:d4:39:f5:23: 47:24:89:83:07:83:f6:c7:66:89:a6:5b:e6:88:49: e1:de:18:0a:a6:dc:91:09:56:aa:5a:5f:db:5f:00: a6:cd:4a:91:fc:0a:98:c4:5f:a0:64:8b:1d:35:15: 62:a7:3d:a8:0b:d0:65:80:cd:84:9f:82:13:10:ff: bd:fd:16:7e:a1:15:f8:c1:5a:f1:2c:f6:59:ff:da: 96:07:4f:4d:10:cb:6c:de:92:31:a1:f5:82:7b:ed: 44:45:76:09:80:f3:21:92:68:22:dd:f6:db:21:d8: cc:1c:bc:bc:2e:df:87:0b:7b:35:41:f9:c6:82:8c: 8e:04:3d:da:35:f7:f2:ed:dd:49:22:85:2d:3e:12: 5f:73:6b:db:26:81:57:1c:04:55:e8:84:00:b8:b9: e6:5c:b0:f1:13:b5:e6:16:f2:20:03:73:e8:51:01: ec:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:32:A4:7C:ED:5A:80:19:A7:49:AC:23:B3:EE:01:C3:C9:5E:6A:11 X509v3 Authority Key Identifier: keyid:2B:13:1A:A1:0D:7E:6B:FE:A3:67:E8:1B:73:D7:FD:B0:AC:01:D6:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:c4:4c:fe:2f:cc:75:98:4e:ec:25:1f:59:ec:8f:60:0a:3e: 5e:b5:a7:06:6f:5c:30:64:4e:ab:84:d4:e0:f5:5e:77:89:b8: c9:3e:f8:b7:9b:36:e6:03:5e:36:6e:c5:ef:a1:d4:e0:40:44: d0:61:28:db:b2:77:a7:81:cb:6e:b6:dc:25:b9:df:b6:12:0e: bb:86:44:c9:48:67:d9:f9:d7:e7:66:98:f9:03:f9:9a:a9:7b: 28:c4:ab:a5:03:b1:6c:19:df:a6:2d:24:69:18:bc:4b:1f:f9: 40:43:36:8b:41:7d:48:de:cc:b8:4c:aa:f5:d5:20:6e:33:9b: 4f:06:50:6e:e3:bb:44:62:07:f0:72:13:c0:76:f5:d5:1d:90: b4:b4:50:e8:82:90:de:c6:99:32:37:b2:dd:df:12:4e:61:ab: aa:c1:d8:72:55:af:7b:86:82:ab:0f:b3:ee:0f:1c:dd:ab:8d: 02:1d:e1:14:79:53:ba:d8:88:dd:20:0f:99:06:e1:70:f9:72: 1f:7b:94:c9:50:6d:d4:75:40:46:fe:06:71:56:07:56:3e:c7: 98:eb:c2:a1:80:75:60:08:bc:05:e1:60:9b:0b:ba:2d:e3:cf: 83:af:48:6a:9c:b7:53:a5:77:1c:b9:49:55:32:82:4e:93:ee: d7:8d:5c:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkYzQjYxMTAvBgNVBAUTKDJCMTMxQUExMEQ3RTZCRkVBMzY3RTgxQjczRDdGREIw QUMwMUQ2NzgwHhcNMjUxMjA1MDMwOTI0WhcNMjUxMjEyMDMwOTI0WjAYMRYwFAYD VQQDEw02OTMyNGNlNS03YTk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAypQwRborhOJgpjqv41A+B4yZjmnfBE4iQD/twC3GNokrDWey78+qXlZHzeD2 4NrtGCpGD94VNazaetJBjUimiTE9kZ5KTfKYFIerrhZpSIZ2gtaGg9Q59SNHJImD B4P2x2aJplvmiEnh3hgKptyRCVaqWl/bXwCmzUqR/AqYxF+gZIsdNRVipz2oC9Bl gM2En4ITEP+9/RZ+oRX4wVrxLPZZ/9qWB09NEMts3pIxofWCe+1ERXYJgPMhkmgi 3fbbIdjMHLy8Lt+HC3s1QfnGgoyOBD3aNffy7d1JIoUtPhJfc2vbJoFXHARV6IQA uLnmXLDxE7XmFvIgA3PoUQHscQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB4ypHzt WoAZp0msI7PuAcPJXmoRMB8GA1UdIwQYMBaAFCsTGqENfmv+o2foG3PX/bCsAdZ4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRjNCNi81MEYwMTFDODQ4 QkExMUVGQkQ0NTE2M0RDNEY5QUUwMi9LeE1hb1ExLWFfNmpaLWdiYzlmOXNLd0Ix bmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0t4TWFvUTEtYV82alotZ2JjOWY5c0t3QjFuZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RjNCNi81MEYwMTFDODQ4QkExMUVGQkQ0NTE2M0RDNEY5QUUwMi9LeE1hb1ExLWFf NmpaLWdiYzlmOXNLd0IxbmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLxEz+L8x1mE7sJR9Z7I9gCj5etacGb1wwZE6rhNTg9V53ibjJPvi3 mzbmA142bsXvodTgQETQYSjbsnengctuttwlud+2Eg67hkTJSGfZ+dfnZpj5A/ma qXsoxKulA7FsGd+mLSRpGLxLH/lAQzaLQX1I3sy4TKr11SBuM5tPBlBu47tEYgfw chPAdvXVHZC0tFDogpDexpkyN7Ld3xJOYauqwdhyVa97hoKrD7PuDxzdq40CHeEU eVO62IjdIA+ZBuFw+XIfe5TJUG3UdUBG/gZxVgdWPseY68KhgHVgCLwF4WCbC7ot 48+Dr0hqnLdTpXccuUlVMoJOk+7XjVx/ -----END CERTIFICATE-----Generated at Sat Dec 6 22:27:50 2025 by rpki-client