This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.mft File: kB-Ykfv38n1Bah7gazGwFlquHcU.mft (raw, json) Hash identifier: KSumWIEX0amObZfqQk1SCJKb+bPulJpAgQL/2bG+MTw= Subject key identifier: 52:D3:01:B6:C9:94:1D:AB:AA:AF:1D:15:72:BF:30:97:17:57:8D:F3 Authority key identifier: 90:1F:98:91:FB:F7:F2:7D:41:6A:1E:E0:6B:31:B0:16:5A:AE:1D:C5 Certificate issuer: /CN=A9132D93/serialNumber=901F9891FBF7F27D416A1EE06B31B0165AAE1DC5 Certificate serial: 0446 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kB-Ykfv38n1Bah7gazGwFlquHcU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.mft Manifest number: 0442 Signing time: Thu 04 Dec 2025 22:43:49 +0000 Manifest this update: Thu 04 Dec 2025 22:43:49 +0000 Manifest next update: Thu 11 Dec 2025 22:43:49 +0000 Files and hashes: 1: kB-Ykfv38n1Bah7gazGwFlquHcU.crl (hash: Zoymxvd/A/TQbG3/hU2Lm/NJaOKndJRzT9125Dq4APo=) 2: 4E0503CA7F3F11ECBB0EA972C4F9AE02.roa (hash: zGO+SfCUiN93pLbUpzCLUs56wrah6tVni3k+tYi9qSM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.crl rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kB-Ykfv38n1Bah7gazGwFlquHcU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 22:43:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1094 (0x446) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132D93, serialNumber=901F9891FBF7F27D416A1EE06B31B0165AAE1DC5 Validity Not Before: Dec 4 22:43:49 2025 GMT Not After : Dec 11 22:43:49 2025 GMT Subject: CN=69320ea5-27f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:33:0a:36:dc:6d:96:22:d2:19:20:4d:a9:05: 66:d4:2a:37:38:2c:e8:67:2a:ff:3c:47:a5:73:57: f5:8b:df:d1:a3:11:9e:e3:7e:5b:50:48:59:c4:6d: c0:da:1c:00:82:d8:1c:b6:6f:82:f4:16:e7:b1:67: 89:4f:4b:37:99:3e:ea:08:5c:20:51:9c:5b:43:19: 77:38:86:c2:84:d2:e8:b2:79:61:73:bb:af:8e:0e: 7f:39:57:fc:8e:82:df:70:8a:5c:7b:a7:c1:30:39: ec:5c:02:cc:04:90:b9:90:aa:5a:25:9c:6f:84:7c: 7d:41:90:5b:74:1e:a8:77:0f:80:81:11:39:9b:33: 2c:b0:88:c3:be:14:e5:28:42:71:07:49:fc:fa:82: 6c:fb:d2:db:4b:84:6e:e9:2c:fc:16:9e:86:c8:1f: 81:7e:d2:99:71:ce:25:dd:5f:33:37:4a:b1:2a:b4: 76:3e:ed:2b:eb:3f:74:dd:60:32:a4:e0:b4:1b:4a: ad:35:6f:c6:62:a6:b8:5d:fe:4f:d3:a9:8d:00:a3: 3f:b7:24:ee:af:18:6c:38:aa:d0:42:c6:cd:ef:5c: 7e:e7:e2:63:63:47:8a:f0:59:1c:9f:0e:5a:cd:24: 75:24:74:60:9b:9e:75:01:cf:5c:fa:3f:f8:b8:d8: fb:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:D3:01:B6:C9:94:1D:AB:AA:AF:1D:15:72:BF:30:97:17:57:8D:F3 X509v3 Authority Key Identifier: keyid:90:1F:98:91:FB:F7:F2:7D:41:6A:1E:E0:6B:31:B0:16:5A:AE:1D:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kB-Ykfv38n1Bah7gazGwFlquHcU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:9c:88:62:6c:71:f2:51:91:86:a1:f2:3b:80:3b:37:ba:52: 68:98:79:95:43:a0:1a:a9:e6:4a:bd:50:24:b9:52:93:0d:e6: 90:1b:7e:3a:0b:b9:85:f7:f2:2a:61:7c:08:7d:2c:2e:bc:ae: be:de:70:ae:ea:ce:3e:a0:cc:e1:ea:69:57:e3:8d:33:3f:16: 91:be:3c:ff:df:bc:f4:62:e2:c1:07:7a:93:9f:b9:ad:a0:8c: 3b:04:d6:6e:18:a6:eb:73:1d:85:6e:e1:e9:66:cf:f9:ee:6f: 4b:a9:ba:86:8d:96:fe:9c:50:eb:ef:be:9f:6f:57:69:6d:7f: 89:24:ac:1e:05:ef:40:d5:78:69:d3:ad:87:bf:8a:c7:41:54: 89:fe:88:8b:06:15:92:8a:6c:fc:70:2c:61:9a:2b:9e:10:a9: 93:bb:69:8d:b3:83:f4:53:43:b7:69:98:bb:55:e2:56:2d:b1: 22:70:6c:37:f8:4a:9d:14:7e:b5:bb:1c:bd:85:28:18:ad:04: 91:76:33:df:03:38:55:28:8e:b9:da:95:5c:13:19:f5:6a:e0: 6a:61:90:99:06:d2:a4:86:ea:47:5e:6b:8f:7c:ab:bd:ff:7c: 6a:89:94:9c:d2:25:5f:28:f5:5f:80:c0:75:50:36:38:cd:f6: 79:ff:4e:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBEYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJEOTMxMTAvBgNVBAUTKDkwMUY5ODkxRkJGN0YyN0Q0MTZBMUVFMDZCMzFCMDE2 NUFBRTFEQzUwHhcNMjUxMjA0MjI0MzQ5WhcNMjUxMjExMjI0MzQ5WjAYMRYwFAYD VQQDEw02OTMyMGVhNS0yN2Y1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxjMKNtxtliLSGSBNqQVm1Co3OCzoZyr/PEelc1f1i9/RoxGe435bUEhZxG3A 2hwAgtgctm+C9BbnsWeJT0s3mT7qCFwgUZxbQxl3OIbChNLosnlhc7uvjg5/OVf8 joLfcIpce6fBMDnsXALMBJC5kKpaJZxvhHx9QZBbdB6odw+AgRE5mzMssIjDvhTl KEJxB0n8+oJs+9LbS4Ru6Sz8Fp6GyB+BftKZcc4l3V8zN0qxKrR2Pu0r6z903WAy pOC0G0qtNW/GYqa4Xf5P06mNAKM/tyTurxhsOKrQQsbN71x+5+JjY0eK8Fkcnw5a zSR1JHRgm551Ac9c+j/4uNj7uwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFLTAbbJ lB2rqq8dFXK/MJcXV43zMB8GA1UdIwQYMBaAFJAfmJH79/J9QWoe4GsxsBZarh3F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkQ5My8wRjg3NEE3NDdG M0QxMUVDOEExRENDNzFDNEY5QUUwMi9rQi1Za2Z2MzhuMUJhaDdnYXpHd0ZscXVI Y1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tCLVlrZnYzOG4xQmFoN2dhekd3RmxxdUhjVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MkQ5My8wRjg3NEE3NDdGM0QxMUVDOEExRENDNzFDNEY5QUUwMi9rQi1Za2Z2Mzhu MUJhaDdnYXpHd0ZscXVIY1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrnIhibHHyUZGGofI7gDs3ulJomHmVQ6AaqeZKvVAkuVKTDeaQG346 C7mF9/IqYXwIfSwuvK6+3nCu6s4+oMzh6mlX440zPxaRvjz/37z0YuLBB3qTn7mt oIw7BNZuGKbrcx2FbuHpZs/57m9LqbqGjZb+nFDr776fb1dpbX+JJKweBe9A1Xhp 062Hv4rHQVSJ/oiLBhWSimz8cCxhmiueEKmTu2mNs4P0U0O3aZi7VeJWLbEicGw3 +EqdFH61uxy9hSgYrQSRdjPfAzhVKI652pVcExn1auBqYZCZBtKkhupHXmuPfKu9 /3xqiZSc0iVfKPVfgMB1UDY4zfZ5/05e -----END CERTIFICATE-----Generated at Sat Dec 6 21:09:37 2025 by rpki-client