This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.mft File: KtPYi16OCwUUGjvJL4XkJzoFYqE.mft (raw, json) Hash identifier: vS4LoaHFJTA/iZT9JgLtO5GHOkhwDg5d8UBzn2FD2jU= Subject key identifier: 70:87:CD:79:68:AD:A3:1F:02:7F:5A:05:EB:29:D1:9E:E4:05:D1:DF Authority key identifier: 2A:D3:D8:8B:5E:8E:0B:05:14:1A:3B:C9:2F:85:E4:27:3A:05:62:A1 Certificate issuer: /CN=A9132F27/serialNumber=2AD3D88B5E8E0B05141A3BC92F85E4273A0562A1 Certificate serial: 015E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KtPYi16OCwUUGjvJL4XkJzoFYqE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.mft Manifest number: 015C Signing time: Sun 07 Dec 2025 02:27:36 +0000 Manifest this update: Sun 07 Dec 2025 02:27:35 +0000 Manifest next update: Sun 14 Dec 2025 02:27:35 +0000 Files and hashes: 1: KtPYi16OCwUUGjvJL4XkJzoFYqE.crl (hash: PffiqGytrHMFeGglUUDtc+mSQdex7lEOdpH/16UlyRs=) 2: 1D74CCE2BB6D11EEB670B00CC4F9AE02.roa (hash: c7azquHGHrdqjZWXwOVhESd2h6ZSF7h+7L/HwU2cJDw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.crl rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KtPYi16OCwUUGjvJL4XkJzoFYqE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 02:27:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 350 (0x15e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132F27, serialNumber=2AD3D88B5E8E0B05141A3BC92F85E4273A0562A1 Validity Not Before: Dec 7 02:27:35 2025 GMT Not After : Dec 14 02:27:35 2025 GMT Subject: CN=6934e618-267c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:f0:3b:16:cc:d0:d6:eb:6f:86:f9:93:37:f5: 1a:9f:65:25:f0:a6:4c:b4:22:38:40:2c:1f:13:1a: 87:27:35:b5:49:2d:ec:49:8f:8e:2f:5c:64:36:4b: 52:89:a1:e0:68:a4:23:2c:05:12:ff:d1:bf:cf:b9: b1:11:98:47:a6:79:8d:e5:0a:e7:c9:3f:6a:f3:ca: e4:8a:3d:86:2c:a3:44:27:9e:51:87:b7:fd:1b:e9: c3:5d:e1:97:b2:e9:ab:9f:01:d5:db:b0:28:ce:1a: 6d:ca:80:98:c5:82:02:20:80:ad:d3:55:33:fc:06: 66:e8:25:8f:98:bf:f8:7f:33:c6:83:73:ce:dc:74: bd:c5:21:7d:0b:e9:d7:8b:19:3a:de:30:88:24:ae: 53:84:8b:20:8a:61:fb:cc:3c:66:16:ad:c9:1f:62: 53:e8:03:62:5e:11:04:d7:53:b9:a9:f0:73:18:22: 38:c4:e9:fd:c0:bf:e0:c4:5b:a7:73:c6:de:a2:89: 1b:47:ca:25:5a:e3:c0:91:1b:6d:65:1a:0d:09:28: 21:fc:91:d6:ad:ce:fd:63:e9:02:d1:76:ca:5d:e6: d1:a7:b6:87:ef:7e:ec:db:5d:e2:1c:c1:65:f7:6d: 3d:7a:13:0c:37:15:83:cf:cb:d8:1a:66:0f:6a:73: 9d:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:87:CD:79:68:AD:A3:1F:02:7F:5A:05:EB:29:D1:9E:E4:05:D1:DF X509v3 Authority Key Identifier: keyid:2A:D3:D8:8B:5E:8E:0B:05:14:1A:3B:C9:2F:85:E4:27:3A:05:62:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KtPYi16OCwUUGjvJL4XkJzoFYqE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:07:bd:89:49:bc:b9:fb:af:82:05:40:3a:7a:2b:43:f4:1e: e7:26:93:49:2e:29:64:45:8d:9d:19:d5:37:6c:19:40:56:e4: 22:8b:f0:64:ce:9f:7c:f0:b6:39:ed:e2:14:28:a1:1d:39:1f: 7a:d1:30:8a:6a:c6:14:66:b7:fe:50:59:5c:04:34:e1:e3:b0: 0f:0b:dd:c5:0a:9f:45:04:a8:3c:cc:5a:eb:7b:fb:bc:5b:ba: d9:1f:30:75:ae:a9:51:84:9b:2a:51:5c:41:8e:86:48:3d:1d: f9:3f:c5:84:60:40:a4:92:ce:b3:72:39:17:5b:d8:e5:8b:bd: 24:44:5d:1d:8d:38:ca:9a:5b:81:cd:5e:36:7b:2a:85:7a:37: 94:5d:ea:ac:8d:66:80:f5:eb:c9:2e:0e:fb:dc:f8:3d:4a:a4: 10:3d:f9:b4:eb:f9:2e:c5:47:89:7b:56:43:10:ea:74:ce:f7: d9:7b:7d:23:95:02:51:0a:1f:51:f6:89:39:34:99:07:f8:6f: 9e:80:b8:05:36:85:3d:66:75:42:3e:95:e2:4b:1e:a9:0f:f7: f2:83:b4:6f:b4:a9:b0:73:6a:ee:d5:97:60:0e:d9:b4:b5:c5: f2:47:12:bc:90:84:a9:9b:88:30:c7:aa:03:7d:b1:3c:0d:d4: db:2d:50:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAV4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJGMjcxMTAvBgNVBAUTKDJBRDNEODhCNUU4RTBCMDUxNDFBM0JDOTJGODVFNDI3 M0EwNTYyQTEwHhcNMjUxMjA3MDIyNzM1WhcNMjUxMjE0MDIyNzM1WjAYMRYwFAYD VQQDEw02OTM0ZTYxOC0yNjdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxvA7FszQ1utvhvmTN/Uan2Ul8KZMtCI4QCwfExqHJzW1SS3sSY+OL1xkNktS iaHgaKQjLAUS/9G/z7mxEZhHpnmN5QrnyT9q88rkij2GLKNEJ55Rh7f9G+nDXeGX sumrnwHV27AozhptyoCYxYICIICt01Uz/AZm6CWPmL/4fzPGg3PO3HS9xSF9C+nX ixk63jCIJK5ThIsgimH7zDxmFq3JH2JT6ANiXhEE11O5qfBzGCI4xOn9wL/gxFun c8beookbR8olWuPAkRttZRoNCSgh/JHWrc79Y+kC0XbKXebRp7aH737s213iHMFl 9209ehMMNxWDz8vYGmYPanOdmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHCHzXlo raMfAn9aBesp0Z7kBdHfMB8GA1UdIwQYMBaAFCrT2ItejgsFFBo7yS+F5Cc6BWKh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkYyNy83QUNERjlBQUJC NkMxMUVFQTY4MEFFNkRDNEY5QUUwMi9LdFBZaTE2T0N3VVVHanZKTDRYa0p6b0ZZ cUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0t0UFlpMTZPQ3dVVUdqdkpMNFhrSnpvRllxRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MkYyNy83QUNERjlBQUJCNkMxMUVFQTY4MEFFNkRDNEY5QUUwMi9LdFBZaTE2T0N3 VVVHanZKTDRYa0p6b0ZZcUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCIB72JSby5+6+CBUA6eitD9B7nJpNJLilkRY2dGdU3bBlAVuQii/Bk zp988LY57eIUKKEdOR960TCKasYUZrf+UFlcBDTh47APC93FCp9FBKg8zFrre/u8 W7rZHzB1rqlRhJsqUVxBjoZIPR35P8WEYECkks6zcjkXW9jli70kRF0djTjKmluB zV42eyqFejeUXeqsjWaA9evJLg773Pg9SqQQPfm06/kuxUeJe1ZDEOp0zvfZe30j lQJRCh9R9ok5NJkH+G+egLgFNoU9ZnVCPpXiSx6pD/fyg7RvtKmwc2ru1ZdgDtm0 tcXyRxK8kISpm4gwx6oDfbE8DdTbLVB3 -----END CERTIFICATE-----Generated at Mon Dec 8 09:40:25 2025 by rpki-client