This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A913A7A6/4DB9443A73B611EA9B8C1F5CC4F9AE02/kHsDit7Hw_qcZJMOZBmy-7q5yBw.mft File: kHsDit7Hw_qcZJMOZBmy-7q5yBw.mft (raw, json) Hash identifier: 4NFjWBdT9Todl/ROESQvjtiXpdh196obnrSLvJDblkQ= Subject key identifier: B3:51:2C:5A:89:46:37:4A:F8:55:69:7B:C0:0A:21:91:87:A4:59:52 Authority key identifier: 90:7B:03:8A:DE:C7:C3:FA:9C:64:93:0E:64:19:B2:FB:BA:B9:C8:1C Certificate issuer: /CN=A913A7A6/serialNumber=907B038ADEC7C3FA9C64930E6419B2FBBAB9C81C Certificate serial: 0A7E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kHsDit7Hw_qcZJMOZBmy-7q5yBw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913A7A6/4DB9443A73B611EA9B8C1F5CC4F9AE02/kHsDit7Hw_qcZJMOZBmy-7q5yBw.mft Manifest number: 0A76 Signing time: Tue 16 Dec 2025 19:16:53 +0000 Manifest this update: Tue 16 Dec 2025 19:16:52 +0000 Manifest next update: Tue 23 Dec 2025 19:16:52 +0000 Files and hashes: 1: kHsDit7Hw_qcZJMOZBmy-7q5yBw.crl (hash: 0VRCmPGpqLzuQWPONhjZStAiQox2lPqtc7r6774Fgsw=) 2: D4AECB7A701611EF824F7281C4F9AE02.roa (hash: OgrtZob9BenmszWmMepyuR4+jTnWhH21Nc4ELG9DAkE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913A7A6/4DB9443A73B611EA9B8C1F5CC4F9AE02/kHsDit7Hw_qcZJMOZBmy-7q5yBw.crl rsync://rpki.apnic.net/member_repository/A913A7A6/4DB9443A73B611EA9B8C1F5CC4F9AE02/kHsDit7Hw_qcZJMOZBmy-7q5yBw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kHsDit7Hw_qcZJMOZBmy-7q5yBw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Dec 2025 19:16:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2686 (0xa7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913A7A6, serialNumber=907B038ADEC7C3FA9C64930E6419B2FBBAB9C81C Validity Not Before: Dec 16 19:16:52 2025 GMT Not After : Dec 23 19:16:52 2025 GMT Subject: CN=6941b025-9f25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:54:86:39:b5:16:70:5e:79:23:22:f5:0e:ba: 94:27:a9:6d:b3:59:4e:e7:8e:8e:29:bd:1d:4a:bc: 41:20:51:fd:f4:7f:1f:11:3e:9b:ef:0a:8d:5c:e9: 50:06:1a:58:1b:f5:15:10:60:ef:80:0e:d5:c6:34: bd:56:e9:89:12:f6:19:1c:ae:57:b4:7c:0c:c6:a2: d8:b4:45:b5:a0:97:e2:ef:80:58:7c:2a:93:64:85: 26:e7:65:25:5c:c3:c1:a3:f9:07:e4:be:ea:ed:8f: 3f:13:2f:4b:e8:08:af:c2:22:bf:be:92:1b:17:98: eb:55:dc:db:37:e7:dd:01:ae:a9:26:6a:36:39:6b: 17:bb:ab:35:93:61:e7:5e:52:e6:e6:93:c9:f0:df: 4e:2e:de:ee:57:22:6e:fc:b5:25:c7:03:c3:5e:de: 6c:cc:57:7e:da:5b:f0:e6:09:03:57:88:e2:39:57: e7:86:fd:74:a7:4a:b1:ac:d1:06:71:84:7d:a3:9b: f4:42:4e:a8:7e:d0:b6:03:ab:ef:18:79:d8:7e:aa: f7:96:ad:76:95:92:67:a0:e2:bb:57:8a:50:2c:c8: 5a:cd:01:eb:3e:3d:20:da:5e:cf:ca:c2:99:eb:a4: 5e:0d:39:9c:f1:88:cc:9b:bc:92:ad:bc:83:91:f7: 47:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:51:2C:5A:89:46:37:4A:F8:55:69:7B:C0:0A:21:91:87:A4:59:52 X509v3 Authority Key Identifier: keyid:90:7B:03:8A:DE:C7:C3:FA:9C:64:93:0E:64:19:B2:FB:BA:B9:C8:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913A7A6/4DB9443A73B611EA9B8C1F5CC4F9AE02/kHsDit7Hw_qcZJMOZBmy-7q5yBw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kHsDit7Hw_qcZJMOZBmy-7q5yBw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A7A6/4DB9443A73B611EA9B8C1F5CC4F9AE02/kHsDit7Hw_qcZJMOZBmy-7q5yBw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:86:39:a2:eb:13:1d:82:99:fe:72:f6:53:35:0c:b2:23:19: 8a:d7:02:9b:8d:a0:ed:c4:42:27:a3:54:1e:f9:40:09:25:cb: e2:54:ec:95:0f:5b:fa:06:c1:c6:30:0c:1e:2f:6e:92:37:1a: 8a:b9:7e:f4:42:07:e1:a0:39:06:f5:57:eb:b6:4b:b7:66:dc: 66:2a:49:c4:a8:dc:2a:f4:1d:96:cd:c5:34:9d:8c:50:08:5b: 4c:27:cd:02:de:b8:c3:be:5a:86:05:e0:e3:1d:40:86:e4:d3: f4:5f:dd:54:9d:de:2b:05:e7:92:45:85:99:09:53:c0:6a:54: b5:8d:0c:42:4f:f4:2c:8e:74:8b:3f:86:71:ea:49:49:cf:ec: 87:77:d3:9d:6f:54:4e:c9:b8:4c:d3:1f:cc:d1:c1:73:d8:bf: a4:e0:b5:17:0a:0b:04:18:66:68:b3:87:32:a8:f5:ab:b6:da: 84:8b:09:66:34:3c:24:f6:47:e2:75:30:ba:72:35:98:8d:30: b1:19:be:f1:90:58:2b:2e:bf:66:e4:1a:50:f9:c1:7c:78:fe: d7:87:40:0a:a8:07:7b:9b:63:9f:e9:8e:31:f5:21:d0:86:c4: 2d:67:b8:4e:81:3e:55:78:2e:dc:34:78:e6:38:af:0c:77:b9: e1:55:46:6b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCn4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0E3QTYxMTAvBgNVBAUTKDkwN0IwMzhBREVDN0MzRkE5QzY0OTMwRTY0MTlCMkZC QkFCOUM4MUMwHhcNMjUxMjE2MTkxNjUyWhcNMjUxMjIzMTkxNjUyWjAYMRYwFAYD VQQDDA02OTQxYjAyNS05ZjI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlVSGObUWcF55IyL1DrqUJ6lts1lO546OKb0dSrxBIFH99H8fET6b7wqNXOlQ BhpYG/UVEGDvgA7VxjS9VumJEvYZHK5XtHwMxqLYtEW1oJfi74BYfCqTZIUm52Ul XMPBo/kH5L7q7Y8/Ey9L6AivwiK/vpIbF5jrVdzbN+fdAa6pJmo2OWsXu6s1k2Hn XlLm5pPJ8N9OLt7uVyJu/LUlxwPDXt5szFd+2lvw5gkDV4jiOVfnhv10p0qxrNEG cYR9o5v0Qk6oftC2A6vvGHnYfqr3lq12lZJnoOK7V4pQLMhazQHrPj0g2l7PysKZ 66ReDTmc8YjMm7ySrbyDkfdHjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLNRLFqJ RjdK+FVpe8AKIZGHpFlSMB8GA1UdIwQYMBaAFJB7A4rex8P6nGSTDmQZsvu6ucgc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQTdBNi80REI5NDQzQTcz QjYxMUVBOUI4QzFGNUNDNEY5QUUwMi9rSHNEaXQ3SHdfcWNaSk1PWkJteS03cTV5 QncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tIc0RpdDdId19xY1pKTU9aQm15LTdxNXlCdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QTdBNi80REI5NDQzQTczQjYxMUVBOUI4QzFGNUNDNEY5QUUwMi9rSHNEaXQ3SHdf cWNaSk1PWkJteS03cTV5QncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3hjmi6xMdgpn+cvZTNQyyIxmK1wKbjaDtxEIno1Qe+UAJJcviVOyV D1v6BsHGMAweL26SNxqKuX70QgfhoDkG9Vfrtku3ZtxmKknEqNwq9B2WzcU0nYxQ CFtMJ80C3rjDvlqGBeDjHUCG5NP0X91Und4rBeeSRYWZCVPAalS1jQxCT/QsjnSL P4Zx6klJz+yHd9Odb1ROybhM0x/M0cFz2L+k4LUXCgsEGGZos4cyqPWrttqEiwlm NDwk9kfidTC6cjWYjTCxGb7xkFgrLr9m5BpQ+cF8eP7Xh0AKqAd7m2Of6Y4x9SHQ hsQtZ7hOgT5VeC7cNHjmOK8Md7nhVUZr -----END CERTIFICATE-----Generated at Tue Dec 16 22:50:33 2025 by rpki-client