This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A913A7A6/4DB9443A73B611EA9B8C1F5CC4F9AE02/kHsDit7Hw_qcZJMOZBmy-7q5yBw.mft File: kHsDit7Hw_qcZJMOZBmy-7q5yBw.mft (raw, json) Hash identifier: pzvZGYaEcy7d5xst6Df06OaNdfGTmc4twVYAQD06IBE= Subject key identifier: EC:40:A0:7A:FC:96:61:F2:78:18:C0:1E:F5:8B:5C:F9:93:18:97:A4 Authority key identifier: 90:7B:03:8A:DE:C7:C3:FA:9C:64:93:0E:64:19:B2:FB:BA:B9:C8:1C Certificate issuer: /CN=A913A7A6/serialNumber=907B038ADEC7C3FA9C64930E6419B2FBBAB9C81C Certificate serial: 0A80 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kHsDit7Hw_qcZJMOZBmy-7q5yBw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913A7A6/4DB9443A73B611EA9B8C1F5CC4F9AE02/kHsDit7Hw_qcZJMOZBmy-7q5yBw.mft Manifest number: 0A78 Signing time: Sat 20 Dec 2025 19:05:32 +0000 Manifest this update: Sat 20 Dec 2025 19:05:31 +0000 Manifest next update: Sat 27 Dec 2025 19:05:31 +0000 Files and hashes: 1: kHsDit7Hw_qcZJMOZBmy-7q5yBw.crl (hash: oc40RsY300D5UxBbUgwmjldlu6EmTM0EYLyRvjrijtU=) 2: D4AECB7A701611EF824F7281C4F9AE02.roa (hash: OgrtZob9BenmszWmMepyuR4+jTnWhH21Nc4ELG9DAkE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913A7A6/4DB9443A73B611EA9B8C1F5CC4F9AE02/kHsDit7Hw_qcZJMOZBmy-7q5yBw.crl rsync://rpki.apnic.net/member_repository/A913A7A6/4DB9443A73B611EA9B8C1F5CC4F9AE02/kHsDit7Hw_qcZJMOZBmy-7q5yBw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kHsDit7Hw_qcZJMOZBmy-7q5yBw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 19:05:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2688 (0xa80) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913A7A6, serialNumber=907B038ADEC7C3FA9C64930E6419B2FBBAB9C81C Validity Not Before: Dec 20 19:05:31 2025 GMT Not After : Dec 27 19:05:31 2025 GMT Subject: CN=6946f37b-dc94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:97:c3:f5:41:c6:db:aa:dd:f7:03:9c:31:a2: c2:43:fc:dc:52:5e:66:19:5b:d1:b3:e5:2b:62:af: 57:45:dc:28:83:12:f0:43:82:c1:80:d2:79:7a:69: d5:ef:50:b2:ac:b2:cd:c9:32:2b:12:c5:94:19:ed: 65:2e:3e:20:5a:d7:60:18:0b:9d:f9:0e:bd:81:7c: 47:03:02:8c:86:44:32:05:10:c1:01:0d:17:2c:51: af:09:ce:dc:73:27:c8:03:dc:d0:55:ef:b0:fd:fb: 33:8d:73:81:d6:e0:5e:51:e1:fd:e4:a8:77:de:74: e5:cb:e7:9d:15:cf:a2:37:cf:22:56:67:a3:6d:93: 5f:3a:0a:db:37:9d:b7:7e:3d:e6:36:4c:84:6d:f0: 58:b9:78:d5:46:b1:eb:49:9d:01:46:7d:3a:54:dc: 6b:6c:9d:fb:50:ca:6b:d5:84:4d:35:15:0c:d3:6b: ef:34:7b:1c:85:7d:fe:3c:33:af:82:8f:da:3b:4b: 6a:ac:8b:29:7f:cc:48:03:62:66:08:a9:42:f8:36: ae:42:9b:00:d4:26:52:04:8b:81:f6:f6:53:17:e9: 6c:fe:b4:ee:98:19:fb:48:81:6f:6a:46:01:e8:d9: 73:0d:16:19:40:20:9d:f7:b1:09:e2:b0:98:93:2e: ce:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:40:A0:7A:FC:96:61:F2:78:18:C0:1E:F5:8B:5C:F9:93:18:97:A4 X509v3 Authority Key Identifier: keyid:90:7B:03:8A:DE:C7:C3:FA:9C:64:93:0E:64:19:B2:FB:BA:B9:C8:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913A7A6/4DB9443A73B611EA9B8C1F5CC4F9AE02/kHsDit7Hw_qcZJMOZBmy-7q5yBw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kHsDit7Hw_qcZJMOZBmy-7q5yBw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A7A6/4DB9443A73B611EA9B8C1F5CC4F9AE02/kHsDit7Hw_qcZJMOZBmy-7q5yBw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:a9:a5:20:a0:cc:d7:cf:49:d8:eb:ec:9b:e4:2a:5b:79:3c: 27:1e:9c:d3:ea:e2:0d:9b:44:df:af:fe:05:9d:59:9e:96:23: cc:5e:2a:1a:22:ab:46:c7:87:ba:b1:5d:bc:90:e4:3e:cd:a2: 6a:eb:e7:dd:a8:f6:f7:71:c0:51:88:64:7c:40:87:69:a3:60: ce:41:64:68:2c:1f:4f:01:d1:df:3d:d5:90:d1:32:8d:87:e2: 16:49:a1:33:79:53:8c:42:0c:b8:8c:22:eb:df:bf:d4:45:e1: d5:57:c4:c1:55:be:ee:db:70:72:ef:e0:5c:6d:0c:f8:c0:9a: ea:c1:83:cd:85:59:80:59:12:bc:86:85:54:83:23:81:4d:c0: a4:61:9d:a1:d8:83:28:ab:72:83:bb:91:3f:9d:7f:0c:60:a0: c3:45:9e:85:03:4a:83:2f:cf:45:22:58:c5:e7:e6:05:93:f8: a9:b8:ad:71:84:3d:92:a6:b3:19:ed:f6:ad:69:98:a9:28:50: 3d:b2:aa:c8:28:a3:6e:7b:ea:cb:37:37:3f:06:11:89:02:7f: 3d:f3:46:af:e4:2b:e8:ed:b2:44:b6:83:bd:50:05:b6:2d:2f: 99:83:66:bb:d3:82:5f:34:d8:0b:ff:c3:3e:d4:8e:92:52:c7: 0c:be:8d:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCoAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0E3QTYxMTAvBgNVBAUTKDkwN0IwMzhBREVDN0MzRkE5QzY0OTMwRTY0MTlCMkZC QkFCOUM4MUMwHhcNMjUxMjIwMTkwNTMxWhcNMjUxMjI3MTkwNTMxWjAYMRYwFAYD VQQDDA02OTQ2ZjM3Yi1kYzk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnJfD9UHG26rd9wOcMaLCQ/zcUl5mGVvRs+UrYq9XRdwogxLwQ4LBgNJ5emnV 71CyrLLNyTIrEsWUGe1lLj4gWtdgGAud+Q69gXxHAwKMhkQyBRDBAQ0XLFGvCc7c cyfIA9zQVe+w/fszjXOB1uBeUeH95Kh33nTly+edFc+iN88iVmejbZNfOgrbN523 fj3mNkyEbfBYuXjVRrHrSZ0BRn06VNxrbJ37UMpr1YRNNRUM02vvNHschX3+PDOv go/aO0tqrIspf8xIA2JmCKlC+DauQpsA1CZSBIuB9vZTF+ls/rTumBn7SIFvakYB 6NlzDRYZQCCd97EJ4rCYky7ONQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOxAoHr8 lmHyeBjAHvWLXPmTGJekMB8GA1UdIwQYMBaAFJB7A4rex8P6nGSTDmQZsvu6ucgc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQTdBNi80REI5NDQzQTcz QjYxMUVBOUI4QzFGNUNDNEY5QUUwMi9rSHNEaXQ3SHdfcWNaSk1PWkJteS03cTV5 QncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tIc0RpdDdId19xY1pKTU9aQm15LTdxNXlCdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QTdBNi80REI5NDQzQTczQjYxMUVBOUI4QzFGNUNDNEY5QUUwMi9rSHNEaXQ3SHdf cWNaSk1PWkJteS03cTV5QncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACqaUgoMzXz0nY6+yb5CpbeTwnHpzT6uINm0Tfr/4FnVmeliPMXioa IqtGx4e6sV28kOQ+zaJq6+fdqPb3ccBRiGR8QIdpo2DOQWRoLB9PAdHfPdWQ0TKN h+IWSaEzeVOMQgy4jCLr37/UReHVV8TBVb7u23By7+BcbQz4wJrqwYPNhVmAWRK8 hoVUgyOBTcCkYZ2h2IMoq3KDu5E/nX8MYKDDRZ6FA0qDL89FIljF5+YFk/ipuK1x hD2SprMZ7fataZipKFA9sqrIKKNue+rLNzc/BhGJAn8980av5Cvo7bJEtoO9UAW2 LS+Zg2a704JfNNgL/8M+1I6SUscMvo2y -----END CERTIFICATE-----Generated at Sun Dec 21 19:23:32 2025 by rpki-client