This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.mft File: kTeon0YQ2uLIjGlNyVLOWDVScHk.mft (raw, json) Hash identifier: Zmtt0CP46t8pt53DytR9wNV1zxxrFU3AeDJJK5ODtKY= Subject key identifier: 72:AD:DA:E6:DA:E0:CA:85:8C:1B:85:FC:E3:FA:36:FC:56:35:EB:4C Authority key identifier: 91:37:A8:9F:46:10:DA:E2:C8:8C:69:4D:C9:52:CE:58:35:52:70:79 Certificate issuer: /CN=A913F8BC/serialNumber=9137A89F4610DAE2C88C694DC952CE5835527079 Certificate serial: 1047 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTeon0YQ2uLIjGlNyVLOWDVScHk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.mft Manifest number: 103B Signing time: Thu 04 Dec 2025 17:00:24 +0000 Manifest this update: Thu 04 Dec 2025 17:00:23 +0000 Manifest next update: Thu 11 Dec 2025 17:00:23 +0000 Files and hashes: 1: kTeon0YQ2uLIjGlNyVLOWDVScHk.crl (hash: Cqj5LwrYQx6WDK4bql/72yPp9ZH9jXr40ZErk5sekS4=) 2: E9056E5A520611E9ABE43055C4F9AE02.roa (hash: h2Z0WowEDdcT+vihpwqc3ZmmFIzfzbEzcf903yWEHbc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.crl rsync://rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTeon0YQ2uLIjGlNyVLOWDVScHk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 17:00:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4167 (0x1047) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F8BC, serialNumber=9137A89F4610DAE2C88C694DC952CE5835527079 Validity Not Before: Dec 4 17:00:23 2025 GMT Not After : Dec 11 17:00:23 2025 GMT Subject: CN=6931be28-9d15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:b7:00:bb:73:40:f6:36:91:4c:a7:40:89:64: bd:99:f8:89:d4:13:47:52:0c:72:ed:65:6c:99:38: fc:63:04:3f:a3:9e:c3:22:88:0f:12:4f:c4:d5:d4: 66:43:83:b5:9b:5c:51:6f:45:ac:84:44:f8:2d:6d: 87:25:7b:f1:84:d8:97:f6:a4:ae:68:9b:d4:9e:17: 55:c4:7d:e9:ea:82:7f:8f:3e:82:db:97:f6:63:ea: 51:82:94:c4:de:4e:a2:6d:60:5d:7c:5a:2b:2d:ba: 79:29:d7:e9:e2:ae:f7:7f:81:9b:cc:62:84:b0:b8: 4e:57:1c:6a:17:0d:2a:2d:dd:7d:59:39:5d:4b:99: 86:a3:2b:5b:20:05:13:c5:f1:bf:69:08:e7:c5:ab: ea:5a:13:8d:69:34:04:1c:20:3c:5c:d1:04:62:0e: 0a:ab:f7:eb:b3:bb:49:b5:36:b1:05:df:b4:45:33: d2:25:ea:2d:cf:ea:fd:8d:3f:e3:49:d9:9e:81:43: b1:91:d6:ce:3d:7c:e4:50:5c:6b:3b:5f:b4:fa:65: c5:eb:d8:50:26:87:d6:14:94:39:6e:99:1c:f8:10: 6c:b8:6b:a3:e0:d7:31:bb:23:81:6d:b4:c1:b3:80: 98:cc:98:ad:30:ea:f6:bd:5c:2e:6b:96:58:5b:85: 7c:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:AD:DA:E6:DA:E0:CA:85:8C:1B:85:FC:E3:FA:36:FC:56:35:EB:4C X509v3 Authority Key Identifier: keyid:91:37:A8:9F:46:10:DA:E2:C8:8C:69:4D:C9:52:CE:58:35:52:70:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTeon0YQ2uLIjGlNyVLOWDVScHk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:9a:1a:8c:af:c2:81:8a:00:c6:47:05:cd:bf:c1:19:03:73: 1f:e9:63:75:9d:ec:db:31:45:ae:f3:bc:20:b2:82:57:91:dc: be:1d:96:77:d1:a5:a4:8d:89:75:5d:47:d5:15:92:0e:f1:95: 4b:49:4b:d0:59:8f:b1:d0:9c:b2:92:16:f0:bc:76:07:d2:1c: 94:0f:94:36:b3:e2:f7:f0:fb:14:81:0a:38:70:7d:ab:05:23: 69:0c:43:8d:d3:42:78:3b:38:dc:6f:40:83:3e:72:0b:05:15: a2:22:44:10:a3:45:aa:d9:ae:bd:e0:43:8a:7a:c5:50:5f:1d: 60:7e:c0:91:22:0a:c5:4b:fa:40:8d:ca:b9:0e:54:b0:b6:22: ed:13:bb:50:b4:fa:c6:f2:41:24:3a:a1:d1:03:4b:5f:20:05: b4:0b:89:d8:30:66:5e:43:98:f2:13:7c:55:68:fa:58:9c:bc: 5a:94:47:82:e5:de:83:18:3a:c2:4a:00:69:db:65:6c:04:88: de:f5:7a:f3:7c:7f:48:fd:18:d8:19:f8:4d:7e:41:56:2b:8e: e1:b3:f3:fa:c1:d5:d8:3f:8e:bf:6b:c1:4a:2a:55:56:cc:79: 49:bd:3d:a8:d9:1b:fe:e0:a2:d7:fe:b1:db:c5:af:e3:af:9c: 66:39:09:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEEcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0Y4QkMxMTAvBgNVBAUTKDkxMzdBODlGNDYxMERBRTJDODhDNjk0REM5NTJDRTU4 MzU1MjcwNzkwHhcNMjUxMjA0MTcwMDIzWhcNMjUxMjExMTcwMDIzWjAYMRYwFAYD VQQDEw02OTMxYmUyOC05ZDE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzLcAu3NA9jaRTKdAiWS9mfiJ1BNHUgxy7WVsmTj8YwQ/o57DIogPEk/E1dRm Q4O1m1xRb0WshET4LW2HJXvxhNiX9qSuaJvUnhdVxH3p6oJ/jz6C25f2Y+pRgpTE 3k6ibWBdfForLbp5Kdfp4q73f4GbzGKEsLhOVxxqFw0qLd19WTldS5mGoytbIAUT xfG/aQjnxavqWhONaTQEHCA8XNEEYg4Kq/frs7tJtTaxBd+0RTPSJeotz+r9jT/j SdmegUOxkdbOPXzkUFxrO1+0+mXF69hQJofWFJQ5bpkc+BBsuGuj4NcxuyOBbbTB s4CYzJitMOr2vVwua5ZYW4V84QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHKt2uba 4MqFjBuF/OP6NvxWNetMMB8GA1UdIwQYMBaAFJE3qJ9GENriyIxpTclSzlg1UnB5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRjhCQy80RTEzRjQwQzUy MDYxMUU5OEVGQzNBNTRDNEY5QUUwMi9rVGVvbjBZUTJ1TElqR2xOeVZMT1dEVlNj SGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tUZW9uMFlRMnVMSWpHbE55VkxPV0RWU2NIay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RjhCQy80RTEzRjQwQzUyMDYxMUU5OEVGQzNBNTRDNEY5QUUwMi9rVGVvbjBZUTJ1 TElqR2xOeVZMT1dEVlNjSGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRmhqMr8KBigDGRwXNv8EZA3Mf6WN1nezbMUWu87wgsoJXkdy+HZZ3 0aWkjYl1XUfVFZIO8ZVLSUvQWY+x0JyykhbwvHYH0hyUD5Q2s+L38PsUgQo4cH2r BSNpDEON00J4Ozjcb0CDPnILBRWiIkQQo0Wq2a694EOKesVQXx1gfsCRIgrFS/pA jcq5DlSwtiLtE7tQtPrG8kEkOqHRA0tfIAW0C4nYMGZeQ5jyE3xVaPpYnLxalEeC 5d6DGDrCSgBp22VsBIje9XrzfH9I/RjYGfhNfkFWK47hs/P6wdXYP46/a8FKKlVW zHlJvT2o2Rv+4KLX/rHbxa/jr5xmOQk0 -----END CERTIFICATE-----Generated at Sat Dec 6 17:26:37 2025 by rpki-client