This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914F521/21658820C67E11E9AF3BA765C4F9AE02/KXaHZ1PWVWKnyoXj6ejfdQeXyUg.mft File: KXaHZ1PWVWKnyoXj6ejfdQeXyUg.mft (raw, json) Hash identifier: dX19TulXGHxP1AUX2yiy8icVUaelkFPu/yoGTNQSN10= Subject key identifier: D1:2C:95:DB:DE:6F:1F:8A:51:28:AA:D4:EE:78:75:95:17:66:41:6E Authority key identifier: 29:76:87:67:53:D6:55:62:A7:CA:85:E3:E9:E8:DF:75:07:97:C9:48 Certificate issuer: /CN=A914F521/serialNumber=2976876753D65562A7CA85E3E9E8DF750797C948 Certificate serial: 0E1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KXaHZ1PWVWKnyoXj6ejfdQeXyUg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F521/21658820C67E11E9AF3BA765C4F9AE02/KXaHZ1PWVWKnyoXj6ejfdQeXyUg.mft Manifest number: 0DFE Signing time: Sat 06 Dec 2025 17:17:26 +0000 Manifest this update: Sat 06 Dec 2025 17:17:26 +0000 Manifest next update: Sat 13 Dec 2025 17:17:26 +0000 Files and hashes: 1: KXaHZ1PWVWKnyoXj6ejfdQeXyUg.crl (hash: 2E6epvkpn9gS00p/XmENEio8Fw5HFRTmcuqEBUpVkl8=) 2: 757320342E4011EEBC464879C4F9AE02.roa (hash: P37lIdcSAoW+RqsdCkFvhSnyXLO3TfyFSiBj1G2ZldU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F521/21658820C67E11E9AF3BA765C4F9AE02/KXaHZ1PWVWKnyoXj6ejfdQeXyUg.crl rsync://rpki.apnic.net/member_repository/A914F521/21658820C67E11E9AF3BA765C4F9AE02/KXaHZ1PWVWKnyoXj6ejfdQeXyUg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KXaHZ1PWVWKnyoXj6ejfdQeXyUg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 17:17:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3611 (0xe1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F521, serialNumber=2976876753D65562A7CA85E3E9E8DF750797C948 Validity Not Before: Dec 6 17:17:26 2025 GMT Not After : Dec 13 17:17:26 2025 GMT Subject: CN=69346526-4e69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:f9:3f:c0:0a:04:cc:cd:ed:99:39:dc:9b:9f: 3e:78:93:27:33:80:93:c5:b7:d0:94:02:73:27:fe: 1d:5c:03:4b:1e:9f:8f:d8:39:ab:07:81:89:ab:75: ad:5a:41:be:b1:ac:f5:d5:c9:2d:e0:3a:6e:ae:9e: 39:8f:f7:3b:79:73:b6:49:89:47:ff:f7:ab:e2:2f: 5f:a3:1f:0e:6d:4d:06:da:c4:4f:d0:80:79:fd:48: 5e:2b:35:ec:11:11:6b:6f:eb:79:4c:60:e3:62:3d: 7c:5e:8c:3e:f4:18:aa:b3:c6:cd:b6:c6:dd:7d:48: 67:4d:d0:fb:e0:9a:9d:da:07:42:be:b3:51:70:31: ae:80:1c:f5:e7:e8:8a:4a:e8:86:4e:61:6f:ae:b7: 08:da:83:73:88:eb:40:ac:c6:af:7c:c7:af:b1:b9: b7:a8:90:6f:f6:28:a2:68:0d:08:4d:4c:73:f5:c9: 84:ca:2d:de:fb:03:d5:81:7b:7f:73:e6:b7:3d:a6: 0c:c3:ea:dd:8b:0d:f9:a6:40:be:8a:dd:46:87:ae: 3c:86:32:75:b2:50:79:2c:90:a4:36:c9:7d:c6:e1: 76:33:9b:7a:8d:06:f3:aa:b1:2e:b3:18:5e:9e:08: d2:a5:74:6a:f0:1f:2a:ef:45:55:14:37:9b:8b:7e: 2e:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:2C:95:DB:DE:6F:1F:8A:51:28:AA:D4:EE:78:75:95:17:66:41:6E X509v3 Authority Key Identifier: keyid:29:76:87:67:53:D6:55:62:A7:CA:85:E3:E9:E8:DF:75:07:97:C9:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F521/21658820C67E11E9AF3BA765C4F9AE02/KXaHZ1PWVWKnyoXj6ejfdQeXyUg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KXaHZ1PWVWKnyoXj6ejfdQeXyUg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F521/21658820C67E11E9AF3BA765C4F9AE02/KXaHZ1PWVWKnyoXj6ejfdQeXyUg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:6d:0a:44:77:2a:f9:e2:98:6a:62:3e:ab:98:8e:38:1c:80: 36:42:94:b0:44:17:66:8f:31:de:8b:1e:88:9a:94:86:03:1f: 33:93:a8:18:f0:de:ed:80:3f:f8:f4:a2:46:6b:8f:50:b5:07: 0a:3f:6c:87:69:86:73:0d:82:de:18:a7:87:26:0b:2f:2c:97: 1f:68:03:0c:d4:82:37:2a:2c:d2:09:26:42:16:69:84:34:a7: 63:aa:bb:8c:ab:05:58:df:6f:30:eb:d3:7f:aa:e2:b3:e3:70: f4:a8:66:f8:1e:d0:40:c9:fa:01:f3:12:b2:80:39:f2:4d:2e: 88:28:42:36:b9:68:a9:b6:a7:63:10:a7:d0:57:15:5e:68:d9: 37:61:10:81:47:85:32:3e:fe:cc:1b:24:97:02:b5:73:6a:43: 0b:44:b1:bc:21:a5:a4:a5:ac:63:2b:00:75:df:b7:b3:5a:0b: 26:7d:68:ff:0b:1d:54:5a:82:bd:68:5d:b0:83:08:29:28:e0: 85:f4:4f:0a:13:94:a7:1a:60:be:15:da:6d:a9:b0:b9:3b:ff: c9:0c:6c:b5:18:0c:1d:7e:0d:02:e5:43:bc:2f:5c:60:35:5d: 7a:d0:67:b5:c5:8e:00:a1:8c:9e:11:8c:cf:57:3f:57:16:15: 52:de:34:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDhswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEY1MjExMTAvBgNVBAUTKDI5NzY4NzY3NTNENjU1NjJBN0NBODVFM0U5RThERjc1 MDc5N0M5NDgwHhcNMjUxMjA2MTcxNzI2WhcNMjUxMjEzMTcxNzI2WjAYMRYwFAYD VQQDEw02OTM0NjUyNi00ZTY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtfk/wAoEzM3tmTncm58+eJMnM4CTxbfQlAJzJ/4dXANLHp+P2DmrB4GJq3Wt WkG+saz11ckt4Dpurp45j/c7eXO2SYlH//er4i9fox8ObU0G2sRP0IB5/UheKzXs ERFrb+t5TGDjYj18Xow+9Biqs8bNtsbdfUhnTdD74Jqd2gdCvrNRcDGugBz15+iK SuiGTmFvrrcI2oNziOtArMavfMevsbm3qJBv9iiiaA0ITUxz9cmEyi3e+wPVgXt/ c+a3PaYMw+rdiw35pkC+it1Gh648hjJ1slB5LJCkNsl9xuF2M5t6jQbzqrEusxhe ngjSpXRq8B8q70VVFDebi34u4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNEsldve bx+KUSiq1O54dZUXZkFuMB8GA1UdIwQYMBaAFCl2h2dT1lVip8qF4+no33UHl8lI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjUyMS8yMTY1ODgyMEM2 N0UxMUU5QUYzQkE3NjVDNEY5QUUwMi9LWGFIWjFQV1ZXS255b1hqNmVqZmRRZVh5 VWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tYYUhaMVBXVldLbnlvWGo2ZWpmZFFlWHlVZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjUyMS8yMTY1ODgyMEM2N0UxMUU5QUYzQkE3NjVDNEY5QUUwMi9LWGFIWjFQV1ZX S255b1hqNmVqZmRRZVh5VWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSbQpEdyr54phqYj6rmI44HIA2QpSwRBdmjzHeix6ImpSGAx8zk6gY 8N7tgD/49KJGa49QtQcKP2yHaYZzDYLeGKeHJgsvLJcfaAMM1II3KizSCSZCFmmE NKdjqruMqwVY328w69N/quKz43D0qGb4HtBAyfoB8xKygDnyTS6IKEI2uWiptqdj EKfQVxVeaNk3YRCBR4UyPv7MGySXArVzakMLRLG8IaWkpaxjKwB137ezWgsmfWj/ Cx1UWoK9aF2wgwgpKOCF9E8KE5SnGmC+FdptqbC5O//JDGy1GAwdfg0C5UO8L1xg NV160Ge1xY4AoYyeEYzPVz9XFhVS3jSL -----END CERTIFICATE-----Generated at Sun Dec 7 02:01:09 2025 by rpki-client