This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9152329/C7FAD368A26811EF9D914118C4F9AE02/KTrGQFMJ3pSVFof-Fylq3c2Vcvw.mft File: KTrGQFMJ3pSVFof-Fylq3c2Vcvw.mft (raw, json) Hash identifier: +MlbmVX8Tnj/fwsXZw843l4SY42MST7DmyV0Nhxo+aQ= Subject key identifier: 09:E7:E7:DD:78:0F:B1:1A:9B:EA:D3:41:70:28:4D:D4:D2:C7:73:92 Authority key identifier: 29:3A:C6:40:53:09:DE:94:95:16:87:FE:17:29:6A:DD:CD:95:72:FC Certificate issuer: /CN=A9152329/serialNumber=293AC6405309DE94951687FE17296ADDCD9572FC Certificate serial: CA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KTrGQFMJ3pSVFof-Fylq3c2Vcvw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152329/C7FAD368A26811EF9D914118C4F9AE02/KTrGQFMJ3pSVFof-Fylq3c2Vcvw.mft Manifest number: C8 Signing time: Fri 05 Dec 2025 03:50:44 +0000 Manifest this update: Fri 05 Dec 2025 03:50:44 +0000 Manifest next update: Fri 12 Dec 2025 03:50:44 +0000 Files and hashes: 1: KTrGQFMJ3pSVFof-Fylq3c2Vcvw.crl (hash: j/P23xWiCnVmkQmF4zg6NrntZcG/AQmRJwcUXy8SbgY=) 2: 38161248A26911EFBF6D0319C4F9AE02.roa (hash: n0Thufh5JkG5zit4bqbChTpHcB8GdZqVj3xLM+DLazE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152329/C7FAD368A26811EF9D914118C4F9AE02/KTrGQFMJ3pSVFof-Fylq3c2Vcvw.crl rsync://rpki.apnic.net/member_repository/A9152329/C7FAD368A26811EF9D914118C4F9AE02/KTrGQFMJ3pSVFof-Fylq3c2Vcvw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KTrGQFMJ3pSVFof-Fylq3c2Vcvw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 03:50:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 202 (0xca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152329, serialNumber=293AC6405309DE94951687FE17296ADDCD9572FC Validity Not Before: Dec 5 03:50:44 2025 GMT Not After : Dec 12 03:50:44 2025 GMT Subject: CN=69325694-dabb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:f9:a2:2e:44:4c:08:b5:c2:34:81:a8:b7:e7: d3:73:51:7f:07:1c:ae:c3:eb:55:0f:b9:ba:9d:e6: db:aa:67:84:28:32:1c:df:72:60:fa:f2:ed:48:3e: 66:06:1b:c3:28:72:c9:fb:1c:b7:83:4c:33:fc:09: 8e:0b:d5:1f:d7:0b:00:c7:4c:20:0a:86:5f:07:58: 06:b4:27:54:74:1a:3a:a4:42:68:86:79:7a:0a:1f: a9:d5:45:41:3e:24:9d:4d:ec:04:9d:e0:a8:85:9b: b8:91:64:a1:ed:72:31:20:13:c3:9e:85:6c:6f:53: 4f:64:ba:7b:32:81:36:fe:e8:67:64:21:63:cd:e4: b9:95:71:8b:07:42:7b:45:b1:57:40:d6:af:cd:61: 70:52:0d:a4:a5:e2:a1:41:2b:43:93:12:6a:4a:dd: eb:97:52:68:ad:b6:0d:a3:88:6a:69:33:48:39:e5: 46:37:de:ac:ab:ba:13:ea:59:76:12:49:01:9b:11: 12:64:65:c4:ee:87:b8:3a:a5:33:ee:0f:1b:4b:c5: c6:ea:ee:4e:3e:58:e5:42:60:c3:45:95:a8:7c:60: e0:50:92:59:06:d7:29:d4:a1:b9:63:b9:09:dd:21: 3e:2b:33:18:4b:0b:9d:29:be:f0:ac:8a:f3:c8:98: 90:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:E7:E7:DD:78:0F:B1:1A:9B:EA:D3:41:70:28:4D:D4:D2:C7:73:92 X509v3 Authority Key Identifier: keyid:29:3A:C6:40:53:09:DE:94:95:16:87:FE:17:29:6A:DD:CD:95:72:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152329/C7FAD368A26811EF9D914118C4F9AE02/KTrGQFMJ3pSVFof-Fylq3c2Vcvw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KTrGQFMJ3pSVFof-Fylq3c2Vcvw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152329/C7FAD368A26811EF9D914118C4F9AE02/KTrGQFMJ3pSVFof-Fylq3c2Vcvw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption db:0b:22:56:5b:df:05:b7:76:0b:51:c3:63:42:61:27:49:13: f8:a9:32:6b:ef:83:1d:b4:7d:af:57:26:ae:b6:72:df:16:29: f8:0f:83:71:b3:24:ef:04:f6:c6:93:a2:dc:e5:6c:42:d3:db: 29:7a:16:39:ab:8f:d1:07:d4:04:20:67:d0:67:7b:c5:44:82: 4e:54:9b:a6:4d:14:3a:dc:7b:32:4a:ce:82:18:02:b1:18:b5: 81:7d:f0:24:97:6f:58:8e:da:78:88:67:6d:bc:21:4f:85:37: ad:cf:bd:ba:40:7a:c1:12:b3:d9:6c:e0:ef:93:50:fe:4c:39: bf:ce:31:d1:e9:e6:9f:c0:95:44:35:46:e8:d5:c5:48:5b:3c: dd:18:6a:c7:ff:60:de:68:2d:48:45:06:1e:e9:94:40:7d:eb: c6:b2:f2:3f:bf:cd:da:5f:10:99:7e:ae:a4:63:1d:ac:4f:66: 84:eb:7a:ec:d9:65:51:53:14:a9:86:39:d9:c9:bf:f7:9a:d0: 26:90:3e:ee:5e:ee:d7:f4:41:ac:b7:3c:fc:fc:a5:57:f7:0c: 3c:bf:dc:29:52:94:07:68:18:23:eb:9f:09:56:e3:d4:73:b1: a3:60:85:a1:ac:63:a9:0b:f6:31:d4:53:04:92:85:79:09:45: e6:76:ef:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTIzMjkxMTAvBgNVBAUTKDI5M0FDNjQwNTMwOURFOTQ5NTE2ODdGRTE3Mjk2QURE Q0Q5NTcyRkMwHhcNMjUxMjA1MDM1MDQ0WhcNMjUxMjEyMDM1MDQ0WjAYMRYwFAYD VQQDEw02OTMyNTY5NC1kYWJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuvmiLkRMCLXCNIGot+fTc1F/Bxyuw+tVD7m6nebbqmeEKDIc33Jg+vLtSD5m BhvDKHLJ+xy3g0wz/AmOC9Uf1wsAx0wgCoZfB1gGtCdUdBo6pEJohnl6Ch+p1UVB PiSdTewEneCohZu4kWSh7XIxIBPDnoVsb1NPZLp7MoE2/uhnZCFjzeS5lXGLB0J7 RbFXQNavzWFwUg2kpeKhQStDkxJqSt3rl1JorbYNo4hqaTNIOeVGN96sq7oT6ll2 EkkBmxESZGXE7oe4OqUz7g8bS8XG6u5OPljlQmDDRZWofGDgUJJZBtcp1KG5Y7kJ 3SE+KzMYSwudKb7wrIrzyJiQaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAnn5914 D7Eam+rTQXAoTdTSx3OSMB8GA1UdIwQYMBaAFCk6xkBTCd6UlRaH/hcpat3NlXL8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjMyOS9DN0ZBRDM2OEEy NjgxMUVGOUQ5MTQxMThDNEY5QUUwMi9LVHJHUUZNSjNwU1ZGb2YtRnlscTNjMlZj dncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0tUckdRRk1KM3BTVkZvZi1GeWxxM2MyVmN2dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjMyOS9DN0ZBRDM2OEEyNjgxMUVGOUQ5MTQxMThDNEY5QUUwMi9LVHJHUUZNSjNw U1ZGb2YtRnlscTNjMlZjdncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDbCyJWW98Ft3YLUcNjQmEnSRP4qTJr74MdtH2vVyautnLfFin4D4Nx syTvBPbGk6Lc5WxC09spehY5q4/RB9QEIGfQZ3vFRIJOVJumTRQ63HsySs6CGAKx GLWBffAkl29Yjtp4iGdtvCFPhTetz726QHrBErPZbODvk1D+TDm/zjHR6eafwJVE NUbo1cVIWzzdGGrH/2DeaC1IRQYe6ZRAfevGsvI/v83aXxCZfq6kYx2sT2aE63rs 2WVRUxSphjnZyb/3mtAmkD7uXu7X9EGstzz8/KVX9ww8v9wpUpQHaBgj658JVuPU c7GjYIWhrGOpC/Yx1FMEkoV5CUXmdu/t -----END CERTIFICATE-----Generated at Sun Dec 7 01:34:48 2025 by rpki-client