This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9158650/7758D2C2BDA711EDAECD4A5DC4F9AE02/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.mft File: KBfUqGRK7EGa3M7jDE6Hok0v9Xs.mft (raw, json) Hash identifier: xKWcZrWjsZM3GCyp5LYJGPqvnRJVsjIqSMDtFum0++A= Subject key identifier: DA:38:E1:7C:4F:F1:82:0E:1B:67:56:E0:C9:EA:F0:5F:9D:EE:CE:6D Authority key identifier: 28:17:D4:A8:64:4A:EC:41:9A:DC:CE:E3:0C:4E:87:A2:4D:2F:F5:7B Certificate issuer: /CN=A9158650/serialNumber=2817D4A8644AEC419ADCCEE30C4E87A24D2FF57B Certificate serial: 0209 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158650/7758D2C2BDA711EDAECD4A5DC4F9AE02/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.mft Manifest number: 0204 Signing time: Fri 05 Dec 2025 00:41:40 +0000 Manifest this update: Fri 05 Dec 2025 00:41:40 +0000 Manifest next update: Fri 12 Dec 2025 00:41:40 +0000 Files and hashes: 1: KBfUqGRK7EGa3M7jDE6Hok0v9Xs.crl (hash: 3C261wlhWt/S4d5L6yD1DO/dgyYNq0FMuh5cmpcp7Ss=) 2: EA5A9A32BDAA11ED92995562C4F9AE02.roa (hash: /EEXvT665opKL7OI/mui0sN2NqpuGn4U8tvIvrJ8aw8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158650/7758D2C2BDA711EDAECD4A5DC4F9AE02/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.crl rsync://rpki.apnic.net/member_repository/A9158650/7758D2C2BDA711EDAECD4A5DC4F9AE02/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 00:41:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 521 (0x209) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158650, serialNumber=2817D4A8644AEC419ADCCEE30C4E87A24D2FF57B Validity Not Before: Dec 5 00:41:40 2025 GMT Not After : Dec 12 00:41:40 2025 GMT Subject: CN=69322a44-7d33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:81:11:ca:92:46:d7:f6:a9:2a:f1:85:a5:4a: 22:51:3e:3f:d6:2c:4b:78:9c:02:09:a7:f1:91:88: 5e:cc:3b:f1:dd:d8:0f:b7:de:86:a6:a2:f6:59:0f: 7a:23:8a:31:e6:9f:b9:32:a0:11:fd:d8:c7:54:ab: 77:c7:0c:83:7c:b5:47:f9:b9:c1:8a:32:48:52:a8: 62:03:e5:68:fb:dc:8f:55:8f:ee:95:10:05:21:29: 30:ca:08:fa:c1:ee:3e:9b:fe:b0:f6:bc:28:f3:79: 67:d2:45:fb:ab:06:a3:12:31:14:bd:65:8e:af:c5: ff:39:f9:df:d0:3b:7f:22:cf:e1:17:31:98:83:8c: 4a:0c:28:09:2b:e9:21:38:b1:c6:7c:c3:7d:c0:c5: ea:f6:a6:7a:24:ed:9f:7a:94:9f:09:f1:96:97:5a: c5:01:99:c2:bf:4b:9d:cc:a1:f6:ae:53:8d:0c:7d: 38:04:ac:a5:d2:5e:30:26:a8:0a:ee:11:ea:d5:c7: 2b:f7:0f:bc:1e:cf:ec:a6:0d:b7:1e:ce:c2:a9:6c: ec:8a:12:02:f5:c8:3c:1e:e2:0e:7f:dc:c0:68:ae: b0:d8:76:2b:f1:dc:65:d5:77:08:4c:49:22:34:95: 11:48:e4:9e:76:ff:68:3d:7b:fb:6a:c2:54:25:2e: 54:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:38:E1:7C:4F:F1:82:0E:1B:67:56:E0:C9:EA:F0:5F:9D:EE:CE:6D X509v3 Authority Key Identifier: keyid:28:17:D4:A8:64:4A:EC:41:9A:DC:CE:E3:0C:4E:87:A2:4D:2F:F5:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158650/7758D2C2BDA711EDAECD4A5DC4F9AE02/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158650/7758D2C2BDA711EDAECD4A5DC4F9AE02/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:5f:11:e2:d3:b1:8a:cf:e4:85:9c:ea:c8:4f:cd:5f:70:73: 8a:a8:ab:90:3e:8b:32:e0:d1:e7:7c:89:5b:ee:94:03:7b:6b: 5c:d7:64:10:c3:b7:83:05:24:d6:ff:9f:d4:7e:cd:a8:9e:a1: 1f:f0:3d:52:90:74:c6:35:24:8c:4a:f7:cf:fe:f5:cf:08:c5: 96:93:e0:47:a1:71:b2:a1:b6:ef:b7:0f:f5:20:83:7f:8a:e9: 42:d2:75:91:af:1b:e3:35:2a:93:a4:37:61:10:de:54:3f:e9: 67:8d:f1:19:42:4c:41:0c:ed:33:48:c0:b2:ff:d2:81:1b:17: 4d:37:fa:1a:1c:64:f7:b0:2b:02:32:60:94:e5:0b:71:fc:de: bb:6f:24:19:0b:f6:45:bd:12:91:3e:68:4d:7d:f1:34:fa:5f: 10:3d:50:08:ae:4e:09:ad:45:1b:02:3d:b8:67:23:fa:87:4f: 49:ec:e5:e9:1a:09:f1:98:2a:cb:92:b5:14:94:73:d6:fa:11: 19:4b:47:f5:e1:e8:68:4e:55:2d:2d:b2:e8:bd:d3:34:a6:a2: 90:8a:2a:18:31:17:d2:c4:07:81:87:06:0b:d3:8a:df:09:ad: 59:36:25:9b:3d:80:df:bb:4b:9b:b0:6a:62:68:9e:30:15:f8: f0:6c:2a:6f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg2NTAxMTAvBgNVBAUTKDI4MTdENEE4NjQ0QUVDNDE5QURDQ0VFMzBDNEU4N0Ey NEQyRkY1N0IwHhcNMjUxMjA1MDA0MTQwWhcNMjUxMjEyMDA0MTQwWjAYMRYwFAYD VQQDEw02OTMyMmE0NC03ZDMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz4ERypJG1/apKvGFpUoiUT4/1ixLeJwCCafxkYhezDvx3dgPt96GpqL2WQ96 I4ox5p+5MqAR/djHVKt3xwyDfLVH+bnBijJIUqhiA+Vo+9yPVY/ulRAFISkwygj6 we4+m/6w9rwo83ln0kX7qwajEjEUvWWOr8X/Ofnf0Dt/Is/hFzGYg4xKDCgJK+kh OLHGfMN9wMXq9qZ6JO2fepSfCfGWl1rFAZnCv0udzKH2rlONDH04BKyl0l4wJqgK 7hHq1ccr9w+8Hs/spg23Hs7CqWzsihIC9cg8HuIOf9zAaK6w2HYr8dxl1XcITEki NJURSOSedv9oPXv7asJUJS5UMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNo44XxP 8YIOG2dW4Mnq8F+d7s5tMB8GA1UdIwQYMBaAFCgX1KhkSuxBmtzO4wxOh6JNL/V7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODY1MC83NzU4RDJDMkJE QTcxMUVEQUVDRDRBNURDNEY5QUUwMi9LQmZVcUdSSzdFR2EzTTdqREU2SG9rMHY5 WHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tCZlVxR1JLN0VHYTNNN2pERTZIb2swdjlYcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODY1MC83NzU4RDJDMkJEQTcxMUVEQUVDRDRBNURDNEY5QUUwMi9LQmZVcUdSSzdF R2EzTTdqREU2SG9rMHY5WHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQClXxHi07GKz+SFnOrIT81fcHOKqKuQPosy4NHnfIlb7pQDe2tc12QQ w7eDBSTW/5/Ufs2onqEf8D1SkHTGNSSMSvfP/vXPCMWWk+BHoXGyobbvtw/1IIN/ iulC0nWRrxvjNSqTpDdhEN5UP+lnjfEZQkxBDO0zSMCy/9KBGxdNN/oaHGT3sCsC MmCU5Qtx/N67byQZC/ZFvRKRPmhNffE0+l8QPVAIrk4JrUUbAj24ZyP6h09J7OXp GgnxmCrLkrUUlHPW+hEZS0f14ehoTlUtLbLovdM0pqKQiioYMRfSxAeBhwYL04rf Ca1ZNiWbPYDfu0ubsGpiaJ4wFfjwbCpv -----END CERTIFICATE-----Generated at Sat Dec 6 11:21:20 2025 by rpki-client