This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.mft File: KgHI_pZ5aUR4MewBwCvE6cuaziw.mft (raw, json) Hash identifier: stwZzxHYlewj7C8jYY74E3Itjfol8EMM9ENSxWOr0+Q= Subject key identifier: C0:4F:63:5D:8C:AF:64:0D:CD:9C:0F:7A:09:55:F6:03:AA:4E:BA:C7 Authority key identifier: 2A:01:C8:FE:96:79:69:44:78:31:EC:01:C0:2B:C4:E9:CB:9A:CE:2C Certificate issuer: /CN=A9158F8D/serialNumber=2A01C8FE967969447831EC01C02BC4E9CB9ACE2C Certificate serial: FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KgHI_pZ5aUR4MewBwCvE6cuaziw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.mft Manifest number: F7 Signing time: Fri 05 Dec 2025 03:21:46 +0000 Manifest this update: Fri 05 Dec 2025 03:21:45 +0000 Manifest next update: Fri 12 Dec 2025 03:21:45 +0000 Files and hashes: 1: KgHI_pZ5aUR4MewBwCvE6cuaziw.crl (hash: LfOP3Zjv+Uc/vdm/zgYAUFePk6fM6ObNGZ8V7Yc5/Wc=) 2: B9574A322C1311F0B642882AC4F9AE02.roa (hash: QN8v9t5P0QTRBsYg+U9O7T5DHQfpoMuEMEImQ353CzQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.crl rsync://rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KgHI_pZ5aUR4MewBwCvE6cuaziw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 03:21:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 252 (0xfc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158F8D, serialNumber=2A01C8FE967969447831EC01C02BC4E9CB9ACE2C Validity Not Before: Dec 5 03:21:45 2025 GMT Not After : Dec 12 03:21:45 2025 GMT Subject: CN=69324fca-b366 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:59:0a:dd:70:0c:34:8b:40:ae:24:ae:bf:3b: 59:85:38:a9:00:11:6a:89:8d:6b:60:6c:b6:c8:e9: a2:39:e4:61:1b:6e:8e:58:82:ad:93:0f:15:5c:55: e9:e5:a1:fa:e2:c4:6d:c2:f3:0c:98:f9:0b:3a:32: 0e:8c:5e:a0:3f:9b:69:b1:29:2f:da:28:c0:71:68: 7a:71:0c:9e:c3:43:7b:70:b6:97:da:2a:1f:3d:a7: fe:45:3f:b8:a7:2b:25:23:29:6c:14:3d:e2:64:26: ee:e9:d7:b0:55:f5:99:c7:44:00:95:fb:ee:51:f5: 18:67:b3:e1:db:49:c4:b2:48:9f:22:8f:18:d0:73: 9c:6e:15:df:d8:05:1e:bb:ed:c3:17:b6:31:13:f7: 3c:fd:16:bf:a0:0e:ee:75:da:73:94:20:ec:48:14: 78:6c:97:c0:66:1d:d5:32:a0:b0:a2:08:dc:7f:dd: a6:39:f3:e5:28:e9:9e:db:3c:b3:cf:0b:fc:6d:d5: 66:67:d8:3c:0e:19:14:34:a8:0f:fe:2f:59:e3:53: b7:e2:3b:0f:c6:8e:f3:34:e7:09:c5:6e:b9:e7:f3: d4:d8:33:c3:95:ab:c1:b7:a1:ba:08:b7:bf:bc:d3: ed:50:6c:ad:6f:b6:ba:0a:78:02:91:29:37:84:5b: 66:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:4F:63:5D:8C:AF:64:0D:CD:9C:0F:7A:09:55:F6:03:AA:4E:BA:C7 X509v3 Authority Key Identifier: keyid:2A:01:C8:FE:96:79:69:44:78:31:EC:01:C0:2B:C4:E9:CB:9A:CE:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KgHI_pZ5aUR4MewBwCvE6cuaziw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:c1:57:3d:6b:f7:8f:3d:5b:8f:8b:ce:17:2c:92:d3:a7:50: 50:31:67:2b:96:97:d4:50:fa:4d:69:9d:5d:57:72:50:47:b7: 6f:3a:e3:b8:b8:5c:da:53:bf:d0:95:ed:b7:d0:b3:cf:ee:e2: c2:0f:88:0a:55:9a:2d:14:66:fc:41:f4:96:20:c0:aa:19:ff: e3:46:2b:6d:6e:25:d1:26:7e:09:4c:bc:59:0e:bd:3a:0b:39: 77:3c:4c:59:f1:3e:c6:87:76:71:68:d8:83:f3:3c:fa:88:0a: 65:03:b7:4a:75:98:02:77:bd:3a:07:57:9b:c6:bd:34:72:6f: 95:fb:d7:93:49:13:bf:b3:3d:26:2e:2d:49:cf:67:57:28:ce: de:c2:00:fb:43:56:2f:76:e2:fb:98:7f:9a:d9:b8:21:37:61: fb:e3:59:68:42:c1:f1:4e:9d:18:be:76:c0:30:5f:18:cf:44: 7b:10:2b:0f:be:35:2c:ad:26:8b:ae:82:3a:f4:70:77:1b:a3: 4e:b3:c7:3e:bb:4a:bb:28:b8:e2:1f:24:8a:b2:7b:bf:24:39: 80:c0:1c:11:45:e7:1d:1e:50:ff:52:7f:a5:43:58:bc:5b:c9: 6e:5f:92:3e:16:5d:a0:20:9d:36:5c:e7:87:c1:0e:27:b5:c3: f0:80:97:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NThGOEQxMTAvBgNVBAUTKDJBMDFDOEZFOTY3OTY5NDQ3ODMxRUMwMUMwMkJDNEU5 Q0I5QUNFMkMwHhcNMjUxMjA1MDMyMTQ1WhcNMjUxMjEyMDMyMTQ1WjAYMRYwFAYD VQQDEw02OTMyNGZjYS1iMzY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA21kK3XAMNItAriSuvztZhTipABFqiY1rYGy2yOmiOeRhG26OWIKtkw8VXFXp 5aH64sRtwvMMmPkLOjIOjF6gP5tpsSkv2ijAcWh6cQyew0N7cLaX2iofPaf+RT+4 pyslIylsFD3iZCbu6dewVfWZx0QAlfvuUfUYZ7Ph20nEskifIo8Y0HOcbhXf2AUe u+3DF7YxE/c8/Ra/oA7uddpzlCDsSBR4bJfAZh3VMqCwogjcf92mOfPlKOme2zyz zwv8bdVmZ9g8DhkUNKgP/i9Z41O34jsPxo7zNOcJxW655/PU2DPDlavBt6G6CLe/ vNPtUGytb7a6CngCkSk3hFtmyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMBPY12M r2QNzZwPeglV9gOqTrrHMB8GA1UdIwQYMBaAFCoByP6WeWlEeDHsAcArxOnLms4s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OEY4RC9BMTc5RTUzQzY0 NzcxMUVGQTgyREU5M0RDNEY5QUUwMi9LZ0hJX3BaNWFVUjRNZXdCd0N2RTZjdWF6 aXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tnSElfcFo1YVVSNE1ld0J3Q3ZFNmN1YXppdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OEY4RC9BMTc5RTUzQzY0NzcxMUVGQTgyREU5M0RDNEY5QUUwMi9LZ0hJX3BaNWFV UjRNZXdCd0N2RTZjdWF6aXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHwVc9a/ePPVuPi84XLJLTp1BQMWcrlpfUUPpNaZ1dV3JQR7dvOuO4 uFzaU7/Qle230LPP7uLCD4gKVZotFGb8QfSWIMCqGf/jRittbiXRJn4JTLxZDr06 Czl3PExZ8T7Gh3ZxaNiD8zz6iAplA7dKdZgCd706B1ebxr00cm+V+9eTSRO/sz0m Li1Jz2dXKM7ewgD7Q1YvduL7mH+a2bghN2H741loQsHxTp0YvnbAMF8Yz0R7ECsP vjUsrSaLroI69HB3G6NOs8c+u0q7KLjiHySKsnu/JDmAwBwRRecdHlD/Un+lQ1i8 W8luX5I+Fl2gIJ02XOeHwQ4ntcPwgJdS -----END CERTIFICATE-----Generated at Sat Dec 6 20:07:19 2025 by rpki-client