This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.mft File: KdFsmNs9W_ZLa5IEwJYAhgzSlFI.mft (raw, json) Hash identifier: sR3rGGG/y4L6gmpJk7wO/V2zXiWFV49/tcri5imSmao= Subject key identifier: BD:EA:6E:D5:2F:9B:C2:A2:0D:0F:4B:CC:27:64:D8:C6:EB:00:9D:62 Authority key identifier: 29:D1:6C:98:DB:3D:5B:F6:4B:6B:92:04:C0:96:00:86:0C:D2:94:52 Certificate issuer: /CN=A916022F/serialNumber=29D16C98DB3D5BF64B6B9204C09600860CD29452 Certificate serial: 1129 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.mft Manifest number: 2499 Signing time: Thu 04 Dec 2025 16:36:52 +0000 Manifest this update: Thu 04 Dec 2025 16:36:51 +0000 Manifest next update: Thu 11 Dec 2025 16:36:51 +0000 Files and hashes: 1: KdFsmNs9W_ZLa5IEwJYAhgzSlFI.crl (hash: BuV3p4Q8elF0osh+ktgtktWL/NNOiAR6lAzB/5lWlyM=) 2: DE0A75A605EB11EA94CD7287C4F9AE02.roa (hash: dRGqWnvgsIsN2pbF+Ps/gIu/drVJ5zxN2ZisSAeqSPE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.crl rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 16:36:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4393 (0x1129) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916022F, serialNumber=29D16C98DB3D5BF64B6B9204C09600860CD29452 Validity Not Before: Dec 4 16:36:51 2025 GMT Not After : Dec 11 16:36:51 2025 GMT Subject: CN=6931b8a3-ebed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:ba:be:15:61:e9:b1:3a:e5:ca:62:6f:39:25: a6:98:19:63:6e:c5:dc:04:64:a5:8d:82:58:cc:62: 0d:b1:97:fe:6e:af:a6:5f:17:ad:58:f7:4d:56:be: b4:2f:50:87:ce:2e:eb:83:19:a2:30:90:05:08:03: da:72:f8:e4:e3:3d:ad:b5:67:65:99:c3:ae:20:ca: c3:e2:94:26:bd:22:60:fb:61:1e:62:fc:08:7f:c1: 2d:07:0a:b4:65:1c:55:af:ea:a8:4c:c7:82:7b:8e: ec:47:c7:10:f9:0c:0b:c5:b4:d3:36:10:73:86:0b: 0d:77:f5:6a:4e:79:e4:14:a3:18:d7:0a:ff:12:a7: d9:ff:0a:f8:53:bc:25:a5:bc:e0:4d:4c:ed:e4:6d: 15:0b:9f:6a:f8:31:58:c3:e2:5d:6e:66:a0:64:7f: b0:ec:a0:1a:4b:ef:fd:02:10:e0:03:f9:80:83:ec: c3:1d:81:68:9e:1b:bb:aa:6a:78:ba:07:6a:e2:41: 4f:69:a8:f5:d0:22:2f:c0:ac:39:49:22:4b:34:6e: 4a:df:9b:1e:2e:fa:06:78:56:a6:a8:ee:f0:f4:70: 9e:8b:97:78:46:9e:7f:c9:93:2f:62:fd:9a:a2:1d: ba:65:fd:8c:3f:a5:75:ab:30:04:27:92:9b:3f:8a: 5d:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:EA:6E:D5:2F:9B:C2:A2:0D:0F:4B:CC:27:64:D8:C6:EB:00:9D:62 X509v3 Authority Key Identifier: keyid:29:D1:6C:98:DB:3D:5B:F6:4B:6B:92:04:C0:96:00:86:0C:D2:94:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:fb:3c:c6:0c:d9:07:6d:81:d3:f5:9e:6b:1d:d7:d2:99:a5: 74:b5:5d:fa:ba:9f:84:ee:c2:81:f4:52:67:06:7e:bb:04:bc: 19:0c:37:07:55:d1:3b:05:28:33:ce:00:b1:b6:94:7e:50:d3: cf:2d:1b:52:42:5f:f9:fb:49:48:95:8d:0d:d8:ef:ac:c0:c7: 5d:34:d0:75:6c:f1:8d:34:84:7b:15:a8:a5:03:af:16:49:d3: ba:7c:fe:79:05:f7:d1:3f:a1:96:52:a4:09:6a:37:01:c7:1e: 7a:ab:ef:ba:c4:a1:e1:b4:0c:c3:4c:5b:a0:dd:e8:75:1b:41: 6a:2f:99:15:df:b2:1f:28:49:cc:47:72:31:4a:82:6d:4d:53: 43:f1:43:f2:f9:54:a4:3a:7d:5a:5b:76:e6:3c:88:ff:45:1a: 8b:75:ac:5e:18:dd:48:c1:44:01:92:92:d8:74:72:0c:52:5b: 0e:b0:69:7b:f5:91:38:42:d0:ca:9e:33:e1:7b:b4:6e:36:41: 8d:5d:6e:95:8d:85:45:ab:81:d7:68:24:5d:6e:20:5b:94:75: 06:55:16:eb:e0:9a:8b:19:e0:dc:c5:4b:5a:a8:07:ed:42:1c: d6:20:29:4a:32:87:20:72:23:32:cc:54:e0:23:f7:19:26:45: ad:38:ff:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICESkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjAyMkYxMTAvBgNVBAUTKDI5RDE2Qzk4REIzRDVCRjY0QjZCOTIwNEMwOTYwMDg2 MENEMjk0NTIwHhcNMjUxMjA0MTYzNjUxWhcNMjUxMjExMTYzNjUxWjAYMRYwFAYD VQQDEw02OTMxYjhhMy1lYmVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4rq+FWHpsTrlymJvOSWmmBljbsXcBGSljYJYzGINsZf+bq+mXxetWPdNVr60 L1CHzi7rgxmiMJAFCAPacvjk4z2ttWdlmcOuIMrD4pQmvSJg+2EeYvwIf8EtBwq0 ZRxVr+qoTMeCe47sR8cQ+QwLxbTTNhBzhgsNd/VqTnnkFKMY1wr/EqfZ/wr4U7wl pbzgTUzt5G0VC59q+DFYw+JdbmagZH+w7KAaS+/9AhDgA/mAg+zDHYFonhu7qmp4 ugdq4kFPaaj10CIvwKw5SSJLNG5K35seLvoGeFamqO7w9HCei5d4Rp5/yZMvYv2a oh26Zf2MP6V1qzAEJ5KbP4pdpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL3qbtUv m8KiDQ9LzCdk2MbrAJ1iMB8GA1UdIwQYMBaAFCnRbJjbPVv2S2uSBMCWAIYM0pRS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDIyRi85RUM3QUZCNEFB N0QxMUU4ODYxNDQ1MjRDNEY5QUUwMi9LZEZzbU5zOVdfWkxhNUlFd0pZQWhnelNs RkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tkRnNtTnM5V19aTGE1SUV3SllBaGd6U2xGSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDIyRi85RUM3QUZCNEFBN0QxMUU4ODYxNDQ1MjRDNEY5QUUwMi9LZEZzbU5zOVdf WkxhNUlFd0pZQWhnelNsRkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBG+zzGDNkHbYHT9Z5rHdfSmaV0tV36up+E7sKB9FJnBn67BLwZDDcH VdE7BSgzzgCxtpR+UNPPLRtSQl/5+0lIlY0N2O+swMddNNB1bPGNNIR7FailA68W SdO6fP55BffRP6GWUqQJajcBxx56q++6xKHhtAzDTFug3eh1G0FqL5kV37IfKEnM R3IxSoJtTVND8UPy+VSkOn1aW3bmPIj/RRqLdaxeGN1IwUQBkpLYdHIMUlsOsGl7 9ZE4QtDKnjPhe7RuNkGNXW6VjYVFq4HXaCRdbiBblHUGVRbr4JqLGeDcxUtaqAft QhzWIClKMocgciMyzFTgI/cZJkWtOP+/ -----END CERTIFICATE-----Generated at Sat Dec 6 16:14:50 2025 by rpki-client