This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft File: KFO9oWOMWZqEwwlTEOab_SYKqXg.mft (raw, json) Hash identifier: 9WNc3ePyCew9pRATkxwDifjg/wJuAXHfcTFpnhgbAWU= Subject key identifier: 7E:00:2E:FE:76:57:23:2A:16:51:77:0A:EF:8B:45:27:E8:47:A8:D6 Authority key identifier: 28:53:BD:A1:63:8C:59:9A:84:C3:09:53:10:E6:9B:FD:26:0A:A9:78 Certificate issuer: /CN=A916557B/serialNumber=2853BDA1638C599A84C3095310E69BFD260AA978 Certificate serial: 0463 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft Manifest number: 03F4 Signing time: Thu 04 Dec 2025 23:11:11 +0000 Manifest this update: Thu 04 Dec 2025 23:11:11 +0000 Manifest next update: Thu 11 Dec 2025 23:11:11 +0000 Files and hashes: 1: KFO9oWOMWZqEwwlTEOab_SYKqXg.crl (hash: oe3CbM31zUSQmRWL9JnOHsRrDysj2K1dYMMgaDMHHII=) 2: F7D72D3E23E211EFA47D6C68C4F9AE02.roa (hash: e+M4adDsVVtiBfslPnOBJOSyjq+6gRCvAtKsdhjHrg8=) 3: 57A7394C4B0E11EE8682CD4CC4F9AE02.roa (hash: j6YHhVIdNkPdVV6kIT6wpzB9Muw42P+/9W2kK5xhqXo=) 4: 04AB651469C211EFA06F8562C4F9AE02.roa (hash: YV6zDgOh2QMJi+TbqoW1Wt5O6E3eSYJDwfMJ3aJ2a10=) 5: F1930FBAEFE011ED81AE706DC4F9AE02.roa (hash: NP4Z7Tt6CY/HSXNtbW7GXldzu9mQG/LCVCiq7fXDLJ8=) 6: 2F24736869C111EF92B54060C4F9AE02.roa (hash: 3Y7RO9a921W0m0+KGz0aqJiJml6RthEQD034mrQPM14=) 7: 45BC5258C6F711ED9BD6E476C4F9AE02.roa (hash: wASZh3+a4jtcXdGHzHa3qDgrJcrhUIDBhkIcjHP+VMU=) 8: A336FE62609111EFB751B771C4F9AE02.roa (hash: 52bkXRq+LzImcNciZMVc/RbkFDyxds03UT8vcrTtvWc=) 9: 02734B6624D611F0B50DE20BC4F9AE02.roa (hash: kMVjaoh/nl+HaXtTqo7eTliBreBhvFCgfQya7sUAs84=) 10: 1F89C5C22CB511F08A1A9242C4F9AE02.roa (hash: baAQ8jjbDnd+yIywZELKI/f+fLzoC+yEEVRka25c/bE=) 11: 07D38A6669C011EF90EADF5CC4F9AE02.roa (hash: MZXl+TpE4PKXHu+CHp6bbz53wt0k4JzbyBQBboqTIP4=) 12: 14000EECD46811EEBDB9C07CC4F9AE02.roa (hash: riBHCo9Gmq1D+0u/pG7iCc4xDo8oVc7na3FG+hNveUk=) 13: 79AA61622C8711EFBDD6F672C4F9AE02.roa (hash: 3biVBRmslEYYBK7sgaVOapllwelbsd+exeLENbjHwjc=) 14: F83786F4030011F0984B974FC4F9AE02.roa (hash: dZbjlWTe8fWMRR6qgpL+ZoRL9VFsmU1Nz8661bmlCro=) 15: 1DBF3F2E69BF11EF9B52775AC4F9AE02.roa (hash: oEcJmw9GBlLPpcX10UQcg9xp3RCQZJ+XOY7mrRgn4Bk=) 16: 458AC21A684111EEA6632877C4F9AE02.roa (hash: rQlxlSsLfUnZ/IhD06ff6PZ8dH3kW3qdosnvLtL69I4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.crl rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 23:11:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1123 (0x463) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916557B, serialNumber=2853BDA1638C599A84C3095310E69BFD260AA978 Validity Not Before: Dec 4 23:11:11 2025 GMT Not After : Dec 11 23:11:11 2025 GMT Subject: CN=6932150f-79b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:fa:3d:01:e7:ef:99:db:1f:f4:0b:49:22:83: 33:b2:4d:8a:10:f2:ea:ae:6a:e2:9b:a6:66:88:01: c9:4f:41:b5:0e:a9:94:e8:44:b4:8e:06:66:8b:40: 44:d3:5f:4f:35:9b:f1:4e:21:94:ec:1c:34:58:63: 01:f9:53:af:13:32:c7:54:f9:c0:b1:7f:18:d5:e6: db:89:ae:4e:77:20:e1:21:cd:92:30:f1:65:68:cd: d7:fe:cb:6c:6f:c8:88:83:09:02:76:69:55:56:4a: fe:c6:83:19:54:9a:5d:ec:00:37:7c:37:96:72:69: 74:58:38:28:7b:47:30:14:ac:5a:e5:a3:a4:07:fd: 16:c2:2a:a1:ba:00:72:c9:a8:ab:58:cc:a5:d1:98: 1f:39:55:ee:2a:9e:1a:e3:77:c7:bd:2b:be:3d:80: 69:32:71:38:98:02:b3:25:5e:20:b3:8d:8d:9c:23: 54:e7:d3:aa:56:45:5c:4e:1f:a6:61:9d:3f:6d:8f: 5c:28:92:51:60:29:7c:d1:2c:5e:5d:c5:81:22:9e: b4:a7:38:af:66:ee:b3:6a:c1:6b:51:01:7c:0f:24: c7:75:7b:41:ff:93:94:ba:45:2e:66:4a:9b:12:9c: f8:14:8f:9b:e7:9d:0c:73:50:12:c5:46:d8:84:13: fe:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:00:2E:FE:76:57:23:2A:16:51:77:0A:EF:8B:45:27:E8:47:A8:D6 X509v3 Authority Key Identifier: keyid:28:53:BD:A1:63:8C:59:9A:84:C3:09:53:10:E6:9B:FD:26:0A:A9:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:0e:d4:3f:ba:ab:3f:7a:4e:33:cc:42:ec:47:d1:3a:91:f4: 91:ba:02:64:56:0d:6a:b4:0f:a8:a3:16:dc:3e:c1:13:7b:b8: c2:90:2c:1f:86:b9:41:7d:b0:4c:65:dd:2a:50:02:45:13:04: b8:45:f2:a8:59:a0:5a:8a:22:1b:97:16:da:19:7c:0c:46:4e: 1c:3e:8a:5e:78:c5:92:c6:6d:85:d3:33:28:90:be:58:b0:e7: a6:34:e9:f0:51:65:10:3d:d0:6d:5c:7f:93:4e:a3:8e:01:20: 07:f5:97:c7:5b:b4:e8:8a:32:f1:a8:74:f9:d3:3c:0d:f1:69: 34:77:d5:85:5d:5d:47:1e:b5:48:b5:63:bf:d8:c7:bf:d8:86: 26:3b:fe:83:dc:2e:50:eb:ed:e2:4b:9d:8b:18:1d:21:84:cf: 89:b9:9e:f1:cb:8b:26:3a:e2:a8:45:35:14:85:cd:56:e0:2b: 9d:b5:6e:47:55:70:6b:e5:a1:45:8c:fc:24:7e:4c:c4:52:ef: 84:5b:7d:bc:88:cc:2e:f8:72:c9:a1:ec:4b:a8:54:2c:1b:0a: ca:52:3e:76:08:ea:80:f0:eb:4f:2d:a4:f4:9e:be:7e:25:86: ce:bd:02:f6:53:61:07:ea:eb:6d:32:55:0e:2c:eb:73:52:21: 4e:ce:aa:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBGMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU1N0IxMTAvBgNVBAUTKDI4NTNCREExNjM4QzU5OUE4NEMzMDk1MzEwRTY5QkZE MjYwQUE5NzgwHhcNMjUxMjA0MjMxMTExWhcNMjUxMjExMjMxMTExWjAYMRYwFAYD VQQDEw02OTMyMTUwZi03OWI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7fo9Aefvmdsf9AtJIoMzsk2KEPLqrmrim6ZmiAHJT0G1DqmU6ES0jgZmi0BE 019PNZvxTiGU7Bw0WGMB+VOvEzLHVPnAsX8Y1ebbia5OdyDhIc2SMPFlaM3X/sts b8iIgwkCdmlVVkr+xoMZVJpd7AA3fDeWcml0WDgoe0cwFKxa5aOkB/0WwiqhugBy yairWMyl0ZgfOVXuKp4a43fHvSu+PYBpMnE4mAKzJV4gs42NnCNU59OqVkVcTh+m YZ0/bY9cKJJRYCl80SxeXcWBIp60pzivZu6zasFrUQF8DyTHdXtB/5OUukUuZkqb Epz4FI+b550Mc1ASxUbYhBP+4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH4ALv52 VyMqFlF3Cu+LRSfoR6jWMB8GA1UdIwQYMBaAFChTvaFjjFmahMMJUxDmm/0mCql4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTU3Qi84REE3MjY0MEMx RkExMUVDQjMwRUUyMUFDNEY5QUUwMi9LRk85b1dPTVdacUV3d2xURU9hYl9TWUtx WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tGTzlvV09NV1pxRXd3bFRFT2FiX1NZS3FYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTU3Qi84REE3MjY0MEMxRkExMUVDQjMwRUUyMUFDNEY5QUUwMi9LRk85b1dPTVda cUV3d2xURU9hYl9TWUtxWGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBNDtQ/uqs/ek4zzELsR9E6kfSRugJkVg1qtA+ooxbcPsETe7jCkCwf hrlBfbBMZd0qUAJFEwS4RfKoWaBaiiIblxbaGXwMRk4cPopeeMWSxm2F0zMokL5Y sOemNOnwUWUQPdBtXH+TTqOOASAH9ZfHW7ToijLxqHT50zwN8Wk0d9WFXV1HHrVI tWO/2Me/2IYmO/6D3C5Q6+3iS52LGB0hhM+JuZ7xy4smOuKoRTUUhc1W4CudtW5H VXBr5aFFjPwkfkzEUu+EW328iMwu+HLJoexLqFQsGwrKUj52COqA8OtPLaT0nr5+ JYbOvQL2U2EH6uttMlUOLOtzUiFOzqov -----END CERTIFICATE-----Generated at Sat Dec 6 12:21:37 2025 by rpki-client