This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9171927/FD8B22B0BC2F11EDA8F7653EC4F9AE02/KmnWmfE8BBv9o9qlfiH_qzxT7V8.mft File: KmnWmfE8BBv9o9qlfiH_qzxT7V8.mft (raw, json) Hash identifier: XD1JcxpQ7LA1DwcedWNguT9UZW4oj2FNSq67odM6IN0= Subject key identifier: 95:90:8C:49:BD:A3:E8:29:3C:19:41:6A:CD:E4:91:82:CC:6E:DC:B0 Authority key identifier: 2A:69:D6:99:F1:3C:04:1B:FD:A3:DA:A5:7E:21:FF:AB:3C:53:ED:5F Certificate issuer: /CN=A9171927/serialNumber=2A69D699F13C041BFDA3DAA57E21FFAB3C53ED5F Certificate serial: 0220 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmnWmfE8BBv9o9qlfiH_qzxT7V8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171927/FD8B22B0BC2F11EDA8F7653EC4F9AE02/KmnWmfE8BBv9o9qlfiH_qzxT7V8.mft Manifest number: 0213 Signing time: Fri 19 Dec 2025 01:31:48 +0000 Manifest this update: Fri 19 Dec 2025 01:31:48 +0000 Manifest next update: Fri 26 Dec 2025 01:31:48 +0000 Files and hashes: 1: KmnWmfE8BBv9o9qlfiH_qzxT7V8.crl (hash: /y94cEzxli41l2lgAo5hn6Wt7LtDXcfUCNtftKOgcy0=) 2: FD41FC5EEA6811EDBE3EE23CC4F9AE02.roa (hash: fXQJZHONbxHqV0/XhxdMVhavc2gV0JF7ZuHG+631NZg=) 3: 6AA5FC16905211EE840DED1DC4F9AE02.roa (hash: 7Dqx51HWm5FHrY3yqH5za3wPDKkHA22oTIJYfgHsb38=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171927/FD8B22B0BC2F11EDA8F7653EC4F9AE02/KmnWmfE8BBv9o9qlfiH_qzxT7V8.crl rsync://rpki.apnic.net/member_repository/A9171927/FD8B22B0BC2F11EDA8F7653EC4F9AE02/KmnWmfE8BBv9o9qlfiH_qzxT7V8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmnWmfE8BBv9o9qlfiH_qzxT7V8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 01:31:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 544 (0x220) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171927, serialNumber=2A69D699F13C041BFDA3DAA57E21FFAB3C53ED5F Validity Not Before: Dec 19 01:31:48 2025 GMT Not After : Dec 26 01:31:48 2025 GMT Subject: CN=6944ab04-9430 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:83:00:e8:7a:3a:eb:51:8d:9c:c7:83:03:ab: 0c:0a:2c:2c:f8:7b:96:ba:c5:5b:0f:5b:03:ea:97: 52:bc:3d:7a:96:d4:d2:17:bb:0b:11:6d:a2:c6:4d: 8b:02:30:61:5b:95:fb:1f:4f:a2:99:7a:77:d0:3a: e8:9f:92:7e:92:f4:a7:1d:ec:23:f9:05:99:2f:c1: bf:b0:75:b6:0b:13:a6:f6:ca:c3:f5:ac:86:c3:a4: 8c:fe:ee:7c:7d:bf:5b:45:19:2c:52:52:aa:35:8d: 7b:1c:15:12:31:e8:ef:a4:3c:b6:18:37:bb:53:cc: 18:02:d2:18:ff:13:c0:f6:7e:c2:45:0f:64:2b:84: 3d:f2:29:46:8c:50:ba:fd:50:7d:d8:ba:37:e8:98: a4:fd:0e:ff:3d:96:56:73:0c:1f:50:bf:17:2d:1b: 69:c3:b1:a7:a4:3f:20:c6:b3:3d:4e:fd:e9:63:36: 02:f8:98:3b:bc:81:99:1b:9c:27:a2:9a:93:99:4e: 83:11:86:ba:21:79:01:f9:fb:b0:9b:f6:80:fb:8f: 05:af:d9:d6:8b:dd:2f:2a:92:3a:d9:99:65:55:6e: 6d:a4:57:08:c9:7e:73:7d:64:48:41:3b:e9:4b:fa: dd:cb:cc:08:95:39:fa:0e:17:d0:af:39:71:79:9a: ba:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:90:8C:49:BD:A3:E8:29:3C:19:41:6A:CD:E4:91:82:CC:6E:DC:B0 X509v3 Authority Key Identifier: keyid:2A:69:D6:99:F1:3C:04:1B:FD:A3:DA:A5:7E:21:FF:AB:3C:53:ED:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171927/FD8B22B0BC2F11EDA8F7653EC4F9AE02/KmnWmfE8BBv9o9qlfiH_qzxT7V8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmnWmfE8BBv9o9qlfiH_qzxT7V8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171927/FD8B22B0BC2F11EDA8F7653EC4F9AE02/KmnWmfE8BBv9o9qlfiH_qzxT7V8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:73:d5:fb:01:c7:9d:3f:82:d6:68:96:bb:45:5a:92:a5:e7: 1f:7b:fc:68:6d:b6:ef:c5:98:84:1a:96:27:c9:ee:b1:f7:04: fc:76:93:9d:f1:70:64:ab:f9:8d:21:a1:5c:b0:2e:5f:af:34: 67:8f:d2:4f:19:e9:9f:8c:11:9f:2f:1f:0c:92:2b:c4:5f:90: 48:1e:88:c6:2c:4b:0a:16:1d:3d:99:03:7e:ac:4c:6a:76:5a: 0a:69:94:8e:26:ee:e5:91:26:e8:9c:5e:54:94:70:3d:80:92: 64:14:54:9f:fd:2a:98:44:43:89:44:35:d9:c6:30:1a:a4:f4: fb:d3:de:87:36:8d:83:4f:a6:de:15:aa:a9:e4:66:f1:2e:b5: d7:19:0e:54:24:c5:08:76:08:ed:09:19:f9:c5:86:cb:ee:f4: 49:32:81:47:8d:4b:e7:1b:8c:55:3f:dd:e1:ab:d4:51:1e:bf: 82:f8:a8:28:aa:7f:68:62:b2:69:95:b4:ee:3f:79:68:e5:5c: b8:e4:4a:a9:c2:02:71:f3:83:86:5d:94:5c:61:d7:a9:db:1f: 70:e7:eb:0e:dc:1e:23:e8:10:31:97:d5:4b:bd:bf:4c:10:6f: 73:6c:61:2f:04:ea:f8:c7:08:a4:03:b5:68:17:61:08:6a:70: 17:2a:43:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE5MjcxMTAvBgNVBAUTKDJBNjlENjk5RjEzQzA0MUJGREEzREFBNTdFMjFGRkFC M0M1M0VENUYwHhcNMjUxMjE5MDEzMTQ4WhcNMjUxMjI2MDEzMTQ4WjAYMRYwFAYD VQQDDA02OTQ0YWIwNC05NDMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuIMA6Ho661GNnMeDA6sMCiws+HuWusVbD1sD6pdSvD16ltTSF7sLEW2ixk2L AjBhW5X7H0+imXp30Dron5J+kvSnHewj+QWZL8G/sHW2CxOm9srD9ayGw6SM/u58 fb9bRRksUlKqNY17HBUSMejvpDy2GDe7U8wYAtIY/xPA9n7CRQ9kK4Q98ilGjFC6 /VB92Lo36Jik/Q7/PZZWcwwfUL8XLRtpw7GnpD8gxrM9Tv3pYzYC+Jg7vIGZG5wn opqTmU6DEYa6IXkB+fuwm/aA+48Fr9nWi90vKpI62ZllVW5tpFcIyX5zfWRIQTvp S/rdy8wIlTn6DhfQrzlxeZq6iQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJWQjEm9 o+gpPBlBas3kkYLMbtywMB8GA1UdIwQYMBaAFCpp1pnxPAQb/aPapX4h/6s8U+1f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTkyNy9GRDhCMjJCMEJD MkYxMUVEQThGNzY1M0VDNEY5QUUwMi9LbW5XbWZFOEJCdjlvOXFsZmlIX3F6eFQ3 VjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ttbldtZkU4QkJ2OW85cWxmaUhfcXp4VDdWOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTkyNy9GRDhCMjJCMEJDMkYxMUVEQThGNzY1M0VDNEY5QUUwMi9LbW5XbWZFOEJC djlvOXFsZmlIX3F6eFQ3VjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQChc9X7AcedP4LWaJa7RVqSpecfe/xobbbvxZiEGpYnye6x9wT8dpOd 8XBkq/mNIaFcsC5frzRnj9JPGemfjBGfLx8MkivEX5BIHojGLEsKFh09mQN+rExq dloKaZSOJu7lkSbonF5UlHA9gJJkFFSf/SqYREOJRDXZxjAapPT7096HNo2DT6be Faqp5GbxLrXXGQ5UJMUIdgjtCRn5xYbL7vRJMoFHjUvnG4xVP93hq9RRHr+C+Kgo qn9oYrJplbTuP3lo5Vy45EqpwgJx84OGXZRcYdep2x9w5+sO3B4j6BAxl9VLvb9M EG9zbGEvBOr4xwikA7VoF2EIanAXKkNY -----END CERTIFICATE-----Generated at Fri Dec 19 06:20:20 2025 by rpki-client