This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.mft File: _-KgNynzLTIiepnJJRWMgspUuVc.mft (raw, json) Hash identifier: 8u4vAD8JKNz/R4cbRuvnIXuW+xgn5kRooyMBTrcpEjQ= Subject key identifier: 67:A0:9F:F8:29:11:B4:34:9A:28:AF:6D:6A:D1:26:33:6C:D2:89:F5 Authority key identifier: FF:E2:A0:37:29:F3:2D:32:22:7A:99:C9:25:15:8C:82:CA:54:B9:57 Certificate issuer: /CN=A917225D/serialNumber=FFE2A03729F32D32227A99C925158C82CA54B957 Certificate serial: 3513 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_-KgNynzLTIiepnJJRWMgspUuVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.mft Manifest number: 3501 Signing time: Sat 06 Dec 2025 14:22:26 +0000 Manifest this update: Sat 06 Dec 2025 14:22:26 +0000 Manifest next update: Sat 13 Dec 2025 14:22:26 +0000 Files and hashes: 1: _-KgNynzLTIiepnJJRWMgspUuVc.crl (hash: YtzDWU8sirUdxkY7zA+LsO8JHTsa1eYioTFT8a4ATnU=) 2: A0121BD4871711EA924C6626C4F9AE02.roa (hash: TsmW3wUGCspNY1UcKJcNnUuuDH7qDphY3UYVmmAdbDA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.crl rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_-KgNynzLTIiepnJJRWMgspUuVc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 14:22:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13587 (0x3513) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917225D, serialNumber=FFE2A03729F32D32227A99C925158C82CA54B957 Validity Not Before: Dec 6 14:22:26 2025 GMT Not After : Dec 13 14:22:26 2025 GMT Subject: CN=69343c22-3323 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:5d:b8:bf:5c:38:75:8d:9d:2c:70:ba:3e:41: 4a:5d:a5:3d:4f:ae:ae:84:19:53:80:e1:44:9c:48: 09:fa:5b:d1:e0:e8:6b:08:29:d7:6b:be:94:e8:e4: e5:48:80:4c:9a:18:0a:03:cd:eb:5e:6b:58:86:52: 3a:a0:b7:14:11:63:3c:23:fd:69:0c:b8:52:87:01: 36:e0:ad:71:8d:c4:db:43:73:c5:ca:dd:93:80:de: f3:47:0e:c8:5c:fc:9a:f8:b9:43:37:c6:79:9b:02: 5e:94:fd:eb:ac:bd:a4:64:be:27:03:59:bd:d0:ee: 6e:c9:66:cf:db:99:fe:b4:31:8b:a3:7c:40:09:48: 87:16:5b:90:ff:a0:21:87:c7:00:27:e6:d2:df:54: 81:7d:55:7f:17:79:e2:45:64:95:f5:7e:b3:4e:40: ad:8b:83:98:30:57:cf:77:03:dc:2e:f6:05:88:83: 15:67:7e:c1:96:c8:7a:ca:09:9d:16:20:de:2c:f0: dd:fe:2b:0d:06:93:bd:83:b0:01:df:ed:f5:2e:07: e4:e2:60:e3:78:cd:cf:ac:02:42:81:df:64:79:aa: e0:16:3a:3f:c2:e8:96:1d:6c:d5:b2:8b:f3:a7:f5: 88:c4:6b:8a:c8:06:a4:14:89:6e:8b:fe:ff:0b:d9: d8:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:A0:9F:F8:29:11:B4:34:9A:28:AF:6D:6A:D1:26:33:6C:D2:89:F5 X509v3 Authority Key Identifier: keyid:FF:E2:A0:37:29:F3:2D:32:22:7A:99:C9:25:15:8C:82:CA:54:B9:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_-KgNynzLTIiepnJJRWMgspUuVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:3e:7f:21:78:03:0d:1d:f0:9a:c6:fa:01:b8:7d:f8:bc:a7: 3d:ba:91:73:d1:fc:7d:82:eb:76:da:66:2a:d4:32:6c:20:9f: 22:0b:94:4e:5f:b8:2a:60:13:1d:c1:ad:7d:a2:10:4b:9f:a3: 00:92:64:42:1c:1a:6e:a5:60:66:af:77:86:4f:91:70:0b:36: 42:e6:1d:2d:87:2c:75:aa:52:df:3e:ca:46:c2:1d:8a:85:c8: da:95:76:88:29:19:e6:2a:0f:8d:cd:86:94:c2:b6:0f:41:5f: fc:b2:8b:be:0c:ce:36:de:58:04:3d:17:b3:60:79:80:ce:dc: cf:c2:d1:3d:4f:5e:87:5b:bc:a8:7b:c6:9e:ac:44:45:3b:ce: ed:f5:2a:72:d5:0a:24:a8:30:c3:8e:f8:45:d7:cf:fa:26:09: 1c:90:bc:0e:dc:b1:58:ab:9d:bf:e8:6b:6b:2a:ac:08:47:c6: d7:c1:cb:b0:26:57:85:5d:7f:a0:bb:c3:5a:19:f0:55:e0:9a: cf:8f:a3:74:c1:9b:02:6c:02:d3:96:53:2c:07:3b:a2:21:3c: 91:51:f0:37:5c:ea:a2:4c:38:d8:86:62:05:0d:1a:2c:dc:d5: 2c:3d:04:fc:02:09:3d:52:18:a4:27:5b:3f:98:63:15:24:c2: e1:16:5f:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNRMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzIyNUQxMTAvBgNVBAUTKEZGRTJBMDM3MjlGMzJEMzIyMjdBOTlDOTI1MTU4Qzgy Q0E1NEI5NTcwHhcNMjUxMjA2MTQyMjI2WhcNMjUxMjEzMTQyMjI2WjAYMRYwFAYD VQQDEw02OTM0M2MyMi0zMzIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3124v1w4dY2dLHC6PkFKXaU9T66uhBlTgOFEnEgJ+lvR4OhrCCnXa76U6OTl SIBMmhgKA83rXmtYhlI6oLcUEWM8I/1pDLhShwE24K1xjcTbQ3PFyt2TgN7zRw7I XPya+LlDN8Z5mwJelP3rrL2kZL4nA1m90O5uyWbP25n+tDGLo3xACUiHFluQ/6Ah h8cAJ+bS31SBfVV/F3niRWSV9X6zTkCti4OYMFfPdwPcLvYFiIMVZ37Blsh6ygmd FiDeLPDd/isNBpO9g7AB3+31Lgfk4mDjeM3PrAJCgd9keargFjo/wuiWHWzVsovz p/WIxGuKyAakFIlui/7/C9nYkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGegn/gp EbQ0miivbWrRJjNs0on1MB8GA1UdIwQYMBaAFP/ioDcp8y0yInqZySUVjILKVLlX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MjI1RC8xRjU1MDgzMDFE ODQxMUUyOTE3QkQwRDkwOEIwMkNEMi9fLUtnTnluekxUSWllcG5KSlJXTWdzcFV1 VmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL18tS2dOeW56TFRJaWVwbkpKUldNZ3NwVXVWYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MjI1RC8xRjU1MDgzMDFEODQxMUUyOTE3QkQwRDkwOEIwMkNEMi9fLUtnTnluekxU SWllcG5KSlJXTWdzcFV1VmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJPn8heAMNHfCaxvoBuH34vKc9upFz0fx9gut22mYq1DJsIJ8iC5RO X7gqYBMdwa19ohBLn6MAkmRCHBpupWBmr3eGT5FwCzZC5h0thyx1qlLfPspGwh2K hcjalXaIKRnmKg+NzYaUwrYPQV/8sou+DM423lgEPRezYHmAztzPwtE9T16HW7yo e8aerERFO87t9Spy1QokqDDDjvhF18/6JgkckLwO3LFYq52/6GtrKqwIR8bXwcuw JleFXX+gu8NaGfBV4JrPj6N0wZsCbALTllMsBzuiITyRUfA3XOqiTDjYhmIFDRos 3NUsPQT8Agk9UhikJ1s/mGMVJMLhFl+a -----END CERTIFICATE-----Generated at Sun Dec 7 05:31:15 2025 by rpki-client