This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9180174/79D6662A168911EC8162580CC4F9AE02/KN1yVzxbraKIuDKzmB_0yYsvjFE.mft File: KN1yVzxbraKIuDKzmB_0yYsvjFE.mft (raw, json) Hash identifier: 43p2c0EHTQH77/W95wG/mfHfntTRKH/2CfomvxUHh0Y= Subject key identifier: BA:65:2E:FD:FD:49:DA:B7:4D:5C:E6:B2:AD:64:08:62:52:EE:8B:26 Authority key identifier: 28:DD:72:57:3C:5B:AD:A2:88:B8:32:B3:98:1F:F4:C9:8B:2F:8C:51 Certificate issuer: /CN=A9180174/serialNumber=28DD72573C5BADA288B832B3981FF4C98B2F8C51 Certificate serial: 0558 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KN1yVzxbraKIuDKzmB_0yYsvjFE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9180174/79D6662A168911EC8162580CC4F9AE02/KN1yVzxbraKIuDKzmB_0yYsvjFE.mft Manifest number: 0551 Signing time: Thu 04 Dec 2025 22:02:30 +0000 Manifest this update: Thu 04 Dec 2025 22:02:30 +0000 Manifest next update: Thu 11 Dec 2025 22:02:30 +0000 Files and hashes: 1: KN1yVzxbraKIuDKzmB_0yYsvjFE.crl (hash: M/VHMUhFZdR3oB04BXWHP5xRBrZ2fwGmEnyUer1vbM0=) 2: F6750B60168D11EC89C9CB5DC4F9AE02.roa (hash: L229HAjJw9So9Rlreie2EkxQHxnxmVW3pDOMuafdlQ8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9180174/79D6662A168911EC8162580CC4F9AE02/KN1yVzxbraKIuDKzmB_0yYsvjFE.crl rsync://rpki.apnic.net/member_repository/A9180174/79D6662A168911EC8162580CC4F9AE02/KN1yVzxbraKIuDKzmB_0yYsvjFE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KN1yVzxbraKIuDKzmB_0yYsvjFE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 22:02:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1368 (0x558) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9180174, serialNumber=28DD72573C5BADA288B832B3981FF4C98B2F8C51 Validity Not Before: Dec 4 22:02:30 2025 GMT Not After : Dec 11 22:02:30 2025 GMT Subject: CN=693204f6-df6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:11:44:61:e2:56:e5:8d:77:2f:d9:b4:fa:b7: 4b:b6:fc:74:f6:3f:03:9c:c9:1d:f4:26:77:f6:f7: af:83:4b:c3:2b:16:f5:7c:dd:a7:8c:97:1c:87:b5: a6:f0:eb:89:6c:2b:b0:3d:4d:cb:c3:87:79:86:bb: a5:f3:28:91:b5:b8:d7:c5:7e:26:b0:1a:55:5a:19: c9:29:50:9c:2e:64:ad:71:e1:71:fd:53:bc:dc:af: 7e:53:0a:52:39:ae:80:65:18:a6:e5:4e:9c:0a:12: f6:e8:cd:77:af:15:b0:cd:2e:ee:a0:95:bc:9c:ec: 87:76:87:0b:09:cf:01:09:4a:f2:fd:8d:05:f8:73: dc:d1:9e:7f:26:c5:f7:9c:f2:47:04:26:92:b7:a2: 42:2a:bd:d7:6b:de:4c:7b:30:3f:f9:de:89:76:8c: e7:c3:9c:78:a7:79:9c:8d:77:22:12:01:f1:20:f1: aa:35:a8:d4:81:e9:57:00:71:a8:65:01:6c:77:ef: 44:d2:20:00:e1:9a:57:60:e9:3e:94:85:f3:0e:c3: 0c:27:fe:69:23:33:49:26:bd:cb:b6:63:d0:af:ec: a2:aa:65:f2:49:d6:0d:e9:e8:fa:a7:90:fd:25:c1: 24:2d:53:8e:bc:66:30:df:d7:6a:a2:35:a7:46:b6: 15:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:65:2E:FD:FD:49:DA:B7:4D:5C:E6:B2:AD:64:08:62:52:EE:8B:26 X509v3 Authority Key Identifier: keyid:28:DD:72:57:3C:5B:AD:A2:88:B8:32:B3:98:1F:F4:C9:8B:2F:8C:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9180174/79D6662A168911EC8162580CC4F9AE02/KN1yVzxbraKIuDKzmB_0yYsvjFE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KN1yVzxbraKIuDKzmB_0yYsvjFE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9180174/79D6662A168911EC8162580CC4F9AE02/KN1yVzxbraKIuDKzmB_0yYsvjFE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:f8:0c:72:be:94:b1:ab:49:d0:e6:56:ca:b2:b8:53:84:7a: 75:9d:fb:5c:d9:9f:e8:7f:99:89:12:61:60:d8:c8:6f:48:aa: c6:fc:15:dd:22:8c:d5:35:39:be:99:0e:16:86:92:2d:4e:e4: 08:a4:39:81:22:1c:27:03:11:9d:cd:3b:d6:3d:b0:81:84:55: 18:a5:c2:91:05:29:2a:3e:3d:97:2a:1c:3f:4e:44:3c:c0:57: 80:c1:9c:c3:bf:a6:2c:a4:bc:37:f0:bb:d1:44:fc:e1:9c:62: 81:a2:a0:c4:f1:ea:a8:ea:ab:fc:67:54:95:1e:19:70:40:a5: 9b:4c:ac:ed:b9:e7:31:2f:cc:25:7e:a3:fd:d8:d0:5b:12:c8: 1c:c9:3a:5f:f7:70:c9:f4:46:f1:da:16:3f:a8:d3:af:4c:29: 09:c6:a0:c3:f5:59:7c:71:e4:87:30:ec:8b:0c:7b:63:52:24: 90:ea:cb:a7:54:ab:41:10:2d:c3:63:e1:d4:b6:80:de:da:eb: dc:f3:6c:cb:15:09:d5:f3:5c:4f:47:01:14:c5:cb:68:5c:c7: 0f:42:0e:e6:63:cd:1a:a2:a3:d6:30:ea:f0:3d:86:ee:4c:f0: 82:cc:3a:7e:87:a1:cf:95:14:c2:e4:f9:cd:a2:9d:c2:0a:71: 59:0f:67:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBVgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODAxNzQxMTAvBgNVBAUTKDI4REQ3MjU3M0M1QkFEQTI4OEI4MzJCMzk4MUZGNEM5 OEIyRjhDNTEwHhcNMjUxMjA0MjIwMjMwWhcNMjUxMjExMjIwMjMwWjAYMRYwFAYD VQQDEw02OTMyMDRmNi1kZjZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzBFEYeJW5Y13L9m0+rdLtvx09j8DnMkd9CZ39vevg0vDKxb1fN2njJcch7Wm 8OuJbCuwPU3Lw4d5hrul8yiRtbjXxX4msBpVWhnJKVCcLmStceFx/VO83K9+UwpS Oa6AZRim5U6cChL26M13rxWwzS7uoJW8nOyHdocLCc8BCUry/Y0F+HPc0Z5/JsX3 nPJHBCaSt6JCKr3Xa95MezA/+d6Jdoznw5x4p3mcjXciEgHxIPGqNajUgelXAHGo ZQFsd+9E0iAA4ZpXYOk+lIXzDsMMJ/5pIzNJJr3LtmPQr+yiqmXySdYN6ej6p5D9 JcEkLVOOvGYw39dqojWnRrYV0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLplLv39 Sdq3TVzmsq1kCGJS7osmMB8GA1UdIwQYMBaAFCjdclc8W62iiLgys5gf9MmLL4xR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDE3NC83OUQ2NjYyQTE2 ODkxMUVDODE2MjU4MENDNEY5QUUwMi9LTjF5Vnp4YnJhS0l1REt6bUJfMHlZc3Zq RkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tOMXlWenhicmFLSXVES3ptQl8weVlzdmpGRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MDE3NC83OUQ2NjYyQTE2ODkxMUVDODE2MjU4MENDNEY5QUUwMi9LTjF5Vnp4YnJh S0l1REt6bUJfMHlZc3ZqRkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBp+AxyvpSxq0nQ5lbKsrhThHp1nftc2Z/of5mJEmFg2MhvSKrG/BXd IozVNTm+mQ4WhpItTuQIpDmBIhwnAxGdzTvWPbCBhFUYpcKRBSkqPj2XKhw/TkQ8 wFeAwZzDv6YspLw38LvRRPzhnGKBoqDE8eqo6qv8Z1SVHhlwQKWbTKztuecxL8wl fqP92NBbEsgcyTpf93DJ9Ebx2hY/qNOvTCkJxqDD9Vl8ceSHMOyLDHtjUiSQ6sun VKtBEC3DY+HUtoDe2uvc82zLFQnV81xPRwEUxctoXMcPQg7mY80aoqPWMOrwPYbu TPCCzDp+h6HPlRTC5PnNop3CCnFZD2ez -----END CERTIFICATE-----Generated at Sat Dec 6 21:04:45 2025 by rpki-client