This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918424C/ABCBEBD623D411EF9575324EC4F9AE02/KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.mft File: KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.mft (raw, json) Hash identifier: LhkluLlPfj+9tUfnp/CqDACYSLQRwuTRZwJMPUQHcAU= Subject key identifier: B4:9B:85:1B:F8:F9:B8:C1:A7:A5:E7:CA:F4:38:34:4A:A1:AF:D2:14 Authority key identifier: 2A:44:56:D1:72:B2:B8:6D:CD:A7:12:E6:61:F6:D9:F2:FF:19:20:38 Certificate issuer: /CN=A918424C/serialNumber=2A4456D172B2B86DCDA712E661F6D9F2FF192038 Certificate serial: 011A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918424C/ABCBEBD623D411EF9575324EC4F9AE02/KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.mft Manifest number: 0118 Signing time: Fri 05 Dec 2025 02:53:19 +0000 Manifest this update: Fri 05 Dec 2025 02:53:19 +0000 Manifest next update: Fri 12 Dec 2025 02:53:19 +0000 Files and hashes: 1: KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.crl (hash: UfK4KLz0LdUPm6nRe5YMu2R+w44CdmqTApGdHpOvpvY=) 2: 4394064223D511EF9AB13E4FC4F9AE02.roa (hash: GgtpbCe0DWHXE3n4d7zrRXZLNfKbReC9s/SOQ0QeSio=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918424C/ABCBEBD623D411EF9575324EC4F9AE02/KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.crl rsync://rpki.apnic.net/member_repository/A918424C/ABCBEBD623D411EF9575324EC4F9AE02/KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 02:53:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 282 (0x11a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918424C, serialNumber=2A4456D172B2B86DCDA712E661F6D9F2FF192038 Validity Not Before: Dec 5 02:53:19 2025 GMT Not After : Dec 12 02:53:19 2025 GMT Subject: CN=6932491f-dd68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:72:03:da:cb:e6:65:0c:5b:a4:4a:92:04:89: e7:ba:2e:48:3e:3c:b2:5f:f1:13:3c:02:54:f1:fe: 2d:5e:06:ad:74:d8:2a:da:cc:7b:39:57:76:be:70: c2:cd:ce:eb:49:84:78:92:96:18:63:85:f3:c7:a8: 52:8f:72:d8:7d:7a:5e:a7:ec:c4:ca:b7:9e:c5:5f: af:cf:1c:3e:0c:de:fc:ab:0a:0c:80:10:92:e7:e6: 6a:66:9f:c5:33:fe:be:be:39:b7:53:84:b2:e1:6b: 57:a9:33:1e:08:67:ae:f1:c3:07:cf:cf:3f:fb:af: 0a:c8:bc:2a:45:58:52:ea:ca:ff:c6:84:a6:fc:d5: bc:15:d0:16:84:7e:d5:07:62:17:e3:9d:f0:81:87: b5:7d:5d:00:da:fc:69:99:2e:3b:3e:0e:4d:b6:37: 5f:03:c1:bb:f6:8f:6c:6f:4e:7a:36:d5:40:d8:36: 50:59:3a:a0:14:1a:c2:81:33:86:77:13:3d:18:ef: 1b:10:fb:c6:57:b3:a3:8e:84:7c:8b:01:ab:39:a3: 80:de:4d:d1:20:d6:12:ab:d1:36:c2:74:64:23:66: 36:f3:23:8c:7e:b2:e4:b7:64:14:ab:6a:79:cf:3b: d3:93:93:c2:46:c0:67:2f:83:95:6a:16:ab:8e:e6: fc:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:9B:85:1B:F8:F9:B8:C1:A7:A5:E7:CA:F4:38:34:4A:A1:AF:D2:14 X509v3 Authority Key Identifier: keyid:2A:44:56:D1:72:B2:B8:6D:CD:A7:12:E6:61:F6:D9:F2:FF:19:20:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918424C/ABCBEBD623D411EF9575324EC4F9AE02/KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918424C/ABCBEBD623D411EF9575324EC4F9AE02/KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:28:00:49:c0:54:41:31:dc:be:c1:86:ad:4a:2e:15:d3:b2: b7:3c:c3:44:16:5e:1d:20:79:f0:40:8f:06:60:7e:69:c3:42: 2d:a3:fa:c5:3d:d7:37:b7:7a:c7:a5:73:47:25:1e:dd:a3:5e: 64:b2:66:50:04:e2:98:29:4e:48:d2:fb:09:2d:b1:21:55:72: de:11:4e:36:47:76:72:35:a9:50:7b:29:90:87:fc:77:df:31: b2:d8:de:70:d8:e1:66:a9:b7:44:c9:08:fc:ab:5a:91:1a:ff: 26:60:dd:a4:6d:c0:1d:8a:c1:51:e3:b2:ce:70:d2:d6:34:02: 26:21:c6:fa:ce:e7:a9:25:34:48:62:8c:f1:b1:b2:4b:07:5b: c5:3c:36:67:01:ef:0d:3e:c2:22:8b:e1:c0:6d:f9:1c:cc:75: b0:85:bd:d3:08:1e:86:76:7e:76:a2:c1:7e:3a:cb:39:67:bb: fc:d6:95:7a:a2:4c:63:e3:11:2b:8b:db:98:56:c3:f1:af:4c: b9:d7:71:5d:e4:9f:c9:99:3d:57:1d:da:90:bc:e4:fc:29:d4: 3d:fb:48:6c:4a:db:5f:93:0d:22:b2:d8:36:ec:c0:71:61:95: fd:ef:d7:09:70:e1:09:d9:a0:e5:f8:b5:7e:90:c9:77:0a:d0: ec:75:1f:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQyNEMxMTAvBgNVBAUTKDJBNDQ1NkQxNzJCMkI4NkRDREE3MTJFNjYxRjZEOUYy RkYxOTIwMzgwHhcNMjUxMjA1MDI1MzE5WhcNMjUxMjEyMDI1MzE5WjAYMRYwFAYD VQQDEw02OTMyNDkxZi1kZDY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5XID2svmZQxbpEqSBInnui5IPjyyX/ETPAJU8f4tXgatdNgq2sx7OVd2vnDC zc7rSYR4kpYYY4Xzx6hSj3LYfXpep+zEyreexV+vzxw+DN78qwoMgBCS5+ZqZp/F M/6+vjm3U4Sy4WtXqTMeCGeu8cMHz88/+68KyLwqRVhS6sr/xoSm/NW8FdAWhH7V B2IX453wgYe1fV0A2vxpmS47Pg5NtjdfA8G79o9sb056NtVA2DZQWTqgFBrCgTOG dxM9GO8bEPvGV7OjjoR8iwGrOaOA3k3RINYSq9E2wnRkI2Y28yOMfrLkt2QUq2p5 zzvTk5PCRsBnL4OVaharjub81wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLSbhRv4 +bjBp6XnyvQ4NEqhr9IUMB8GA1UdIwQYMBaAFCpEVtFysrhtzacS5mH22fL/GSA4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDI0Qy9BQkNCRUJENjIz RDQxMUVGOTU3NTMyNEVDNEY5QUUwMi9La1JXMFhLeXVHM05weExtWWZiWjh2OFpJ RGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0trUlcwWEt5dUczTnB4TG1ZZmJaOHY4WklEZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NDI0Qy9BQkNCRUJENjIzRDQxMUVGOTU3NTMyNEVDNEY5QUUwMi9La1JXMFhLeXVH M05weExtWWZiWjh2OFpJRGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4KABJwFRBMdy+wYatSi4V07K3PMNEFl4dIHnwQI8GYH5pw0Ito/rF Pdc3t3rHpXNHJR7do15ksmZQBOKYKU5I0vsJLbEhVXLeEU42R3ZyNalQeymQh/x3 3zGy2N5w2OFmqbdEyQj8q1qRGv8mYN2kbcAdisFR47LOcNLWNAImIcb6zuepJTRI YozxsbJLB1vFPDZnAe8NPsIii+HAbfkczHWwhb3TCB6Gdn52osF+Oss5Z7v81pV6 okxj4xEri9uYVsPxr0y513Fd5J/JmT1XHdqQvOT8KdQ9+0hsSttfkw0istg27MBx YZX979cJcOEJ2aDl+LV+kMl3CtDsdR/V -----END CERTIFICATE-----Generated at Sat Dec 6 12:18:29 2025 by rpki-client