This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/kMIvc5OFDo7Pa18eMg0HstGs2P0.mft File: kMIvc5OFDo7Pa18eMg0HstGs2P0.mft (raw, json) Hash identifier: /PMDl1UfmvtioenDiZ4wloWEy958UA7THlTU9R0MijM= Subject key identifier: F3:5A:E9:55:19:4B:1D:8D:C3:36:72:0F:D3:D4:A1:2F:B3:F0:FB:0C Authority key identifier: 90:C2:2F:73:93:85:0E:8E:CF:6B:5F:1E:32:0D:07:B2:D1:AC:D8:FD Certificate issuer: /CN=A918495F/serialNumber=90C22F7393850E8ECF6B5F1E320D07B2D1ACD8FD Certificate serial: 1848 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kMIvc5OFDo7Pa18eMg0HstGs2P0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/kMIvc5OFDo7Pa18eMg0HstGs2P0.mft Manifest number: 17D7 Signing time: Sat 06 Dec 2025 16:11:01 +0000 Manifest this update: Sat 06 Dec 2025 16:11:01 +0000 Manifest next update: Sat 13 Dec 2025 16:11:01 +0000 Files and hashes: 1: kMIvc5OFDo7Pa18eMg0HstGs2P0.crl (hash: yHz+RetwH94HzvHv7V0IBvEhzIcN0diMT/V9D2DrJvo=) 2: E8118BFA022C11EBAC47A831C4F9AE02.roa (hash: l9PAtv4FmfKEbsr39kSblkIdk4l36jBShaU/yhiu3EA=) 3: 7E2725DAAC7611EAB766A74CC4F9AE02.roa (hash: pRnYMFn3MsmdKZMCcupGBS8xip66wFsc4Vhu+CVQM8s=) 4: DD145D6E023A11EBBDF8B35FC4F9AE02.roa (hash: Ki+ZYv+WbFodfUBA0Z9kcHIRNA0D2B2/Fqh0gMIddSg=) 5: A2C8B57074B711EB8491BC63C4F9AE02.roa (hash: 1XIBkz1xrsmaIEUuPCKysFF+5jDC/AbJdnY6h8iCmzA=) 6: B04675FC959711EA9F290A33C4F9AE02.roa (hash: hvb2MvDqDZHyf0+HzbtgqnM+oZrlIejX067xarW4vdo=) 7: 694CCE66E53911EF9DD1B90DC4F9AE02.roa (hash: Q50guEdFQrac2WGNIOWOMwAPEusnnVtr+0WbjS+0Iw8=) 8: 07EE827ADFEE11E7B0E71D1CC4F9AE02.roa (hash: 6dC3vmSVGgmkSh9nUR6cyWb5UZYgtCMEtbXtHWZQ+Ms=) 9: 696975861A3611EEA597E872C4F9AE02.roa (hash: oIGClTM3lHim9PRA3fKoX8EMPndg1+r8p0Zu4BUJRhA=) 10: 4C0C96C6022E11EBA920EA37C4F9AE02.roa (hash: K/ybxERnMroT+/HivxwCKoEx2WZjUMXQikxQf2o4Wtg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/kMIvc5OFDo7Pa18eMg0HstGs2P0.crl rsync://rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/kMIvc5OFDo7Pa18eMg0HstGs2P0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kMIvc5OFDo7Pa18eMg0HstGs2P0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6216 (0x1848) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918495F, serialNumber=90C22F7393850E8ECF6B5F1E320D07B2D1ACD8FD Validity Not Before: Dec 6 16:11:01 2025 GMT Not After : Dec 13 16:11:01 2025 GMT Subject: CN=69345595-a846 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:42:9f:ca:22:10:2f:e5:f1:1f:f5:f3:10:4f: 16:f7:d9:26:ad:4d:51:46:bc:d8:23:9a:a9:b7:30: 1a:92:22:ed:a2:97:02:5c:b3:3f:54:97:58:36:77: 98:53:78:f1:9b:52:ee:7d:e7:52:ce:82:7b:f3:e6: 46:a5:3e:ad:15:49:c5:31:47:a7:e6:dc:b1:28:df: e6:f0:10:cf:bd:ee:7d:bf:f3:89:41:0a:92:89:dd: 64:f1:8b:95:ad:00:ab:4d:74:a0:62:9b:f8:4e:95: 63:fd:1c:b8:56:1f:14:ce:ec:95:7a:ce:c3:8a:f8: 10:11:3f:4a:dc:ce:b6:84:31:d1:43:07:e6:53:bb: a2:75:5d:9d:94:f4:4a:17:a6:52:a1:3b:c0:92:35: c8:0a:93:bf:c9:74:36:3e:30:5c:14:54:e6:0c:98: 74:7f:85:98:86:7a:7b:7a:ce:3e:cb:52:35:e3:3f: fc:c2:b4:e0:5e:9c:e3:3f:16:e4:13:35:33:f4:66: 4a:b4:5f:a3:04:39:13:f2:40:9c:04:3f:a6:98:e1: 66:25:25:64:0f:b6:43:16:06:56:95:82:99:b5:aa: b7:98:ca:38:8e:96:64:1d:4c:27:d1:f6:e3:54:84: 9b:8b:c6:0c:fc:f2:da:f0:e0:79:6c:37:d1:8f:9d: 68:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:5A:E9:55:19:4B:1D:8D:C3:36:72:0F:D3:D4:A1:2F:B3:F0:FB:0C X509v3 Authority Key Identifier: keyid:90:C2:2F:73:93:85:0E:8E:CF:6B:5F:1E:32:0D:07:B2:D1:AC:D8:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/kMIvc5OFDo7Pa18eMg0HstGs2P0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kMIvc5OFDo7Pa18eMg0HstGs2P0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/kMIvc5OFDo7Pa18eMg0HstGs2P0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:4c:fb:53:ce:34:82:95:07:c3:58:52:ef:a8:10:c9:25:3a: 4b:5b:0f:55:97:36:3d:a4:e2:8e:27:fb:c2:ae:77:a5:d6:20: 5a:c8:8f:4c:90:88:c6:7b:b9:c1:7a:4c:58:32:50:61:c5:80: bf:c4:b0:3a:bb:cd:44:0a:3c:4b:e9:02:91:04:d1:1f:9e:ed: e6:56:b0:22:40:27:d9:30:f4:87:20:4f:ce:fc:84:fd:ad:ce: c3:e6:03:02:a7:a5:5d:88:68:d1:f4:17:40:3b:c9:8d:eb:49: f0:78:dc:71:22:dc:0b:0c:2e:e3:0c:56:9b:7a:9e:2b:ba:74: 7f:a9:09:17:9e:5b:8a:73:0d:f5:e5:8f:cc:12:a8:06:18:09: fa:b3:a1:d9:94:08:b6:72:91:a5:e1:ed:48:05:98:df:d7:a3: 87:b6:b4:a5:ca:f8:bb:d0:4d:c0:e4:73:2d:18:6d:50:5c:e8: ad:59:55:cd:f2:c7:44:96:a3:05:51:d6:8d:ff:ba:02:e0:37: 04:8c:4c:d4:53:3c:6f:93:9d:15:c7:5f:ce:8a:64:0f:5d:9b: ed:cb:6a:8a:8f:e1:7b:af:72:a8:8e:53:8d:61:20:83:34:02: 17:f6:e0:ed:5e:6f:99:21:66:25:a9:9a:fe:69:63:8d:ff:53: 09:ee:cf:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGEgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQ5NUYxMTAvBgNVBAUTKDkwQzIyRjczOTM4NTBFOEVDRjZCNUYxRTMyMEQwN0Iy RDFBQ0Q4RkQwHhcNMjUxMjA2MTYxMTAxWhcNMjUxMjEzMTYxMTAxWjAYMRYwFAYD VQQDEw02OTM0NTU5NS1hODQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2UKfyiIQL+XxH/XzEE8W99kmrU1RRrzYI5qptzAakiLtopcCXLM/VJdYNneY U3jxm1LufedSzoJ78+ZGpT6tFUnFMUen5tyxKN/m8BDPve59v/OJQQqSid1k8YuV rQCrTXSgYpv4TpVj/Ry4Vh8UzuyVes7DivgQET9K3M62hDHRQwfmU7uidV2dlPRK F6ZSoTvAkjXICpO/yXQ2PjBcFFTmDJh0f4WYhnp7es4+y1I14z/8wrTgXpzjPxbk EzUz9GZKtF+jBDkT8kCcBD+mmOFmJSVkD7ZDFgZWlYKZtaq3mMo4jpZkHUwn0fbj VISbi8YM/PLa8OB5bDfRj51oFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPNa6VUZ Sx2NwzZyD9PUoS+z8PsMMB8GA1UdIwQYMBaAFJDCL3OThQ6Oz2tfHjINB7LRrNj9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDk1Ri84NDhDODU3Q0RG RUMxMUU3QTI3QTIyMTNDNEY5QUUwMi9rTUl2YzVPRkRvN1BhMThlTWcwSHN0R3My UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tNSXZjNU9GRG83UGExOGVNZzBIc3RHczJQMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NDk1Ri84NDhDODU3Q0RGRUMxMUU3QTI3QTIyMTNDNEY5QUUwMi9rTUl2YzVPRkRv N1BhMThlTWcwSHN0R3MyUDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPTPtTzjSClQfDWFLvqBDJJTpLWw9VlzY9pOKOJ/vCrnel1iBayI9M kIjGe7nBekxYMlBhxYC/xLA6u81ECjxL6QKRBNEfnu3mVrAiQCfZMPSHIE/O/IT9 rc7D5gMCp6VdiGjR9BdAO8mN60nweNxxItwLDC7jDFabep4runR/qQkXnluKcw31 5Y/MEqgGGAn6s6HZlAi2cpGl4e1IBZjf16OHtrSlyvi70E3A5HMtGG1QXOitWVXN 8sdElqMFUdaN/7oC4DcEjEzUUzxvk50Vx1/OimQPXZvty2qKj+F7r3KojlONYSCD NAIX9uDtXm+ZIWYlqZr+aWON/1MJ7s+j -----END CERTIFICATE-----Generated at Sat Dec 6 19:04:44 2025 by rpki-client