This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.mft File: KmvwVK0j6tLbOVMbZGcmypRaxJI.mft (raw, json) Hash identifier: 0hnh683kW1caEO6dGKyMwVzPx5nFjLF7RWgZwB1sNg4= Subject key identifier: FD:9A:7B:EC:E7:83:29:9A:67:BC:0B:04:B6:1F:55:EB:C1:6F:A3:DE Authority key identifier: 2A:6B:F0:54:AD:23:EA:D2:DB:39:53:1B:64:67:26:CA:94:5A:C4:92 Certificate issuer: /CN=A918AB7E/serialNumber=2A6BF054AD23EAD2DB39531B646726CA945AC492 Certificate serial: 84 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmvwVK0j6tLbOVMbZGcmypRaxJI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.mft Manifest number: 83 Signing time: Fri 05 Dec 2025 04:36:35 +0000 Manifest this update: Fri 05 Dec 2025 04:36:34 +0000 Manifest next update: Fri 12 Dec 2025 04:36:34 +0000 Files and hashes: 1: KmvwVK0j6tLbOVMbZGcmypRaxJI.crl (hash: 2+GkinPBAx5NM90lKlSn+HZuEtaM6ikuMlMt4Yn68uE=) 2: 3CF5A86C088211F0BB90C23EC4F9AE02.roa (hash: WjhNkxKHghzjWbpSoIkFccSDxcFZFh5y2Re0ypkmeM8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.crl rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmvwVK0j6tLbOVMbZGcmypRaxJI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:36:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 132 (0x84) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918AB7E, serialNumber=2A6BF054AD23EAD2DB39531B646726CA945AC492 Validity Not Before: Dec 5 04:36:34 2025 GMT Not After : Dec 12 04:36:34 2025 GMT Subject: CN=69326153-ca13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:1d:42:4a:3b:f8:34:ee:bb:1a:ad:1a:8c:02: 5d:e8:4b:45:b8:8a:98:5e:20:02:36:3f:a3:e4:95: e0:64:cc:54:9b:e3:fa:b0:23:54:47:4c:10:93:96: 1a:6e:c4:f0:48:b4:0a:fe:35:65:3c:c2:c7:dc:70: b1:66:99:b2:43:83:ed:9d:db:6d:14:e4:ad:24:14: 4e:94:63:19:64:8f:02:35:be:82:71:28:bb:55:97: 1e:7c:3b:8a:26:aa:5b:43:06:79:08:4e:c0:db:44: cb:5e:db:3b:f0:cd:18:b2:81:f9:38:ec:4e:ad:b7: cc:54:b5:52:1d:4a:85:d5:db:49:d1:99:45:62:73: c8:be:23:d2:92:05:ca:84:94:bc:50:67:17:d7:ce: c8:b9:cd:4d:e4:44:81:a6:f1:74:8a:47:0e:63:93: 98:32:90:be:d2:60:21:77:f8:13:62:6c:47:96:a9: 53:ac:35:41:39:73:94:c9:fb:c7:28:39:e1:b8:75: 77:b0:6f:3b:86:f5:b3:00:bf:51:aa:75:c7:e2:4b: c7:2d:2e:33:7f:03:b2:98:6e:f5:41:34:9b:d3:69: 80:e9:29:f3:aa:a4:b7:da:1a:63:62:bf:42:b7:2c: f0:ad:1f:52:2c:4d:10:c1:9c:82:21:df:40:03:13: eb:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:9A:7B:EC:E7:83:29:9A:67:BC:0B:04:B6:1F:55:EB:C1:6F:A3:DE X509v3 Authority Key Identifier: keyid:2A:6B:F0:54:AD:23:EA:D2:DB:39:53:1B:64:67:26:CA:94:5A:C4:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmvwVK0j6tLbOVMbZGcmypRaxJI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:ec:c2:ef:6b:d8:e2:77:75:8d:bf:05:98:34:b3:f7:67:5a: 7c:41:0f:bf:8c:38:7b:08:5c:e4:41:2e:19:8f:f7:0e:92:82: 66:eb:d6:31:db:4d:20:09:e6:0d:ba:a6:fb:43:83:ac:72:5e: 3d:a3:ba:13:23:a4:a4:b5:99:a0:68:66:f0:2f:5f:65:9b:aa: 18:fc:c1:d2:50:fa:a6:ab:dd:b5:22:a7:b5:28:b8:f1:52:a8: 6f:32:7e:bd:ec:0e:a1:b3:35:8c:ab:fd:41:df:a3:3d:fa:40: 40:8b:14:c9:71:65:ad:92:15:92:0c:4a:cd:6b:64:14:17:a3: a8:68:4e:97:d3:e2:2e:d4:bb:55:a3:da:5e:16:56:90:cb:de: 98:cf:fe:67:82:d9:83:16:dc:d3:b0:e3:85:a8:e8:0c:4e:3a: 5a:56:5d:73:f7:82:14:af:bc:4d:e8:f2:2c:a7:b7:02:af:e8: bc:22:dd:81:f8:5a:20:e2:cf:c3:64:e9:9f:69:6c:bf:a6:6c: 32:a4:a4:b3:23:16:35:91:ca:4a:e6:dc:de:84:b6:fc:10:99: 19:93:9d:1e:17:9e:be:bf:d7:35:9f:d1:0d:7c:3a:1e:f0:b8: 97:67:41:8e:fd:e9:1b:af:81:22:c8:de:72:41:44:80:b3:66: 8c:22:52:54 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEFCN0UxMTAvBgNVBAUTKDJBNkJGMDU0QUQyM0VBRDJEQjM5NTMxQjY0NjcyNkNB OTQ1QUM0OTIwHhcNMjUxMjA1MDQzNjM0WhcNMjUxMjEyMDQzNjM0WjAYMRYwFAYD VQQDEw02OTMyNjE1My1jYTEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3R1CSjv4NO67Gq0ajAJd6EtFuIqYXiACNj+j5JXgZMxUm+P6sCNUR0wQk5Ya bsTwSLQK/jVlPMLH3HCxZpmyQ4PtndttFOStJBROlGMZZI8CNb6CcSi7VZcefDuK JqpbQwZ5CE7A20TLXts78M0YsoH5OOxOrbfMVLVSHUqF1dtJ0ZlFYnPIviPSkgXK hJS8UGcX187Iuc1N5ESBpvF0ikcOY5OYMpC+0mAhd/gTYmxHlqlTrDVBOXOUyfvH KDnhuHV3sG87hvWzAL9RqnXH4kvHLS4zfwOymG71QTSb02mA6SnzqqS32hpjYr9C tyzwrR9SLE0QwZyCId9AAxPryQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP2ae+zn gymaZ7wLBLYfVevBb6PeMB8GA1UdIwQYMBaAFCpr8FStI+rS2zlTG2RnJsqUWsSS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QUI3RS9GNzU5Nzk2RTA4 ODExMUYwQkFDMzQxM0VDNEY5QUUwMi9LbXZ3VkswajZ0TGJPVk1iWkdjbXlwUmF4 SkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ttdndWSzBqNnRMYk9WTWJaR2NteXBSYXhKSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QUI3RS9GNzU5Nzk2RTA4ODExMUYwQkFDMzQxM0VDNEY5QUUwMi9LbXZ3VkswajZ0 TGJPVk1iWkdjbXlwUmF4SkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+7MLva9jid3WNvwWYNLP3Z1p8QQ+/jDh7CFzkQS4Zj/cOkoJm69Yx 200gCeYNuqb7Q4Oscl49o7oTI6SktZmgaGbwL19lm6oY/MHSUPqmq921Iqe1KLjx UqhvMn697A6hszWMq/1B36M9+kBAixTJcWWtkhWSDErNa2QUF6OoaE6X0+Iu1LtV o9peFlaQy96Yz/5ngtmDFtzTsOOFqOgMTjpaVl1z94IUr7xN6PIsp7cCr+i8It2B +Fog4s/DZOmfaWy/pmwypKSzIxY1kcpK5tzehLb8EJkZk50eF56+v9c1n9ENfDoe 8LiXZ0GO/ekbr4EiyN5yQUSAs2aMIlJU -----END CERTIFICATE-----Generated at Sun Dec 7 02:46:15 2025 by rpki-client