This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.mft File: kzxM1thDXA-L4vUjRybWYQ9-2jo.mft (raw, json) Hash identifier: ExR+falZgY2qIHsqUKgSVKs3zq+sVMkErz2IhRacEEQ= Subject key identifier: D4:8D:D3:CD:DE:5E:CE:46:55:43:00:35:FB:DB:6C:DD:D1:13:F4:94 Authority key identifier: 93:3C:4C:D6:D8:43:5C:0F:8B:E2:F5:23:47:26:D6:61:0F:7E:DA:3A Certificate issuer: /CN=A918D0DE/serialNumber=933C4CD6D8435C0F8BE2F5234726D6610F7EDA3A Certificate serial: 0C6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzxM1thDXA-L4vUjRybWYQ9-2jo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.mft Manifest number: 0C5C Signing time: Sat 06 Dec 2025 17:58:08 +0000 Manifest this update: Sat 06 Dec 2025 17:58:07 +0000 Manifest next update: Sat 13 Dec 2025 17:58:07 +0000 Files and hashes: 1: kzxM1thDXA-L4vUjRybWYQ9-2jo.crl (hash: kbUdXP+vsO5Y8h00l+76ydzBswnQ+cdZXMUyAddY+RU=) 2: 38FFAC50884411EDA212BC24C4F9AE02.roa (hash: ckq5cjCEQ/2WL7JkGpSyoM0Cdw/OAtqMQAwrig1lc1c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.crl rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzxM1thDXA-L4vUjRybWYQ9-2jo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3179 (0xc6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D0DE, serialNumber=933C4CD6D8435C0F8BE2F5234726D6610F7EDA3A Validity Not Before: Dec 6 17:58:07 2025 GMT Not After : Dec 13 17:58:07 2025 GMT Subject: CN=69346eb0-fcfb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:85:0f:be:8a:bd:cc:82:a0:0b:2d:17:4b:7e: f8:6b:a3:e6:4e:1d:72:01:5a:09:47:4a:55:68:10: 12:3d:3c:fb:40:03:93:93:13:2e:98:7a:38:8c:42: 44:12:27:bd:e3:67:84:37:4c:5c:05:c7:d0:cf:26: 1e:3a:58:54:6d:74:13:17:80:41:81:69:e3:79:49: 26:cc:38:42:d8:0b:03:6d:8f:f7:aa:c7:f5:50:fe: 32:a4:8e:d1:3c:e8:ab:ec:8b:35:14:c7:1b:a8:9b: c0:ae:07:4b:e8:ab:67:53:f7:95:98:3b:20:27:d8: 93:22:3e:3c:c1:28:61:a0:0e:ed:41:3b:2b:06:d9: cd:6f:02:4e:14:b0:3f:15:91:fc:62:d1:79:35:ac: ed:d8:53:7c:ff:65:48:52:a1:2d:c8:7c:e0:c6:a7: bf:f2:3c:57:c8:df:9d:bb:dd:ac:ae:e0:2d:08:01: 16:50:8f:70:dd:c8:bc:15:12:78:f1:b9:d5:a9:d1: 6b:1e:f0:5c:5c:61:1f:18:73:20:de:d1:ef:ca:6a: 6a:75:8d:18:63:2b:db:c6:0d:bb:78:e6:64:4c:df: bb:cc:f5:fd:bb:f8:36:3d:d0:24:04:10:b6:2e:fe: 08:f4:96:6d:3c:d9:56:09:1e:a2:43:05:71:22:10: e1:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:8D:D3:CD:DE:5E:CE:46:55:43:00:35:FB:DB:6C:DD:D1:13:F4:94 X509v3 Authority Key Identifier: keyid:93:3C:4C:D6:D8:43:5C:0F:8B:E2:F5:23:47:26:D6:61:0F:7E:DA:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzxM1thDXA-L4vUjRybWYQ9-2jo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:31:53:fb:b6:c9:10:28:0f:19:9b:c4:9c:cb:6f:50:49:4d: ff:77:a6:c2:11:02:86:89:b0:7e:92:4e:5b:10:df:d0:be:2b: 88:dc:77:cc:52:6f:1d:de:3f:80:68:58:20:f0:18:2a:1f:9b: 2f:4d:33:fc:4f:1c:86:ea:f7:37:7e:b1:7d:8c:49:c3:c3:5b: 04:10:16:32:5c:04:b2:a8:2d:ca:84:df:71:70:ca:f4:26:06: 8d:98:d3:0e:ae:f2:85:d4:b3:8d:69:cc:47:5f:66:94:2b:5d: f9:4b:d8:d9:bb:e9:06:00:c1:fc:e0:e2:dc:35:d0:81:28:88: 98:53:70:12:ef:7c:f1:ec:79:45:b5:d4:b9:8f:7c:5d:3c:b5: 4c:47:8f:f4:19:16:52:fd:fd:ad:a9:1b:4c:a7:ca:eb:a5:ab: e7:ea:e4:c7:d6:d6:8a:d6:16:1a:8f:61:3a:7f:7a:c9:68:11: 4a:5d:3d:df:31:16:35:42:1b:12:b3:2d:5c:23:69:05:4a:4e: 23:e4:ad:32:cd:e8:e3:b3:17:ee:7f:ce:7d:b3:09:9c:c8:c9: 29:2f:08:27:16:35:d9:75:12:78:36:77:26:ff:ea:a5:1f:e2: d5:3f:c4:20:4a:f5:81:5d:a8:35:a2:4c:00:ec:c1:6b:bd:a4: 76:73:57:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDGswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQwREUxMTAvBgNVBAUTKDkzM0M0Q0Q2RDg0MzVDMEY4QkUyRjUyMzQ3MjZENjYx MEY3RURBM0EwHhcNMjUxMjA2MTc1ODA3WhcNMjUxMjEzMTc1ODA3WjAYMRYwFAYD VQQDEw02OTM0NmViMC1mY2ZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx4UPvoq9zIKgCy0XS374a6PmTh1yAVoJR0pVaBASPTz7QAOTkxMumHo4jEJE Eie942eEN0xcBcfQzyYeOlhUbXQTF4BBgWnjeUkmzDhC2AsDbY/3qsf1UP4ypI7R POir7Is1FMcbqJvArgdL6KtnU/eVmDsgJ9iTIj48wShhoA7tQTsrBtnNbwJOFLA/ FZH8YtF5Nazt2FN8/2VIUqEtyHzgxqe/8jxXyN+du92sruAtCAEWUI9w3ci8FRJ4 8bnVqdFrHvBcXGEfGHMg3tHvympqdY0YYyvbxg27eOZkTN+7zPX9u/g2PdAkBBC2 Lv4I9JZtPNlWCR6iQwVxIhDh4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNSN083e Xs5GVUMANfvbbN3RE/SUMB8GA1UdIwQYMBaAFJM8TNbYQ1wPi+L1I0cm1mEPfto6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDBERS9EQTQ1RDQzMDE1 MjUxMUVBODBEQkYwMDlDNEY5QUUwMi9renhNMXRoRFhBLUw0dlVqUnliV1lROS0y am8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t6eE0xdGhEWEEtTDR2VWpSeWJXWVE5LTJqby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDBERS9EQTQ1RDQzMDE1MjUxMUVBODBEQkYwMDlDNEY5QUUwMi9renhNMXRoRFhB LUw0dlVqUnliV1lROS0yam8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDMVP7tskQKA8Zm8Scy29QSU3/d6bCEQKGibB+kk5bEN/QviuI3HfM Um8d3j+AaFgg8BgqH5svTTP8TxyG6vc3frF9jEnDw1sEEBYyXASyqC3KhN9xcMr0 JgaNmNMOrvKF1LONacxHX2aUK135S9jZu+kGAMH84OLcNdCBKIiYU3AS73zx7HlF tdS5j3xdPLVMR4/0GRZS/f2tqRtMp8rrpavn6uTH1taK1hYaj2E6f3rJaBFKXT3f MRY1QhsSsy1cI2kFSk4j5K0yzejjsxfuf859swmcyMkpLwgnFjXZdRJ4Nncm/+ql H+LVP8QgSvWBXag1okwA7MFrvaR2c1dq -----END CERTIFICATE-----Generated at Sat Dec 6 21:45:39 2025 by rpki-client