This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.mft File: kyv2OTHDR-dryQidQb4k9jcPJYI.mft (raw, json) Hash identifier: n/X/GYSebNS0+LbOn3ePv6lpz0n/DaGET/ltOrzFkMA= Subject key identifier: F8:3F:8D:AB:27:1F:D6:8B:EC:87:CC:FC:03:7E:95:F9:53:5D:1A:8F Authority key identifier: 93:2B:F6:39:31:C3:47:E7:6B:C9:08:9D:41:BE:24:F6:37:0F:25:82 Certificate issuer: /CN=A919879C/serialNumber=932BF63931C347E76BC9089D41BE24F6370F2582 Certificate serial: 02EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kyv2OTHDR-dryQidQb4k9jcPJYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.mft Manifest number: 02E9 Signing time: Thu 04 Dec 2025 23:38:54 +0000 Manifest this update: Thu 04 Dec 2025 23:38:54 +0000 Manifest next update: Thu 11 Dec 2025 23:38:54 +0000 Files and hashes: 1: kyv2OTHDR-dryQidQb4k9jcPJYI.crl (hash: 7ebcZtAHrpccLz1GF2n7jlRgqbxQNZump6caRuf0Ktc=) 2: E7C34456073711ED8BA93630C4F9AE02.roa (hash: 16sJIK7yDSO7A/N450AB9k39DyJDrn04igY89yyJfys=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.crl rsync://rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kyv2OTHDR-dryQidQb4k9jcPJYI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 23:38:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 750 (0x2ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919879C, serialNumber=932BF63931C347E76BC9089D41BE24F6370F2582 Validity Not Before: Dec 4 23:38:54 2025 GMT Not After : Dec 11 23:38:54 2025 GMT Subject: CN=69321b8e-f212 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:ac:a6:e2:f0:9e:04:6c:f1:11:75:b7:23:60: f5:98:47:e9:89:c3:00:3c:58:ca:88:6f:c4:2f:6a: be:56:49:ca:37:9e:ec:f6:03:55:7a:6c:8f:51:de: fa:22:d9:38:95:0e:36:69:aa:30:8f:27:78:2b:1f: aa:29:d8:34:06:23:04:6e:7a:5b:c4:36:b8:6d:df: 21:05:3c:8d:9b:89:cc:74:10:43:14:ec:90:5c:72: d3:57:a7:e6:79:8e:12:d9:b7:3a:8d:54:64:b8:c2: 86:2a:50:ba:07:77:91:03:20:f7:c6:cd:61:85:35: e5:d0:88:81:12:dc:e4:aa:2b:96:ad:6c:fc:3d:37: 68:6c:6a:74:c6:da:3b:95:93:30:a1:75:66:02:a5: 43:73:0d:3a:0c:c3:af:fd:0c:0c:4c:34:20:ab:b2: a2:1b:b6:a9:86:bf:77:df:c8:75:d4:d7:ae:88:c4: 82:a7:bc:a6:66:cb:66:f5:72:b9:02:c0:3e:13:9e: 9b:7a:7b:dd:f2:c0:5e:1d:da:3f:56:d6:4c:00:4c: b6:ae:7c:6f:e2:e1:5a:78:b1:9e:14:1f:c6:2f:05: 56:da:00:ff:d4:e5:2f:b0:bf:81:39:6b:a1:24:d9: b9:7a:7c:61:2a:c8:50:8b:39:a1:77:6a:f3:ac:46: 0f:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:3F:8D:AB:27:1F:D6:8B:EC:87:CC:FC:03:7E:95:F9:53:5D:1A:8F X509v3 Authority Key Identifier: keyid:93:2B:F6:39:31:C3:47:E7:6B:C9:08:9D:41:BE:24:F6:37:0F:25:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kyv2OTHDR-dryQidQb4k9jcPJYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:73:80:1e:9a:97:3c:d3:9f:96:42:12:94:2b:a7:1c:16:1d: d8:42:5c:4f:8e:6a:24:0e:10:d8:14:2c:06:5b:7c:d0:86:c5: 77:92:08:bc:57:0a:4c:f9:f0:3d:9a:9a:fc:6b:77:66:39:ca: 9a:eb:b0:f2:9c:a0:19:36:a6:a4:a4:64:ca:ee:f2:fe:f4:47: 04:d3:d1:d2:07:61:bf:65:75:bb:be:dc:b4:05:44:a8:03:f7: c3:99:1e:0e:7a:ab:5a:4d:70:55:dc:75:b6:38:27:fb:cf:22: 30:de:de:66:c3:82:f4:61:43:58:8c:46:90:40:7c:a3:5e:c9: 76:6c:74:55:cd:10:00:10:0a:0a:97:de:87:c6:63:e1:dc:10: 51:c4:e3:b4:03:a4:7b:c1:ef:15:f2:95:dd:f8:fa:ad:cd:d1: 19:36:6e:8a:f1:90:87:1b:d6:d0:26:fd:38:66:cd:15:92:8c: 49:82:aa:9a:71:25:55:31:17:d2:b6:12:2d:5b:92:3d:b5:be: f2:2e:bb:4d:72:14:58:95:3e:fb:1a:d7:e5:75:2b:d5:32:f6: 1f:21:03:d0:ae:a7:1f:dc:c0:01:df:34:ae:1e:b4:78:e7:21: a8:ad:90:aa:9b:b9:0b:44:05:1b:f5:12:d7:8e:9d:c1:82:8b: 83:27:28:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAu4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTg3OUMxMTAvBgNVBAUTKDkzMkJGNjM5MzFDMzQ3RTc2QkM5MDg5RDQxQkUyNEY2 MzcwRjI1ODIwHhcNMjUxMjA0MjMzODU0WhcNMjUxMjExMjMzODU0WjAYMRYwFAYD VQQDEw02OTMyMWI4ZS1mMjEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtaym4vCeBGzxEXW3I2D1mEfpicMAPFjKiG/EL2q+VknKN57s9gNVemyPUd76 Itk4lQ42aaowjyd4Kx+qKdg0BiMEbnpbxDa4bd8hBTyNm4nMdBBDFOyQXHLTV6fm eY4S2bc6jVRkuMKGKlC6B3eRAyD3xs1hhTXl0IiBEtzkqiuWrWz8PTdobGp0xto7 lZMwoXVmAqVDcw06DMOv/QwMTDQgq7KiG7aphr9338h11NeuiMSCp7ymZstm9XK5 AsA+E56benvd8sBeHdo/VtZMAEy2rnxv4uFaeLGeFB/GLwVW2gD/1OUvsL+BOWuh JNm5enxhKshQizmhd2rzrEYPMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPg/jasn H9aL7IfM/AN+lflTXRqPMB8GA1UdIwQYMBaAFJMr9jkxw0fna8kInUG+JPY3DyWC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5ODc5Qy9FMUQyMDI5MjA3 MzQxMUVEQjA0RDM3MkRDNEY5QUUwMi9reXYyT1RIRFItZHJ5UWlkUWI0azlqY1BK WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t5djJPVEhEUi1kcnlRaWRRYjRrOWpjUEpZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 ODc5Qy9FMUQyMDI5MjA3MzQxMUVEQjA0RDM3MkRDNEY5QUUwMi9reXYyT1RIRFIt ZHJ5UWlkUWI0azlqY1BKWUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASc4Aempc805+WQhKUK6ccFh3YQlxPjmokDhDYFCwGW3zQhsV3kgi8 VwpM+fA9mpr8a3dmOcqa67DynKAZNqakpGTK7vL+9EcE09HSB2G/ZXW7vty0BUSo A/fDmR4OeqtaTXBV3HW2OCf7zyIw3t5mw4L0YUNYjEaQQHyjXsl2bHRVzRAAEAoK l96HxmPh3BBRxOO0A6R7we8V8pXd+PqtzdEZNm6K8ZCHG9bQJv04Zs0VkoxJgqqa cSVVMRfSthItW5I9tb7yLrtNchRYlT77GtfldSvVMvYfIQPQrqcf3MAB3zSuHrR4 5yGorZCqm7kLRAUb9RLXjp3BgouDJyh1 -----END CERTIFICATE-----Generated at Sun Dec 7 00:58:04 2025 by rpki-client