This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.mft File: kI2z-bdG9SC7uahMhT9pJsFeub0.mft (raw, json) Hash identifier: GPDizGbiWbfYEEA4IwwhldlLMj5mGxu3Qj3V8JegHKo= Subject key identifier: 10:C8:81:7D:14:62:72:E0:52:36:F7:5B:85:8A:2E:FE:26:DA:39:8A Authority key identifier: 90:8D:B3:F9:B7:46:F5:20:BB:B9:A8:4C:85:3F:69:26:C1:5E:B9:BD Certificate issuer: /CN=A919A909/serialNumber=908DB3F9B746F520BBB9A84C853F6926C15EB9BD Certificate serial: 011A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI2z-bdG9SC7uahMhT9pJsFeub0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.mft Manifest number: 0117 Signing time: Fri 05 Dec 2025 02:55:15 +0000 Manifest this update: Fri 05 Dec 2025 02:55:15 +0000 Manifest next update: Fri 12 Dec 2025 02:55:15 +0000 Files and hashes: 1: kI2z-bdG9SC7uahMhT9pJsFeub0.crl (hash: 7ztfgpD9EGFpd3ZaUgS6sirjh3CziRZcIdzpXCynFg8=) 2: 879152E62E4811EF929FE162C4F9AE02.roa (hash: cr46hMBXMjVoUuUCIeS55LaT84JtFcqvVMAfnbq95f8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.crl rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI2z-bdG9SC7uahMhT9pJsFeub0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 02:55:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 282 (0x11a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A909, serialNumber=908DB3F9B746F520BBB9A84C853F6926C15EB9BD Validity Not Before: Dec 5 02:55:15 2025 GMT Not After : Dec 12 02:55:15 2025 GMT Subject: CN=69324993-ee47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:e1:13:24:77:bc:a3:8a:61:51:16:ac:40:5b: 85:28:b0:aa:d6:67:bd:83:72:e3:c0:55:86:c0:61: 03:72:21:d0:28:2d:68:65:a5:f7:e6:08:5c:07:b2: bc:22:56:56:d5:d7:68:00:a5:55:81:e3:d3:10:a4: b7:62:60:1f:a2:71:c2:6d:d6:3d:ed:1d:85:f1:14: b6:63:ce:9a:38:ff:68:77:cb:4a:48:10:97:0e:19: 49:b9:ff:6e:1d:9d:91:cb:ac:55:b4:be:7d:08:ec: 8b:2c:06:0a:e8:46:60:71:e0:16:15:84:6c:50:29: 86:b7:8e:68:69:53:72:eb:e1:08:fd:4c:8c:7b:cf: af:e0:92:8d:c2:4d:77:56:bf:ee:1e:e6:86:7e:35: 6c:3a:83:e9:6a:9e:3e:1e:2a:6e:d0:6b:af:18:13: fc:a8:7a:66:d6:f5:32:46:54:9f:fd:ac:49:fc:0a: ca:c5:6a:2d:f9:dc:db:43:51:d5:a8:c4:8f:69:17: b9:88:80:f1:33:c6:26:d6:96:ab:a8:e0:61:c6:26: 5e:84:ac:96:ce:b1:a2:69:5f:49:0b:23:a6:da:b0: 2d:6e:91:45:42:36:ba:cb:bc:11:01:da:14:2a:27: 58:5a:ca:7e:d9:50:43:31:e9:e5:6e:9a:a2:80:29: 21:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:C8:81:7D:14:62:72:E0:52:36:F7:5B:85:8A:2E:FE:26:DA:39:8A X509v3 Authority Key Identifier: keyid:90:8D:B3:F9:B7:46:F5:20:BB:B9:A8:4C:85:3F:69:26:C1:5E:B9:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI2z-bdG9SC7uahMhT9pJsFeub0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:1f:2c:4e:74:1a:fe:2d:5a:84:6a:77:a5:c4:63:5a:b2:54: 41:09:61:8e:bf:e4:39:41:24:4b:e5:93:4d:e2:92:3e:5d:04: 94:a4:03:78:44:b3:89:04:0c:48:7d:2b:53:e2:af:4a:7b:ff: a7:fd:a5:ce:ec:dd:66:cd:76:18:3a:ec:86:88:f8:f4:21:b6: 45:50:bd:d7:99:55:3b:d3:89:20:59:47:19:93:f8:5b:46:40: 93:6e:cc:fc:04:c5:92:9d:06:ee:24:a3:48:60:61:55:dc:f7: 18:df:9b:3a:94:46:9f:fe:c1:87:2a:a4:67:57:c2:4f:b2:c9: 59:97:a7:3e:1a:c6:77:f9:e0:f7:c3:aa:bd:e9:2c:c1:ad:70: 71:03:52:90:db:d1:7f:cf:20:50:12:5d:47:15:fa:dc:58:a5: 8a:f0:37:2e:5c:eb:32:67:ea:7b:cb:44:18:43:d5:49:cf:2c: 21:61:ac:43:fe:17:07:d2:24:3d:eb:56:06:12:ae:1d:6d:70: 01:61:f4:ca:b9:a6:d3:e7:bc:e3:49:68:de:56:87:52:cc:b3: 0b:02:85:9d:62:98:c0:26:55:65:dc:bc:83:5e:4c:87:14:97: 86:f5:a2:96:e0:5e:1f:8c:67:f8:a5:61:02:bd:d8:e6:18:29: ba:a5:20:8f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE5MDkxMTAvBgNVBAUTKDkwOERCM0Y5Qjc0NkY1MjBCQkI5QTg0Qzg1M0Y2OTI2 QzE1RUI5QkQwHhcNMjUxMjA1MDI1NTE1WhcNMjUxMjEyMDI1NTE1WjAYMRYwFAYD VQQDEw02OTMyNDk5My1lZTQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtOETJHe8o4phURasQFuFKLCq1me9g3LjwFWGwGEDciHQKC1oZaX35ghcB7K8 IlZW1ddoAKVVgePTEKS3YmAfonHCbdY97R2F8RS2Y86aOP9od8tKSBCXDhlJuf9u HZ2Ry6xVtL59COyLLAYK6EZgceAWFYRsUCmGt45oaVNy6+EI/UyMe8+v4JKNwk13 Vr/uHuaGfjVsOoPpap4+Hipu0GuvGBP8qHpm1vUyRlSf/axJ/ArKxWot+dzbQ1HV qMSPaRe5iIDxM8Ym1parqOBhxiZehKyWzrGiaV9JCyOm2rAtbpFFQja6y7wRAdoU KidYWsp+2VBDMenlbpqigCkhAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBDIgX0U YnLgUjb3W4WKLv4m2jmKMB8GA1UdIwQYMBaAFJCNs/m3RvUgu7moTIU/aSbBXrm9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTkwOS8yMDlFRERDRTJB MzMxMUVGQkU5QUE4NTlDNEY5QUUwMi9rSTJ6LWJkRzlTQzd1YWhNaFQ5cEpzRmV1 YjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tJMnotYmRHOVNDN3VhaE1oVDlwSnNGZXViMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTkwOS8yMDlFRERDRTJBMzMxMUVGQkU5QUE4NTlDNEY5QUUwMi9rSTJ6LWJkRzlT Qzd1YWhNaFQ5cEpzRmV1YjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBaHyxOdBr+LVqEanelxGNaslRBCWGOv+Q5QSRL5ZNN4pI+XQSUpAN4 RLOJBAxIfStT4q9Ke/+n/aXO7N1mzXYYOuyGiPj0IbZFUL3XmVU704kgWUcZk/hb RkCTbsz8BMWSnQbuJKNIYGFV3PcY35s6lEaf/sGHKqRnV8JPsslZl6c+GsZ3+eD3 w6q96SzBrXBxA1KQ29F/zyBQEl1HFfrcWKWK8DcuXOsyZ+p7y0QYQ9VJzywhYaxD /hcH0iQ961YGEq4dbXABYfTKuabT57zjSWjeVodSzLMLAoWdYpjAJlVl3LyDXkyH FJeG9aKW4F4fjGf4pWECvdjmGCm6pSCP -----END CERTIFICATE-----Generated at Sat Dec 6 20:03:26 2025 by rpki-client