This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/KtUm39nH6QyjDDH8pOGCUBtwB1M.mft File: KtUm39nH6QyjDDH8pOGCUBtwB1M.mft (raw, json) Hash identifier: SkkvbLiL/h2XSh5xbE1W2mPUBjhIA8xplGLW+bbjJZI= Subject key identifier: 17:FF:21:5A:CE:A9:B3:9A:68:36:2F:5C:75:DB:D0:8C:BA:CB:35:59 Authority key identifier: 2A:D5:26:DF:D9:C7:E9:0C:A3:0C:31:FC:A4:E1:82:50:1B:70:07:53 Certificate issuer: /CN=A919AAA0/serialNumber=2AD526DFD9C7E90CA30C31FCA4E182501B700753 Certificate serial: 06C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KtUm39nH6QyjDDH8pOGCUBtwB1M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/KtUm39nH6QyjDDH8pOGCUBtwB1M.mft Manifest number: 06A7 Signing time: Sat 06 Dec 2025 21:19:04 +0000 Manifest this update: Sat 06 Dec 2025 21:19:04 +0000 Manifest next update: Sat 13 Dec 2025 21:19:04 +0000 Files and hashes: 1: KtUm39nH6QyjDDH8pOGCUBtwB1M.crl (hash: l/IlIjuZAalKFkHc/ULx/osnOVr/AyKyBure515j5ls=) 2: C51F34AAC46711F09831793EC4F9AE02.roa (hash: m5fQia28aN0SeiS47PeAtdpG/HWjYs+FsWqbdr95Tkg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/KtUm39nH6QyjDDH8pOGCUBtwB1M.crl rsync://rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/KtUm39nH6QyjDDH8pOGCUBtwB1M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KtUm39nH6QyjDDH8pOGCUBtwB1M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 21:19:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1736 (0x6c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919AAA0, serialNumber=2AD526DFD9C7E90CA30C31FCA4E182501B700753 Validity Not Before: Dec 6 21:19:04 2025 GMT Not After : Dec 13 21:19:04 2025 GMT Subject: CN=69349dc8-f7ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:c7:f0:2f:4e:71:40:d6:18:e0:b5:a6:02:c3: e0:95:01:f8:a6:9d:be:24:40:b6:46:92:de:0c:c8: da:0b:c0:c4:0a:35:f7:ff:7d:bb:f0:03:df:3e:76: ab:90:54:b3:27:1f:e6:25:20:2f:0e:c8:dd:6c:a9: a2:83:11:c3:1d:67:f4:b0:7b:68:15:b6:6e:9b:cc: f0:f1:8f:87:8e:9a:b9:8f:45:99:b4:57:89:ec:95: 73:9e:61:34:6f:35:a6:b2:af:63:63:66:ad:7c:4d: fc:e8:c4:a8:c6:7d:87:76:02:2c:e7:6d:01:59:3f: 00:74:08:61:88:b0:b7:92:70:be:b7:03:4d:db:af: bc:bf:c9:6b:8f:29:48:f3:f4:42:8a:14:d6:06:0f: 7f:ae:d8:b4:b5:fb:9f:99:1f:a4:4d:b6:4e:fb:10: 4d:23:c5:8b:c8:ea:4d:4c:7d:ee:de:53:f5:44:25: 66:6f:8c:9b:92:1c:76:1c:bc:40:4f:02:cc:cd:d3: d5:2e:5d:26:d9:ed:66:09:2b:74:16:01:04:0c:16: 51:47:f1:49:9d:b7:40:60:32:ce:2e:37:83:fb:f2: 18:b1:6c:93:ba:47:76:b5:b0:75:6a:ea:ee:80:f7: 55:7f:b3:b7:a2:ae:8c:16:9e:f9:9f:2d:05:ff:09: 71:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:FF:21:5A:CE:A9:B3:9A:68:36:2F:5C:75:DB:D0:8C:BA:CB:35:59 X509v3 Authority Key Identifier: keyid:2A:D5:26:DF:D9:C7:E9:0C:A3:0C:31:FC:A4:E1:82:50:1B:70:07:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/KtUm39nH6QyjDDH8pOGCUBtwB1M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KtUm39nH6QyjDDH8pOGCUBtwB1M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/KtUm39nH6QyjDDH8pOGCUBtwB1M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:41:cd:50:b5:1e:f7:d2:1c:2c:2a:87:0d:f9:38:f9:62:7a: 96:09:f8:4e:70:96:ec:00:f3:93:a5:9a:04:51:78:fa:5b:48: d5:a7:ca:ab:a5:ba:bf:ee:ee:70:ae:95:d5:b8:0d:b6:2d:f9: e7:12:e9:53:f5:e8:82:7c:27:ac:9c:da:ee:40:1e:c8:81:e9: 14:d1:d2:3f:71:40:8d:da:c3:eb:51:49:aa:d9:8d:fb:5e:14: 14:7b:c9:a8:f9:97:1e:3e:d6:2b:f1:4c:05:62:b2:02:9a:42: a7:6a:3d:42:f1:07:5f:dd:a3:62:69:d2:cf:07:72:9a:9f:07: a4:ef:77:9f:f3:98:57:09:46:eb:61:f2:f5:54:d5:e9:26:57: 2c:e5:e7:56:28:ee:a2:f3:68:cd:7e:03:c7:b8:74:d8:71:0e: 07:f5:cd:e6:b6:ed:5e:d3:22:6e:09:51:36:5d:71:7d:2d:de: 4b:2d:55:d6:b1:78:c1:d1:f7:98:44:51:7b:b8:97:e9:87:01: 8d:d4:28:a8:be:6c:c2:0d:99:3c:71:bb:d6:a0:88:b6:84:dc: fe:c7:9c:13:ad:48:93:f6:23:4a:1b:b0:cb:6f:f3:96:30:0c: 11:a9:79:a2:b8:21:67:90:aa:c8:1f:ef:9c:bf:85:4f:21:d1: 95:4f:62:95 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBsgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUFBQTAxMTAvBgNVBAUTKDJBRDUyNkRGRDlDN0U5MENBMzBDMzFGQ0E0RTE4MjUw MUI3MDA3NTMwHhcNMjUxMjA2MjExOTA0WhcNMjUxMjEzMjExOTA0WjAYMRYwFAYD VQQDEw02OTM0OWRjOC1mN2VhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr8fwL05xQNYY4LWmAsPglQH4pp2+JEC2RpLeDMjaC8DECjX3/3278APfPnar kFSzJx/mJSAvDsjdbKmigxHDHWf0sHtoFbZum8zw8Y+Hjpq5j0WZtFeJ7JVznmE0 bzWmsq9jY2atfE386MSoxn2HdgIs520BWT8AdAhhiLC3knC+twNN26+8v8lrjylI 8/RCihTWBg9/rti0tfufmR+kTbZO+xBNI8WLyOpNTH3u3lP1RCVmb4ybkhx2HLxA TwLMzdPVLl0m2e1mCSt0FgEEDBZRR/FJnbdAYDLOLjeD+/IYsWyTukd2tbB1auru gPdVf7O3oq6MFp75ny0F/wlxcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBf/IVrO qbOaaDYvXHXb0Iy6yzVZMB8GA1UdIwQYMBaAFCrVJt/Zx+kMowwx/KThglAbcAdT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QUFBMC8yMjgzOTZCQTk1 RjQxMUVCQjMxQjhGNjZDNEY5QUUwMi9LdFVtMzluSDZReWpEREg4cE9HQ1VCdHdC MU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0t0VW0zOW5INlF5akRESDhwT0dDVUJ0d0IxTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QUFBMC8yMjgzOTZCQTk1RjQxMUVCQjMxQjhGNjZDNEY5QUUwMi9LdFVtMzluSDZR eWpEREg4cE9HQ1VCdHdCMU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQClQc1QtR730hwsKocN+Tj5YnqWCfhOcJbsAPOTpZoEUXj6W0jVp8qr pbq/7u5wrpXVuA22LfnnEulT9eiCfCesnNruQB7IgekU0dI/cUCN2sPrUUmq2Y37 XhQUe8mo+ZcePtYr8UwFYrICmkKnaj1C8Qdf3aNiadLPB3Kanwek73ef85hXCUbr YfL1VNXpJlcs5edWKO6i82jNfgPHuHTYcQ4H9c3mtu1e0yJuCVE2XXF9Ld5LLVXW sXjB0feYRFF7uJfphwGN1CiovmzCDZk8cbvWoIi2hNz+x5wTrUiT9iNKG7DLb/OW MAwRqXmiuCFnkKrIH++cv4VPIdGVT2KV -----END CERTIFICATE-----Generated at Sat Dec 6 23:44:12 2025 by rpki-client