This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919C8F9/DC6B3614FE6D11EBB83F2B22C4F9AE02/KUrNCNoZE4w376-ydKHndXceRT4.mft File: KUrNCNoZE4w376-ydKHndXceRT4.mft (raw, json) Hash identifier: E1y9hbfI66Ymt2ZQ06R9wmToifhH1wldaRmV79S/tDQ= Subject key identifier: 1D:9F:7D:DA:01:5A:A9:EE:A3:DA:F4:00:C1:17:05:22:11:D6:C6:9B Authority key identifier: 29:4A:CD:08:DA:19:13:8C:37:EF:AF:B2:74:A1:E7:75:77:1E:45:3E Certificate issuer: /CN=A919C8F9/serialNumber=294ACD08DA19138C37EFAFB274A1E775771E453E Certificate serial: 058D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KUrNCNoZE4w376-ydKHndXceRT4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C8F9/DC6B3614FE6D11EBB83F2B22C4F9AE02/KUrNCNoZE4w376-ydKHndXceRT4.mft Manifest number: 0587 Signing time: Sat 06 Dec 2025 22:02:55 +0000 Manifest this update: Sat 06 Dec 2025 22:02:55 +0000 Manifest next update: Sat 13 Dec 2025 22:02:55 +0000 Files and hashes: 1: KUrNCNoZE4w376-ydKHndXceRT4.crl (hash: Ai2sjutC4EwOz3dRsU4txmOHmp3QVx+Z58Au43Z5C5A=) 2: 2D7BD4EA03DD11ECA448405BC4F9AE02.roa (hash: KKWKrtsh/34nl8r+0Ut1+Gkgstz0StRYtgWm9ide930=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C8F9/DC6B3614FE6D11EBB83F2B22C4F9AE02/KUrNCNoZE4w376-ydKHndXceRT4.crl rsync://rpki.apnic.net/member_repository/A919C8F9/DC6B3614FE6D11EBB83F2B22C4F9AE02/KUrNCNoZE4w376-ydKHndXceRT4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KUrNCNoZE4w376-ydKHndXceRT4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 22:02:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1421 (0x58d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C8F9, serialNumber=294ACD08DA19138C37EFAFB274A1E775771E453E Validity Not Before: Dec 6 22:02:55 2025 GMT Not After : Dec 13 22:02:55 2025 GMT Subject: CN=6934a80f-97ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:11:ac:44:2c:d6:c0:87:94:3a:c6:f4:c3:06: ae:e8:b6:1f:05:ec:5b:59:bf:b7:60:e0:5f:fb:f9: 7e:62:c4:5b:f5:cd:c8:b3:e1:f2:7a:70:97:62:ab: 1a:b5:23:5c:da:a0:08:c9:93:1e:a2:ef:c1:85:78: 9b:39:3a:6c:99:13:f1:b4:aa:5a:02:ea:d6:4a:30: 0a:a3:ec:c1:72:98:68:d1:49:3f:1c:08:36:0c:78: 89:38:c8:28:06:36:4e:cf:41:99:cd:96:e1:f8:05: 82:ba:f7:78:cb:5c:9c:99:f9:7e:cc:b9:96:91:0e: e0:4f:1c:0f:74:48:0b:16:97:da:d8:cf:8f:f8:1d: d1:bb:f1:57:7e:e9:57:a8:df:35:c3:90:df:a0:c2: 3d:c1:61:92:5b:bf:62:d4:88:7a:46:5a:20:97:5f: db:a1:34:8b:53:b0:68:24:ad:ab:8d:65:98:0c:66: 11:cd:f8:7f:21:41:1f:9c:fb:39:fd:67:d3:f2:64: 4f:3e:37:fb:6a:34:1c:d4:b1:9b:eb:10:74:14:41: cb:14:3e:26:c6:6f:ce:da:85:11:5d:10:cc:5f:ce: d5:55:4a:70:50:9a:fe:ac:af:ab:9e:13:97:7c:8b: d2:a2:ce:4f:92:1a:0e:7d:da:eb:fc:1d:47:7c:b6: 12:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:9F:7D:DA:01:5A:A9:EE:A3:DA:F4:00:C1:17:05:22:11:D6:C6:9B X509v3 Authority Key Identifier: keyid:29:4A:CD:08:DA:19:13:8C:37:EF:AF:B2:74:A1:E7:75:77:1E:45:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C8F9/DC6B3614FE6D11EBB83F2B22C4F9AE02/KUrNCNoZE4w376-ydKHndXceRT4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KUrNCNoZE4w376-ydKHndXceRT4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C8F9/DC6B3614FE6D11EBB83F2B22C4F9AE02/KUrNCNoZE4w376-ydKHndXceRT4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:e2:5b:dd:62:98:fe:80:91:ab:8a:71:94:a3:cf:9d:f6:5d: bc:70:d3:27:03:cf:42:d9:a6:6f:df:d4:d9:f4:5a:35:8b:cf: d2:2d:b2:49:e3:f7:69:94:00:86:55:ea:2a:38:10:2b:05:8b: 61:64:9e:ff:ea:2b:12:fd:54:e4:86:c9:fd:ec:9c:77:f2:47: 20:65:2f:ea:45:aa:d9:2e:51:6d:2e:17:fe:5f:75:d6:70:02: f8:45:10:2a:0d:25:72:f8:05:a5:e4:27:0d:27:48:09:f1:d4: 43:cd:24:dd:b0:b9:8a:26:3e:dd:eb:59:dd:46:25:51:b2:d2: bd:7f:cf:83:bc:a4:e7:c4:3a:14:15:3b:bc:29:9a:d3:43:dd: ba:a1:17:67:c7:09:0b:92:6c:19:58:02:80:61:a3:95:36:ea: ad:fd:2c:15:e9:f1:36:a2:8b:cc:15:c3:a0:6b:72:68:f6:d2: 72:41:9a:0d:da:79:05:0d:5f:6d:c0:b5:7a:f9:ab:2f:83:13: 0b:15:e7:44:0a:a8:20:91:07:22:72:6f:ae:39:71:10:22:fc: 9c:7d:a0:f5:a0:8c:c3:03:25:c8:3b:b5:e0:a5:ed:df:91:f5: 91:b5:ad:b5:37:56:8a:fd:b2:68:45:ad:05:15:fe:92:28:ad: 36:1b:27:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBY0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUM4RjkxMTAvBgNVBAUTKDI5NEFDRDA4REExOTEzOEMzN0VGQUZCMjc0QTFFNzc1 NzcxRTQ1M0UwHhcNMjUxMjA2MjIwMjU1WhcNMjUxMjEzMjIwMjU1WjAYMRYwFAYD VQQDEw02OTM0YTgwZi05N2JhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzRGsRCzWwIeUOsb0wwau6LYfBexbWb+3YOBf+/l+YsRb9c3Is+HyenCXYqsa tSNc2qAIyZMeou/BhXibOTpsmRPxtKpaAurWSjAKo+zBcpho0Uk/HAg2DHiJOMgo BjZOz0GZzZbh+AWCuvd4y1ycmfl+zLmWkQ7gTxwPdEgLFpfa2M+P+B3Ru/FXfulX qN81w5DfoMI9wWGSW79i1Ih6Rlogl1/boTSLU7BoJK2rjWWYDGYRzfh/IUEfnPs5 /WfT8mRPPjf7ajQc1LGb6xB0FEHLFD4mxm/O2oURXRDMX87VVUpwUJr+rK+rnhOX fIvSos5PkhoOfdrr/B1HfLYSbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB2ffdoB Wqnuo9r0AMEXBSIR1sabMB8GA1UdIwQYMBaAFClKzQjaGROMN++vsnSh53V3HkU+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzhGOS9EQzZCMzYxNEZF NkQxMUVCQjgzRjJCMjJDNEY5QUUwMi9LVXJOQ05vWkU0dzM3Ni15ZEtIbmRYY2VS VDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tVck5DTm9aRTR3Mzc2LXlkS0huZFhjZVJUNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QzhGOS9EQzZCMzYxNEZFNkQxMUVCQjgzRjJCMjJDNEY5QUUwMi9LVXJOQ05vWkU0 dzM3Ni15ZEtIbmRYY2VSVDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBb4lvdYpj+gJGrinGUo8+d9l28cNMnA89C2aZv39TZ9Fo1i8/SLbJJ 4/dplACGVeoqOBArBYthZJ7/6isS/VTkhsn97Jx38kcgZS/qRarZLlFtLhf+X3XW cAL4RRAqDSVy+AWl5CcNJ0gJ8dRDzSTdsLmKJj7d61ndRiVRstK9f8+DvKTnxDoU FTu8KZrTQ926oRdnxwkLkmwZWAKAYaOVNuqt/SwV6fE2oovMFcOga3Jo9tJyQZoN 2nkFDV9twLV6+asvgxMLFedECqggkQcicm+uOXEQIvycfaD1oIzDAyXIO7Xgpe3f kfWRta21N1aK/bJoRa0FFf6SKK02Gydi -----END CERTIFICATE-----Generated at Sun Dec 7 02:40:08 2025 by rpki-client