This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.mft File: KbaocCpK1kSocQZLZAet5JPmOo0.mft (raw, json) Hash identifier: 3S/K77xb+W0GCS73U5D8JWgiNqx2UZdNQ+at99c/V80= Subject key identifier: 87:41:A4:21:20:FB:21:40:0E:A9:51:FF:2A:98:DD:38:51:DD:62:5B Authority key identifier: 29:B6:A8:70:2A:4A:D6:44:A8:71:06:4B:64:07:AD:E4:93:E6:3A:8D Certificate issuer: /CN=A919EAF3/serialNumber=29B6A8702A4AD644A871064B6407ADE493E63A8D Certificate serial: 19F0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KbaocCpK1kSocQZLZAet5JPmOo0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.mft Manifest number: 19E1 Signing time: Sat 06 Dec 2025 16:00:34 +0000 Manifest this update: Sat 06 Dec 2025 16:00:34 +0000 Manifest next update: Sat 13 Dec 2025 16:00:34 +0000 Files and hashes: 1: KbaocCpK1kSocQZLZAet5JPmOo0.crl (hash: nkb4cdpodOAmntA9T2LGn+9LFvZ3OEP2mHhmTbq8wrY=) 2: E7729178378211EF822BAA6EC4F9AE02.roa (hash: 9LBAFHVyWvEKSALgxe/WVtOrUQqJ4PPcHQSe6I3XcVM=) 3: 92AEE092378211EFAEB6B36DC4F9AE02.roa (hash: vof6OG8sAX0uHAvhetFYEpdSjwUJhtpp1UkP8lk0Gm0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.crl rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KbaocCpK1kSocQZLZAet5JPmOo0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6640 (0x19f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EAF3, serialNumber=29B6A8702A4AD644A871064B6407ADE493E63A8D Validity Not Before: Dec 6 16:00:34 2025 GMT Not After : Dec 13 16:00:34 2025 GMT Subject: CN=69345322-04cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:38:a1:d5:17:67:84:53:11:fe:c6:aa:ff:3d: c6:86:a5:f3:2f:1b:da:cb:1d:f8:24:7b:9b:59:3a: 55:59:e4:68:22:0b:e1:e0:72:06:a7:97:96:e7:a9: 13:75:3f:f4:c6:78:a2:0b:14:38:c6:15:43:9d:ce: 9f:9b:b1:60:15:d1:77:95:9d:9e:c8:7b:4f:f4:ae: ca:b8:90:37:b3:4a:ff:18:0f:13:f1:44:f2:18:ec: 97:23:ad:30:70:ed:ec:33:ea:52:90:a8:93:03:8e: 10:00:d6:cd:68:87:93:6e:24:90:8c:18:4b:25:0a: 26:8e:f4:18:e9:15:33:2e:f4:06:30:4c:8c:d9:e0: cb:5f:7b:ce:5f:0f:6e:b2:2f:b1:24:f7:5d:52:63: a4:70:fd:bc:49:f9:ab:53:0d:b8:09:8e:c2:08:1c: 5c:14:83:7e:b0:e4:fd:10:c1:ff:64:66:8b:2c:04: b0:a7:6e:b7:93:c0:48:6a:fd:eb:81:39:78:2d:56: 79:4d:82:71:61:e7:27:7a:e1:2d:81:e6:2c:c4:7b: d8:1d:05:19:e3:1d:92:83:a5:96:87:48:44:b7:00: e5:47:82:28:bf:54:82:67:52:72:4e:60:b9:ed:7c: 10:9b:e1:78:b7:9d:3a:60:ec:64:4d:43:2f:0b:ed: 6a:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:41:A4:21:20:FB:21:40:0E:A9:51:FF:2A:98:DD:38:51:DD:62:5B X509v3 Authority Key Identifier: keyid:29:B6:A8:70:2A:4A:D6:44:A8:71:06:4B:64:07:AD:E4:93:E6:3A:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KbaocCpK1kSocQZLZAet5JPmOo0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:79:38:93:27:0c:18:30:a5:db:e7:13:7b:e0:41:2e:26:dc: f4:78:1b:91:c7:2d:de:ee:d7:fb:ff:db:c8:70:06:23:55:af: 3c:dc:7e:91:2d:6a:ff:88:c5:41:0e:62:c5:20:3b:6e:27:c3: 89:9d:73:87:6c:de:8f:3e:2d:3a:5c:09:2f:7d:1d:00:dd:bf: 17:fe:17:3f:b2:d6:e3:f9:c2:7f:4f:64:72:d9:6c:fa:fc:a1: 2f:24:c6:e3:a4:87:91:80:94:56:52:e9:a2:62:8b:09:96:2d: b4:f6:e2:9f:22:ae:16:6c:28:f8:f4:9d:48:1c:46:b6:cc:0f: 40:ea:da:8a:64:6a:c7:81:ce:c6:cd:41:ce:0c:65:15:21:91: 51:f0:c7:eb:8d:e4:ae:30:89:36:e8:c4:53:4b:9e:e6:8d:49: eb:dd:cf:82:c3:e7:1a:d4:76:81:9c:b4:ad:49:94:32:84:d6: d2:b5:f5:fd:b6:b7:f9:e5:70:89:b6:cb:3f:62:b3:19:3b:35: 49:e7:fe:4d:60:33:99:d4:1c:ba:79:27:41:6e:c1:33:6d:01: 4f:33:d5:a7:e5:8c:19:09:bb:e3:e6:fe:23:cf:b8:7e:85:0b: 45:c7:ec:5c:42:9c:19:73:5e:0e:2d:a1:a8:e1:2d:34:0e:e7: e7:9b:c6:e0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGfAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVBRjMxMTAvBgNVBAUTKDI5QjZBODcwMkE0QUQ2NDRBODcxMDY0QjY0MDdBREU0 OTNFNjNBOEQwHhcNMjUxMjA2MTYwMDM0WhcNMjUxMjEzMTYwMDM0WjAYMRYwFAYD VQQDEw02OTM0NTMyMi0wNGNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArTih1RdnhFMR/saq/z3GhqXzLxvayx34JHubWTpVWeRoIgvh4HIGp5eW56kT dT/0xniiCxQ4xhVDnc6fm7FgFdF3lZ2eyHtP9K7KuJA3s0r/GA8T8UTyGOyXI60w cO3sM+pSkKiTA44QANbNaIeTbiSQjBhLJQomjvQY6RUzLvQGMEyM2eDLX3vOXw9u si+xJPddUmOkcP28SfmrUw24CY7CCBxcFIN+sOT9EMH/ZGaLLASwp263k8BIav3r gTl4LVZ5TYJxYecneuEtgeYsxHvYHQUZ4x2Sg6WWh0hEtwDlR4Iov1SCZ1JyTmC5 7XwQm+F4t506YOxkTUMvC+1qbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIdBpCEg +yFADqlR/yqY3ThR3WJbMB8GA1UdIwQYMBaAFCm2qHAqStZEqHEGS2QHreST5jqN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUFGMy85M0JCNTAyRTZE MTgxMUU3QTgxNURBODBDNEY5QUUwMi9LYmFvY0NwSzFrU29jUVpMWkFldDVKUG1P bzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0tiYW9jQ3BLMWtTb2NRWkxaQWV0NUpQbU9vMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RUFGMy85M0JCNTAyRTZEMTgxMUU3QTgxNURBODBDNEY5QUUwMi9LYmFvY0NwSzFr U29jUVpMWkFldDVKUG1PbzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCEeTiTJwwYMKXb5xN74EEuJtz0eBuRxy3e7tf7/9vIcAYjVa883H6R LWr/iMVBDmLFIDtuJ8OJnXOHbN6PPi06XAkvfR0A3b8X/hc/stbj+cJ/T2Ry2Wz6 /KEvJMbjpIeRgJRWUumiYosJli209uKfIq4WbCj49J1IHEa2zA9A6tqKZGrHgc7G zUHODGUVIZFR8MfrjeSuMIk26MRTS57mjUnr3c+Cw+ca1HaBnLStSZQyhNbStfX9 trf55XCJtss/YrMZOzVJ5/5NYDOZ1By6eSdBbsEzbQFPM9Wn5YwZCbvj5v4jz7h+ hQtFx+xcQpwZc14OLaGo4S00Dufnm8bg -----END CERTIFICATE-----Generated at Sun Dec 7 02:45:47 2025 by rpki-client