This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBA0E/DBBED206C00511EDA255FA10C4F9AE02/km2a3G-4c9dlu0EicoDB8RhG7hc.mft File: km2a3G-4c9dlu0EicoDB8RhG7hc.mft (raw, json) Hash identifier: TO/eeyptlK8ndH32T4a03305Xws11VCkeoyy6NMb/Y4= Subject key identifier: 60:97:7E:BD:7B:4F:C2:74:0E:53:D4:84:18:50:DB:A9:08:0E:1F:31 Authority key identifier: 92:6D:9A:DC:6F:B8:73:D7:65:BB:41:22:72:80:C1:F1:18:46:EE:17 Certificate issuer: /CN=A91EBA0E/serialNumber=926D9ADC6FB873D765BB41227280C1F11846EE17 Certificate serial: 0219 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/km2a3G-4c9dlu0EicoDB8RhG7hc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBA0E/DBBED206C00511EDA255FA10C4F9AE02/km2a3G-4c9dlu0EicoDB8RhG7hc.mft Manifest number: 020E Signing time: Fri 05 Dec 2025 00:42:30 +0000 Manifest this update: Fri 05 Dec 2025 00:42:30 +0000 Manifest next update: Fri 12 Dec 2025 00:42:30 +0000 Files and hashes: 1: km2a3G-4c9dlu0EicoDB8RhG7hc.crl (hash: vejQ02amrXllumW6d0panM5QU7fDDt8/1koQrJDzA8I=) 2: 1B5E26228FA911EF90043A7CC4F9AE02.roa (hash: B6AplExmLrIT4R5ziT3lWEDw+OK86D2hSg+6JuEpzR0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBA0E/DBBED206C00511EDA255FA10C4F9AE02/km2a3G-4c9dlu0EicoDB8RhG7hc.crl rsync://rpki.apnic.net/member_repository/A91EBA0E/DBBED206C00511EDA255FA10C4F9AE02/km2a3G-4c9dlu0EicoDB8RhG7hc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/km2a3G-4c9dlu0EicoDB8RhG7hc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 00:42:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 537 (0x219) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBA0E, serialNumber=926D9ADC6FB873D765BB41227280C1F11846EE17 Validity Not Before: Dec 5 00:42:30 2025 GMT Not After : Dec 12 00:42:30 2025 GMT Subject: CN=69322a76-64c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:6b:c3:ac:14:84:05:74:db:21:f0:bd:88:6b: 5e:8a:3c:7a:46:c6:d3:20:92:ed:d1:98:69:6b:79: 50:6d:ff:f1:7b:77:0f:bd:7b:6b:5c:9a:01:76:2c: a0:b0:8c:b7:58:53:d5:57:33:96:69:11:b7:d9:53: 89:97:d2:05:54:d6:28:ef:f4:99:68:de:d9:f3:29: 8e:73:52:b7:08:7f:e0:c2:b1:7f:0d:29:f8:00:91: 7d:8d:b6:2d:87:11:68:80:be:6a:25:3b:f4:7d:56: cf:6c:42:db:2b:6b:4e:be:59:ac:24:fe:3d:83:47: ab:5b:1b:b9:f6:d0:c6:4f:ac:0b:4b:1c:01:72:8b: 2f:6e:38:79:d3:12:fe:ad:70:8c:6f:b0:02:89:2e: 81:bd:13:05:f8:be:f5:7a:47:24:9c:26:82:8c:1f: 8c:86:4e:8e:93:0b:f3:7a:31:7a:a7:df:d1:c4:42: 4d:4a:95:13:ef:6c:ba:8b:05:05:9b:0c:97:7c:41: bf:03:96:ff:6f:8d:75:7a:fc:f6:ff:5b:e0:3e:1a: 36:04:49:fe:46:9c:14:f5:de:c3:22:19:2d:aa:a5: 23:57:06:ed:8e:28:5b:6e:35:92:ee:99:ec:38:7e: d8:f9:74:e4:5f:4a:59:31:d2:ac:b3:17:62:6f:7e: f9:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:97:7E:BD:7B:4F:C2:74:0E:53:D4:84:18:50:DB:A9:08:0E:1F:31 X509v3 Authority Key Identifier: keyid:92:6D:9A:DC:6F:B8:73:D7:65:BB:41:22:72:80:C1:F1:18:46:EE:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBA0E/DBBED206C00511EDA255FA10C4F9AE02/km2a3G-4c9dlu0EicoDB8RhG7hc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/km2a3G-4c9dlu0EicoDB8RhG7hc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBA0E/DBBED206C00511EDA255FA10C4F9AE02/km2a3G-4c9dlu0EicoDB8RhG7hc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:3d:ca:4f:b3:1d:ba:eb:49:58:9a:0a:e0:4c:db:9b:25:68: ee:08:c8:87:9c:1a:2a:68:f8:10:e8:c9:44:db:c2:f9:5d:fb: bb:9f:b8:ed:f1:5b:31:41:b4:ad:79:b9:f8:86:4c:7c:07:11: 8c:76:53:06:88:97:58:aa:cf:06:38:dd:40:69:61:31:70:a9: 98:2a:fe:72:e9:2c:42:8e:35:1d:2e:de:0e:49:a0:79:20:35: 6d:8c:fb:e3:1f:8d:79:13:3b:62:a0:a3:f9:fc:48:2b:54:c8: ce:e4:d1:ce:db:fd:bc:9c:43:2e:b7:2b:a5:90:41:ff:dc:76: a5:29:5e:01:b0:04:fc:f3:ba:82:dc:1f:0d:2b:49:c1:66:d1: 74:26:7a:4d:62:96:4b:98:04:c0:0d:ad:cc:3b:1d:42:ac:49: bc:63:8f:84:1b:63:33:6a:c5:32:0f:b7:71:b8:30:13:9b:9c: 00:b2:cc:40:01:a2:59:1e:1f:2f:b9:20:7e:91:f3:9f:c9:5c: 0e:e9:d2:8a:e6:72:40:74:f1:fa:15:e0:72:e8:aa:30:83:98: a3:de:85:7b:4f:5c:64:56:70:ba:9b:16:66:64:f9:c2:c3:aa: 68:50:76:37:da:a8:0e:40:92:e8:41:b5:a5:95:65:92:1b:be: 83:6f:9b:9b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJBMEUxMTAvBgNVBAUTKDkyNkQ5QURDNkZCODczRDc2NUJCNDEyMjcyODBDMUYx MTg0NkVFMTcwHhcNMjUxMjA1MDA0MjMwWhcNMjUxMjEyMDA0MjMwWjAYMRYwFAYD VQQDEw02OTMyMmE3Ni02NGM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA42vDrBSEBXTbIfC9iGteijx6RsbTIJLt0Zhpa3lQbf/xe3cPvXtrXJoBdiyg sIy3WFPVVzOWaRG32VOJl9IFVNYo7/SZaN7Z8ymOc1K3CH/gwrF/DSn4AJF9jbYt hxFogL5qJTv0fVbPbELbK2tOvlmsJP49g0erWxu59tDGT6wLSxwBcosvbjh50xL+ rXCMb7ACiS6BvRMF+L71ekcknCaCjB+Mhk6OkwvzejF6p9/RxEJNSpUT72y6iwUF mwyXfEG/A5b/b411evz2/1vgPho2BEn+RpwU9d7DIhktqqUjVwbtjihbbjWS7pns OH7Y+XTkX0pZMdKssxdib375RwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGCXfr17 T8J0DlPUhBhQ26kIDh8xMB8GA1UdIwQYMBaAFJJtmtxvuHPXZbtBInKAwfEYRu4X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkEwRS9EQkJFRDIwNkMw MDUxMUVEQTI1NUZBMTBDNEY5QUUwMi9rbTJhM0ctNGM5ZGx1MEVpY29EQjhSaEc3 aGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ttMmEzRy00YzlkbHUwRWljb0RCOFJoRzdoYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkEwRS9EQkJFRDIwNkMwMDUxMUVEQTI1NUZBMTBDNEY5QUUwMi9rbTJhM0ctNGM5 ZGx1MEVpY29EQjhSaEc3aGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBEPcpPsx2660lYmgrgTNubJWjuCMiHnBoqaPgQ6MlE28L5Xfu7n7jt 8VsxQbStebn4hkx8BxGMdlMGiJdYqs8GON1AaWExcKmYKv5y6SxCjjUdLt4OSaB5 IDVtjPvjH415EztioKP5/EgrVMjO5NHO2/28nEMutyulkEH/3HalKV4BsAT887qC 3B8NK0nBZtF0JnpNYpZLmATADa3MOx1CrEm8Y4+EG2MzasUyD7dxuDATm5wAssxA AaJZHh8vuSB+kfOfyVwO6dKK5nJAdPH6FeBy6Kowg5ij3oV7T1xkVnC6mxZmZPnC w6poUHY32qgOQJLoQbWllWWSG76Db5ub -----END CERTIFICATE-----Generated at Sat Dec 6 18:08:01 2025 by rpki-client