This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914C002/C01D0C0CA92511EEAC4BDB57C4F9AE02/kkogF1ZK2vsiNqIPv3Otoblr_zM.mft File: kkogF1ZK2vsiNqIPv3Otoblr_zM.mft (raw, json) Hash identifier: zfIv1d2tYGbvBM6tSxa+5jJxR/k7WziLZ5TLkurfl2c= Subject key identifier: BC:AC:F7:13:C1:28:74:36:D5:F9:C3:B0:0A:8E:7B:0C:5C:B6:B8:B5 Authority key identifier: 92:4A:20:17:56:4A:DA:FB:22:36:A2:0F:BF:73:AD:A1:B9:6B:FF:33 Certificate issuer: /CN=A914C002/serialNumber=924A2017564ADAFB2236A20FBF73ADA1B96BFF33 Certificate serial: 0182 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kkogF1ZK2vsiNqIPv3Otoblr_zM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C002/C01D0C0CA92511EEAC4BDB57C4F9AE02/kkogF1ZK2vsiNqIPv3Otoblr_zM.mft Manifest number: 0179 Signing time: Sun 21 Dec 2025 03:03:03 +0000 Manifest this update: Sun 21 Dec 2025 03:03:03 +0000 Manifest next update: Sun 28 Dec 2025 03:03:03 +0000 Files and hashes: 1: kkogF1ZK2vsiNqIPv3Otoblr_zM.crl (hash: YmR1lChe92qwBT8MsTcRdd2zV4te4csyac+h5nT5w4M=) 2: 6AA56694CFE311EFBFBFBD4EC4F9AE02.roa (hash: ZYnpWtFc5GmEGP0oZLW3Cph9iucd5VjZwl7K3jSPiKs=) 3: 51CC36BAC91811EF9DBC1A87C4F9AE02.roa (hash: WkTewr/cvgKrRlRAZtUZxcpYcDyS2cvO3ZWEnp3vqOY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C002/C01D0C0CA92511EEAC4BDB57C4F9AE02/kkogF1ZK2vsiNqIPv3Otoblr_zM.crl rsync://rpki.apnic.net/member_repository/A914C002/C01D0C0CA92511EEAC4BDB57C4F9AE02/kkogF1ZK2vsiNqIPv3Otoblr_zM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kkogF1ZK2vsiNqIPv3Otoblr_zM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 03:03:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 386 (0x182) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C002, serialNumber=924A2017564ADAFB2236A20FBF73ADA1B96BFF33 Validity Not Before: Dec 21 03:03:03 2025 GMT Not After : Dec 28 03:03:03 2025 GMT Subject: CN=69476367-3fbb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:52:ac:cd:0f:d5:71:0b:56:32:b5:f1:a9:f7: 6b:95:8c:f0:dc:7a:e6:43:a3:18:27:9b:90:e5:00: 0f:26:7e:64:51:37:97:c5:31:18:b4:4d:cc:3d:45: b0:2c:e1:ec:b5:13:a3:dd:b9:54:ab:14:bf:db:f4: 2c:af:c5:84:8d:5a:3b:b4:3d:4d:0d:26:8b:6f:1a: 57:9e:d7:2c:f4:7b:34:9d:07:3e:74:b9:8e:de:dc: 06:8f:1d:95:8a:de:8b:74:d3:df:0e:91:2c:2a:43: 8f:38:a5:bd:f8:ad:de:b8:33:54:a0:78:25:54:68: 9f:a6:2c:ad:a8:6f:7b:a5:00:fb:5d:74:3e:93:9f: 17:09:06:6d:c9:3d:82:8a:55:9f:52:8b:08:88:ed: 62:31:8f:db:a3:61:c6:60:ae:c0:a7:11:1c:08:82: e5:cb:8a:03:44:d5:67:be:b7:0e:dc:8d:67:74:e5: 55:df:4e:ab:be:c6:16:e6:6f:07:8d:13:63:a9:64: 34:82:ff:e4:e4:f5:8d:29:c8:53:7d:0a:61:2f:d1: b7:a5:bc:93:c3:a1:4c:a5:d0:63:71:ea:22:f8:fe: 64:49:13:5c:ac:81:79:f4:fa:8c:53:bb:7c:80:4e: 0d:f8:24:46:fe:56:ec:5e:dd:d2:40:55:2c:39:1d: 8e:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:AC:F7:13:C1:28:74:36:D5:F9:C3:B0:0A:8E:7B:0C:5C:B6:B8:B5 X509v3 Authority Key Identifier: keyid:92:4A:20:17:56:4A:DA:FB:22:36:A2:0F:BF:73:AD:A1:B9:6B:FF:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C002/C01D0C0CA92511EEAC4BDB57C4F9AE02/kkogF1ZK2vsiNqIPv3Otoblr_zM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kkogF1ZK2vsiNqIPv3Otoblr_zM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C002/C01D0C0CA92511EEAC4BDB57C4F9AE02/kkogF1ZK2vsiNqIPv3Otoblr_zM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:c4:a6:13:f1:91:e8:1c:af:c7:72:22:25:8f:bc:4c:39:cf: e4:01:99:eb:f7:f5:96:6e:79:e8:c1:1c:3a:eb:63:ef:fa:b2: 5d:28:97:9a:9f:4b:31:7c:43:c5:e2:09:8f:d1:96:23:10:26: 16:78:b7:84:8b:76:62:ac:b5:23:3f:24:e5:f0:45:de:cc:92: d9:8c:af:49:3d:a8:98:91:68:f4:93:21:f4:ef:f0:bd:75:5f: 3f:23:cd:e7:6e:64:0b:06:ea:fb:b3:0c:a3:7f:15:19:04:54: 97:41:9f:ea:c8:00:eb:0a:db:22:95:a6:45:2e:3c:23:c0:f2: 88:24:75:02:3c:b7:c1:76:b5:a0:e4:ca:0a:17:6d:40:11:db: c2:c2:77:b7:46:db:be:fb:a8:42:8d:fc:d2:1a:65:77:c7:b1: 50:da:e5:5f:64:d2:4f:62:d5:fc:77:12:95:cd:e6:12:f2:7a: c9:5d:b4:5f:0c:2b:5c:0d:dc:ca:c6:8b:5a:6b:f3:63:b8:5b: bf:34:90:16:7a:61:1a:33:f8:5e:29:65:5b:cb:2e:d6:36:88: 3b:e1:7c:2a:74:cc:d4:a7:59:50:00:05:cf:88:41:78:8c:3c: 8b:19:01:40:42:67:99:36:84:ce:b4:cf:66:aa:a7:7d:02:86: 8d:10:20:e9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEMwMDIxMTAvBgNVBAUTKDkyNEEyMDE3NTY0QURBRkIyMjM2QTIwRkJGNzNBREEx Qjk2QkZGMzMwHhcNMjUxMjIxMDMwMzAzWhcNMjUxMjI4MDMwMzAzWjAYMRYwFAYD VQQDDA02OTQ3NjM2Ny0zZmJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq1KszQ/VcQtWMrXxqfdrlYzw3HrmQ6MYJ5uQ5QAPJn5kUTeXxTEYtE3MPUWw LOHstROj3blUqxS/2/Qsr8WEjVo7tD1NDSaLbxpXntcs9Hs0nQc+dLmO3twGjx2V it6LdNPfDpEsKkOPOKW9+K3euDNUoHglVGifpiytqG97pQD7XXQ+k58XCQZtyT2C ilWfUosIiO1iMY/bo2HGYK7ApxEcCILly4oDRNVnvrcO3I1ndOVV306rvsYW5m8H jRNjqWQ0gv/k5PWNKchTfQphL9G3pbyTw6FMpdBjceoi+P5kSRNcrIF59PqMU7t8 gE4N+CRG/lbsXt3SQFUsOR2ObwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLys9xPB KHQ21fnDsAqOewxctri1MB8GA1UdIwQYMBaAFJJKIBdWStr7IjaiD79zraG5a/8z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzAwMi9DMDFEMEMwQ0E5 MjUxMUVFQUM0QkRCNTdDNEY5QUUwMi9ra29nRjFaSzJ2c2lOcUlQdjNPdG9ibHJf ek0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2trb2dGMVpLMnZzaU5xSVB2M090b2Jscl96TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzAwMi9DMDFEMEMwQ0E5MjUxMUVFQUM0QkRCNTdDNEY5QUUwMi9ra29nRjFaSzJ2 c2lOcUlQdjNPdG9ibHJfek0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAyxKYT8ZHoHK/HciIlj7xMOc/kAZnr9/WWbnnowRw662Pv+rJdKJea n0sxfEPF4gmP0ZYjECYWeLeEi3ZirLUjPyTl8EXezJLZjK9JPaiYkWj0kyH07/C9 dV8/I83nbmQLBur7swyjfxUZBFSXQZ/qyADrCtsilaZFLjwjwPKIJHUCPLfBdrWg 5MoKF21AEdvCwne3Rtu++6hCjfzSGmV3x7FQ2uVfZNJPYtX8dxKVzeYS8nrJXbRf DCtcDdzKxotaa/NjuFu/NJAWemEaM/heKWVbyy7WNog74XwqdMzUp1lQAAXPiEF4 jDyLGQFAQmeZNoTOtM9mqqd9AoaNECDp -----END CERTIFICATE-----Generated at Tue Dec 23 00:45:25 2025 by rpki-client