This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2D56/EDBBDFD8C52211F087C7B217C4F9AE02/kbKJkWte97NoabO6gQwkWzZOQ8A.mft File: kbKJkWte97NoabO6gQwkWzZOQ8A.mft (raw, json) Hash identifier: RWnEGUnZdqlJ0/9HoWP5oE2uXtzhl4ZfDb2STBNof1o= Subject key identifier: B7:7F:0C:54:B0:AD:91:08:CB:48:9B:E6:91:21:56:D3:C8:0C:B2:6E Authority key identifier: 91:B2:89:91:6B:5E:F7:B3:68:69:B3:BA:81:0C:24:5B:36:4E:43:C0 Certificate issuer: /CN=A91B2D56/serialNumber=91B289916B5EF7B36869B3BA810C245B364E43C0 Certificate serial: 14 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kbKJkWte97NoabO6gQwkWzZOQ8A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B2D56/EDBBDFD8C52211F087C7B217C4F9AE02/kbKJkWte97NoabO6gQwkWzZOQ8A.mft Manifest number: 12 Signing time: Fri 19 Dec 2025 06:50:42 +0000 Manifest this update: Fri 19 Dec 2025 06:50:41 +0000 Manifest next update: Fri 26 Dec 2025 06:50:41 +0000 Files and hashes: 1: kbKJkWte97NoabO6gQwkWzZOQ8A.crl (hash: 1X81bsdCCDQIl596Vso8WqUervPi79O1VPc9U8GgN/4=) 2: 436251B0C52311F0A1118818C4F9AE02.roa (hash: uZ9eyof3QzVDzi9BWRf2zBi6dJBoVZqfZeDAKMhvj2Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B2D56/EDBBDFD8C52211F087C7B217C4F9AE02/kbKJkWte97NoabO6gQwkWzZOQ8A.crl rsync://rpki.apnic.net/member_repository/A91B2D56/EDBBDFD8C52211F087C7B217C4F9AE02/kbKJkWte97NoabO6gQwkWzZOQ8A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kbKJkWte97NoabO6gQwkWzZOQ8A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 06:50:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20 (0x14) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B2D56, serialNumber=91B289916B5EF7B36869B3BA810C245B364E43C0 Validity Not Before: Dec 19 06:50:41 2025 GMT Not After : Dec 26 06:50:41 2025 GMT Subject: CN=6944f5c2-ef1e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:61:24:65:b5:46:ac:f2:a6:f1:84:79:7c:a9: d9:7c:0c:9c:3f:14:b5:d6:96:d9:54:ee:8b:85:a4: 62:99:8b:d1:33:ad:cd:28:43:06:93:cf:24:a5:a0: 91:39:4f:02:cf:1b:17:72:ad:00:36:d3:43:27:d2: 2d:c3:53:04:42:ec:35:15:3a:ed:39:3d:28:b7:f0: a2:1a:2f:06:30:14:b8:70:09:24:25:bc:38:d9:11: 16:5d:59:c1:8e:47:04:a7:9a:93:63:42:71:62:8e: ac:1c:68:59:7a:01:15:da:4f:fb:97:d3:b0:ba:ea: 69:d4:5c:d0:27:48:ab:7b:19:62:f5:6b:a2:c0:58: 42:66:5d:12:ee:e5:2f:16:61:c4:e6:df:f5:e4:91: ac:bf:0e:bd:cf:95:3a:20:59:6b:e5:65:31:cb:9e: 6c:8e:b5:a1:6d:02:17:07:c0:67:04:c9:f8:d4:bd: 92:52:3a:a7:0a:22:4b:2e:f1:e2:25:dc:ec:98:5d: a7:54:b0:61:40:62:cf:b5:23:6f:91:78:5d:1f:cd: d5:8e:0a:30:a0:d3:17:1f:5e:a6:dc:b3:0a:c6:64: 9d:57:d7:3a:1e:36:ce:e9:04:93:41:04:2f:a1:f9: 1a:ff:64:24:e1:fd:f2:ee:14:b9:65:ca:1d:52:bf: ed:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:7F:0C:54:B0:AD:91:08:CB:48:9B:E6:91:21:56:D3:C8:0C:B2:6E X509v3 Authority Key Identifier: keyid:91:B2:89:91:6B:5E:F7:B3:68:69:B3:BA:81:0C:24:5B:36:4E:43:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B2D56/EDBBDFD8C52211F087C7B217C4F9AE02/kbKJkWte97NoabO6gQwkWzZOQ8A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kbKJkWte97NoabO6gQwkWzZOQ8A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2D56/EDBBDFD8C52211F087C7B217C4F9AE02/kbKJkWte97NoabO6gQwkWzZOQ8A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:0e:29:11:d1:f9:4c:89:b2:af:de:a9:8a:15:c9:83:27:cf: ce:11:7d:39:b2:a6:a0:b3:59:e1:c6:55:3d:2d:b2:ce:64:4d: f2:3d:9a:f6:fa:45:46:d9:49:46:4e:7c:cc:95:59:39:15:28: e1:00:0c:e4:1c:73:c3:47:72:55:5a:4e:e8:e8:c6:0a:30:00: 1b:af:6f:a0:e0:45:af:40:ba:5c:0b:fe:0d:9e:68:f9:ae:b5: 70:54:86:15:26:d9:9f:85:34:83:1f:7d:ba:86:bf:71:c8:67: c7:a6:d9:bd:ad:ca:2c:00:4e:01:2f:dc:8d:20:60:bf:4d:fc: ba:6d:31:6c:1d:fd:a8:3b:58:d4:6a:df:00:78:ef:35:6b:b5: 9d:ee:12:0d:53:8d:79:09:65:64:9a:92:7a:e4:98:3d:5a:e6: 73:87:73:f6:6e:cf:7b:99:39:63:c6:e8:55:74:f2:ed:0e:22: 2a:8e:51:07:d3:d2:3e:a1:ae:38:a5:25:47:14:89:86:81:7c: 3b:0b:13:1b:12:ec:3c:b4:57:71:fd:4e:e5:9d:c9:ff:35:1c: 0b:ea:1f:99:75:8c:7a:5e:8b:0d:b9:24:e5:60:c5:23:e5:f3: fb:2b:fa:8b:71:7e:5f:e6:93:8b:82:ea:48:80:8a:5f:1f:03: 1a:6e:3f:51 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBFDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MkQ1NjExMC8GA1UEBRMoOTFCMjg5OTE2QjVFRjdCMzY4NjlCM0JBODEwQzI0NUIz NjRFNDNDMDAeFw0yNTEyMTkwNjUwNDFaFw0yNTEyMjYwNjUwNDFaMBgxFjAUBgNV BAMMDTY5NDRmNWMyLWVmMWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC8YSRltUas8qbxhHl8qdl8DJw/FLXWltlU7ouFpGKZi9Ezrc0oQwaTzySloJE5 TwLPGxdyrQA200Mn0i3DUwRC7DUVOu05PSi38KIaLwYwFLhwCSQlvDjZERZdWcGO RwSnmpNjQnFijqwcaFl6ARXaT/uX07C66mnUXNAnSKt7GWL1a6LAWEJmXRLu5S8W YcTm3/Xkkay/Dr3PlTogWWvlZTHLnmyOtaFtAhcHwGcEyfjUvZJSOqcKIksu8eIl 3OyYXadUsGFAYs+1I2+ReF0fzdWOCjCg0xcfXqbcswrGZJ1X1zoeNs7pBJNBBC+h +Rr/ZCTh/fLuFLllyh1Sv+2dAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUt38MVLCt kQjLSJvmkSFW08gMsm4wHwYDVR0jBBgwFoAUkbKJkWte97NoabO6gQwkWzZOQ8Aw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIyRDU2L0VEQkJERkQ4QzUy MjExRjA4N0M3QjIxN0M0RjlBRTAyL2tiS0prV3RlOTdOb2FiTzZnUXdrV3paT1E4 QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIva2JLSmtXdGU5N05vYWJPNmdRd2tXelpPUThBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIy RDU2L0VEQkJERkQ4QzUyMjExRjA4N0M3QjIxN0M0RjlBRTAyL2tiS0prV3RlOTdO b2FiTzZnUXdrV3paT1E4QS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHQOKRHR+UyJsq/eqYoVyYMnz84RfTmypqCzWeHGVT0tss5kTfI9mvb6 RUbZSUZOfMyVWTkVKOEADOQcc8NHclVaTujoxgowABuvb6DgRa9AulwL/g2eaPmu tXBUhhUm2Z+FNIMffbqGv3HIZ8em2b2tyiwATgEv3I0gYL9N/LptMWwd/ag7WNRq 3wB47zVrtZ3uEg1TjXkJZWSaknrkmD1a5nOHc/Zuz3uZOWPG6FV08u0OIiqOUQfT 0j6hrjilJUcUiYaBfDsLExsS7Dy0V3H9TuWdyf81HAvqH5l1jHpeiw25JOVgxSPl 8/sr+otxfl/mk4uC6kiAil8fAxpuP1E= -----END CERTIFICATE-----Generated at Sat Dec 20 00:49:53 2025 by rpki-client