This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB6E3/A22C814CC27511EDB3B4D728C4F9AE02/kZ-oGbL_8UVSGvZkA1J45-eRSkk.mft File: kZ-oGbL_8UVSGvZkA1J45-eRSkk.mft (raw, json) Hash identifier: g356b8egyZ1GUseXsCuAShkbQD7dGgvuUjlw6y9k1pE= Subject key identifier: 36:85:48:DC:64:7B:A4:95:BC:2D:BF:0C:A6:55:79:3B:D2:3D:FB:DD Authority key identifier: 91:9F:A8:19:B2:FF:F1:45:52:1A:F6:64:03:52:78:E7:E7:91:4A:49 Certificate issuer: /CN=A91BB6E3/serialNumber=919FA819B2FFF145521AF664035278E7E7914A49 Certificate serial: 0234 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kZ-oGbL_8UVSGvZkA1J45-eRSkk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB6E3/A22C814CC27511EDB3B4D728C4F9AE02/kZ-oGbL_8UVSGvZkA1J45-eRSkk.mft Manifest number: 021F Signing time: Mon 29 Dec 2025 01:26:46 +0000 Manifest this update: Mon 29 Dec 2025 01:26:46 +0000 Manifest next update: Mon 05 Jan 2026 01:26:46 +0000 Files and hashes: 1: kZ-oGbL_8UVSGvZkA1J45-eRSkk.crl (hash: gOqqX0V85yzk5yHSAWYt6xBh4eY2N6kLFdoih2L/tEA=) 2: F96174ECC27D11EDB8226F2DC4F9AE02.roa (hash: kXeNIsHETQcXUic6LYufG6XvgVMVgH9sGtHQdmkZT90=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB6E3/A22C814CC27511EDB3B4D728C4F9AE02/kZ-oGbL_8UVSGvZkA1J45-eRSkk.crl rsync://rpki.apnic.net/member_repository/A91BB6E3/A22C814CC27511EDB3B4D728C4F9AE02/kZ-oGbL_8UVSGvZkA1J45-eRSkk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kZ-oGbL_8UVSGvZkA1J45-eRSkk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 Jan 2026 01:26:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 564 (0x234) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB6E3, serialNumber=919FA819B2FFF145521AF664035278E7E7914A49 Validity Not Before: Dec 29 01:26:46 2025 GMT Not After : Jan 5 01:26:46 2026 GMT Subject: CN=6951d8d6-ebfa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:af:63:ee:f7:9d:0b:84:91:9b:ae:35:06:d7: d4:b5:f6:c6:60:18:66:7e:30:95:b4:06:d4:83:d7: 2b:34:58:c4:a9:4e:68:43:51:1d:89:0f:2f:ca:ce: 1b:c3:4e:22:2a:8f:0a:f1:4c:24:41:5e:8a:01:c5: 23:34:53:36:d4:18:a4:90:30:e2:4a:f6:b6:d1:aa: c8:cf:c7:c6:ab:f4:4e:37:52:df:aa:07:13:cc:27: 36:2e:bc:c4:f5:cd:11:70:03:eb:0f:84:94:13:f0: 17:e9:00:14:2a:0b:67:45:c1:8c:e4:c8:1b:33:2b: 42:86:ed:19:97:3d:de:9b:dd:0b:cf:dc:0a:aa:67: 74:4a:d7:a4:86:f2:dd:9a:55:6f:b2:2c:ed:e7:77: 2f:db:f8:9c:1e:98:31:a4:d9:16:0b:36:79:08:37: 63:e6:92:5c:1d:ca:05:2c:a0:c6:e3:3f:d4:0c:9b: 6a:8a:a8:1b:52:39:d5:0a:cd:21:1e:56:1e:f9:a3: c9:58:87:78:f4:a2:3c:2a:ae:d9:12:ef:aa:fd:d0: 19:92:11:6b:a0:39:03:a0:46:3b:f9:3e:f8:ef:21: fe:bd:45:42:00:4b:a1:74:74:0a:d4:30:f2:b7:35: 6c:f8:cd:f6:c3:89:b3:46:bc:0e:f1:01:4d:b4:08: df:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:85:48:DC:64:7B:A4:95:BC:2D:BF:0C:A6:55:79:3B:D2:3D:FB:DD X509v3 Authority Key Identifier: keyid:91:9F:A8:19:B2:FF:F1:45:52:1A:F6:64:03:52:78:E7:E7:91:4A:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB6E3/A22C814CC27511EDB3B4D728C4F9AE02/kZ-oGbL_8UVSGvZkA1J45-eRSkk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kZ-oGbL_8UVSGvZkA1J45-eRSkk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB6E3/A22C814CC27511EDB3B4D728C4F9AE02/kZ-oGbL_8UVSGvZkA1J45-eRSkk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:e3:ef:5a:75:3b:f9:49:8d:79:90:5c:46:79:94:9e:42:1e: 04:6b:36:69:5b:bd:fd:47:65:af:c2:12:b2:ea:e3:74:74:76: 75:70:7a:c7:a8:6b:52:69:95:41:d3:c4:e8:dd:3e:70:a4:51: 7b:84:53:26:4e:e6:7e:02:07:00:25:6f:c6:18:a9:fd:51:5f: e5:ae:9b:30:7a:dd:b6:a4:19:ce:8f:b7:c1:b4:f3:a5:59:c5: 13:d4:30:1c:bd:83:46:22:c1:9b:06:86:78:a1:0d:f4:e0:ef: b4:e8:9e:08:ec:c7:c8:ac:eb:db:e2:ec:26:4e:85:9f:89:f8: b5:6d:e3:04:3a:73:a3:1d:79:14:aa:de:53:22:54:33:3d:b7: 32:f4:09:48:49:b6:7c:5b:e7:c2:48:ef:84:9f:7b:bb:bd:2a: 7a:7d:98:83:9d:2c:2f:30:8b:bd:2b:30:e8:f1:ce:bf:97:6e: 08:ee:41:2d:a7:7c:93:09:67:46:33:8e:49:58:b4:19:a6:84: f7:39:1b:a3:ef:53:9c:d0:98:a3:e4:4b:f2:42:c2:52:4f:7b: 55:f7:61:12:aa:31:af:bb:1b:55:d2:5e:5b:01:81:d3:22:dc: f0:d6:e5:47:44:fa:61:43:5e:38:ca:dc:6f:be:d6:22:7b:89: 57:78:9e:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI2RTMxMTAvBgNVBAUTKDkxOUZBODE5QjJGRkYxNDU1MjFBRjY2NDAzNTI3OEU3 RTc5MTRBNDkwHhcNMjUxMjI5MDEyNjQ2WhcNMjYwMTA1MDEyNjQ2WjAYMRYwFAYD VQQDDA02OTUxZDhkNi1lYmZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn69j7vedC4SRm641BtfUtfbGYBhmfjCVtAbUg9crNFjEqU5oQ1EdiQ8vys4b w04iKo8K8UwkQV6KAcUjNFM21BikkDDiSva20arIz8fGq/RON1LfqgcTzCc2LrzE 9c0RcAPrD4SUE/AX6QAUKgtnRcGM5MgbMytChu0Zlz3em90Lz9wKqmd0StekhvLd mlVvsizt53cv2/icHpgxpNkWCzZ5CDdj5pJcHcoFLKDG4z/UDJtqiqgbUjnVCs0h HlYe+aPJWId49KI8Kq7ZEu+q/dAZkhFroDkDoEY7+T747yH+vUVCAEuhdHQK1DDy tzVs+M32w4mzRrwO8QFNtAjf9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDaFSNxk e6SVvC2/DKZVeTvSPfvdMB8GA1UdIwQYMBaAFJGfqBmy//FFUhr2ZANSeOfnkUpJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjZFMy9BMjJDODE0Q0My NzUxMUVEQjNCNEQ3MjhDNEY5QUUwMi9rWi1vR2JMXzhVVlNHdlprQTFKNDUtZVJT a2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2taLW9HYkxfOFVWU0d2WmtBMUo0NS1lUlNray5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjZFMy9BMjJDODE0Q0MyNzUxMUVEQjNCNEQ3MjhDNEY5QUUwMi9rWi1vR2JMXzhV VlNHdlprQTFKNDUtZVJTa2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCb4+9adTv5SY15kFxGeZSeQh4EazZpW739R2WvwhKy6uN0dHZ1cHrH qGtSaZVB08To3T5wpFF7hFMmTuZ+AgcAJW/GGKn9UV/lrpswet22pBnOj7fBtPOl WcUT1DAcvYNGIsGbBoZ4oQ304O+06J4I7MfIrOvb4uwmToWfifi1beMEOnOjHXkU qt5TIlQzPbcy9AlISbZ8W+fCSO+En3u7vSp6fZiDnSwvMIu9KzDo8c6/l24I7kEt p3yTCWdGM45JWLQZpoT3ORuj71Oc0Jij5EvyQsJST3tV92ESqjGvuxtV0l5bAYHT Itzw1uVHRPphQ144ytxvvtYie4lXeJ5P -----END CERTIFICATE-----Generated at Wed Dec 31 02:15:03 2025 by rpki-client