This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE323/9E61E424525F11EE80BA0D74C4F9AE02/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.mft File: kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.mft (raw, json) Hash identifier: hxMANmp0EGTJI8bCA1VAFEN7TTJdXTcPxHnnlHdOEmc= Subject key identifier: 90:46:06:68:3F:EE:25:E1:91:E5:C3:AF:45:28:96:38:87:A4:F5:FB Authority key identifier: 93:04:23:4E:73:90:49:14:3A:85:91:A3:74:5A:53:E4:B9:2A:D8:D8 Certificate issuer: /CN=A91DE323/serialNumber=9304234E739049143A8591A3745A53E4B92AD8D8 Certificate serial: 01B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE323/9E61E424525F11EE80BA0D74C4F9AE02/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.mft Manifest number: 01B1 Signing time: Sun 21 Dec 2025 02:28:16 +0000 Manifest this update: Sun 21 Dec 2025 02:28:15 +0000 Manifest next update: Sun 28 Dec 2025 02:28:15 +0000 Files and hashes: 1: kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.crl (hash: tsRMrrW1BOzc6NyaYby5R6+Wj5gCw8SuvTmWAtuNX4M=) 2: 3AB9E692C0D211EEB7BBBE4FC4F9AE02.roa (hash: A0mC9X2UnmVuFudZOyuXLKDdp8UzNcimAQJMyA4hcow=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE323/9E61E424525F11EE80BA0D74C4F9AE02/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.crl rsync://rpki.apnic.net/member_repository/A91DE323/9E61E424525F11EE80BA0D74C4F9AE02/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 02:28:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 440 (0x1b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE323, serialNumber=9304234E739049143A8591A3745A53E4B92AD8D8 Validity Not Before: Dec 21 02:28:15 2025 GMT Not After : Dec 28 02:28:15 2025 GMT Subject: CN=69475b3f-d70f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:94:23:90:29:22:cb:65:3f:a4:a2:99:50:51: cf:80:ba:22:38:e6:ef:9b:65:45:7c:85:db:9a:f3: f5:2f:62:ff:ca:ec:38:dc:63:d6:b3:0a:9f:6d:e6: 15:87:bd:b1:04:48:d9:2d:51:9d:cc:6e:20:7a:71: c8:8b:1b:46:f5:5a:fa:c8:49:67:75:0f:87:2e:86: 54:2f:c0:b6:64:3d:ef:6e:35:56:5a:e3:78:69:4e: 64:9b:53:6c:81:3e:19:6b:39:56:36:f5:14:69:85: 52:59:a5:8a:da:01:d6:86:84:25:fb:19:ae:1d:c5: 07:dc:20:05:b3:b3:85:77:0e:72:73:fc:4a:48:80: f8:43:3b:0f:b5:5b:57:80:ee:71:94:93:9d:36:65: 25:50:a0:02:b8:98:e8:ce:c5:86:6f:40:6c:2e:48: 64:46:24:c7:78:80:0f:d6:99:d4:a5:2e:bc:17:c8: c2:f3:c8:28:90:c2:85:f0:51:0c:a6:eb:3f:e7:25: 9b:5f:1e:56:18:cb:16:86:57:4b:51:38:ae:af:c0: a8:7e:f6:e6:48:a8:cb:ad:e8:bb:55:87:6f:74:59: 03:13:09:80:b5:75:6d:bb:b1:f2:9a:92:9b:7b:fe: ee:de:b4:60:1b:7e:00:6f:c2:7c:e7:35:00:b2:8d: d8:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:46:06:68:3F:EE:25:E1:91:E5:C3:AF:45:28:96:38:87:A4:F5:FB X509v3 Authority Key Identifier: keyid:93:04:23:4E:73:90:49:14:3A:85:91:A3:74:5A:53:E4:B9:2A:D8:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE323/9E61E424525F11EE80BA0D74C4F9AE02/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE323/9E61E424525F11EE80BA0D74C4F9AE02/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:2b:92:c9:c7:32:1a:73:cc:8e:d1:e6:74:d6:e4:59:a8:b8: 47:8d:f8:a6:ec:68:e2:10:85:3f:fc:ff:5e:3a:83:b2:f0:92: 8c:8d:51:cc:58:2f:2f:a7:a7:3e:85:e6:97:ef:6a:fb:aa:6f: 61:a0:2c:82:ee:8b:15:a5:27:d3:8a:4b:e0:58:dd:af:87:72: 95:06:1d:57:88:45:48:3a:f4:34:e7:f8:2e:39:fe:cb:f8:54: 96:a7:e3:45:90:2c:9a:eb:e6:24:a1:2a:dd:b7:a1:0c:11:8c: 22:b5:7f:10:ae:6f:de:91:ac:b9:00:1b:37:b2:28:1e:09:0f: 85:02:05:60:17:21:ec:4e:97:f6:bb:da:af:a1:32:f5:ee:48: 70:b8:1d:6a:90:c1:37:63:16:81:a4:45:9e:41:f7:20:fe:a1: 24:3f:2f:17:9f:43:41:93:c4:f1:12:12:bc:ae:2c:34:df:01: d3:99:53:3a:05:0e:a0:b1:52:55:b3:4c:51:45:48:b2:8b:16: 28:da:5a:dd:7c:d2:a3:ae:98:ec:c6:9a:da:9a:3b:3f:61:f3: 06:08:cf:23:09:e9:a9:f9:4a:66:b2:59:57:cd:4a:04:2e:ef: cb:ef:f8:d9:94:72:00:8e:2d:3f:bb:0b:6a:5e:ce:fa:e2:7f: 3e:73:1f:23 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REUzMjMxMTAvBgNVBAUTKDkzMDQyMzRFNzM5MDQ5MTQzQTg1OTFBMzc0NUE1M0U0 QjkyQUQ4RDgwHhcNMjUxMjIxMDIyODE1WhcNMjUxMjI4MDIyODE1WjAYMRYwFAYD VQQDDA02OTQ3NWIzZi1kNzBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqpQjkCkiy2U/pKKZUFHPgLoiOObvm2VFfIXbmvP1L2L/yuw43GPWswqfbeYV h72xBEjZLVGdzG4genHIixtG9Vr6yElndQ+HLoZUL8C2ZD3vbjVWWuN4aU5km1Ns gT4ZazlWNvUUaYVSWaWK2gHWhoQl+xmuHcUH3CAFs7OFdw5yc/xKSID4QzsPtVtX gO5xlJOdNmUlUKACuJjozsWGb0BsLkhkRiTHeIAP1pnUpS68F8jC88gokMKF8FEM pus/5yWbXx5WGMsWhldLUTiur8CofvbmSKjLrei7VYdvdFkDEwmAtXVtu7HympKb e/7u3rRgG34Ab8J85zUAso3YmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJBGBmg/ 7iXhkeXDr0UoljiHpPX7MB8GA1UdIwQYMBaAFJMEI05zkEkUOoWRo3RaU+S5KtjY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTMyMy85RTYxRTQyNDUy NUYxMUVFODBCQTBENzRDNEY5QUUwMi9rd1FqVG5PUVNSUTZoWkdqZEZwVDVMa3Ey TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t3UWpUbk9RU1JRNmhaR2pkRnBUNUxrcTJOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RTMyMy85RTYxRTQyNDUyNUYxMUVFODBCQTBENzRDNEY5QUUwMi9rd1FqVG5PUVNS UTZoWkdqZEZwVDVMa3EyTmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC7K5LJxzIac8yO0eZ01uRZqLhHjfim7GjiEIU//P9eOoOy8JKMjVHM WC8vp6c+heaX72r7qm9hoCyC7osVpSfTikvgWN2vh3KVBh1XiEVIOvQ05/guOf7L +FSWp+NFkCya6+YkoSrdt6EMEYwitX8Qrm/ekay5ABs3sigeCQ+FAgVgFyHsTpf2 u9qvoTL17khwuB1qkME3YxaBpEWeQfcg/qEkPy8Xn0NBk8TxEhK8riw03wHTmVM6 BQ6gsVJVs0xRRUiyixYo2lrdfNKjrpjsxpramjs/YfMGCM8jCemp+UpmsllXzUoE Lu/L7/jZlHIAji0/uwtqXs764n8+cx8j -----END CERTIFICATE-----Generated at Tue Dec 23 02:41:58 2025 by rpki-client