This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E04FE/86A6F654B73F11EEAF12B87BC4F9AE02/KIN0Gw9bynZPTTyD0-1qDyfNIpg.mft File: KIN0Gw9bynZPTTyD0-1qDyfNIpg.mft (raw, json) Hash identifier: E4wzxIvIloT+0SBmo2rUfwR8TzWdCUxcGYrmf3JKzDY= Subject key identifier: EB:F5:4E:78:AF:8C:8D:71:FE:E8:A9:75:23:E7:00:8A:6D:EC:98:24 Authority key identifier: 28:83:74:1B:0F:5B:CA:76:4F:4D:3C:83:D3:ED:6A:0F:27:CD:22:98 Certificate issuer: /CN=A91E04FE/serialNumber=2883741B0F5BCA764F4D3C83D3ED6A0F27CD2298 Certificate serial: 016D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KIN0Gw9bynZPTTyD0-1qDyfNIpg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E04FE/86A6F654B73F11EEAF12B87BC4F9AE02/KIN0Gw9bynZPTTyD0-1qDyfNIpg.mft Manifest number: 0169 Signing time: Fri 19 Dec 2025 03:08:51 +0000 Manifest this update: Fri 19 Dec 2025 03:08:50 +0000 Manifest next update: Fri 26 Dec 2025 03:08:50 +0000 Files and hashes: 1: KIN0Gw9bynZPTTyD0-1qDyfNIpg.crl (hash: vZ0lnNCb27ptfIgoF2SPSVeduQ4+lPqTMGcwG2q1xdk=) 2: 5EE215CCC33D11EE97B67979C4F9AE02.roa (hash: qIW59Vu75lotEAXz2XFEI0+6mfrqPvKAPSHChiVChpE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E04FE/86A6F654B73F11EEAF12B87BC4F9AE02/KIN0Gw9bynZPTTyD0-1qDyfNIpg.crl rsync://rpki.apnic.net/member_repository/A91E04FE/86A6F654B73F11EEAF12B87BC4F9AE02/KIN0Gw9bynZPTTyD0-1qDyfNIpg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KIN0Gw9bynZPTTyD0-1qDyfNIpg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 03:08:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 365 (0x16d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E04FE, serialNumber=2883741B0F5BCA764F4D3C83D3ED6A0F27CD2298 Validity Not Before: Dec 19 03:08:50 2025 GMT Not After : Dec 26 03:08:50 2025 GMT Subject: CN=6944c1c3-00bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:da:51:bc:58:34:8a:fb:55:65:44:66:07:5c: b3:f3:d6:fa:1f:17:72:ea:c0:4d:29:37:67:4d:ac: 58:c7:4e:5c:b9:13:7d:70:4c:43:b6:77:ea:06:be: ad:d8:5b:69:82:fd:7e:44:e8:a9:a4:8e:d1:83:38: 55:65:4e:26:37:4b:2f:9b:8f:d6:1d:fa:23:be:41: 94:ef:23:77:b3:e9:9f:7b:e8:16:79:f0:e9:0b:b7: 0f:9a:ac:f5:c1:63:fe:d6:36:20:91:9e:17:c5:30: a5:cb:ac:1d:d0:0c:58:a6:f4:0b:41:d7:d9:46:38: a8:81:13:1e:e0:49:8a:c2:f1:29:b8:55:47:5b:da: 7e:40:7f:db:66:07:56:6d:9a:4f:b8:60:c3:ea:be: 49:56:e6:47:52:2d:9f:fc:93:24:03:f4:26:70:d4: 00:cb:4c:e1:74:66:36:61:70:ba:8f:22:bd:83:37: 51:21:2b:94:9b:b2:a2:e7:d7:6f:27:4e:67:e8:16: c5:94:75:63:da:83:61:03:5f:05:3a:2a:15:f9:ba: 50:6e:5e:f2:b0:40:d5:7d:6a:d1:02:81:a6:3e:d5: cb:ae:c2:49:da:9b:d0:71:6e:aa:5d:de:0c:83:0b: 1d:94:2b:e3:8a:d0:ad:b4:20:5f:b4:d3:99:42:f9: 62:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:F5:4E:78:AF:8C:8D:71:FE:E8:A9:75:23:E7:00:8A:6D:EC:98:24 X509v3 Authority Key Identifier: keyid:28:83:74:1B:0F:5B:CA:76:4F:4D:3C:83:D3:ED:6A:0F:27:CD:22:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E04FE/86A6F654B73F11EEAF12B87BC4F9AE02/KIN0Gw9bynZPTTyD0-1qDyfNIpg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KIN0Gw9bynZPTTyD0-1qDyfNIpg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E04FE/86A6F654B73F11EEAF12B87BC4F9AE02/KIN0Gw9bynZPTTyD0-1qDyfNIpg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:df:cf:1b:b0:b2:ea:e9:22:dc:b1:9c:0c:a8:63:64:80:fb: 4f:60:2f:6a:fa:ac:af:68:30:f3:b5:0c:ec:cc:aa:34:d3:0a: 83:eb:e1:44:69:7e:0c:f8:1b:98:d4:22:8a:00:f7:5c:a6:9d: 16:dd:15:d3:23:70:64:61:4d:9c:8c:5d:c3:fe:01:5a:00:0e: 55:0d:7b:00:f3:ff:f4:5c:ec:8b:33:2c:86:a4:0c:76:c7:99: 13:fa:d4:40:56:29:79:7c:03:77:82:89:95:9a:3d:4a:48:0d: fd:b4:9e:91:a4:9c:8c:b8:13:34:6e:89:7d:4b:76:99:c9:b4: 8f:68:af:23:ca:6e:ef:56:fd:be:db:ed:b7:dc:90:8e:64:2f: 25:5b:34:93:69:78:5b:33:8e:cd:76:b9:73:1f:73:43:04:89: 81:a6:93:33:9f:4b:cd:e6:54:65:07:f4:11:94:e6:a4:66:d4: f1:7d:4e:ba:13:54:17:8f:94:95:df:86:44:5b:de:ec:36:1a: bc:8a:ed:f8:33:d2:aa:fa:37:a8:87:1c:25:f4:62:97:29:dc: 8e:b9:44:6a:ce:89:4c:66:65:cd:05:74:0f:0c:4b:d3:f5:5d: 50:d6:cf:65:50:59:4f:a3:44:1c:ce:e8:aa:f0:c8:6b:28:3b: 5c:b1:9f:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAW0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTA0RkUxMTAvBgNVBAUTKDI4ODM3NDFCMEY1QkNBNzY0RjREM0M4M0QzRUQ2QTBG MjdDRDIyOTgwHhcNMjUxMjE5MDMwODUwWhcNMjUxMjI2MDMwODUwWjAYMRYwFAYD VQQDDA02OTQ0YzFjMy0wMGJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9dpRvFg0ivtVZURmB1yz89b6Hxdy6sBNKTdnTaxYx05cuRN9cExDtnfqBr6t 2Ftpgv1+ROippI7RgzhVZU4mN0svm4/WHfojvkGU7yN3s+mfe+gWefDpC7cPmqz1 wWP+1jYgkZ4XxTCly6wd0AxYpvQLQdfZRjiogRMe4EmKwvEpuFVHW9p+QH/bZgdW bZpPuGDD6r5JVuZHUi2f/JMkA/QmcNQAy0zhdGY2YXC6jyK9gzdRISuUm7Ki59dv J05n6BbFlHVj2oNhA18FOioV+bpQbl7ysEDVfWrRAoGmPtXLrsJJ2pvQcW6qXd4M gwsdlCvjitCttCBftNOZQvlihQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOv1Tniv jI1x/uipdSPnAIpt7JgkMB8GA1UdIwQYMBaAFCiDdBsPW8p2T008g9Ptag8nzSKY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMDRGRS84NkE2RjY1NEI3 M0YxMUVFQUYxMkI4N0JDNEY5QUUwMi9LSU4wR3c5YnluWlBUVHlEMC0xcUR5Zk5J cGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tJTjBHdzlieW5aUFRUeUQwLTFxRHlmTklwZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MDRGRS84NkE2RjY1NEI3M0YxMUVFQUYxMkI4N0JDNEY5QUUwMi9LSU4wR3c5Ynlu WlBUVHlEMC0xcUR5Zk5JcGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAj388bsLLq6SLcsZwMqGNkgPtPYC9q+qyvaDDztQzszKo00wqD6+FE aX4M+BuY1CKKAPdcpp0W3RXTI3BkYU2cjF3D/gFaAA5VDXsA8//0XOyLMyyGpAx2 x5kT+tRAVil5fAN3gomVmj1KSA39tJ6RpJyMuBM0bol9S3aZybSPaK8jym7vVv2+ 2+233JCOZC8lWzSTaXhbM47NdrlzH3NDBImBppMzn0vN5lRlB/QRlOakZtTxfU66 E1QXj5SV34ZEW97sNhq8iu34M9Kq+jeohxwl9GKXKdyOuURqzolMZmXNBXQPDEvT 9V1Q1s9lUFlPo0Qczuiq8MhrKDtcsZ85 -----END CERTIFICATE-----Generated at Sun Dec 21 03:33:50 2025 by rpki-client