This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.


Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9132DC8/444C6F14ECB511ED9D68C450C4F9AE02/xNJqwGyKZSWK1Ekbad-DKQvhg3s.mft
File:                     xNJqwGyKZSWK1Ekbad-DKQvhg3s.mft (raw, json)
Hash identifier:          DoL7K+6gSKwCBMQXIGUaOYmuuxM1IhsRMkT/HoSxsjY=
Subject key identifier:   0B:AB:49:94:6B:2B:0E:B1:8C:CC:33:81:C7:DD:50:52:60:D3:A8:B9
Authority key identifier: C4:D2:6A:C0:6C:8A:65:25:8A:D4:49:1B:69:DF:83:29:0B:E1:83:7B
Certificate issuer:       /CN=A9132DC8/serialNumber=C4D26AC06C8A65258AD4491B69DF83290BE1837B
Certificate serial:       0192
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNJqwGyKZSWK1Ekbad-DKQvhg3s.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9132DC8/444C6F14ECB511ED9D68C450C4F9AE02/xNJqwGyKZSWK1Ekbad-DKQvhg3s.mft
Manifest number:          018F
Signing time:             Thu 19 Jun 2025 03:20:57 +0000
Manifest this update:     Thu 19 Jun 2025 03:20:56 +0000
Manifest next update:     Thu 26 Jun 2025 03:20:56 +0000
Files and hashes:         1: xNJqwGyKZSWK1Ekbad-DKQvhg3s.crl (hash: 6ePsfr73wbGfkFgsrXxX15OH2eGBHxl9Qgr9RG9k8TI=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 402 (0x192)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9132DC8, serialNumber=C4D26AC06C8A65258AD4491B69DF83290BE1837B
        Validity
            Not Before: Jun 19 03:20:56 2025 GMT
            Not After : Jun 26 03:20:56 2025 GMT
        Subject: CN=68538219-db69
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cd:49:9a:a9:83:8e:b1:b7:f2:21:95:85:bc:4a:
                    cd:4d:5f:c4:ea:14:81:48:49:9f:65:56:6f:74:82:
                    cb:00:96:bf:55:85:31:cf:a7:bc:09:ba:de:58:ee:
                    c6:54:f2:43:58:8b:f6:e2:c7:24:30:31:b0:d0:67:
                    26:6c:5c:11:c5:a3:e2:a6:50:c7:33:17:d1:c4:fb:
                    c2:3f:8b:50:78:2e:a3:b1:16:b3:25:9f:24:5c:4f:
                    87:4c:15:18:6f:02:b4:57:c3:b8:15:50:73:56:57:
                    6c:ae:fe:d2:b2:16:a9:67:0c:b2:6c:29:cd:2f:9a:
                    69:36:81:8d:9e:14:37:df:c4:2a:28:a4:48:90:9a:
                    31:75:d6:c3:5d:8e:80:32:4b:7c:1e:73:4a:1f:88:
                    11:da:c6:b2:0f:4c:97:85:61:db:e9:b8:8d:c1:3f:
                    61:3c:92:8e:0b:ed:dd:34:31:f9:c8:b2:3a:c7:92:
                    e2:8a:83:60:34:1d:69:54:cf:ff:c4:4a:bc:08:45:
                    85:56:f0:af:e3:97:62:1f:f1:55:41:9f:f1:53:f3:
                    24:ff:7f:51:8e:8f:58:e8:6e:39:52:c5:a9:0e:4c:
                    ab:0f:d2:bb:c2:b2:01:d4:1a:c6:ae:e4:0e:49:49:
                    e9:c9:c4:ce:ef:78:79:65:73:bf:7c:df:aa:9d:54:
                    1b:3f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0B:AB:49:94:6B:2B:0E:B1:8C:CC:33:81:C7:DD:50:52:60:D3:A8:B9
            X509v3 Authority Key Identifier:
                keyid:C4:D2:6A:C0:6C:8A:65:25:8A:D4:49:1B:69:DF:83:29:0B:E1:83:7B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9132DC8/444C6F14ECB511ED9D68C450C4F9AE02/xNJqwGyKZSWK1Ekbad-DKQvhg3s.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNJqwGyKZSWK1Ekbad-DKQvhg3s.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132DC8/444C6F14ECB511ED9D68C450C4F9AE02/xNJqwGyKZSWK1Ekbad-DKQvhg3s.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         27:d6:61:e1:16:00:db:39:33:92:b2:69:16:dd:34:36:ba:50:
         c7:68:4b:62:de:25:93:cd:52:6c:4a:dd:be:cf:ac:44:dd:98:
         69:2b:88:fb:9d:86:c2:8e:5e:35:f8:94:57:37:a5:11:57:e4:
         8a:31:f7:83:c9:6a:71:ea:78:29:fd:2c:b0:37:6e:a5:18:00:
         56:69:35:4a:99:23:fe:3b:2a:41:9a:19:52:3f:cf:9d:2a:51:
         aa:7f:0c:a7:ba:56:a2:5c:07:49:38:e9:0d:ce:87:31:64:ac:
         ea:10:83:89:5b:e3:15:32:ab:99:ce:fb:0b:53:2e:a5:92:ce:
         1d:53:ed:25:80:89:ff:df:18:1f:bf:9c:d6:d0:66:32:1e:13:
         c1:91:98:08:6e:f1:89:5f:05:e8:e9:bc:33:b2:5f:cb:70:56:
         23:21:d6:e9:e8:ad:a9:0f:83:ec:75:62:4e:22:ff:76:40:95:
         6e:89:42:86:a3:dc:a9:1d:46:92:fc:d0:29:07:5b:46:2b:fb:
         ad:b5:ca:5b:67:37:41:cc:87:72:34:d5:60:7e:a9:73:5f:7d:
         7c:a6:55:71:25:25:55:8f:c3:d2:3f:d5:da:be:09:f0:04:98:
         06:a8:13:c1:99:0c:96:cb:8e:1f:76:77:b7:c0:d3:dc:29:5e:
         41:b6:ac:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 17 22:28:18 2025 by rpki-client