This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4287/37278C16046D11F0B77D0361C4F9AE02/KkWkHWDi8QTT3TnIbxS8WQCIP0s.mft File: KkWkHWDi8QTT3TnIbxS8WQCIP0s.mft (raw, json) Hash identifier: yMGuuvt2KzkOB8Y8clYy9pqVSlKb8+tZEC8GLVC8cIM= Subject key identifier: 08:2A:0C:95:AA:F6:DD:CC:22:1F:BC:95:7E:DE:A7:AF:C3:BB:0D:1E Authority key identifier: 2A:45:A4:1D:60:E2:F1:04:D3:DD:39:C8:6F:14:BC:59:00:88:3F:4B Certificate issuer: /CN=A91A4287/serialNumber=2A45A41D60E2F104D3DD39C86F14BC5900883F4B Certificate serial: 90 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KkWkHWDi8QTT3TnIbxS8WQCIP0s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4287/37278C16046D11F0B77D0361C4F9AE02/KkWkHWDi8QTT3TnIbxS8WQCIP0s.mft Manifest number: 8F Signing time: Tue 23 Dec 2025 05:27:21 +0000 Manifest this update: Tue 23 Dec 2025 05:27:20 +0000 Manifest next update: Tue 30 Dec 2025 05:27:20 +0000 Files and hashes: 1: KkWkHWDi8QTT3TnIbxS8WQCIP0s.crl (hash: fZ8f6YHgAlL0GdiHG+trE1UQ5+hT86kyzmyP8MgCoYI=) 2: 8CC07FC0047211F0A6541526C4F9AE02.roa (hash: PgYYJ9/o38WTea0u5fJFPWCIw+78oj+kOWm1Hogb3eo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4287/37278C16046D11F0B77D0361C4F9AE02/KkWkHWDi8QTT3TnIbxS8WQCIP0s.crl rsync://rpki.apnic.net/member_repository/A91A4287/37278C16046D11F0B77D0361C4F9AE02/KkWkHWDi8QTT3TnIbxS8WQCIP0s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KkWkHWDi8QTT3TnIbxS8WQCIP0s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 05:27:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 144 (0x90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4287, serialNumber=2A45A41D60E2F104D3DD39C86F14BC5900883F4B Validity Not Before: Dec 23 05:27:20 2025 GMT Not After : Dec 30 05:27:20 2025 GMT Subject: CN=694a2839-fa7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:c8:fe:a3:a9:6c:14:47:64:1b:e9:68:d3:8c: 2f:7f:af:88:c1:dc:10:5d:f0:a6:96:39:6a:54:90: 91:ee:55:52:a7:c1:41:7a:be:29:38:f1:e1:b4:52: 88:86:24:dd:73:57:77:e4:78:74:d9:c4:95:0c:3b: 5f:5a:bb:51:79:ad:60:be:2f:b0:d9:b6:bb:48:95: 53:b1:39:10:1f:7b:4e:f0:b3:b4:a9:08:41:db:35: 49:a0:e7:05:75:5b:a3:c5:d4:49:44:11:72:95:a7: 9c:3b:f4:e3:f7:36:97:65:bf:a3:3c:1d:34:6e:e4: 7d:9a:f4:d8:89:d3:68:fe:d1:d5:44:a5:00:98:f4: 73:33:64:73:82:e8:5d:0b:8b:bc:d7:20:1b:04:26: 1c:0b:8a:24:8d:88:5a:b0:dc:fe:4b:73:73:5d:ef: 34:cb:96:6e:f8:4e:03:70:bd:6a:e3:04:30:56:98: d3:9c:9e:e5:7e:9d:6e:cb:af:c0:81:fe:6a:11:3d: c3:f4:3f:cd:77:14:97:71:17:76:07:00:2f:5f:cd: 10:2e:36:e2:ae:77:b3:66:d2:a6:bc:a4:b4:44:25: 64:fb:de:50:20:b1:9a:c6:0f:75:1c:f0:3d:de:8b: f7:9d:15:5d:3c:fc:11:af:e9:90:11:9b:54:86:6e: 4c:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:2A:0C:95:AA:F6:DD:CC:22:1F:BC:95:7E:DE:A7:AF:C3:BB:0D:1E X509v3 Authority Key Identifier: keyid:2A:45:A4:1D:60:E2:F1:04:D3:DD:39:C8:6F:14:BC:59:00:88:3F:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4287/37278C16046D11F0B77D0361C4F9AE02/KkWkHWDi8QTT3TnIbxS8WQCIP0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KkWkHWDi8QTT3TnIbxS8WQCIP0s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4287/37278C16046D11F0B77D0361C4F9AE02/KkWkHWDi8QTT3TnIbxS8WQCIP0s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c0:8e:60:9f:56:f0:4d:69:2c:de:6d:36:0a:86:11:1f:bf:df: 8f:e7:a1:6b:ca:0e:81:1b:b4:e4:19:66:f6:d0:0f:71:5b:e3: 0d:4a:c7:c8:39:81:f0:1e:cd:8c:51:85:57:45:0d:7e:37:3a: f5:e7:4e:01:a1:eb:33:ff:11:1f:60:45:43:48:4b:e4:69:e4: 0f:f9:19:76:fa:df:d5:d7:a7:b5:25:ae:0e:74:ee:67:05:b7: 2e:da:41:63:d2:47:41:88:ce:86:b7:ea:a0:23:72:58:63:5c: b0:37:8e:11:6b:c9:9c:a2:27:4f:61:de:e8:ea:44:84:05:2e: 2b:01:25:60:68:2c:18:df:7f:a3:93:52:73:d0:96:bd:10:c1: eb:dd:b8:d0:73:dc:e7:65:4c:2a:17:1f:4d:61:9f:0f:3d:f4: 12:ae:d7:89:8f:6d:4e:a2:27:4a:d8:54:f6:22:1d:e5:e0:90: 7b:23:39:c1:11:8d:11:1f:88:85:9e:3d:02:9a:7d:12:f0:d7: 0e:b7:18:25:cd:6b:3c:8f:b0:00:83:1c:9b:47:72:fb:0d:73: 8b:cc:e8:82:5e:e0:fb:15:3e:3f:19:a0:a7:35:3c:89:bb:34: d2:8b:22:96:ab:3e:7b:65:3e:b3:96:a3:2f:35:dd:e2:55:31: 49:8f:83:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQyODcxMTAvBgNVBAUTKDJBNDVBNDFENjBFMkYxMDREM0REMzlDODZGMTRCQzU5 MDA4ODNGNEIwHhcNMjUxMjIzMDUyNzIwWhcNMjUxMjMwMDUyNzIwWjAYMRYwFAYD VQQDDA02OTRhMjgzOS1mYTdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAksj+o6lsFEdkG+lo04wvf6+IwdwQXfCmljlqVJCR7lVSp8FBer4pOPHhtFKI hiTdc1d35Hh02cSVDDtfWrtRea1gvi+w2ba7SJVTsTkQH3tO8LO0qQhB2zVJoOcF dVujxdRJRBFylaecO/Tj9zaXZb+jPB00buR9mvTYidNo/tHVRKUAmPRzM2Rzguhd C4u81yAbBCYcC4okjYhasNz+S3NzXe80y5Zu+E4DcL1q4wQwVpjTnJ7lfp1uy6/A gf5qET3D9D/NdxSXcRd2BwAvX80QLjbirnezZtKmvKS0RCVk+95QILGaxg91HPA9 3ov3nRVdPPwRr+mQEZtUhm5M+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAgqDJWq 9t3MIh+8lX7ep6/Duw0eMB8GA1UdIwQYMBaAFCpFpB1g4vEE0905yG8UvFkAiD9L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDI4Ny8zNzI3OEMxNjA0 NkQxMUYwQjc3RDAzNjFDNEY5QUUwMi9La1drSFdEaThRVFQzVG5JYnhTOFdRQ0lQ MHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0trV2tIV0RpOFFUVDNUbklieFM4V1FDSVAwcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDI4Ny8zNzI3OEMxNjA0NkQxMUYwQjc3RDAzNjFDNEY5QUUwMi9La1drSFdEaThR VFQzVG5JYnhTOFdRQ0lQMHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDAjmCfVvBNaSzebTYKhhEfv9+P56Fryg6BG7TkGWb20A9xW+MNSsfI OYHwHs2MUYVXRQ1+Nzr1504Boesz/xEfYEVDSEvkaeQP+Rl2+t/V16e1Ja4OdO5n Bbcu2kFj0kdBiM6Gt+qgI3JYY1ywN44Ra8mcoidPYd7o6kSEBS4rASVgaCwY33+j k1Jz0Ja9EMHr3bjQc9znZUwqFx9NYZ8PPfQSrteJj21OoidK2FT2Ih3l4JB7IznB EY0RH4iFnj0Cmn0S8NcOtxglzWs8j7AAgxybR3L7DXOLzOiCXuD7FT4/GaCnNTyJ uzTSiyKWqz57ZT6zlqMvNd3iVTFJj4PX -----END CERTIFICATE-----Generated at Wed Dec 24 15:46:54 2025 by rpki-client