This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C779D/4FD59424E2AE11EE86F33C1EC4F9AE02/kS-19zUc-Y-5Z0Uf7tr0nxSOGjo.mft File: kS-19zUc-Y-5Z0Uf7tr0nxSOGjo.mft (raw, json) Hash identifier: DkCv+1E6DFHrDPxRh82ZJSXx8doYNR/r/8Cwr64sux4= Subject key identifier: 88:4B:38:49:27:00:03:AD:A5:C7:4A:97:0A:F6:A2:78:15:E2:91:CE Authority key identifier: 91:2F:B5:F7:35:1C:F9:8F:B9:67:45:1F:EE:DA:F4:9F:14:8E:1A:3A Certificate issuer: /CN=A91C779D/serialNumber=912FB5F7351CF98FB967451FEEDAF49F148E1A3A Certificate serial: 014B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kS-19zUc-Y-5Z0Uf7tr0nxSOGjo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C779D/4FD59424E2AE11EE86F33C1EC4F9AE02/kS-19zUc-Y-5Z0Uf7tr0nxSOGjo.mft Manifest number: 0149 Signing time: Tue 23 Dec 2025 03:16:54 +0000 Manifest this update: Tue 23 Dec 2025 03:16:53 +0000 Manifest next update: Tue 30 Dec 2025 03:16:53 +0000 Files and hashes: 1: kS-19zUc-Y-5Z0Uf7tr0nxSOGjo.crl (hash: zw8CWm2n7mjnEaqfuEjkAFkEBfvrhzJ3kZMNZ1m2Ezo=) 2: 1BC8D5FCE2B211EE946C6541C4F9AE02.roa (hash: iCp30dussETMXyoeph6Ol3mQ5L5KpmSd4EZLSV4J5eE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C779D/4FD59424E2AE11EE86F33C1EC4F9AE02/kS-19zUc-Y-5Z0Uf7tr0nxSOGjo.crl rsync://rpki.apnic.net/member_repository/A91C779D/4FD59424E2AE11EE86F33C1EC4F9AE02/kS-19zUc-Y-5Z0Uf7tr0nxSOGjo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kS-19zUc-Y-5Z0Uf7tr0nxSOGjo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 03:16:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 331 (0x14b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C779D, serialNumber=912FB5F7351CF98FB967451FEEDAF49F148E1A3A Validity Not Before: Dec 23 03:16:53 2025 GMT Not After : Dec 30 03:16:53 2025 GMT Subject: CN=694a09a6-66ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:c4:dc:be:48:65:0c:be:85:a6:28:f9:99:bb: 43:e3:46:75:74:cc:7d:9d:ec:e7:1a:21:de:31:7f: 8a:1e:88:3b:fb:da:58:9d:25:bf:d0:ba:ea:d0:04: c6:2f:aa:d5:62:95:62:39:d6:79:0a:84:56:3f:af: 0b:9e:21:56:23:e7:1b:ee:a1:74:21:3b:bb:1a:6f: 69:11:5f:d1:97:4c:ac:2e:6e:6f:ec:cb:69:7f:b8: 4f:db:6a:b3:02:dc:aa:aa:f6:8c:a6:76:48:79:67: 62:32:af:bf:fe:e4:45:4a:45:f4:fa:6c:53:a7:8a: 79:28:3f:bc:68:a5:21:50:4d:a1:92:90:93:a7:82: 8d:f0:a8:ba:1a:56:d1:b3:5a:c3:b6:58:d7:b0:d5: 9f:2f:19:f4:a9:71:f4:7d:4a:d5:59:82:5f:54:38: 1b:52:58:b5:bd:c1:e5:37:45:d2:ce:68:ec:d3:80: 4c:94:c9:67:9c:bc:2a:ee:e1:85:44:36:73:78:b9: 7c:e2:23:cd:d9:63:89:fa:c6:d3:8f:e2:12:60:8d: 26:1e:fc:d1:d9:a1:fc:44:6d:7b:6b:e9:91:f7:83: 67:99:4e:82:af:52:d2:ad:d9:df:87:3b:b2:96:07: da:c1:90:6e:30:4c:86:90:48:e0:85:5e:6a:78:59: 72:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:4B:38:49:27:00:03:AD:A5:C7:4A:97:0A:F6:A2:78:15:E2:91:CE X509v3 Authority Key Identifier: keyid:91:2F:B5:F7:35:1C:F9:8F:B9:67:45:1F:EE:DA:F4:9F:14:8E:1A:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C779D/4FD59424E2AE11EE86F33C1EC4F9AE02/kS-19zUc-Y-5Z0Uf7tr0nxSOGjo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kS-19zUc-Y-5Z0Uf7tr0nxSOGjo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C779D/4FD59424E2AE11EE86F33C1EC4F9AE02/kS-19zUc-Y-5Z0Uf7tr0nxSOGjo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cf:05:fa:bf:c7:08:9a:43:75:ba:20:b7:d9:28:25:87:1c:62: 41:6d:4c:1b:ff:ed:89:27:b3:a3:aa:e7:6b:44:e6:02:15:0d: ce:43:54:48:14:a4:47:12:39:27:cd:2e:ee:f2:d9:f6:a2:9a: e1:6a:26:dd:e9:41:4e:e4:87:9d:6b:0c:b5:86:66:43:30:96: f1:9f:27:7c:ad:c1:8b:43:c0:b1:2d:87:a3:fd:bd:23:30:2d: 51:c1:0f:2d:8f:8e:d9:c1:b0:06:29:a5:f9:50:9a:17:c6:b0: a7:e6:c0:e4:a0:4a:58:85:20:fb:7f:cb:c0:e7:6f:8d:74:a3: 59:ef:99:27:d4:64:34:3c:24:dc:76:bf:c5:23:e7:52:56:67: 64:4e:95:32:1e:34:d8:9f:97:41:6d:7d:b4:d8:78:99:70:8b: cf:9f:30:5e:ec:07:d4:72:3f:77:55:42:74:33:b8:60:b6:08: 55:56:02:67:a1:07:49:10:46:c7:2b:fe:12:0b:c0:e1:e7:64: cb:df:f1:da:5d:bb:0d:85:fd:81:1c:16:4e:ed:76:61:fa:d1: d1:72:e5:2d:54:24:e6:a6:c6:40:44:19:30:46:79:6a:b6:64: 7e:f4:e4:f0:b2:00:ad:a2:c3:02:3d:49:39:8b:89:f2:de:6a: 4a:7f:1f:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzc3OUQxMTAvBgNVBAUTKDkxMkZCNUY3MzUxQ0Y5OEZCOTY3NDUxRkVFREFGNDlG MTQ4RTFBM0EwHhcNMjUxMjIzMDMxNjUzWhcNMjUxMjMwMDMxNjUzWjAYMRYwFAYD VQQDDA02OTRhMDlhNi02NmFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsMTcvkhlDL6Fpij5mbtD40Z1dMx9neznGiHeMX+KHog7+9pYnSW/0Lrq0ATG L6rVYpViOdZ5CoRWP68LniFWI+cb7qF0ITu7Gm9pEV/Rl0ysLm5v7Mtpf7hP22qz AtyqqvaMpnZIeWdiMq+//uRFSkX0+mxTp4p5KD+8aKUhUE2hkpCTp4KN8Ki6GlbR s1rDtljXsNWfLxn0qXH0fUrVWYJfVDgbUli1vcHlN0XSzmjs04BMlMlnnLwq7uGF RDZzeLl84iPN2WOJ+sbTj+ISYI0mHvzR2aH8RG17a+mR94NnmU6Cr1LSrdnfhzuy lgfawZBuMEyGkEjghV5qeFlyNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIhLOEkn AAOtpcdKlwr2ongV4pHOMB8GA1UdIwQYMBaAFJEvtfc1HPmPuWdFH+7a9J8Ujho6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzc5RC80RkQ1OTQyNEUy QUUxMUVFODZGMzNDMUVDNEY5QUUwMi9rUy0xOXpVYy1ZLTVaMFVmN3RyMG54U09H am8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tTLTE5elVjLVktNVowVWY3dHIwbnhTT0dqby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Nzc5RC80RkQ1OTQyNEUyQUUxMUVFODZGMzNDMUVDNEY5QUUwMi9rUy0xOXpVYy1Z LTVaMFVmN3RyMG54U09Ham8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDPBfq/xwiaQ3W6ILfZKCWHHGJBbUwb/+2JJ7OjqudrROYCFQ3OQ1RI FKRHEjknzS7u8tn2oprhaibd6UFO5Iedawy1hmZDMJbxnyd8rcGLQ8CxLYej/b0j MC1RwQ8tj47ZwbAGKaX5UJoXxrCn5sDkoEpYhSD7f8vA52+NdKNZ75kn1GQ0PCTc dr/FI+dSVmdkTpUyHjTYn5dBbX202HiZcIvPnzBe7AfUcj93VUJ0M7hgtghVVgJn oQdJEEbHK/4SC8Dh52TL3/HaXbsNhf2BHBZO7XZh+tHRcuUtVCTmpsZARBkwRnlq tmR+9OTwsgCtosMCPUk5i4ny3mpKfx9A -----END CERTIFICATE-----Generated at Wed Dec 24 14:11:34 2025 by rpki-client