This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE65A/66E6FE36497A11EFAF551842C4F9AE02/KTvwacT02DHu52nVsTnjAh2zSwA.mft File: KTvwacT02DHu52nVsTnjAh2zSwA.mft (raw, json) Hash identifier: IMwvi0xVKpqYd6FmmFS0WAqAg9p4ukCEx+L5QfMtJZ4= Subject key identifier: BE:92:5C:56:53:FA:FD:E1:1E:3F:20:A5:46:79:65:57:F8:D0:A8:94 Authority key identifier: 29:3B:F0:69:C4:F4:D8:31:EE:E7:69:D5:B1:39:E3:02:1D:B3:4B:00 Certificate issuer: /CN=A91CE65A/serialNumber=293BF069C4F4D831EEE769D5B139E3021DB34B00 Certificate serial: 010A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KTvwacT02DHu52nVsTnjAh2zSwA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE65A/66E6FE36497A11EFAF551842C4F9AE02/KTvwacT02DHu52nVsTnjAh2zSwA.mft Manifest number: 0106 Signing time: Sun 07 Dec 2025 03:23:26 +0000 Manifest this update: Sun 07 Dec 2025 03:23:26 +0000 Manifest next update: Sun 14 Dec 2025 03:23:26 +0000 Files and hashes: 1: KTvwacT02DHu52nVsTnjAh2zSwA.crl (hash: bfMeP16ZCPDwueABid0Wv3XGsRvZjhOK1QMquNKuW8I=) 2: 62959E66682B11F09ECB0C24C4F9AE02.roa (hash: QteYiqxagttieW0gH2HjsmgjmoFz+n9ylxq8eEuUcDA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE65A/66E6FE36497A11EFAF551842C4F9AE02/KTvwacT02DHu52nVsTnjAh2zSwA.crl rsync://rpki.apnic.net/member_repository/A91CE65A/66E6FE36497A11EFAF551842C4F9AE02/KTvwacT02DHu52nVsTnjAh2zSwA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KTvwacT02DHu52nVsTnjAh2zSwA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 03:23:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 266 (0x10a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE65A, serialNumber=293BF069C4F4D831EEE769D5B139E3021DB34B00 Validity Not Before: Dec 7 03:23:26 2025 GMT Not After : Dec 14 03:23:26 2025 GMT Subject: CN=6934f32e-5ffb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:4c:bd:d5:8c:e7:e2:25:3f:e5:4f:dd:16:e4: 51:a6:ad:a3:c8:c1:ab:f1:61:9c:0a:e9:c6:92:91: ab:ed:c3:56:9a:fb:f4:d6:e2:55:ef:35:3b:6e:41: 6a:a9:9d:0f:2e:70:df:a1:36:c0:fd:5f:3e:81:2f: 8a:8a:83:06:19:fe:a3:72:96:8f:e1:b2:f8:d8:b9: b9:94:fb:bb:83:28:fd:e5:15:31:ae:fc:31:05:71: e2:18:b6:ed:75:88:25:82:08:e0:78:2f:d1:03:de: 48:eb:82:a2:55:dc:67:c6:06:82:a3:12:de:53:4e: d3:d0:11:3e:7b:d5:0e:ff:82:f3:e4:ce:a3:66:b5: 83:0a:bd:8b:1c:7b:b3:1d:03:ce:cf:e6:aa:ac:06: f8:b5:50:96:73:15:e9:01:71:b9:f8:8b:f1:cb:7e: e3:df:95:b9:39:97:39:84:5f:2f:c0:b6:6c:2b:8c: 9d:f0:53:bc:da:99:45:f9:84:40:71:d6:82:e6:f6: ca:c7:36:10:f1:09:68:24:78:11:e2:63:eb:fb:01: 02:b5:b0:46:78:6f:32:02:5a:32:bc:fb:e0:64:7a: f7:0c:59:87:2d:93:dc:32:76:3b:93:cd:3b:bb:a3: e1:31:59:aa:b3:a0:7d:4f:fc:d8:ba:23:57:11:70: 0f:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:92:5C:56:53:FA:FD:E1:1E:3F:20:A5:46:79:65:57:F8:D0:A8:94 X509v3 Authority Key Identifier: keyid:29:3B:F0:69:C4:F4:D8:31:EE:E7:69:D5:B1:39:E3:02:1D:B3:4B:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE65A/66E6FE36497A11EFAF551842C4F9AE02/KTvwacT02DHu52nVsTnjAh2zSwA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KTvwacT02DHu52nVsTnjAh2zSwA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE65A/66E6FE36497A11EFAF551842C4F9AE02/KTvwacT02DHu52nVsTnjAh2zSwA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:d3:25:97:6e:08:4a:4d:90:3f:51:c6:2a:f5:3f:f7:b3:44: 3a:94:c2:a0:12:f4:0a:e4:3e:eb:68:7e:3a:f5:9d:d2:a6:6d: cb:d4:b3:93:2d:eb:ae:87:5a:20:74:97:c1:c9:c5:cf:f7:a0: fa:a1:79:c7:15:4d:95:58:e4:08:0f:17:2d:31:95:6c:6b:78: 6a:8e:a8:05:a5:4b:ae:cf:a7:55:6c:5b:3e:1d:95:02:99:76: f4:02:2d:57:4b:02:93:c3:c2:d3:10:72:96:ab:2d:3a:b7:08: d7:f8:a3:0e:1d:01:4c:86:5a:96:51:8f:8a:db:39:1e:4d:3b: c9:42:cb:8a:95:de:51:01:c7:75:3b:58:60:e5:93:57:ff:0d: e4:4d:8b:f8:5f:0e:ca:3a:c5:80:39:55:47:2d:7b:90:23:cf: 92:e4:dc:46:d1:c2:16:72:2e:f3:de:ee:24:d1:ff:46:4a:a3: 69:d9:c1:97:03:a8:f4:6a:af:e6:1b:9d:e9:63:ad:66:05:d1: 76:8a:b9:50:2a:34:4b:24:81:85:a1:80:23:e4:39:a3:da:89: 52:e9:a3:d3:98:28:55:9d:e0:7b:d3:63:a1:69:07:8c:c9:01: e4:85:a2:a0:78:c4:60:cf:8c:b1:7a:57:2a:76:45:74:ac:be: 32:fe:0c:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U2NUExMTAvBgNVBAUTKDI5M0JGMDY5QzRGNEQ4MzFFRUU3NjlENUIxMzlFMzAy MURCMzRCMDAwHhcNMjUxMjA3MDMyMzI2WhcNMjUxMjE0MDMyMzI2WjAYMRYwFAYD VQQDEw02OTM0ZjMyZS01ZmZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+Ey91Yzn4iU/5U/dFuRRpq2jyMGr8WGcCunGkpGr7cNWmvv01uJV7zU7bkFq qZ0PLnDfoTbA/V8+gS+KioMGGf6jcpaP4bL42Lm5lPu7gyj95RUxrvwxBXHiGLbt dYglggjgeC/RA95I64KiVdxnxgaCoxLeU07T0BE+e9UO/4Lz5M6jZrWDCr2LHHuz HQPOz+aqrAb4tVCWcxXpAXG5+Ivxy37j35W5OZc5hF8vwLZsK4yd8FO82plF+YRA cdaC5vbKxzYQ8QloJHgR4mPr+wECtbBGeG8yAloyvPvgZHr3DFmHLZPcMnY7k807 u6PhMVmqs6B9T/zYuiNXEXAPCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL6SXFZT +v3hHj8gpUZ5ZVf40KiUMB8GA1UdIwQYMBaAFCk78GnE9Ngx7udp1bE54wIds0sA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTY1QS82NkU2RkUzNjQ5 N0ExMUVGQUY1NTE4NDJDNEY5QUUwMi9LVHZ3YWNUMDJESHU1Mm5Wc1RuakFoMnpT d0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tUdndhY1QwMkRIdTUyblZzVG5qQWgyelN3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTY1QS82NkU2RkUzNjQ5N0ExMUVGQUY1NTE4NDJDNEY5QUUwMi9LVHZ3YWNUMDJE SHU1Mm5Wc1RuakFoMnpTd0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA80yWXbghKTZA/UcYq9T/3s0Q6lMKgEvQK5D7raH469Z3Spm3L1LOT Leuuh1ogdJfBycXP96D6oXnHFU2VWOQIDxctMZVsa3hqjqgFpUuuz6dVbFs+HZUC mXb0Ai1XSwKTw8LTEHKWqy06twjX+KMOHQFMhlqWUY+K2zkeTTvJQsuKld5RAcd1 O1hg5ZNX/w3kTYv4Xw7KOsWAOVVHLXuQI8+S5NxG0cIWci7z3u4k0f9GSqNp2cGX A6j0aq/mG53pY61mBdF2irlQKjRLJIGFoYAj5Dmj2olS6aPTmChVneB702OhaQeM yQHkhaKgeMRgz4yxelcqdkV0rL4y/gyo -----END CERTIFICATE-----Generated at Sun Dec 7 13:53:02 2025 by rpki-client