This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA252/F081716886DC11EA9BD3C466C4F9AE02/KPGOx0nqkbWjKZdJ8qvieIoQxpE.mft File: KPGOx0nqkbWjKZdJ8qvieIoQxpE.mft (raw, json) Hash identifier: k851vin1jMIdq8RV0k2OYLc9kphQ3KSEBCLyIfU3MwE= Subject key identifier: 9F:C1:A6:A4:5D:BC:95:60:89:98:B8:FC:16:56:D6:FA:32:FA:0F:79 Authority key identifier: 28:F1:8E:C7:49:EA:91:B5:A3:29:97:49:F2:AB:E2:78:8A:10:C6:91 Certificate issuer: /CN=A91DA252/serialNumber=28F18EC749EA91B5A3299749F2ABE2788A10C691 Certificate serial: 0A15 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPGOx0nqkbWjKZdJ8qvieIoQxpE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA252/F081716886DC11EA9BD3C466C4F9AE02/KPGOx0nqkbWjKZdJ8qvieIoQxpE.mft Manifest number: 0A0F Signing time: Mon 22 Dec 2025 19:14:21 +0000 Manifest this update: Mon 22 Dec 2025 19:14:21 +0000 Manifest next update: Mon 29 Dec 2025 19:14:21 +0000 Files and hashes: 1: KPGOx0nqkbWjKZdJ8qvieIoQxpE.crl (hash: 9gZnojN0ISiXSK+j53JgTk7YXaO5umEEX0t1vbAJT7U=) 2: 81E66AB486DD11EAA5DCD466C4F9AE02.roa (hash: PABbUqoLwf3xZn77dm2ppG3YXtLL0LLzakgXhNUgKAg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA252/F081716886DC11EA9BD3C466C4F9AE02/KPGOx0nqkbWjKZdJ8qvieIoQxpE.crl rsync://rpki.apnic.net/member_repository/A91DA252/F081716886DC11EA9BD3C466C4F9AE02/KPGOx0nqkbWjKZdJ8qvieIoQxpE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPGOx0nqkbWjKZdJ8qvieIoQxpE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 19:14:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2581 (0xa15) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA252, serialNumber=28F18EC749EA91B5A3299749F2ABE2788A10C691 Validity Not Before: Dec 22 19:14:21 2025 GMT Not After : Dec 29 19:14:21 2025 GMT Subject: CN=6949988d-8a9d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:5a:7c:29:aa:ad:dd:3b:f3:48:05:d1:c7:30: 11:02:d4:70:ed:e8:5d:86:fe:17:7e:11:8d:0b:be: 1d:51:27:ed:12:08:89:da:64:b8:4a:6c:15:ba:9d: c5:00:45:c2:81:ee:af:65:21:8f:87:2d:29:68:a6: a7:6e:88:8b:00:82:77:b2:8a:23:3d:09:63:6d:59: 35:1e:07:3a:43:4b:e6:51:8c:3f:c2:81:1d:78:e8: e4:ba:33:b4:c4:4a:af:98:c3:29:dc:65:78:0f:60: 47:76:92:b6:fb:27:ce:3c:e0:b2:0f:29:50:2a:25: a0:ce:b2:ce:71:21:6b:01:15:9f:9d:f4:a3:86:e0: bd:22:f4:08:c8:bb:74:3a:70:4d:f7:e0:82:31:7c: 33:42:27:9e:a2:c6:de:f6:2c:da:ef:60:c9:be:9f: aa:7c:ff:d3:23:0f:39:66:9d:b0:3f:47:b4:b1:52: b5:cc:35:b8:83:76:31:94:b1:53:41:68:91:0a:b2: 60:d9:26:92:3c:9e:53:87:38:dc:ff:ac:ef:8f:f1: a5:b9:b1:d3:54:6b:15:9c:e7:6b:bf:5e:a9:f3:71: d0:59:9e:e1:49:72:2b:a0:26:53:f3:43:4e:de:30: 26:47:01:11:84:0d:91:0d:47:a9:6e:f3:e6:8b:f7: 4b:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:C1:A6:A4:5D:BC:95:60:89:98:B8:FC:16:56:D6:FA:32:FA:0F:79 X509v3 Authority Key Identifier: keyid:28:F1:8E:C7:49:EA:91:B5:A3:29:97:49:F2:AB:E2:78:8A:10:C6:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA252/F081716886DC11EA9BD3C466C4F9AE02/KPGOx0nqkbWjKZdJ8qvieIoQxpE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPGOx0nqkbWjKZdJ8qvieIoQxpE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA252/F081716886DC11EA9BD3C466C4F9AE02/KPGOx0nqkbWjKZdJ8qvieIoQxpE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:42:5e:fe:44:70:a0:42:5f:ce:41:f6:93:4c:e7:b7:40:61: 8b:23:01:7f:92:90:be:bb:6d:a3:58:8a:6e:b1:5f:0f:6a:3f: e6:85:7d:ee:aa:7e:1d:2f:31:c2:46:d1:17:77:40:44:60:3e: a4:8a:6b:95:8e:b4:97:ae:6f:6d:09:a3:a4:c0:30:73:38:09: ae:5c:88:84:39:54:eb:28:1c:35:56:e5:39:5f:9c:0d:25:5c: 67:51:66:0c:52:29:55:fc:bb:28:2e:a5:36:b5:4d:a3:c7:1b: 62:6e:19:4e:06:43:21:59:63:76:8c:a0:e2:04:98:97:7c:ca: 93:28:79:0e:64:5c:46:6c:a3:a2:de:06:f8:3d:c1:6d:2b:3f: 5c:84:b2:80:58:d7:88:55:04:57:80:1a:78:23:3c:b1:44:49: f6:fe:ac:fd:e1:5d:fc:9d:1c:d2:eb:92:4f:5c:72:0e:6d:b5: d9:b3:c3:64:b8:76:5f:7b:84:96:e3:fd:06:fe:0b:a8:50:a2: 61:97:17:3a:23:b8:b1:4f:00:6f:46:87:8c:88:d2:0b:84:95: 66:ee:68:55:de:10:62:98:9f:b3:a0:80:d2:14:e9:14:9f:06: 14:67:51:b0:0b:1e:9d:9e:12:ab:48:f7:10:88:aa:3d:16:40: 55:e0:95:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICChUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REEyNTIxMTAvBgNVBAUTKDI4RjE4RUM3NDlFQTkxQjVBMzI5OTc0OUYyQUJFMjc4 OEExMEM2OTEwHhcNMjUxMjIyMTkxNDIxWhcNMjUxMjI5MTkxNDIxWjAYMRYwFAYD VQQDDA02OTQ5OTg4ZC04YTlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnlp8Kaqt3TvzSAXRxzARAtRw7ehdhv4XfhGNC74dUSftEgiJ2mS4SmwVup3F AEXCge6vZSGPhy0paKanboiLAIJ3soojPQljbVk1Hgc6Q0vmUYw/woEdeOjkujO0 xEqvmMMp3GV4D2BHdpK2+yfOPOCyDylQKiWgzrLOcSFrARWfnfSjhuC9IvQIyLt0 OnBN9+CCMXwzQieeosbe9iza72DJvp+qfP/TIw85Zp2wP0e0sVK1zDW4g3YxlLFT QWiRCrJg2SaSPJ5Thzjc/6zvj/GlubHTVGsVnOdrv16p83HQWZ7hSXIroCZT80NO 3jAmRwERhA2RDUepbvPmi/dL4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ/BpqRd vJVgiZi4/BZW1voy+g95MB8GA1UdIwQYMBaAFCjxjsdJ6pG1oymXSfKr4niKEMaR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTI1Mi9GMDgxNzE2ODg2 REMxMUVBOUJEM0M0NjZDNEY5QUUwMi9LUEdPeDBucWtiV2pLWmRKOHF2aWVJb1F4 cEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tQR094MG5xa2JXaktaZEo4cXZpZUlvUXhwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTI1Mi9GMDgxNzE2ODg2REMxMUVBOUJEM0M0NjZDNEY5QUUwMi9LUEdPeDBucWti V2pLWmRKOHF2aWVJb1F4cEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYQl7+RHCgQl/OQfaTTOe3QGGLIwF/kpC+u22jWIpusV8Paj/mhX3u qn4dLzHCRtEXd0BEYD6kimuVjrSXrm9tCaOkwDBzOAmuXIiEOVTrKBw1VuU5X5wN JVxnUWYMUilV/LsoLqU2tU2jxxtibhlOBkMhWWN2jKDiBJiXfMqTKHkOZFxGbKOi 3gb4PcFtKz9chLKAWNeIVQRXgBp4IzyxREn2/qz94V38nRzS65JPXHIObbXZs8Nk uHZfe4SW4/0G/guoUKJhlxc6I7ixTwBvRoeMiNILhJVm7mhV3hBimJ+zoIDSFOkU nwYUZ1GwCx6dnhKrSPcQiKo9FkBV4JVW -----END CERTIFICATE-----Generated at Wed Dec 24 14:12:37 2025 by rpki-client