This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.mft File: khdBhFmoypIuDWajy6pAZyDLSJA.mft (raw, json) Hash identifier: 7pQMaPj1f98OKXzfsdlMT96mSML5rse+HM5sMx6tT4M= Subject key identifier: C1:38:EA:C3:55:63:93:9F:7D:0F:0C:23:8C:2F:5B:42:E1:E0:80:7A Authority key identifier: 92:17:41:84:59:A8:CA:92:2E:0D:66:A3:CB:AA:40:67:20:CB:48:90 Certificate issuer: /CN=A9137B39/serialNumber=9217418459A8CA922E0D66A3CBAA406720CB4890 Certificate serial: 0405 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khdBhFmoypIuDWajy6pAZyDLSJA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.mft Manifest number: 03FB Signing time: Sat 06 Dec 2025 23:10:45 +0000 Manifest this update: Sat 06 Dec 2025 23:10:45 +0000 Manifest next update: Sat 13 Dec 2025 23:10:45 +0000 Files and hashes: 1: khdBhFmoypIuDWajy6pAZyDLSJA.crl (hash: u7DsxhVMalPP+1eKr6ZtLBOq+rxQGxFkWsRVKrmd7PU=) 2: EA8F3FAE6F8611F0BA25F244C4F9AE02.roa (hash: 1Pf8TzmStlNv8sOjb51A77gXMYXTgCciVVvajyk1hsg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.crl rsync://rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khdBhFmoypIuDWajy6pAZyDLSJA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 21:31:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1029 (0x405) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137B39, serialNumber=9217418459A8CA922E0D66A3CBAA406720CB4890 Validity Not Before: Dec 6 23:10:45 2025 GMT Not After : Dec 13 23:10:45 2025 GMT Subject: CN=6934b7f5-037a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:d2:51:98:40:39:ae:45:11:98:a5:51:11:d4: aa:41:fe:0a:05:e6:72:47:2d:38:29:49:df:09:9f: 25:38:e5:38:aa:ba:f6:21:65:da:64:44:91:11:e8: da:69:05:8a:c1:06:e2:81:51:de:23:b7:b3:51:f9: bc:5f:e7:63:07:91:41:41:02:50:30:80:af:d2:24: fe:24:d8:3f:84:02:ce:ce:78:42:91:57:bc:f8:39: 90:2d:17:99:16:69:9f:32:6e:d7:6f:fc:ac:10:1b: 44:84:2f:a8:db:c6:3e:4f:a4:50:b0:00:77:38:6c: 95:2b:ee:2a:d1:0a:2b:87:0e:d5:0e:92:6f:97:95: aa:92:dd:8f:f8:13:bc:68:f2:2b:3d:82:ef:a5:51: 14:f4:df:cd:e0:a8:16:0a:61:63:22:50:a2:d2:f1: 7b:de:64:d7:0a:4f:f5:64:7b:0d:11:90:8f:70:8e: f0:18:55:60:e1:18:75:97:94:f8:cc:13:40:da:e5: d9:c7:8d:54:fd:15:1b:08:d5:fd:c3:2e:3c:d5:f7: e0:b0:84:f4:33:b0:09:7f:5e:5b:a9:23:ef:5e:a8: 71:a5:78:60:80:09:70:35:32:39:28:fd:51:f8:c4: 84:84:5f:7b:a7:54:85:8a:87:7c:6e:29:2f:4d:00: 5a:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:38:EA:C3:55:63:93:9F:7D:0F:0C:23:8C:2F:5B:42:E1:E0:80:7A X509v3 Authority Key Identifier: keyid:92:17:41:84:59:A8:CA:92:2E:0D:66:A3:CB:AA:40:67:20:CB:48:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khdBhFmoypIuDWajy6pAZyDLSJA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:14:6f:98:eb:6e:4e:27:56:87:a3:26:01:82:2d:50:d6:3b: 43:d4:21:a6:f0:0f:04:2e:af:9f:10:f3:f1:93:a9:52:f5:02: a6:d4:96:aa:29:c4:a3:49:38:7f:03:03:15:97:5c:42:27:43: 98:8b:27:c6:a8:20:0a:2b:e1:ec:4c:86:12:c6:4e:74:53:ef: 9d:71:26:13:98:05:58:06:4a:e9:37:a4:f8:98:e6:cd:0d:a9: 93:6c:a9:69:46:f5:67:fc:df:cd:01:31:b2:ac:32:f1:a9:db: 85:17:ef:29:43:c3:c2:ef:27:1a:83:53:4a:88:67:a5:fa:e9: 11:ca:d8:b4:36:58:61:fd:d3:53:0e:94:05:3a:cb:ab:56:a5: b9:e8:f4:22:b0:af:81:b3:55:59:b2:c7:d6:cd:72:58:c2:1b: c8:d4:15:62:5e:40:00:15:bc:10:f7:8f:9a:ed:cb:ac:85:b7: 34:83:d4:d5:64:59:8f:b9:95:ef:81:04:72:cc:c7:5b:a1:2b: 78:7d:df:08:2b:fb:b6:a8:de:60:c9:d2:db:9d:88:f6:c3:74: 8a:29:cd:18:88:13:3a:6c:da:3f:cd:20:4f:e3:64:c8:67:b0: 85:42:01:90:1a:80:1b:13:2c:de:cb:ca:1e:46:91:63:ce:6f: 19:9f:a4:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBAUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdCMzkxMTAvBgNVBAUTKDkyMTc0MTg0NTlBOENBOTIyRTBENjZBM0NCQUE0MDY3 MjBDQjQ4OTAwHhcNMjUxMjA2MjMxMDQ1WhcNMjUxMjEzMjMxMDQ1WjAYMRYwFAYD VQQDEw02OTM0YjdmNS0wMzdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+NJRmEA5rkURmKVREdSqQf4KBeZyRy04KUnfCZ8lOOU4qrr2IWXaZESREeja aQWKwQbigVHeI7ezUfm8X+djB5FBQQJQMICv0iT+JNg/hALOznhCkVe8+DmQLReZ FmmfMm7Xb/ysEBtEhC+o28Y+T6RQsAB3OGyVK+4q0Qorhw7VDpJvl5Wqkt2P+BO8 aPIrPYLvpVEU9N/N4KgWCmFjIlCi0vF73mTXCk/1ZHsNEZCPcI7wGFVg4Rh1l5T4 zBNA2uXZx41U/RUbCNX9wy481ffgsIT0M7AJf15bqSPvXqhxpXhggAlwNTI5KP1R +MSEhF97p1SFiod8bikvTQBahQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFME46sNV Y5OffQ8MI4wvW0Lh4IB6MB8GA1UdIwQYMBaAFJIXQYRZqMqSLg1mo8uqQGcgy0iQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0IzOS9BNzU5OUQ3QUEw MzUxMUVDODIyNTVEM0FDNEY5QUUwMi9raGRCaEZtb3lwSXVEV2FqeTZwQVp5RExT SkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2toZEJoRm1veXBJdURXYWp5NnBBWnlETFNKQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz N0IzOS9BNzU5OUQ3QUEwMzUxMUVDODIyNTVEM0FDNEY5QUUwMi9raGRCaEZtb3lw SXVEV2FqeTZwQVp5RExTSkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8FG+Y625OJ1aHoyYBgi1Q1jtD1CGm8A8ELq+fEPPxk6lS9QKm1Jaq KcSjSTh/AwMVl1xCJ0OYiyfGqCAKK+HsTIYSxk50U++dcSYTmAVYBkrpN6T4mObN DamTbKlpRvVn/N/NATGyrDLxqduFF+8pQ8PC7ycag1NKiGel+ukRyti0Nlhh/dNT DpQFOsurVqW56PQisK+Bs1VZssfWzXJYwhvI1BViXkAAFbwQ94+a7cushbc0g9TV ZFmPuZXvgQRyzMdboSt4fd8IK/u2qN5gydLbnYj2w3SKKc0YiBM6bNo/zSBP42TI Z7CFQgGQGoAbEyzey8oeRpFjzm8Zn6R8 -----END CERTIFICATE-----Generated at Sun Dec 7 00:58:23 2025 by rpki-client