This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91602ED/167BC63C7C1B11EB9F3F3C65C4F9AE02/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.mft File: KHUp3CDKDs6Vp6VW4QvN_XI32Ng.mft (raw, json) Hash identifier: /viRTMPXQc+SIsdVdvtAeHjNcuO8jhx+vc+ORI0jxnI= Subject key identifier: 9E:BF:C4:4E:21:80:B4:87:10:56:E2:51:59:F8:5B:58:CF:35:FC:08 Authority key identifier: 28:75:29:DC:20:CA:0E:CE:95:A7:A5:56:E1:0B:CD:FD:72:37:D8:D8 Certificate issuer: /CN=A91602ED/serialNumber=287529DC20CA0ECE95A7A556E10BCDFD7237D8D8 Certificate serial: 06D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91602ED/167BC63C7C1B11EB9F3F3C65C4F9AE02/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.mft Manifest number: 06D0 Signing time: Thu 04 Dec 2025 20:55:20 +0000 Manifest this update: Thu 04 Dec 2025 20:55:19 +0000 Manifest next update: Thu 11 Dec 2025 20:55:19 +0000 Files and hashes: 1: KHUp3CDKDs6Vp6VW4QvN_XI32Ng.crl (hash: xwDqxWJVK4GdLrF53SGOHQBid27kb0UQ4KYgsSJDdWg=) 2: 7883418E943A11EBB6706530C4F9AE02.roa (hash: TnZM67noo4lbQHfXpAgCtw+JAFkneMpGmuhyQRw2ydg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91602ED/167BC63C7C1B11EB9F3F3C65C4F9AE02/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.crl rsync://rpki.apnic.net/member_repository/A91602ED/167BC63C7C1B11EB9F3F3C65C4F9AE02/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 20:55:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1750 (0x6d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91602ED, serialNumber=287529DC20CA0ECE95A7A556E10BCDFD7237D8D8 Validity Not Before: Dec 4 20:55:19 2025 GMT Not After : Dec 11 20:55:19 2025 GMT Subject: CN=6931f538-4c18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:3e:8f:02:5d:eb:85:9b:0b:5b:c7:49:36:7a: 99:f1:1d:30:5c:d4:94:39:85:40:cc:7c:20:ed:22: 24:cb:cb:30:1b:8c:4e:df:3a:b6:90:1c:84:de:48: 12:4d:38:f3:ef:37:6f:1a:7d:e3:77:e0:19:05:91: 32:64:0e:9e:69:da:b9:77:c4:c8:5d:37:1c:e2:b4: d4:a1:d8:46:01:e6:a5:27:71:60:e2:42:6f:a7:5b: 3e:13:4c:d3:d7:b1:f5:9f:58:69:49:7e:d4:02:71: 0b:10:f9:04:8e:50:b9:ba:25:e8:8e:93:17:aa:d7: fe:11:c3:5a:a6:87:5d:58:b4:5b:2f:db:4a:55:a7: 9b:b6:72:75:9d:86:55:79:c8:f6:af:4a:36:4d:7f: 1d:07:09:c9:40:0e:5c:b5:c9:45:68:9d:00:72:d4: 95:18:70:43:b1:ad:24:4d:5c:dd:a9:86:4a:60:4d: 16:bc:0a:0c:e6:dc:46:06:15:6b:6a:5f:b2:fb:1a: 35:38:59:01:bf:ef:79:79:00:57:a2:5a:5f:77:e7: 66:31:14:ec:fc:ca:d7:67:cd:64:82:d8:ba:63:86: 7e:6c:54:9d:3f:d6:83:b9:d6:6f:f1:2f:89:3b:95: e5:b2:3f:c0:38:d3:87:d8:e8:7f:97:70:96:9d:fd: b0:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:BF:C4:4E:21:80:B4:87:10:56:E2:51:59:F8:5B:58:CF:35:FC:08 X509v3 Authority Key Identifier: keyid:28:75:29:DC:20:CA:0E:CE:95:A7:A5:56:E1:0B:CD:FD:72:37:D8:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91602ED/167BC63C7C1B11EB9F3F3C65C4F9AE02/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91602ED/167BC63C7C1B11EB9F3F3C65C4F9AE02/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:6c:f3:df:4e:7f:b9:dd:3c:7a:cb:02:0e:13:65:5f:35:67: 92:09:9e:48:62:25:0b:db:b3:04:c3:2a:d1:20:1b:a2:db:6b: da:56:f4:28:11:e0:b3:4e:3f:30:e7:9e:98:16:13:b2:c1:0b: d2:05:66:b9:9e:77:b0:da:f6:60:79:00:d1:03:e7:a3:18:b9: f7:93:3c:d2:b1:4b:9e:e9:58:a5:f7:24:3c:ee:b3:d0:22:94: a8:0c:b7:e4:f5:62:17:dd:b6:ac:c4:ab:bd:0f:b6:72:18:f8: f9:0c:f5:a4:96:b2:95:46:22:59:df:74:54:19:e4:e9:43:26: b0:c3:3b:7d:b0:85:20:d1:dc:6c:11:b9:54:1e:eb:e6:fb:87: d3:84:3a:b0:f8:fb:18:ab:45:19:8a:ab:d1:68:7e:96:c3:ca: 0c:e3:f4:76:5f:47:c1:53:78:c4:49:e9:8d:54:10:ab:63:ef: 0d:e3:3c:20:3a:9e:8b:75:0d:cb:f6:be:3f:03:f0:d6:2b:88: 27:aa:6d:ce:fb:a1:44:46:44:0e:f4:f3:01:3e:95:71:9e:1a: 1b:88:d6:1f:93:3d:35:f8:d3:d4:6b:0d:c8:5d:bf:99:36:9d: dc:d9:5b:d0:94:57:92:dd:f2:cb:92:d4:e7:7e:f2:a4:10:32: 02:f1:e4:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBtYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjAyRUQxMTAvBgNVBAUTKDI4NzUyOURDMjBDQTBFQ0U5NUE3QTU1NkUxMEJDREZE NzIzN0Q4RDgwHhcNMjUxMjA0MjA1NTE5WhcNMjUxMjExMjA1NTE5WjAYMRYwFAYD VQQDEw02OTMxZjUzOC00YzE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxD6PAl3rhZsLW8dJNnqZ8R0wXNSUOYVAzHwg7SIky8swG4xO3zq2kByE3kgS TTjz7zdvGn3jd+AZBZEyZA6eadq5d8TIXTcc4rTUodhGAealJ3Fg4kJvp1s+E0zT 17H1n1hpSX7UAnELEPkEjlC5uiXojpMXqtf+EcNapoddWLRbL9tKVaebtnJ1nYZV ecj2r0o2TX8dBwnJQA5ctclFaJ0ActSVGHBDsa0kTVzdqYZKYE0WvAoM5txGBhVr al+y+xo1OFkBv+95eQBXolpfd+dmMRTs/MrXZ81kgti6Y4Z+bFSdP9aDudZv8S+J O5Xlsj/AONOH2Oh/l3CWnf2w7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ6/xE4h gLSHEFbiUVn4W1jPNfwIMB8GA1UdIwQYMBaAFCh1Kdwgyg7OlaelVuELzf1yN9jY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDJFRC8xNjdCQzYzQzdD MUIxMUVCOUYzRjNDNjVDNEY5QUUwMi9LSFVwM0NES0RzNlZwNlZXNFF2Tl9YSTMy TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tIVXAzQ0RLRHM2VnA2Vlc0UXZOX1hJMzJOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDJFRC8xNjdCQzYzQzdDMUIxMUVCOUYzRjNDNjVDNEY5QUUwMi9LSFVwM0NES0Rz NlZwNlZXNFF2Tl9YSTMyTmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBIbPPfTn+53Tx6ywIOE2VfNWeSCZ5IYiUL27MEwyrRIBui22vaVvQo EeCzTj8w556YFhOywQvSBWa5nnew2vZgeQDRA+ejGLn3kzzSsUue6Vil9yQ87rPQ IpSoDLfk9WIX3basxKu9D7ZyGPj5DPWklrKVRiJZ33RUGeTpQyawwzt9sIUg0dxs EblUHuvm+4fThDqw+PsYq0UZiqvRaH6Ww8oM4/R2X0fBU3jESemNVBCrY+8N4zwg Op6LdQ3L9r4/A/DWK4gnqm3O+6FERkQO9PMBPpVxnhobiNYfkz01+NPUaw3IXb+Z Np3c2VvQlFeS3fLLktTnfvKkEDIC8eR8 -----END CERTIFICATE-----Generated at Sat Dec 6 16:00:13 2025 by rpki-client