This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.mft File: KHaCX3fCShZ9xBIVNQ9oh5KYGmc.mft (raw, json) Hash identifier: z7CfO4mkt/nptcVRJc5of2xOSS5OgGbsDQr5nO871wo= Subject key identifier: 4C:C3:CC:8C:FC:65:B2:4D:39:DB:26:6F:9F:53:26:79:CA:6C:EE:10 Authority key identifier: 28:76:82:5F:77:C2:4A:16:7D:C4:12:15:35:0F:68:87:92:98:1A:67 Certificate issuer: /CN=A9194677/serialNumber=2876825F77C24A167DC41215350F688792981A67 Certificate serial: 01AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.mft Manifest number: 01A8 Signing time: Sun 21 Dec 2025 02:30:42 +0000 Manifest this update: Sun 21 Dec 2025 02:30:42 +0000 Manifest next update: Sun 28 Dec 2025 02:30:42 +0000 Files and hashes: 1: KHaCX3fCShZ9xBIVNQ9oh5KYGmc.crl (hash: GJwYUlVGb4AhY9Zrkb0JKrowYhph/k9REckRS0A/K4U=) 2: 759C16DC577711EE96F5F775C4F9AE02.roa (hash: E2MEy59tbIM1Maudg/5GMAqeAqrNk3TYYaN2opqqFDU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.crl rsync://rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 02:30:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 428 (0x1ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194677, serialNumber=2876825F77C24A167DC41215350F688792981A67 Validity Not Before: Dec 21 02:30:42 2025 GMT Not After : Dec 28 02:30:42 2025 GMT Subject: CN=69475bd2-e8e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:c2:12:61:b7:33:45:af:71:6c:39:38:14:87: 57:21:ac:4f:5d:d4:dc:0e:ca:bd:28:2d:2e:a1:9c: d8:9a:ed:a5:be:e7:a2:69:a1:7b:2d:6f:2b:06:2a: 65:69:e5:a9:d3:88:9b:4e:d1:e2:3c:0a:78:a6:14: 5b:97:3b:11:21:65:2c:5f:4e:a6:d5:6e:fa:52:b3: 28:e3:a1:07:37:af:88:f0:5c:61:8c:23:ac:e7:cc: 2b:62:23:fa:a9:41:a8:4c:6f:77:26:9a:eb:bc:97: 3f:ba:7c:b0:f7:d3:87:66:a5:56:78:95:de:ff:9d: 7b:08:df:fa:e0:f1:6c:ca:a7:89:5c:f8:5f:ef:5b: 3d:c1:a5:69:65:c8:c7:c5:e0:27:93:c9:09:f9:be: b5:74:77:d2:5c:9b:92:f4:23:5f:01:27:c6:7c:ba: ac:37:fa:df:39:a9:d6:16:29:81:2b:ba:39:1d:8c: 35:c8:09:1a:06:18:dc:1c:72:54:0b:26:1c:f2:ec: 3c:2a:d7:3f:83:80:6c:af:89:49:4a:67:38:15:c3: ac:56:4b:90:59:dd:ba:73:c8:c0:b6:5d:bb:9b:e0: 3a:8e:fd:77:76:a3:af:7f:3d:b6:e2:de:04:ee:f8: cc:99:65:34:c2:94:1e:c0:97:1c:c3:34:03:43:91: 09:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:C3:CC:8C:FC:65:B2:4D:39:DB:26:6F:9F:53:26:79:CA:6C:EE:10 X509v3 Authority Key Identifier: keyid:28:76:82:5F:77:C2:4A:16:7D:C4:12:15:35:0F:68:87:92:98:1A:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:e4:2a:b6:f6:6d:ea:0b:61:a1:34:7f:1d:6e:c4:2f:2d:7f: 09:60:ff:52:43:b0:d6:f6:97:eb:6f:45:ad:a9:2c:e9:3a:cb: 0b:d3:23:e4:c3:e6:6e:c7:0e:96:6a:e5:e1:d8:af:1e:98:80: 11:a2:8e:ed:7e:4b:35:19:e6:6e:f6:ef:ec:fa:fc:a9:29:7c: 8e:cb:96:7c:1b:a9:1f:c3:05:2a:32:50:f0:81:8a:67:26:63: 03:ea:d1:c6:a1:1e:24:bb:29:da:e9:88:ca:75:40:b0:99:a7: 9f:22:23:22:ae:5e:f3:f8:45:74:79:2e:2b:c8:d0:d4:81:99: eb:0b:82:e7:d7:6b:5d:5e:be:ed:fa:36:d1:6d:82:7c:6b:21: 45:95:19:27:77:60:26:c8:31:5f:c5:78:bc:5d:c7:9a:33:98: 14:d6:7c:f4:81:28:39:25:0f:50:52:2c:c8:6a:1b:28:27:85: a7:48:b5:a4:cb:80:52:1b:56:c3:d1:20:80:1e:2a:e5:ab:e3: 48:eb:66:49:6b:da:18:4f:64:95:a3:bb:82:fb:14:79:3b:ed: de:e4:1f:0b:68:f5:c1:ad:0b:69:d2:79:59:0f:fa:66:ea:fa: 39:f0:b8:ca:35:7a:7a:47:c1:0b:e4:78:04:8a:a5:38:53:a6: 42:f7:11:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAawwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTQ2NzcxMTAvBgNVBAUTKDI4NzY4MjVGNzdDMjRBMTY3REM0MTIxNTM1MEY2ODg3 OTI5ODFBNjcwHhcNMjUxMjIxMDIzMDQyWhcNMjUxMjI4MDIzMDQyWjAYMRYwFAYD VQQDDA02OTQ3NWJkMi1lOGU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqsISYbczRa9xbDk4FIdXIaxPXdTcDsq9KC0uoZzYmu2lvueiaaF7LW8rBipl aeWp04ibTtHiPAp4phRblzsRIWUsX06m1W76UrMo46EHN6+I8FxhjCOs58wrYiP6 qUGoTG93JprrvJc/unyw99OHZqVWeJXe/517CN/64PFsyqeJXPhf71s9waVpZcjH xeAnk8kJ+b61dHfSXJuS9CNfASfGfLqsN/rfOanWFimBK7o5HYw1yAkaBhjcHHJU CyYc8uw8Ktc/g4Bsr4lJSmc4FcOsVkuQWd26c8jAtl27m+A6jv13dqOvfz224t4E 7vjMmWU0wpQewJccwzQDQ5EJLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEzDzIz8 ZbJNOdsmb59TJnnKbO4QMB8GA1UdIwQYMBaAFCh2gl93wkoWfcQSFTUPaIeSmBpn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NDY3Ny8wMjI3Rjc4NjU3 NzUxMUVFOTJBQ0E3NTlDNEY5QUUwMi9LSGFDWDNmQ1NoWjl4QklWTlE5b2g1S1lH bWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tIYUNYM2ZDU2haOXhCSVZOUTlvaDVLWUdtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NDY3Ny8wMjI3Rjc4NjU3NzUxMUVFOTJBQ0E3NTlDNEY5QUUwMi9LSGFDWDNmQ1No Wjl4QklWTlE5b2g1S1lHbWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAY5Cq29m3qC2GhNH8dbsQvLX8JYP9SQ7DW9pfrb0WtqSzpOssL0yPk w+Zuxw6WauXh2K8emIARoo7tfks1GeZu9u/s+vypKXyOy5Z8G6kfwwUqMlDwgYpn JmMD6tHGoR4kuyna6YjKdUCwmaefIiMirl7z+EV0eS4ryNDUgZnrC4Ln12tdXr7t +jbRbYJ8ayFFlRknd2AmyDFfxXi8XceaM5gU1nz0gSg5JQ9QUizIahsoJ4WnSLWk y4BSG1bD0SCAHirlq+NI62ZJa9oYT2SVo7uC+xR5O+3e5B8LaPXBrQtp0nlZD/pm 6vo58LjKNXp6R8EL5HgEiqU4U6ZC9xG/ -----END CERTIFICATE-----Generated at Mon Dec 22 05:20:03 2025 by rpki-client