This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/Khx4XL6-fNe6tToSO2BVhg9gfxg.mft File: Khx4XL6-fNe6tToSO2BVhg9gfxg.mft (raw, json) Hash identifier: wP79KNix/xlt1Sqg50BwPkHTu2w33NpjjFjTVuVSOik= Subject key identifier: 36:4F:61:DD:88:11:77:CD:B5:8F:60:3C:99:60:48:1F:A9:55:2E:D6 Authority key identifier: 2A:1C:78:5C:BE:BE:7C:D7:BA:B5:3A:12:3B:60:55:86:0F:60:7F:18 Certificate issuer: /CN=A91D6AB2/serialNumber=2A1C785CBEBE7CD7BAB53A123B6055860F607F18 Certificate serial: 0893 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Khx4XL6-fNe6tToSO2BVhg9gfxg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/Khx4XL6-fNe6tToSO2BVhg9gfxg.mft Manifest number: 0D05 Signing time: Sat 06 Dec 2025 19:40:42 +0000 Manifest this update: Sat 06 Dec 2025 19:40:41 +0000 Manifest next update: Sat 13 Dec 2025 19:40:41 +0000 Files and hashes: 1: Khx4XL6-fNe6tToSO2BVhg9gfxg.crl (hash: VWedlfMfmzRVqxeLrMaK78/GT7IYmxcAqzDuDkn+K48=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/Khx4XL6-fNe6tToSO2BVhg9gfxg.crl rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/Khx4XL6-fNe6tToSO2BVhg9gfxg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Khx4XL6-fNe6tToSO2BVhg9gfxg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 19:40:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2195 (0x893) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6AB2, serialNumber=2A1C785CBEBE7CD7BAB53A123B6055860F607F18 Validity Not Before: Dec 6 19:40:41 2025 GMT Not After : Dec 13 19:40:41 2025 GMT Subject: CN=693486b9-7c58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:f2:5b:df:c0:7b:4f:3f:1e:77:0c:3a:87:30: 60:1f:c6:57:f3:b3:eb:96:c2:a5:97:e5:8b:e1:0a: 19:07:4a:65:b5:2c:4e:71:c9:14:bc:7d:32:f2:d0: 49:ed:6f:fc:10:2b:dd:83:e4:a5:c9:99:89:e6:bc: f7:1c:d7:2d:e5:94:2e:f4:da:6e:81:37:c5:fe:4b: af:7b:c0:2f:bf:e8:ca:2e:d8:41:5b:d7:a7:cf:f1: fd:50:9b:62:18:4d:38:95:8d:72:a7:3d:2d:15:36: 13:2b:c8:cd:57:90:dd:48:d3:9e:f9:7e:97:25:cd: a1:83:df:c9:e9:92:df:28:e4:56:f5:f5:7e:9b:da: 99:f7:6e:27:20:fb:dc:44:58:96:a1:bc:68:a5:0e: 11:9c:c8:91:c6:95:53:be:8b:6b:d4:27:35:db:7f: b8:a6:f4:c0:f1:07:07:ab:e0:c0:24:e4:ad:b4:d5: 28:e0:99:8a:50:7d:13:6a:6e:9a:8e:69:7b:50:a2: af:af:5c:04:47:57:6b:6c:33:f1:21:e5:9f:b5:e6: 18:96:bd:ec:da:01:60:e8:cc:9e:86:ff:a0:34:04: 5f:c6:f4:1d:12:87:71:1f:e6:d0:8a:82:e1:08:d9: 43:89:1e:65:c8:03:f7:e0:2a:bb:80:53:12:f0:88: 3d:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:4F:61:DD:88:11:77:CD:B5:8F:60:3C:99:60:48:1F:A9:55:2E:D6 X509v3 Authority Key Identifier: keyid:2A:1C:78:5C:BE:BE:7C:D7:BA:B5:3A:12:3B:60:55:86:0F:60:7F:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/Khx4XL6-fNe6tToSO2BVhg9gfxg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Khx4XL6-fNe6tToSO2BVhg9gfxg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/Khx4XL6-fNe6tToSO2BVhg9gfxg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:ba:ae:bb:47:89:99:77:cd:0d:ea:ea:d3:93:97:a0:e6:d1: b4:f7:69:61:b0:23:66:f2:ea:da:71:a4:69:b5:d4:6c:0f:ee: 54:61:11:1b:48:29:3b:37:6f:bc:db:10:cb:4a:44:79:c3:c4: 8a:7c:3f:60:ef:48:66:90:9a:8c:df:5c:cb:1c:49:a2:f3:96: 8d:10:31:e6:2e:87:c5:80:e6:76:4d:66:bb:6b:28:87:85:1b: 23:0c:ff:d6:b0:68:f7:a7:89:61:2d:67:0c:48:35:00:67:a7: fd:f9:60:da:1e:f4:c5:e6:a2:de:c3:25:e2:0b:b2:20:41:6d: 04:45:2e:49:96:61:09:60:0a:9f:86:0a:c7:b1:21:37:27:e3: 6e:e3:de:8f:2a:9f:37:84:fe:91:41:f1:52:f1:5c:ea:dd:ad: 07:3b:e2:92:6a:cb:e2:a6:9f:97:50:f9:34:6f:48:f7:4f:2d: 48:3a:f1:4f:e1:01:40:73:db:f6:c8:6f:0c:ab:e8:f7:44:a1: a3:db:37:2c:97:2b:e3:97:ff:f6:c8:2b:86:89:0e:b3:1f:40: 0c:dc:43:35:91:5f:9f:01:d4:93:b0:1c:91:87:14:cf:5c:cd: 79:78:57:86:d1:48:8b:bb:06:40:4b:dd:fe:eb:31:8a:fc:64: a1:ed:fb:c9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCJMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDZBQjIxMTAvBgNVBAUTKDJBMUM3ODVDQkVCRTdDRDdCQUI1M0ExMjNCNjA1NTg2 MEY2MDdGMTgwHhcNMjUxMjA2MTk0MDQxWhcNMjUxMjEzMTk0MDQxWjAYMRYwFAYD VQQDEw02OTM0ODZiOS03YzU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqvJb38B7Tz8edww6hzBgH8ZX87PrlsKll+WL4QoZB0pltSxOcckUvH0y8tBJ 7W/8ECvdg+SlyZmJ5rz3HNct5ZQu9NpugTfF/kuve8Avv+jKLthBW9enz/H9UJti GE04lY1ypz0tFTYTK8jNV5DdSNOe+X6XJc2hg9/J6ZLfKORW9fV+m9qZ924nIPvc RFiWobxopQ4RnMiRxpVTvotr1Cc123+4pvTA8QcHq+DAJOSttNUo4JmKUH0Tam6a jml7UKKvr1wER1drbDPxIeWfteYYlr3s2gFg6Myehv+gNARfxvQdEodxH+bQioLh CNlDiR5lyAP34Cq7gFMS8Ig9wwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDZPYd2I EXfNtY9gPJlgSB+pVS7WMB8GA1UdIwQYMBaAFCoceFy+vnzXurU6EjtgVYYPYH8Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENkFCMi8wQUYyRUFBQUNG NzAxMUVBOEFFNTVENDhDNEY5QUUwMi9LaHg0WEw2LWZOZTZ0VG9TTzJCVmhnOWdm eGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0toeDRYTDYtZk5lNnRUb1NPMkJWaGc5Z2Z4Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NkFCMi8wQUYyRUFBQUNGNzAxMUVBOEFFNTVENDhDNEY5QUUwMi9LaHg0WEw2LWZO ZTZ0VG9TTzJCVmhnOWdmeGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGuq67R4mZd80N6urTk5eg5tG092lhsCNm8uracaRptdRsD+5UYREb SCk7N2+82xDLSkR5w8SKfD9g70hmkJqM31zLHEmi85aNEDHmLofFgOZ2TWa7ayiH hRsjDP/WsGj3p4lhLWcMSDUAZ6f9+WDaHvTF5qLewyXiC7IgQW0ERS5JlmEJYAqf hgrHsSE3J+Nu496PKp83hP6RQfFS8Vzq3a0HO+KSasvipp+XUPk0b0j3Ty1IOvFP 4QFAc9v2yG8Mq+j3RKGj2zcslyvjl//2yCuGiQ6zH0AM3EM1kV+fAdSTsByRhxTP XM15eFeG0UiLuwZAS93+6zGK/GSh7fvJ -----END CERTIFICATE-----Generated at Sat Dec 6 23:59:44 2025 by rpki-client