This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.mft File: Klbs8PH_OfsVFWANEgo0cr4UtzI.mft (raw, json) Hash identifier: d7RTdATAfl21ZPYsYAvXnFxwSvGD3+n2HUSq0e61+Z8= Subject key identifier: E5:2F:05:CB:BD:42:97:BE:C1:74:18:CC:BE:D0:02:2D:1A:F4:37:6D Authority key identifier: 2A:56:EC:F0:F1:FF:39:FB:15:15:60:0D:12:0A:34:72:BE:14:B7:32 Certificate issuer: /CN=A91EA485/serialNumber=2A56ECF0F1FF39FB1515600D120A3472BE14B732 Certificate serial: 01AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Klbs8PH_OfsVFWANEgo0cr4UtzI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.mft Manifest number: 01A9 Signing time: Fri 05 Dec 2025 01:28:36 +0000 Manifest this update: Fri 05 Dec 2025 01:28:36 +0000 Manifest next update: Fri 12 Dec 2025 01:28:35 +0000 Files and hashes: 1: Klbs8PH_OfsVFWANEgo0cr4UtzI.crl (hash: jb/JVUZ13Mo8yS/Q9M7m8cRNRQoaMWJ5oD4TJziqBBo=) 2: EF31E31847CE11EEB588375DC4F9AE02.roa (hash: kILGmUlpt7DdHWZSLztcZSmK4D+q9rXXCv0iWxnKi6I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.crl rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Klbs8PH_OfsVFWANEgo0cr4UtzI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 01:28:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 429 (0x1ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA485, serialNumber=2A56ECF0F1FF39FB1515600D120A3472BE14B732 Validity Not Before: Dec 5 01:28:36 2025 GMT Not After : Dec 12 01:28:35 2025 GMT Subject: CN=69323544-d70a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:c3:cd:da:c8:5e:cd:e1:8e:32:2b:18:6d:45: ec:64:35:cf:9c:e0:92:f3:34:4b:04:f3:3f:38:c9: 64:26:8c:85:1b:dc:5b:12:2b:94:3f:d7:bd:a8:f4: 05:34:eb:02:30:1e:55:e8:0e:5e:f4:b7:1f:14:f4: f1:6d:f0:34:c7:63:bb:d9:28:81:ed:f3:c6:5e:34: a2:81:c6:c1:3f:f0:4d:9c:9f:7d:70:23:32:03:e5: 78:b0:d3:c5:dc:92:a3:bd:eb:99:90:92:cd:75:ad: b4:8f:2f:ef:a0:47:1e:bb:5a:16:97:46:7d:f7:6d: 87:ae:5f:ab:48:dd:d5:a0:28:a5:61:31:42:1e:31: 06:b4:70:ac:86:d6:00:3e:d0:36:78:d2:8a:6b:3f: 7f:7b:eb:f1:10:c4:55:fe:15:b4:75:37:fb:4b:36: b0:eb:2f:6b:0d:a9:32:38:ca:8b:b3:b8:77:c7:b5: 41:76:54:6d:be:a5:a5:93:86:86:ea:eb:55:fd:85: 92:9e:34:9c:6c:07:1e:86:93:10:5f:54:4e:af:b2: 3e:c7:d7:99:8d:16:ab:93:8b:f7:f0:16:02:a6:5c: c9:2d:4b:10:8f:bb:a4:89:b6:33:71:10:7c:38:1a: ec:5c:55:cc:a8:bc:b0:3c:ba:46:c6:20:a0:83:06: ef:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:2F:05:CB:BD:42:97:BE:C1:74:18:CC:BE:D0:02:2D:1A:F4:37:6D X509v3 Authority Key Identifier: keyid:2A:56:EC:F0:F1:FF:39:FB:15:15:60:0D:12:0A:34:72:BE:14:B7:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Klbs8PH_OfsVFWANEgo0cr4UtzI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:df:25:ef:05:c3:4b:da:b1:89:89:2d:33:ef:c7:9d:c6:e3: be:18:77:0b:2e:7c:3d:ff:73:dc:ae:90:ad:9d:c4:ce:13:17: 82:f5:2b:dc:59:eb:be:42:78:04:b5:71:38:79:ac:d1:67:12: 83:31:a8:c1:f0:89:90:34:f3:49:bb:a1:a3:63:e8:b2:2b:55: 5e:62:3f:bc:22:8d:37:58:23:39:8f:21:40:5d:f6:cc:2f:bd: a6:45:79:c3:ed:12:e6:8a:77:22:db:53:d2:f2:1a:1f:a9:83: 34:ba:94:f9:f3:ec:08:48:74:fd:4f:4f:1b:bc:fc:24:5c:e1: 49:1f:72:cf:97:da:18:d4:be:e2:9d:2d:7e:f1:07:b7:93:b7: 5f:06:92:b5:14:5d:2c:11:e5:00:ed:66:e3:fd:a7:1e:19:d9: ee:03:98:78:51:9d:58:fc:99:22:15:ff:5e:45:61:85:a4:25: 7a:51:4b:82:59:22:57:64:91:b7:1c:2a:ca:78:f3:1c:0c:36: e8:6d:9b:05:27:22:ee:e3:99:82:7e:c2:16:ce:b1:31:c0:19: 43:c7:b8:8b:4c:01:f4:fd:e3:ba:a8:4b:35:7b:da:da:cb:49: 0e:65:1b:03:99:f5:f2:90:ea:8f:bb:12:9e:59:30:95:4d:46: ec:6d:04:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAa0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE0ODUxMTAvBgNVBAUTKDJBNTZFQ0YwRjFGRjM5RkIxNTE1NjAwRDEyMEEzNDcy QkUxNEI3MzIwHhcNMjUxMjA1MDEyODM2WhcNMjUxMjEyMDEyODM1WjAYMRYwFAYD VQQDEw02OTMyMzU0NC1kNzBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzMPN2shezeGOMisYbUXsZDXPnOCS8zRLBPM/OMlkJoyFG9xbEiuUP9e9qPQF NOsCMB5V6A5e9LcfFPTxbfA0x2O72SiB7fPGXjSigcbBP/BNnJ99cCMyA+V4sNPF 3JKjveuZkJLNda20jy/voEceu1oWl0Z9922Hrl+rSN3VoCilYTFCHjEGtHCshtYA PtA2eNKKaz9/e+vxEMRV/hW0dTf7Szaw6y9rDakyOMqLs7h3x7VBdlRtvqWlk4aG 6utV/YWSnjScbAcehpMQX1ROr7I+x9eZjRark4v38BYCplzJLUsQj7ukibYzcRB8 OBrsXFXMqLywPLpGxiCggwbv0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOUvBcu9 Qpe+wXQYzL7QAi0a9DdtMB8GA1UdIwQYMBaAFCpW7PDx/zn7FRVgDRIKNHK+FLcy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTQ4NS82MkE5Mjg2NjQ3 Q0UxMUVFODZDMjM4NUNDNEY5QUUwMi9LbGJzOFBIX09mc1ZGV0FORWdvMGNyNFV0 ekkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tsYnM4UEhfT2ZzVkZXQU5FZ28wY3I0VXR6SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTQ4NS82MkE5Mjg2NjQ3Q0UxMUVFODZDMjM4NUNDNEY5QUUwMi9LbGJzOFBIX09m c1ZGV0FORWdvMGNyNFV0ekkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAM3yXvBcNL2rGJiS0z78edxuO+GHcLLnw9/3PcrpCtncTOExeC9Svc Weu+QngEtXE4eazRZxKDMajB8ImQNPNJu6GjY+iyK1VeYj+8Io03WCM5jyFAXfbM L72mRXnD7RLminci21PS8hofqYM0upT58+wISHT9T08bvPwkXOFJH3LPl9oY1L7i nS1+8Qe3k7dfBpK1FF0sEeUA7Wbj/aceGdnuA5h4UZ1Y/JkiFf9eRWGFpCV6UUuC WSJXZJG3HCrKePMcDDbobZsFJyLu45mCfsIWzrExwBlDx7iLTAH0/eO6qEs1e9ra y0kOZRsDmfXykOqPuxKeWTCVTUbsbQRh -----END CERTIFICATE-----Generated at Sat Dec 6 15:08:37 2025 by rpki-client