This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.mft File: KHuwzWb71-W3qIumZ4kSTAsExXg.mft (raw, json) Hash identifier: OKlr78zZGOyJ+roLvosEMmTsrBM5rf0cHDcB9KrXcaU= Subject key identifier: 64:47:51:52:31:C9:FE:1B:E1:42:8E:65:BD:D2:4D:60:D7:12:75:AF Authority key identifier: 28:7B:B0:CD:66:FB:D7:E5:B7:A8:8B:A6:67:89:12:4C:0B:04:C5:78 Certificate issuer: /CN=A91EAE25/serialNumber=287BB0CD66FBD7E5B7A88BA66789124C0B04C578 Certificate serial: 0BDF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHuwzWb71-W3qIumZ4kSTAsExXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.mft Manifest number: 0BD2 Signing time: Thu 04 Dec 2025 18:17:42 +0000 Manifest this update: Thu 04 Dec 2025 18:17:42 +0000 Manifest next update: Thu 11 Dec 2025 18:17:42 +0000 Files and hashes: 1: KHuwzWb71-W3qIumZ4kSTAsExXg.crl (hash: 4+ionCSDzLAPTs4q60jlpcKlJP5gaJna9encZDiB3Zs=) 2: 2BA212DC306D11EA81D19B38C4F9AE02.roa (hash: t1CbmrYkwmBmGPrreNUR9MWvKRnTUYs/Z13bobbplHk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.crl rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHuwzWb71-W3qIumZ4kSTAsExXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 18:17:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3039 (0xbdf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAE25, serialNumber=287BB0CD66FBD7E5B7A88BA66789124C0B04C578 Validity Not Before: Dec 4 18:17:42 2025 GMT Not After : Dec 11 18:17:42 2025 GMT Subject: CN=6931d046-6ba9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:9f:54:be:34:62:00:f7:66:18:55:b8:74:7a: a2:f2:f7:73:fd:97:a0:ae:70:5e:06:39:ea:15:17: 31:fb:38:b2:34:ae:00:47:36:2e:92:60:65:d7:54: d3:fc:e7:18:12:7a:ea:14:1a:6f:88:e0:a0:ee:9e: b1:3a:43:b7:00:84:e4:a7:19:1d:e1:1a:68:0e:e2: 83:a8:58:6b:99:24:cf:7c:0a:e0:3e:b6:01:26:89: 3b:3a:8e:d2:a5:80:53:d7:f4:df:82:23:63:dd:05: 61:78:fe:9f:f7:ee:29:4d:f9:89:f0:21:41:3f:38: eb:b7:6d:04:ca:83:2a:4e:74:5f:8c:84:a8:cf:f2: ad:1a:80:56:ff:a3:7e:4e:a1:33:d5:0d:6f:b7:2c: 01:cc:c9:b0:85:85:28:1a:83:ef:71:43:25:83:b8: d6:49:33:f9:b8:19:54:2a:51:4e:dc:a0:1b:ba:43: 9a:f7:59:83:e7:1f:85:12:29:6e:6f:97:36:32:c6: 84:a7:e8:f8:27:d8:2b:8f:69:e5:5c:fc:0e:1e:6d: e8:04:27:11:67:8e:ed:dd:bb:13:93:d6:c2:d0:14: e1:26:24:f4:58:e0:7f:45:f9:66:aa:d9:ea:d5:ec: ed:b4:30:aa:7c:e6:ed:21:18:8a:0e:6b:a7:ad:eb: 99:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:47:51:52:31:C9:FE:1B:E1:42:8E:65:BD:D2:4D:60:D7:12:75:AF X509v3 Authority Key Identifier: keyid:28:7B:B0:CD:66:FB:D7:E5:B7:A8:8B:A6:67:89:12:4C:0B:04:C5:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHuwzWb71-W3qIumZ4kSTAsExXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:6f:b6:b7:10:09:e3:0e:c4:32:73:1f:ba:10:84:03:63:be: 46:79:09:1f:c8:2e:4a:da:97:bf:45:8c:c4:82:28:a9:01:70: ca:c4:56:8d:cf:39:0b:3b:b3:e8:dd:ad:a9:dc:92:c4:05:03: a8:b9:53:d9:f7:74:75:cd:ca:e5:3e:6b:41:36:94:26:13:31: 4b:3c:f8:72:d8:90:66:4e:3e:e2:9b:f7:98:05:ee:8f:80:72: 48:4f:87:11:5f:f4:8f:05:92:7a:71:77:9c:a6:27:20:f3:22: 8b:11:59:b1:31:27:ce:e0:d5:71:55:83:5a:55:c5:82:a8:97: 90:64:89:3a:fa:b9:f1:41:b7:2d:bd:0f:a5:32:99:c1:d7:7f: 0a:27:a8:f1:df:ed:99:24:b9:bc:83:7b:b8:0e:95:45:35:4d: 74:81:34:b4:68:4c:f4:37:56:fd:45:b1:b7:30:cb:6c:ae:91: dd:bf:04:ea:17:e3:9a:c7:3e:2b:46:9f:51:05:73:ac:41:4d: 86:b3:df:5a:27:6d:52:30:ca:c8:65:37:b0:17:be:77:ff:40: f8:43:fb:9a:4f:58:07:6e:cb:94:0a:cb:86:4a:3a:e8:4b:7d: ff:30:3c:92:23:56:18:97:00:7a:80:10:d9:5c:26:79:dc:16: 07:63:1b:23 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC98wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFFMjUxMTAvBgNVBAUTKDI4N0JCMENENjZGQkQ3RTVCN0E4OEJBNjY3ODkxMjRD MEIwNEM1NzgwHhcNMjUxMjA0MTgxNzQyWhcNMjUxMjExMTgxNzQyWjAYMRYwFAYD VQQDEw02OTMxZDA0Ni02YmE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxJ9UvjRiAPdmGFW4dHqi8vdz/ZegrnBeBjnqFRcx+ziyNK4ARzYukmBl11TT /OcYEnrqFBpviOCg7p6xOkO3AITkpxkd4RpoDuKDqFhrmSTPfArgPrYBJok7Oo7S pYBT1/TfgiNj3QVheP6f9+4pTfmJ8CFBPzjrt20EyoMqTnRfjISoz/KtGoBW/6N+ TqEz1Q1vtywBzMmwhYUoGoPvcUMlg7jWSTP5uBlUKlFO3KAbukOa91mD5x+FEilu b5c2MsaEp+j4J9grj2nlXPwOHm3oBCcRZ47t3bsTk9bC0BThJiT0WOB/Rflmqtnq 1ezttDCqfObtIRiKDmunreuZbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGRHUVIx yf4b4UKOZb3STWDXEnWvMB8GA1UdIwQYMBaAFCh7sM1m+9flt6iLpmeJEkwLBMV4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUUyNS82OEU1N0FFRTMw NjgxMUVBQTcwNkUzMkFDNEY5QUUwMi9LSHV3eldiNzEtVzNxSXVtWjRrU1RBc0V4 WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tIdXd6V2I3MS1XM3FJdW1aNGtTVEFzRXhYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUUyNS82OEU1N0FFRTMwNjgxMUVBQTcwNkUzMkFDNEY5QUUwMi9LSHV3eldiNzEt VzNxSXVtWjRrU1RBc0V4WGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPb7a3EAnjDsQycx+6EIQDY75GeQkfyC5K2pe/RYzEgiipAXDKxFaN zzkLO7Po3a2p3JLEBQOouVPZ93R1zcrlPmtBNpQmEzFLPPhy2JBmTj7im/eYBe6P gHJIT4cRX/SPBZJ6cXecpicg8yKLEVmxMSfO4NVxVYNaVcWCqJeQZIk6+rnxQbct vQ+lMpnB138KJ6jx3+2ZJLm8g3u4DpVFNU10gTS0aEz0N1b9RbG3MMtsrpHdvwTq F+Oaxz4rRp9RBXOsQU2Gs99aJ21SMMrIZTewF753/0D4Q/uaT1gHbsuUCsuGSjro S33/MDySI1YYlwB6gBDZXCZ53BYHYxsj -----END CERTIFICATE-----Generated at Sat Dec 6 12:21:46 2025 by rpki-client