This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.mft File: KHuwzWb71-W3qIumZ4kSTAsExXg.mft (raw, json) Hash identifier: gaEDE3VXqRqqqljgLAv2oUJ31LANuTRNsN+3wzfGaXQ= Subject key identifier: 72:BD:E1:47:C4:B4:66:01:0D:85:D5:2C:A2:28:FA:98:ED:E6:84:F9 Authority key identifier: 28:7B:B0:CD:66:FB:D7:E5:B7:A8:8B:A6:67:89:12:4C:0B:04:C5:78 Certificate issuer: /CN=A91EAE25/serialNumber=287BB0CD66FBD7E5B7A88BA66789124C0B04C578 Certificate serial: 0BE7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHuwzWb71-W3qIumZ4kSTAsExXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.mft Manifest number: 0BDA Signing time: Sat 20 Dec 2025 18:28:37 +0000 Manifest this update: Sat 20 Dec 2025 18:28:36 +0000 Manifest next update: Sat 27 Dec 2025 18:28:36 +0000 Files and hashes: 1: KHuwzWb71-W3qIumZ4kSTAsExXg.crl (hash: DGL+GSDj2v5A0eYv0Fn1nUHTU3OaJ5RQ0q+QtI8Us0Y=) 2: 2BA212DC306D11EA81D19B38C4F9AE02.roa (hash: t1CbmrYkwmBmGPrreNUR9MWvKRnTUYs/Z13bobbplHk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.crl rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHuwzWb71-W3qIumZ4kSTAsExXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 18:28:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3047 (0xbe7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAE25, serialNumber=287BB0CD66FBD7E5B7A88BA66789124C0B04C578 Validity Not Before: Dec 20 18:28:36 2025 GMT Not After : Dec 27 18:28:36 2025 GMT Subject: CN=6946ead4-13d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:4f:23:56:50:59:e7:f3:fd:82:f9:bb:c0:d3: 5e:51:0c:f7:48:44:60:62:b4:34:68:64:12:a9:f3: 10:b3:0c:ba:6b:f6:c3:76:e7:f5:2c:9a:17:04:30: 2b:a4:09:f3:3d:06:89:3c:bb:b9:f6:fb:ad:b7:81: e3:b7:8e:3e:4a:ea:dc:a4:76:39:df:7a:a6:8c:95: b5:fc:e5:3e:23:d3:2d:11:bc:5f:e1:f8:c3:ea:55: 95:ad:5a:a8:c2:5a:a6:a9:ee:6a:4b:79:ae:82:8e: 87:cf:ff:5c:0f:33:fa:1a:d7:0e:8a:72:ab:83:17: fd:64:1e:89:b8:49:53:93:d1:75:64:eb:84:7a:7e: 29:9b:c0:04:f2:d2:fa:b8:8c:6c:07:ce:ba:84:e2: 84:e0:b5:90:fe:94:ec:09:a6:fa:1c:a6:0e:a1:7e: 8d:36:66:62:1a:c1:47:89:af:4f:fc:49:14:59:3a: de:8f:0c:d5:7b:cd:7e:08:f0:a7:5c:8e:28:bd:2f: 98:e5:e2:88:90:f4:a3:c1:a0:1c:f9:34:ff:01:71: 0d:f8:d8:df:51:b2:b2:6b:26:b5:5c:b6:3c:91:fa: 7d:67:39:ed:91:38:62:e3:b2:db:fc:ed:c9:3e:0b: 36:4a:c9:2c:0d:e5:93:3a:a5:c9:50:d8:e2:57:9e: 48:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:BD:E1:47:C4:B4:66:01:0D:85:D5:2C:A2:28:FA:98:ED:E6:84:F9 X509v3 Authority Key Identifier: keyid:28:7B:B0:CD:66:FB:D7:E5:B7:A8:8B:A6:67:89:12:4C:0B:04:C5:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHuwzWb71-W3qIumZ4kSTAsExXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:e2:2d:69:bf:79:49:7c:34:42:22:8c:40:fc:d5:4f:d1:bd: a8:37:34:82:39:b5:e8:11:a0:ab:48:f8:b2:da:3b:6c:da:40: bb:42:61:f8:d5:3f:2d:f6:fd:95:4d:ef:c6:0d:1a:d4:bc:69: 1b:8e:39:98:76:75:5a:71:40:5a:8a:e7:6d:74:65:6f:81:88: fd:bb:62:07:88:e3:84:81:66:c7:51:4c:11:66:7b:d8:3c:5d: c8:86:10:c5:4a:2b:9b:78:04:58:bd:f7:90:e9:97:23:92:77: 21:2b:52:53:55:31:34:fb:dd:83:50:e0:ec:f8:be:c3:87:a0: 62:f3:49:a7:4c:e1:5b:f6:b7:6a:24:3e:24:b4:b0:07:9f:69: c4:c0:3f:d8:35:1e:03:c6:aa:ba:a5:6a:be:e5:76:41:f5:9e: 57:ad:27:73:fa:5b:5b:f1:a5:e5:54:6e:8f:5d:b2:42:72:0b: ee:ae:72:c4:01:2a:31:3d:dd:25:19:17:ff:b0:00:b3:7d:6c: 42:30:6f:4f:30:ba:89:0f:2d:64:57:60:4f:e8:2b:a9:80:a2: 02:cb:cc:d6:b7:86:b8:48:ca:45:32:4e:60:95:d5:94:0e:d6: 2b:55:c2:1b:8c:fd:0f:6e:48:00:de:8d:09:89:8c:b9:e2:71: f2:ef:74:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC+cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFFMjUxMTAvBgNVBAUTKDI4N0JCMENENjZGQkQ3RTVCN0E4OEJBNjY3ODkxMjRD MEIwNEM1NzgwHhcNMjUxMjIwMTgyODM2WhcNMjUxMjI3MTgyODM2WjAYMRYwFAYD VQQDDA02OTQ2ZWFkNC0xM2Q1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAh08jVlBZ5/P9gvm7wNNeUQz3SERgYrQ0aGQSqfMQswy6a/bDduf1LJoXBDAr pAnzPQaJPLu59vutt4Hjt44+SurcpHY533qmjJW1/OU+I9MtEbxf4fjD6lWVrVqo wlqmqe5qS3mugo6Hz/9cDzP6GtcOinKrgxf9ZB6JuElTk9F1ZOuEen4pm8AE8tL6 uIxsB866hOKE4LWQ/pTsCab6HKYOoX6NNmZiGsFHia9P/EkUWTrejwzVe81+CPCn XI4ovS+Y5eKIkPSjwaAc+TT/AXEN+NjfUbKyaya1XLY8kfp9ZzntkThi47Lb/O3J Pgs2SsksDeWTOqXJUNjiV55I8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHK94UfE tGYBDYXVLKIo+pjt5oT5MB8GA1UdIwQYMBaAFCh7sM1m+9flt6iLpmeJEkwLBMV4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUUyNS82OEU1N0FFRTMw NjgxMUVBQTcwNkUzMkFDNEY5QUUwMi9LSHV3eldiNzEtVzNxSXVtWjRrU1RBc0V4 WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tIdXd6V2I3MS1XM3FJdW1aNGtTVEFzRXhYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUUyNS82OEU1N0FFRTMwNjgxMUVBQTcwNkUzMkFDNEY5QUUwMi9LSHV3eldiNzEt VzNxSXVtWjRrU1RBc0V4WGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCT4i1pv3lJfDRCIoxA/NVP0b2oNzSCObXoEaCrSPiy2jts2kC7QmH4 1T8t9v2VTe/GDRrUvGkbjjmYdnVacUBaiudtdGVvgYj9u2IHiOOEgWbHUUwRZnvY PF3IhhDFSiubeARYvfeQ6ZcjknchK1JTVTE0+92DUODs+L7Dh6Bi80mnTOFb9rdq JD4ktLAHn2nEwD/YNR4Dxqq6pWq+5XZB9Z5XrSdz+ltb8aXlVG6PXbJCcgvurnLE ASoxPd0lGRf/sACzfWxCMG9PMLqJDy1kV2BP6CupgKICy8zWt4a4SMpFMk5gldWU DtYrVcIbjP0PbkgA3o0JiYy54nHy73Q0 -----END CERTIFICATE-----Generated at Sun Dec 21 00:14:35 2025 by rpki-client