This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FEEA9/CED0A9E61D9711E2BF3E818108B02CD2/KUHHFh7UouCbuRyrxEPIzLwDLtg.mft File: KUHHFh7UouCbuRyrxEPIzLwDLtg.mft (raw, json) Hash identifier: X/SwBFI8dm00riRTYfcFsxb9A4pO9JMOCsPWzigXY0k= Subject key identifier: 4B:C3:89:6C:93:2D:6C:CB:CE:D1:18:D3:DA:09:F3:63:F7:39:6D:61 Authority key identifier: 29:41:C7:16:1E:D4:A2:E0:9B:B9:1C:AB:C4:43:C8:CC:BC:03:2E:D8 Certificate issuer: /CN=A91FEEA9/serialNumber=2941C7161ED4A2E09BB91CABC443C8CCBC032ED8 Certificate serial: 34F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KUHHFh7UouCbuRyrxEPIzLwDLtg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FEEA9/CED0A9E61D9711E2BF3E818108B02CD2/KUHHFh7UouCbuRyrxEPIzLwDLtg.mft Manifest number: 34EB Signing time: Thu 04 Dec 2025 14:45:54 +0000 Manifest this update: Thu 04 Dec 2025 14:45:54 +0000 Manifest next update: Thu 11 Dec 2025 14:45:54 +0000 Files and hashes: 1: KUHHFh7UouCbuRyrxEPIzLwDLtg.crl (hash: XG3o1galVQmRPLHuW7nKyJ0GINWopyB4wGjl6eijnf8=) 2: 796A04A6BA1A11F08C920A83C4F9AE02.roa (hash: XrkdqNUQGwomIdIUUZC2gUbbnUvFxDZ/p2osIbne7lw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FEEA9/CED0A9E61D9711E2BF3E818108B02CD2/KUHHFh7UouCbuRyrxEPIzLwDLtg.crl rsync://rpki.apnic.net/member_repository/A91FEEA9/CED0A9E61D9711E2BF3E818108B02CD2/KUHHFh7UouCbuRyrxEPIzLwDLtg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KUHHFh7UouCbuRyrxEPIzLwDLtg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 14:45:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13554 (0x34f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FEEA9, serialNumber=2941C7161ED4A2E09BB91CABC443C8CCBC032ED8 Validity Not Before: Dec 4 14:45:54 2025 GMT Not After : Dec 11 14:45:54 2025 GMT Subject: CN=69319ea2-b706 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:d7:3b:5c:e7:08:be:91:78:b2:f3:6d:aa:0d: fe:50:2f:35:db:0d:cb:66:6d:16:46:ab:11:58:97: dc:05:77:c1:76:46:97:d2:84:b1:25:88:ae:0f:da: cd:3f:9e:8d:a6:3f:0e:cc:44:f5:43:ae:f1:71:43: 25:b2:aa:43:cf:55:a6:d8:51:e7:f2:cc:a5:3d:81: e6:f1:b5:c9:ec:67:1c:94:f6:ce:05:bd:3d:f6:3a: 5b:64:1f:4d:32:0b:17:d2:f8:a1:db:1f:7b:32:b4: d3:d7:b5:30:49:14:36:b2:b4:27:25:07:23:f1:55: 82:29:ae:3e:2d:ca:28:6a:8d:7f:40:7a:8d:96:85: 62:f5:53:d5:b2:6b:49:68:34:56:1e:7f:2c:97:3f: 7b:37:71:a6:1c:c6:91:b0:c3:8a:f1:c6:d2:6e:26: 34:30:3d:50:2f:e5:6d:96:dc:c5:50:ef:ad:e0:3c: bf:bb:e1:48:da:a5:3e:17:08:40:0d:ad:50:3f:a2: 72:b7:9e:42:48:8f:9d:91:ff:51:44:6d:e6:bb:47: ba:76:dc:3b:ed:ff:10:ae:95:5e:09:ba:5c:3e:41: 34:eb:d1:f5:59:7f:69:ec:60:6f:4e:36:d3:21:d9: 5d:92:3c:65:3a:fd:f6:f0:f6:07:8f:85:b6:8a:1b: c8:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:C3:89:6C:93:2D:6C:CB:CE:D1:18:D3:DA:09:F3:63:F7:39:6D:61 X509v3 Authority Key Identifier: keyid:29:41:C7:16:1E:D4:A2:E0:9B:B9:1C:AB:C4:43:C8:CC:BC:03:2E:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FEEA9/CED0A9E61D9711E2BF3E818108B02CD2/KUHHFh7UouCbuRyrxEPIzLwDLtg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KUHHFh7UouCbuRyrxEPIzLwDLtg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FEEA9/CED0A9E61D9711E2BF3E818108B02CD2/KUHHFh7UouCbuRyrxEPIzLwDLtg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:c4:aa:18:71:58:64:48:76:40:0a:e2:5c:4a:87:97:58:cb: d8:af:d8:98:55:0b:d2:0d:e6:3d:6a:19:70:2c:1d:84:f7:50: f8:0c:b9:f2:b5:7e:0a:18:93:36:f4:d9:ba:ee:a5:64:e3:a4: 2c:96:12:35:a9:94:57:e8:16:ea:c9:d3:21:32:42:79:01:b2: 07:d2:6f:54:11:32:e4:2e:10:32:2b:34:9d:c4:09:19:d4:cf: 00:4d:e4:23:c4:8a:b2:07:b8:d0:ab:4e:52:55:ef:02:65:f6: 6b:77:c7:2a:ca:0c:8c:e7:97:a3:dc:c7:81:2e:91:93:50:54: ed:52:8b:39:94:b4:f7:83:49:bb:e3:fe:e9:75:d7:ef:ec:7c: a0:4c:13:9d:b5:63:46:59:60:d9:6c:fb:ac:01:1b:1f:51:eb: c6:7d:53:a8:fc:d7:dc:2a:fc:a3:fe:bb:84:c4:e3:84:e1:0c: cf:eb:ee:4e:7f:dd:8c:df:71:2d:99:be:dd:4a:69:af:f6:b5: 58:47:05:92:37:42:d6:1c:cf:ee:d7:cb:45:30:a4:3d:80:78: ef:3a:25:52:dd:4b:8e:ad:68:f8:ad:d2:14:6e:8d:7c:3f:89: 68:87:8c:7d:68:9f:67:81:7c:4c:5f:39:6e:2b:4e:04:df:1b: 9a:b0:06:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNPIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkVFQTkxMTAvBgNVBAUTKDI5NDFDNzE2MUVENEEyRTA5QkI5MUNBQkM0NDNDOEND QkMwMzJFRDgwHhcNMjUxMjA0MTQ0NTU0WhcNMjUxMjExMTQ0NTU0WjAYMRYwFAYD VQQDEw02OTMxOWVhMi1iNzA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvtc7XOcIvpF4svNtqg3+UC812w3LZm0WRqsRWJfcBXfBdkaX0oSxJYiuD9rN P56Npj8OzET1Q67xcUMlsqpDz1Wm2FHn8sylPYHm8bXJ7GcclPbOBb099jpbZB9N MgsX0vih2x97MrTT17UwSRQ2srQnJQcj8VWCKa4+Lcooao1/QHqNloVi9VPVsmtJ aDRWHn8slz97N3GmHMaRsMOK8cbSbiY0MD1QL+VtltzFUO+t4Dy/u+FI2qU+FwhA Da1QP6Jyt55CSI+dkf9RRG3mu0e6dtw77f8QrpVeCbpcPkE069H1WX9p7GBvTjbT IdldkjxlOv328PYHj4W2ihvItQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEvDiWyT LWzLztEY09oJ82P3OW1hMB8GA1UdIwQYMBaAFClBxxYe1KLgm7kcq8RDyMy8Ay7Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRUVBOS9DRUQwQTlFNjFE OTcxMUUyQkYzRTgxODEwOEIwMkNEMi9LVUhIRmg3VW91Q2J1UnlyeEVQSXpMd0RM dGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tVSEhGaDdVb3VDYnVSeXJ4RVBJekx3REx0Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RUVBOS9DRUQwQTlFNjFEOTcxMUUyQkYzRTgxODEwOEIwMkNEMi9LVUhIRmg3VW91 Q2J1UnlyeEVQSXpMd0RMdGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCexKoYcVhkSHZACuJcSoeXWMvYr9iYVQvSDeY9ahlwLB2E91D4DLny tX4KGJM29Nm67qVk46QslhI1qZRX6BbqydMhMkJ5AbIH0m9UETLkLhAyKzSdxAkZ 1M8ATeQjxIqyB7jQq05SVe8CZfZrd8cqygyM55ej3MeBLpGTUFTtUos5lLT3g0m7 4/7pddfv7HygTBOdtWNGWWDZbPusARsfUevGfVOo/NfcKvyj/ruExOOE4QzP6+5O f92M33Etmb7dSmmv9rVYRwWSN0LWHM/u18tFMKQ9gHjvOiVS3UuOrWj4rdIUbo18 P4loh4x9aJ9ngXxMXzluK04E3xuasAYo -----END CERTIFICATE-----Generated at Sat Dec 6 13:55:59 2025 by rpki-client