This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9112A7D/A04A60B4246511EDB8D42021C4F9AE02/klUgH_qh5mcsBsLfbovhFYLML64.mft File: klUgH_qh5mcsBsLfbovhFYLML64.mft (raw, json) Hash identifier: Q0Ex/fMVO8PfT9wNssqHzazch170ZOuUc3tt1j7RGh0= Subject key identifier: AF:FD:2D:64:32:02:2C:89:DB:E6:20:FB:B4:60:2B:42:B4:E3:79:EB Authority key identifier: 92:55:20:1F:FA:A1:E6:67:2C:06:C2:DF:6E:8B:E1:15:82:CC:2F:AE Certificate issuer: /CN=A9112A7D/serialNumber=9255201FFAA1E6672C06C2DF6E8BE11582CC2FAE Certificate serial: 02A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/klUgH_qh5mcsBsLfbovhFYLML64.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112A7D/A04A60B4246511EDB8D42021C4F9AE02/klUgH_qh5mcsBsLfbovhFYLML64.mft Manifest number: 02A2 Signing time: Mon 15 Dec 2025 00:47:19 +0000 Manifest this update: Mon 15 Dec 2025 00:47:18 +0000 Manifest next update: Mon 22 Dec 2025 00:47:18 +0000 Files and hashes: 1: klUgH_qh5mcsBsLfbovhFYLML64.crl (hash: dLmBXGCY2kmQr4SlMMHEDeVnfiQINDmMVCOLqhOk2d0=) 2: 6DE1A436246811ED82556323C4F9AE02.roa (hash: wBqvUEdJXS+W4twJcgw0kDbGssoYll+0BYZGvLl67rM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112A7D/A04A60B4246511EDB8D42021C4F9AE02/klUgH_qh5mcsBsLfbovhFYLML64.crl rsync://rpki.apnic.net/member_repository/A9112A7D/A04A60B4246511EDB8D42021C4F9AE02/klUgH_qh5mcsBsLfbovhFYLML64.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/klUgH_qh5mcsBsLfbovhFYLML64.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Dec 2025 00:47:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 678 (0x2a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112A7D, serialNumber=9255201FFAA1E6672C06C2DF6E8BE11582CC2FAE Validity Not Before: Dec 15 00:47:18 2025 GMT Not After : Dec 22 00:47:18 2025 GMT Subject: CN=693f5a97-5b34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:58:24:ca:d9:ba:2c:ba:d0:90:68:9c:47:22: 2c:cd:d1:d8:31:36:d3:a4:a9:5b:49:68:e8:2e:e1: 55:4f:00:68:40:ea:10:0f:a4:db:b4:23:5f:0a:db: 46:09:24:f1:3e:b1:4c:3e:b5:70:01:dd:a7:34:8f: 90:27:9f:83:9b:86:7d:4f:28:88:9a:8a:42:3c:c2: 77:0a:20:cc:25:80:5e:48:ba:42:87:64:7a:fe:43: 7f:9f:b4:92:1d:b3:f4:d7:09:43:63:ef:38:b0:5a: e9:3f:17:92:db:d3:13:6e:d7:92:38:3f:1b:b0:84: c4:19:60:d8:6c:1a:da:d0:3d:d0:e3:f8:d3:75:ab: 32:aa:e6:4c:94:d2:10:3a:a2:c4:70:c5:1c:b1:08: c9:bf:8b:8f:a1:14:73:85:23:fc:b3:5a:8f:9e:ac: 9b:05:5e:7d:5e:50:b9:28:fd:ca:47:07:55:8c:6e: b2:45:fe:a8:17:d9:a3:5d:98:a2:0e:0d:35:4c:6f: 1b:29:c5:4d:0c:fc:e9:5c:60:b0:4f:b9:be:cf:c5: 91:39:1d:5d:79:e1:fa:8c:d6:2a:1e:1d:30:d1:78: 20:ce:de:31:83:3e:23:00:23:89:f3:29:ce:0f:45: 12:18:dd:4e:1a:23:7c:2d:79:22:87:bd:9a:28:18: e8:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:FD:2D:64:32:02:2C:89:DB:E6:20:FB:B4:60:2B:42:B4:E3:79:EB X509v3 Authority Key Identifier: keyid:92:55:20:1F:FA:A1:E6:67:2C:06:C2:DF:6E:8B:E1:15:82:CC:2F:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112A7D/A04A60B4246511EDB8D42021C4F9AE02/klUgH_qh5mcsBsLfbovhFYLML64.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/klUgH_qh5mcsBsLfbovhFYLML64.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112A7D/A04A60B4246511EDB8D42021C4F9AE02/klUgH_qh5mcsBsLfbovhFYLML64.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:63:3b:2b:f2:8f:5f:e3:1b:37:a7:83:d4:9c:d8:6a:10:94: 60:b9:af:63:21:d1:1d:04:36:b8:c0:66:e5:e3:08:7a:57:37: bd:bb:9e:9e:a2:fb:9e:3a:4a:1c:8a:d6:6a:07:50:a8:fd:8b: d5:ba:43:68:a8:db:fb:c8:e1:76:ff:7a:44:de:9c:f5:b6:f7: c2:ff:81:98:3d:07:b0:f6:25:fb:a9:82:80:68:62:94:a7:71: ea:5e:be:7d:7f:ed:ca:fd:4f:d1:40:1b:a1:eb:db:ee:b3:5c: 49:a5:5a:a7:67:7c:ee:e0:15:6b:a4:71:c9:ee:fe:6a:1f:fa: 2d:70:85:65:9a:e6:34:c4:5f:16:10:11:65:ea:12:12:07:65: 9a:9f:11:a4:c6:6b:84:d7:cc:19:1b:57:25:18:46:8e:02:17: f3:fc:0b:3e:8c:69:c4:75:b8:70:4c:b4:89:53:c2:36:12:45: c3:c4:17:44:5c:ca:13:f7:b0:72:12:41:33:49:eb:51:95:be: 38:bc:1b:e2:59:ed:52:2b:87:db:c4:a7:58:68:9d:06:1d:e7: bd:f6:7b:4c:77:7a:11:40:13:7f:ca:1e:e7:24:d8:e7:71:53: 6f:e2:d5:c8:0a:26:bb:e7:20:cf:26:7d:cf:ba:f2:20:67:88: ee:66:60:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAqYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTJBN0QxMTAvBgNVBAUTKDkyNTUyMDFGRkFBMUU2NjcyQzA2QzJERjZFOEJFMTE1 ODJDQzJGQUUwHhcNMjUxMjE1MDA0NzE4WhcNMjUxMjIyMDA0NzE4WjAYMRYwFAYD VQQDDA02OTNmNWE5Ny01YjM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA41gkytm6LLrQkGicRyIszdHYMTbTpKlbSWjoLuFVTwBoQOoQD6TbtCNfCttG CSTxPrFMPrVwAd2nNI+QJ5+Dm4Z9TyiImopCPMJ3CiDMJYBeSLpCh2R6/kN/n7SS HbP01wlDY+84sFrpPxeS29MTbteSOD8bsITEGWDYbBra0D3Q4/jTdasyquZMlNIQ OqLEcMUcsQjJv4uPoRRzhSP8s1qPnqybBV59XlC5KP3KRwdVjG6yRf6oF9mjXZii Dg01TG8bKcVNDPzpXGCwT7m+z8WROR1deeH6jNYqHh0w0Xggzt4xgz4jACOJ8ynO D0USGN1OGiN8LXkih72aKBjo9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK/9LWQy AiyJ2+Yg+7RgK0K043nrMB8GA1UdIwQYMBaAFJJVIB/6oeZnLAbC326L4RWCzC+u MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMkE3RC9BMDRBNjBCNDI0 NjUxMUVEQjhENDIwMjFDNEY5QUUwMi9rbFVnSF9xaDVtY3NCc0xmYm92aEZZTE1M NjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tsVWdIX3FoNW1jc0JzTGZib3ZoRllMTUw2NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MkE3RC9BMDRBNjBCNDI0NjUxMUVEQjhENDIwMjFDNEY5QUUwMi9rbFVnSF9xaDVt Y3NCc0xmYm92aEZZTE1MNjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANYzsr8o9f4xs3p4PUnNhqEJRgua9jIdEdBDa4wGbl4wh6Vze9u56e ovueOkocitZqB1Co/YvVukNoqNv7yOF2/3pE3pz1tvfC/4GYPQew9iX7qYKAaGKU p3HqXr59f+3K/U/RQBuh69vus1xJpVqnZ3zu4BVrpHHJ7v5qH/otcIVlmuY0xF8W EBFl6hISB2WanxGkxmuE18wZG1clGEaOAhfz/As+jGnEdbhwTLSJU8I2EkXDxBdE XMoT97ByEkEzSetRlb44vBviWe1SK4fbxKdYaJ0GHee99ntMd3oRQBN/yh7nJNjn cVNv4tXICia75yDPJn3PuvIgZ4juZmCt -----END CERTIFICATE-----Generated at Tue Dec 16 19:56:11 2025 by rpki-client