This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91435F3/9B5DB5EA50A811EEB6DE093FC4F9AE02/khO1BHpA8jx8YASA5tqnoc9_oug.mft File: khO1BHpA8jx8YASA5tqnoc9_oug.mft (raw, json) Hash identifier: 1fWAjpcnVQ7mqdu3j9QWXZjsKSaeu1wZCAwodmFOmX4= Subject key identifier: 87:05:7B:DC:59:75:6E:CE:1B:92:3B:E6:AE:99:5D:E3:E3:93:14:C5 Authority key identifier: 92:13:B5:04:7A:40:F2:3C:7C:60:04:80:E6:DA:A7:A1:CF:7F:A2:E8 Certificate issuer: /CN=A91435F3/serialNumber=9213B5047A40F23C7C600480E6DAA7A1CF7FA2E8 Certificate serial: 01AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khO1BHpA8jx8YASA5tqnoc9_oug.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91435F3/9B5DB5EA50A811EEB6DE093FC4F9AE02/khO1BHpA8jx8YASA5tqnoc9_oug.mft Manifest number: 01AA Signing time: Tue 23 Dec 2025 02:12:44 +0000 Manifest this update: Tue 23 Dec 2025 02:12:44 +0000 Manifest next update: Tue 30 Dec 2025 02:12:44 +0000 Files and hashes: 1: khO1BHpA8jx8YASA5tqnoc9_oug.crl (hash: f8Ju5tIi06I0/iW4L2OmvGL+zCB1yti34ZOjOYw/gH8=) 2: 4E18682450A911EEA39AAE41C4F9AE02.roa (hash: 3nZkRqzVFhraaOpvrG0LDJguOxKECxTU8dAQntDOqqw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91435F3/9B5DB5EA50A811EEB6DE093FC4F9AE02/khO1BHpA8jx8YASA5tqnoc9_oug.crl rsync://rpki.apnic.net/member_repository/A91435F3/9B5DB5EA50A811EEB6DE093FC4F9AE02/khO1BHpA8jx8YASA5tqnoc9_oug.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khO1BHpA8jx8YASA5tqnoc9_oug.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 02:12:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 429 (0x1ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91435F3, serialNumber=9213B5047A40F23C7C600480E6DAA7A1CF7FA2E8 Validity Not Before: Dec 23 02:12:44 2025 GMT Not After : Dec 30 02:12:44 2025 GMT Subject: CN=6949fa9c-815a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:90:17:8d:c4:dd:16:69:0e:f7:f2:34:86:f5: e1:1f:c9:79:b1:43:95:ee:1c:eb:ad:ee:1d:03:6d: 56:64:2f:0c:b7:0c:ee:b5:06:91:6e:12:4c:ee:57: de:2d:b5:84:c9:34:a5:a7:31:62:58:d1:2c:8b:55: c6:6e:fc:86:66:f0:8b:43:9e:35:cd:14:3d:63:4a: 40:6b:e2:01:6f:b9:a8:d3:e6:09:03:eb:a2:b8:0d: 33:89:14:a3:ab:a2:20:1e:85:77:d2:8f:88:8c:81: 3f:28:39:5e:19:bd:bb:b5:ca:ba:51:06:92:42:0d: 38:ef:b9:50:ec:5a:f2:81:3c:67:ed:6b:38:73:61: db:84:c8:44:f1:1c:e3:81:45:f4:b4:88:8b:77:7c: d2:03:f7:93:00:cf:b9:dc:5e:34:7f:4d:08:39:9a: de:0a:2a:52:7c:59:b7:e8:c6:4a:71:16:05:55:3b: fc:26:5c:64:7c:63:cb:b7:9f:19:ff:12:2a:71:70: 9a:72:23:d0:38:d0:3e:b3:f1:ec:e0:a7:f4:67:27: 5f:51:ea:51:c6:1e:d1:8b:17:64:a4:1a:97:fc:75: 6b:2c:d3:13:e2:17:f6:f8:ef:16:0a:e4:b1:60:76: 2f:b0:94:1d:db:36:34:92:d0:96:c8:f5:93:7d:d4: 98:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:05:7B:DC:59:75:6E:CE:1B:92:3B:E6:AE:99:5D:E3:E3:93:14:C5 X509v3 Authority Key Identifier: keyid:92:13:B5:04:7A:40:F2:3C:7C:60:04:80:E6:DA:A7:A1:CF:7F:A2:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91435F3/9B5DB5EA50A811EEB6DE093FC4F9AE02/khO1BHpA8jx8YASA5tqnoc9_oug.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khO1BHpA8jx8YASA5tqnoc9_oug.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91435F3/9B5DB5EA50A811EEB6DE093FC4F9AE02/khO1BHpA8jx8YASA5tqnoc9_oug.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:32:09:b6:0f:5e:18:55:9c:c9:76:6f:46:d9:f2:bc:3f:cf: 1a:27:e5:89:b0:0f:97:8c:1f:73:d8:6f:f6:c7:5e:62:46:5b: 09:a8:c4:bf:83:d6:8a:ea:f5:d5:8a:4d:c5:e4:d2:df:02:19: 97:1d:14:c3:8c:24:50:88:6f:d6:03:93:57:d1:1f:7e:c3:e9: b0:05:3a:0d:99:8a:ec:b4:7e:d4:23:06:86:16:f9:80:d0:f0: 41:b5:ac:4d:51:b3:e0:eb:6a:e7:0b:a7:e9:e0:71:33:83:61: a8:2b:57:4a:a0:37:58:df:67:a5:41:4b:7f:74:a6:a5:2c:e9: ec:41:32:b1:c9:dc:47:e4:40:6d:66:f4:1b:53:09:d2:f0:6a: 41:bf:9c:4b:95:b5:da:8b:30:7d:7e:53:e4:bb:e2:a6:8c:3b: cb:60:1f:97:dc:fe:77:ab:d3:fc:bc:d7:79:dd:93:ee:24:40: af:8c:33:a3:8e:b6:6c:d2:1a:26:19:56:96:13:d8:35:1f:ba: 9b:75:f4:b2:6c:37:b3:29:fd:b2:40:49:f5:bc:8f:5d:e5:9d: e5:a9:d4:e6:96:7b:69:a8:62:60:00:7c:88:3c:a6:78:bb:f2: 3e:e6:67:00:a1:12:92:c1:37:69:9a:1d:2a:1f:1f:55:24:20: ae:c5:30:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAa0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDM1RjMxMTAvBgNVBAUTKDkyMTNCNTA0N0E0MEYyM0M3QzYwMDQ4MEU2REFBN0Ex Q0Y3RkEyRTgwHhcNMjUxMjIzMDIxMjQ0WhcNMjUxMjMwMDIxMjQ0WjAYMRYwFAYD VQQDDA02OTQ5ZmE5Yy04MTVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzJAXjcTdFmkO9/I0hvXhH8l5sUOV7hzrre4dA21WZC8MtwzutQaRbhJM7lfe LbWEyTSlpzFiWNEsi1XGbvyGZvCLQ541zRQ9Y0pAa+IBb7mo0+YJA+uiuA0ziRSj q6IgHoV30o+IjIE/KDleGb27tcq6UQaSQg0477lQ7FrygTxn7Ws4c2HbhMhE8Rzj gUX0tIiLd3zSA/eTAM+53F40f00IOZreCipSfFm36MZKcRYFVTv8JlxkfGPLt58Z /xIqcXCaciPQONA+s/Hs4Kf0ZydfUepRxh7RixdkpBqX/HVrLNMT4hf2+O8WCuSx YHYvsJQd2zY0ktCWyPWTfdSYrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIcFe9xZ dW7OG5I75q6ZXePjkxTFMB8GA1UdIwQYMBaAFJITtQR6QPI8fGAEgObap6HPf6Lo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MzVGMy85QjVEQjVFQTUw QTgxMUVFQjZERTA5M0ZDNEY5QUUwMi9raE8xQkhwQThqeDhZQVNBNXRxbm9jOV9v dWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2toTzFCSHBBOGp4OFlBU0E1dHFub2M5X291Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MzVGMy85QjVEQjVFQTUwQTgxMUVFQjZERTA5M0ZDNEY5QUUwMi9raE8xQkhwQThq eDhZQVNBNXRxbm9jOV9vdWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHMgm2D14YVZzJdm9G2fK8P88aJ+WJsA+XjB9z2G/2x15iRlsJqMS/ g9aK6vXVik3F5NLfAhmXHRTDjCRQiG/WA5NX0R9+w+mwBToNmYrstH7UIwaGFvmA 0PBBtaxNUbPg62rnC6fp4HEzg2GoK1dKoDdY32elQUt/dKalLOnsQTKxydxH5EBt ZvQbUwnS8GpBv5xLlbXaizB9flPku+KmjDvLYB+X3P53q9P8vNd53ZPuJECvjDOj jrZs0homGVaWE9g1H7qbdfSybDezKf2yQEn1vI9d5Z3lqdTmlntpqGJgAHyIPKZ4 u/I+5mcAoRKSwTdpmh0qHx9VJCCuxTBE -----END CERTIFICATE-----Generated at Wed Dec 24 19:31:11 2025 by rpki-client