This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.mft File: KHaCX3fCShZ9xBIVNQ9oh5KYGmc.mft (raw, json) Hash identifier: w5umsgBkic81+YWriraAdWrp2p2TmNqfuMTHEfJaslA= Subject key identifier: E4:0F:87:FB:02:14:F3:93:69:AB:95:31:CD:3D:E0:DB:03:BE:8B:F1 Authority key identifier: 28:76:82:5F:77:C2:4A:16:7D:C4:12:15:35:0F:68:87:92:98:1A:67 Certificate issuer: /CN=A9194677/serialNumber=2876825F77C24A167DC41215350F688792981A67 Certificate serial: 01AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.mft Manifest number: 01A9 Signing time: Tue 23 Dec 2025 02:16:15 +0000 Manifest this update: Tue 23 Dec 2025 02:16:14 +0000 Manifest next update: Tue 30 Dec 2025 02:16:14 +0000 Files and hashes: 1: KHaCX3fCShZ9xBIVNQ9oh5KYGmc.crl (hash: VJ+k9RKpge3flt54ASWifp3nPd9ulFYpVVl7gAOq9WM=) 2: 759C16DC577711EE96F5F775C4F9AE02.roa (hash: E2MEy59tbIM1Maudg/5GMAqeAqrNk3TYYaN2opqqFDU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.crl rsync://rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 02:16:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 429 (0x1ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194677, serialNumber=2876825F77C24A167DC41215350F688792981A67 Validity Not Before: Dec 23 02:16:14 2025 GMT Not After : Dec 30 02:16:14 2025 GMT Subject: CN=6949fb6f-20aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:ea:97:72:8c:d8:43:c8:6d:9b:08:2c:2b:38: 66:10:02:c9:5c:5d:b9:c0:4a:77:9d:6a:34:d8:ce: 1e:3d:08:44:60:9a:58:13:64:f3:93:f2:42:55:84: cb:5e:aa:2c:2d:64:a4:99:9e:29:64:c3:f2:ef:74: d3:be:c8:92:f5:ea:1a:bc:5a:c4:57:02:ef:14:fb: 76:72:f2:7e:c6:dd:84:f0:54:cc:73:a2:0d:a0:42: 2b:3b:59:37:10:a6:ac:65:5f:f5:0e:63:f5:98:97: 26:ce:2f:c8:75:7d:7c:ba:e5:13:7e:35:2c:7d:50: 2d:37:26:8e:9c:01:88:cb:fe:e0:f5:68:ad:56:ed: cf:b4:6b:bf:96:49:42:72:55:46:a2:6c:67:df:ff: 66:b1:ba:ba:7d:c6:01:65:38:a8:38:35:58:5d:93: c1:fe:4a:d9:3b:1d:99:e7:d6:3c:51:fc:c5:1d:bc: 97:70:7d:8c:31:77:06:c2:b8:f4:a3:1a:e4:db:35: 4a:ad:b8:bd:2e:ec:4e:44:b1:ba:4d:b3:ce:6f:d1: f5:a9:d0:a4:de:e8:01:b8:7a:cb:56:06:55:92:81: c9:74:a9:68:0c:83:6e:3c:b1:a4:ba:32:dc:fb:d3: 8e:57:b3:d6:98:0c:49:28:a4:18:2d:30:8d:83:be: 2d:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:0F:87:FB:02:14:F3:93:69:AB:95:31:CD:3D:E0:DB:03:BE:8B:F1 X509v3 Authority Key Identifier: keyid:28:76:82:5F:77:C2:4A:16:7D:C4:12:15:35:0F:68:87:92:98:1A:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bc:14:61:76:aa:38:8d:2a:7d:5d:a2:71:d8:57:cb:9d:ac:c3: 9b:cf:dc:58:e6:a3:89:6c:97:aa:d9:55:05:b3:ed:9c:53:58: 8f:4b:df:d5:b4:26:c3:0b:23:b8:f6:6d:6f:d6:05:92:a1:6f: d1:1a:01:ca:40:fc:f9:e3:1d:6a:af:62:d2:57:39:2d:5a:05: c2:29:c9:64:e9:9f:8a:9b:e4:bc:5d:77:91:d8:f6:db:7f:04: 72:2c:14:1f:d1:4b:e3:06:d8:ec:ef:ef:50:05:00:97:72:f7: 8b:7e:ed:4e:fc:af:b4:85:2d:92:7a:87:b9:1d:11:11:a2:71: 27:67:f3:78:6e:70:dd:7f:11:0f:3b:21:99:9d:24:28:a9:6c: 42:b7:f4:f9:b7:5e:ee:b2:50:b6:a6:09:b8:c6:10:33:45:9a: 8e:03:af:49:b3:9f:b2:ed:6d:9c:61:61:69:35:0d:54:60:38: c9:e0:ee:29:cc:9a:ec:e3:f9:2b:68:75:e0:d3:9c:bf:68:4b: b7:30:d7:71:27:96:42:40:4f:e3:6e:40:ec:99:29:5b:8f:cd: ee:e4:23:b5:3f:d4:1c:f2:02:e8:ec:5c:ca:81:39:b6:b9:1c: e8:54:72:d4:47:95:82:55:e2:19:8b:6a:b7:53:fe:bf:08:16: db:1e:3e:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAa0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTQ2NzcxMTAvBgNVBAUTKDI4NzY4MjVGNzdDMjRBMTY3REM0MTIxNTM1MEY2ODg3 OTI5ODFBNjcwHhcNMjUxMjIzMDIxNjE0WhcNMjUxMjMwMDIxNjE0WjAYMRYwFAYD VQQDDA02OTQ5ZmI2Zi0yMGFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAk+qXcozYQ8htmwgsKzhmEALJXF25wEp3nWo02M4ePQhEYJpYE2Tzk/JCVYTL XqosLWSkmZ4pZMPy73TTvsiS9eoavFrEVwLvFPt2cvJ+xt2E8FTMc6INoEIrO1k3 EKasZV/1DmP1mJcmzi/IdX18uuUTfjUsfVAtNyaOnAGIy/7g9WitVu3PtGu/lklC clVGomxn3/9msbq6fcYBZTioODVYXZPB/krZOx2Z59Y8UfzFHbyXcH2MMXcGwrj0 oxrk2zVKrbi9LuxORLG6TbPOb9H1qdCk3ugBuHrLVgZVkoHJdKloDINuPLGkujLc +9OOV7PWmAxJKKQYLTCNg74tcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOQPh/sC FPOTaauVMc094NsDvovxMB8GA1UdIwQYMBaAFCh2gl93wkoWfcQSFTUPaIeSmBpn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NDY3Ny8wMjI3Rjc4NjU3 NzUxMUVFOTJBQ0E3NTlDNEY5QUUwMi9LSGFDWDNmQ1NoWjl4QklWTlE5b2g1S1lH bWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tIYUNYM2ZDU2haOXhCSVZOUTlvaDVLWUdtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NDY3Ny8wMjI3Rjc4NjU3NzUxMUVFOTJBQ0E3NTlDNEY5QUUwMi9LSGFDWDNmQ1No Wjl4QklWTlE5b2g1S1lHbWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC8FGF2qjiNKn1donHYV8udrMObz9xY5qOJbJeq2VUFs+2cU1iPS9/V tCbDCyO49m1v1gWSoW/RGgHKQPz54x1qr2LSVzktWgXCKclk6Z+Km+S8XXeR2Pbb fwRyLBQf0UvjBtjs7+9QBQCXcveLfu1O/K+0hS2Seoe5HRERonEnZ/N4bnDdfxEP OyGZnSQoqWxCt/T5t17uslC2pgm4xhAzRZqOA69Js5+y7W2cYWFpNQ1UYDjJ4O4p zJrs4/kraHXg05y/aEu3MNdxJ5ZCQE/jbkDsmSlbj83u5CO1P9Qc8gLo7FzKgTm2 uRzoVHLUR5WCVeIZi2q3U/6/CBbbHj6p -----END CERTIFICATE-----Generated at Wed Dec 24 14:14:40 2025 by rpki-client