This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3A64/358C67BE9ADA11EC85713378C4F9AE02/kHuyYrVxYj40suIMYKcYwXOcw70.mft File: kHuyYrVxYj40suIMYKcYwXOcw70.mft (raw, json) Hash identifier: QHrqQJbnlPK+s8129Xj5+LnVuX7LffR+SYKXWsORTL0= Subject key identifier: DD:23:5C:EE:62:F6:39:B9:EA:82:B0:07:02:5F:9F:DA:E7:79:AC:A9 Authority key identifier: 90:7B:B2:62:B5:71:62:3E:34:B2:E2:0C:60:A7:18:C1:73:9C:C3:BD Certificate issuer: /CN=A91A3A64/serialNumber=907BB262B571623E34B2E20C60A718C1739CC3BD Certificate serial: 040D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kHuyYrVxYj40suIMYKcYwXOcw70.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3A64/358C67BE9ADA11EC85713378C4F9AE02/kHuyYrVxYj40suIMYKcYwXOcw70.mft Manifest number: 0407 Signing time: Mon 22 Dec 2025 23:29:18 +0000 Manifest this update: Mon 22 Dec 2025 23:29:18 +0000 Manifest next update: Mon 29 Dec 2025 23:29:18 +0000 Files and hashes: 1: kHuyYrVxYj40suIMYKcYwXOcw70.crl (hash: zkq58RF0c+gpiZIDer3Byeio3hnnOTHc3qbDopL6RNc=) 2: 5B92665E9ADD11ECA5401423C4F9AE02.roa (hash: ys9QvzSFj3FhbpKZdlZ1B6mYP128OL/SXk3uErxC5zo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3A64/358C67BE9ADA11EC85713378C4F9AE02/kHuyYrVxYj40suIMYKcYwXOcw70.crl rsync://rpki.apnic.net/member_repository/A91A3A64/358C67BE9ADA11EC85713378C4F9AE02/kHuyYrVxYj40suIMYKcYwXOcw70.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kHuyYrVxYj40suIMYKcYwXOcw70.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 23:29:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1037 (0x40d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3A64, serialNumber=907BB262B571623E34B2E20C60A718C1739CC3BD Validity Not Before: Dec 22 23:29:18 2025 GMT Not After : Dec 29 23:29:18 2025 GMT Subject: CN=6949d44e-5914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:60:33:fd:97:61:8d:7f:2b:16:37:8e:ca:05: 9e:c3:de:96:3a:16:36:cd:c3:77:4b:c4:5e:38:4d: bb:9c:28:20:95:ce:6e:29:50:20:9a:ce:d7:3e:6a: d4:51:a3:4b:8a:90:e5:05:90:67:0e:84:bf:fe:77: 46:06:2e:3f:e2:b0:1f:62:c8:3d:06:08:e3:23:9e: 6b:35:24:c5:5f:c0:ef:f7:07:47:16:84:b2:a6:b6: 94:92:b1:4a:f6:b0:65:cc:82:dc:fb:8b:ba:a0:2c: 44:d9:95:3b:c0:26:19:4e:f6:0f:cd:9e:2a:ff:45: 9f:6a:00:68:54:64:ff:9e:db:a1:2a:19:c1:ce:89: 67:8c:6c:a7:8f:b7:3a:2d:ac:09:27:c6:35:63:bf: 6d:12:59:9e:c4:a5:8c:9c:70:78:72:50:22:94:73: c1:43:22:3e:c3:49:b1:ca:e8:e9:9b:09:ad:47:81: 45:f5:0c:5b:a9:0e:81:24:ab:82:28:88:d2:9f:e4: 41:b3:32:44:e6:25:b4:4e:cc:59:14:ff:b1:fa:00: 0b:2e:a4:f8:c8:99:2a:ad:3b:d6:d0:4c:f1:1e:99: 39:16:1c:82:c2:a1:c3:7d:7f:2e:88:a1:e3:bc:5d: 20:81:27:4b:39:8d:5e:8a:26:e9:eb:53:7b:17:b1: 1c:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:23:5C:EE:62:F6:39:B9:EA:82:B0:07:02:5F:9F:DA:E7:79:AC:A9 X509v3 Authority Key Identifier: keyid:90:7B:B2:62:B5:71:62:3E:34:B2:E2:0C:60:A7:18:C1:73:9C:C3:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3A64/358C67BE9ADA11EC85713378C4F9AE02/kHuyYrVxYj40suIMYKcYwXOcw70.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kHuyYrVxYj40suIMYKcYwXOcw70.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3A64/358C67BE9ADA11EC85713378C4F9AE02/kHuyYrVxYj40suIMYKcYwXOcw70.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:c3:4c:5b:52:52:b5:14:b4:1f:9c:d5:5e:dd:b6:5f:a1:ac: a9:a7:bd:57:ae:48:c2:3e:5c:58:8a:2b:6c:1d:bd:96:c3:2d: db:58:84:fe:38:01:c4:08:64:91:6e:05:25:27:3e:a3:d6:cc: 74:11:6f:7b:1d:d3:c8:c8:8c:2b:cb:d1:29:6b:11:54:04:43: 3c:72:59:d0:bb:94:d1:a4:ce:8d:b7:3e:85:a0:61:af:d8:55: 08:c5:ab:f1:f3:67:c5:83:c2:fb:4b:21:15:28:36:46:5e:ab: c4:ad:61:6e:41:ed:61:7c:98:d8:25:91:3a:08:f2:da:50:27: 60:ce:c1:65:54:e8:0e:2a:73:cd:9b:02:f3:ed:30:00:a3:24: 62:f8:f8:9e:12:15:bb:96:c4:a4:fb:3b:f6:6e:b2:e6:90:39: cf:e3:c0:c7:ae:fc:d0:91:eb:c7:73:b0:be:58:19:58:31:d2: e2:77:c7:e1:ee:36:18:88:df:52:63:a1:7c:3a:73:85:6a:e6: 42:35:8b:1d:95:be:57:d6:bd:c4:63:7b:35:98:e3:86:b9:10: d3:91:44:ff:bf:45:38:b1:f4:b9:6e:79:0c:72:ca:d0:77:1e: b5:b3:86:dd:fd:ae:df:95:6a:83:64:63:02:ea:78:5c:af:4f: 78:7a:73:74 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBA0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTNBNjQxMTAvBgNVBAUTKDkwN0JCMjYyQjU3MTYyM0UzNEIyRTIwQzYwQTcxOEMx NzM5Q0MzQkQwHhcNMjUxMjIyMjMyOTE4WhcNMjUxMjI5MjMyOTE4WjAYMRYwFAYD VQQDDA02OTQ5ZDQ0ZS01OTE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsGAz/ZdhjX8rFjeOygWew96WOhY2zcN3S8ReOE27nCgglc5uKVAgms7XPmrU UaNLipDlBZBnDoS//ndGBi4/4rAfYsg9BgjjI55rNSTFX8Dv9wdHFoSypraUkrFK 9rBlzILc+4u6oCxE2ZU7wCYZTvYPzZ4q/0WfagBoVGT/ntuhKhnBzolnjGynj7c6 LawJJ8Y1Y79tElmexKWMnHB4clAilHPBQyI+w0mxyujpmwmtR4FF9QxbqQ6BJKuC KIjSn+RBszJE5iW0TsxZFP+x+gALLqT4yJkqrTvW0EzxHpk5FhyCwqHDfX8uiKHj vF0ggSdLOY1eiibp61N7F7EcXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN0jXO5i 9jm56oKwBwJfn9rneaypMB8GA1UdIwQYMBaAFJB7smK1cWI+NLLiDGCnGMFznMO9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBM0E2NC8zNThDNjdCRTlB REExMUVDODU3MTMzNzhDNEY5QUUwMi9rSHV5WXJWeFlqNDBzdUlNWUtjWXdYT2N3 NzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tIdXlZclZ4WWo0MHN1SU1ZS2NZd1hPY3c3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB M0E2NC8zNThDNjdCRTlBREExMUVDODU3MTMzNzhDNEY5QUUwMi9rSHV5WXJWeFlq NDBzdUlNWUtjWXdYT2N3NzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCww0xbUlK1FLQfnNVe3bZfoaypp71XrkjCPlxYiitsHb2Wwy3bWIT+ OAHECGSRbgUlJz6j1sx0EW97HdPIyIwry9EpaxFUBEM8clnQu5TRpM6Ntz6FoGGv 2FUIxavx82fFg8L7SyEVKDZGXqvErWFuQe1hfJjYJZE6CPLaUCdgzsFlVOgOKnPN mwLz7TAAoyRi+PieEhW7lsSk+zv2brLmkDnP48DHrvzQkevHc7C+WBlYMdLid8fh 7jYYiN9SY6F8OnOFauZCNYsdlb5X1r3EY3s1mOOGuRDTkUT/v0U4sfS5bnkMcsrQ dx61s4bd/a7flWqDZGMC6nhcr094enN0 -----END CERTIFICATE-----Generated at Wed Dec 24 14:12:14 2025 by rpki-client