This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/Khx4XL6-fNe6tToSO2BVhg9gfxg.mft File: Khx4XL6-fNe6tToSO2BVhg9gfxg.mft (raw, json) Hash identifier: sSnqmm3gbYN6Fd3ORvrcWmgNx1J8ANl3ArTaFcXnUb8= Subject key identifier: 0C:F9:13:F7:15:86:C6:D0:E3:D6:52:D6:38:52:5A:2E:70:1D:9E:06 Authority key identifier: 2A:1C:78:5C:BE:BE:7C:D7:BA:B5:3A:12:3B:60:55:86:0F:60:7F:18 Certificate issuer: /CN=A91D6AB2/serialNumber=2A1C785CBEBE7CD7BAB53A123B6055860F607F18 Certificate serial: 089B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Khx4XL6-fNe6tToSO2BVhg9gfxg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/Khx4XL6-fNe6tToSO2BVhg9gfxg.mft Manifest number: 0D15 Signing time: Mon 22 Dec 2025 19:52:50 +0000 Manifest this update: Mon 22 Dec 2025 19:52:49 +0000 Manifest next update: Mon 29 Dec 2025 19:52:49 +0000 Files and hashes: 1: Khx4XL6-fNe6tToSO2BVhg9gfxg.crl (hash: Seyld9iXHLk6Da25P1qGfeNsZhYUg5jqX02ZaA7OGlI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/Khx4XL6-fNe6tToSO2BVhg9gfxg.crl rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/Khx4XL6-fNe6tToSO2BVhg9gfxg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Khx4XL6-fNe6tToSO2BVhg9gfxg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 19:52:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2203 (0x89b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6AB2, serialNumber=2A1C785CBEBE7CD7BAB53A123B6055860F607F18 Validity Not Before: Dec 22 19:52:49 2025 GMT Not After : Dec 29 19:52:49 2025 GMT Subject: CN=6949a191-e73a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:77:57:a2:7b:25:e0:7a:c4:54:6d:40:8e:21: 74:61:be:d0:2f:3f:f3:fc:b3:24:f3:f2:48:49:ff: 5e:43:6f:06:15:89:9b:42:22:8b:e1:13:cd:68:66: 46:49:65:a3:96:63:7c:0f:a2:55:d1:44:62:81:b1: be:e5:59:39:6e:ce:14:19:e7:49:85:07:80:5b:68: a7:ad:87:85:69:22:7c:05:8c:92:51:bb:83:68:55: a3:d9:7b:5a:ce:3c:58:27:3e:a7:fc:0d:70:f6:6d: ad:3d:f3:4e:0e:64:2b:0b:5e:46:a8:fa:26:1a:46: a7:43:39:43:75:a6:d0:fa:1f:a3:db:68:4c:ac:36: db:ef:cc:c1:2d:00:42:60:66:e0:e1:41:c6:45:b5: 95:58:20:4a:37:dc:b1:78:a2:b9:2c:7e:c7:db:3b: cc:93:46:12:8a:bf:64:39:83:57:a1:fb:b3:9d:18: 65:e4:a4:f3:ed:82:9b:3a:e9:87:0e:c0:15:7a:88: 8b:51:9b:83:2a:51:6d:58:8f:82:14:e7:b5:e3:b8: e5:b5:e5:a8:3a:98:04:eb:48:6b:77:a4:c8:3f:e7: 9e:5c:cb:3c:bf:fa:78:e1:52:9d:dc:9a:d5:51:c0: 7a:e5:6a:d1:72:6a:0c:77:d5:12:d8:51:82:81:29: 7f:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:F9:13:F7:15:86:C6:D0:E3:D6:52:D6:38:52:5A:2E:70:1D:9E:06 X509v3 Authority Key Identifier: keyid:2A:1C:78:5C:BE:BE:7C:D7:BA:B5:3A:12:3B:60:55:86:0F:60:7F:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/Khx4XL6-fNe6tToSO2BVhg9gfxg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Khx4XL6-fNe6tToSO2BVhg9gfxg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/Khx4XL6-fNe6tToSO2BVhg9gfxg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:ec:d5:4c:e7:a2:0e:93:37:a9:87:c8:b0:cc:44:b1:83:0a: da:95:1d:ae:64:41:58:be:49:17:40:14:f5:36:04:c6:68:da: a3:37:c0:3c:c7:df:f3:63:be:c8:1f:a9:c4:20:64:d3:ae:5a: 55:e1:d6:6b:d5:02:6e:6d:33:96:f8:96:d2:87:8e:e9:33:c8: 7e:c2:3a:ed:be:f1:f6:ee:af:f4:04:1b:bf:3e:7f:07:4c:e2: a3:4d:ac:96:b4:c9:10:df:9c:69:38:6d:93:66:c4:43:aa:9a: 4b:df:6e:14:e2:05:cf:fd:78:15:2f:52:e3:09:9d:9b:75:59: ac:53:a8:d8:1f:d5:71:69:6f:06:77:98:15:1d:7f:d1:46:95: 6e:e1:9a:73:84:9e:10:6c:5f:eb:e8:31:2d:b2:08:88:55:15: b9:93:63:58:d3:3b:ee:dc:b9:ee:a7:7b:56:73:9c:44:ac:03: 6e:98:73:2b:54:24:64:07:fb:ca:df:46:b1:83:b3:4b:15:8e: a5:d6:7d:71:5c:f6:14:51:13:dc:ec:85:91:0d:4c:9e:7e:94: 64:eb:96:e3:ef:93:58:08:56:6c:9c:7c:db:8b:79:71:da:62: ec:65:34:9a:47:b8:d7:57:c8:c3:d2:66:98:2e:f9:59:7c:d7: c6:82:2b:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCJswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDZBQjIxMTAvBgNVBAUTKDJBMUM3ODVDQkVCRTdDRDdCQUI1M0ExMjNCNjA1NTg2 MEY2MDdGMTgwHhcNMjUxMjIyMTk1MjQ5WhcNMjUxMjI5MTk1MjQ5WjAYMRYwFAYD VQQDDA02OTQ5YTE5MS1lNzNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkHdXonsl4HrEVG1AjiF0Yb7QLz/z/LMk8/JISf9eQ28GFYmbQiKL4RPNaGZG SWWjlmN8D6JV0URigbG+5Vk5bs4UGedJhQeAW2inrYeFaSJ8BYySUbuDaFWj2Xta zjxYJz6n/A1w9m2tPfNODmQrC15GqPomGkanQzlDdabQ+h+j22hMrDbb78zBLQBC YGbg4UHGRbWVWCBKN9yxeKK5LH7H2zvMk0YSir9kOYNXofuznRhl5KTz7YKbOumH DsAVeoiLUZuDKlFtWI+CFOe147jlteWoOpgE60hrd6TIP+eeXMs8v/p44VKd3JrV UcB65WrRcmoMd9US2FGCgSl/0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAz5E/cV hsbQ49ZS1jhSWi5wHZ4GMB8GA1UdIwQYMBaAFCoceFy+vnzXurU6EjtgVYYPYH8Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENkFCMi8wQUYyRUFBQUNG NzAxMUVBOEFFNTVENDhDNEY5QUUwMi9LaHg0WEw2LWZOZTZ0VG9TTzJCVmhnOWdm eGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0toeDRYTDYtZk5lNnRUb1NPMkJWaGc5Z2Z4Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NkFCMi8wQUYyRUFBQUNGNzAxMUVBOEFFNTVENDhDNEY5QUUwMi9LaHg0WEw2LWZO ZTZ0VG9TTzJCVmhnOWdmeGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBn7NVM56IOkzeph8iwzESxgwralR2uZEFYvkkXQBT1NgTGaNqjN8A8 x9/zY77IH6nEIGTTrlpV4dZr1QJubTOW+JbSh47pM8h+wjrtvvH27q/0BBu/Pn8H TOKjTayWtMkQ35xpOG2TZsRDqppL324U4gXP/XgVL1LjCZ2bdVmsU6jYH9VxaW8G d5gVHX/RRpVu4ZpzhJ4QbF/r6DEtsgiIVRW5k2NY0zvu3Lnup3tWc5xErANumHMr VCRkB/vK30axg7NLFY6l1n1xXPYUURPc7IWRDUyefpRk65bj75NYCFZsnHzbi3lx 2mLsZTSaR7jXV8jD0maYLvlZfNfGgiv5 -----END CERTIFICATE-----Generated at Wed Dec 24 15:46:29 2025 by rpki-client