This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.mft File: Klbs8PH_OfsVFWANEgo0cr4UtzI.mft (raw, json) Hash identifier: J5xDvM/1iYpShmZmANworrOaag8Fsleah6eue4+OqoI= Subject key identifier: 88:34:E5:9E:1D:57:3E:AB:8A:12:4F:9A:89:44:6B:AD:AF:21:EB:AA Authority key identifier: 2A:56:EC:F0:F1:FF:39:FB:15:15:60:0D:12:0A:34:72:BE:14:B7:32 Certificate issuer: /CN=A91EA485/serialNumber=2A56ECF0F1FF39FB1515600D120A3472BE14B732 Certificate serial: 01B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Klbs8PH_OfsVFWANEgo0cr4UtzI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.mft Manifest number: 01B2 Signing time: Tue 23 Dec 2025 02:09:59 +0000 Manifest this update: Tue 23 Dec 2025 02:09:58 +0000 Manifest next update: Tue 30 Dec 2025 02:09:58 +0000 Files and hashes: 1: Klbs8PH_OfsVFWANEgo0cr4UtzI.crl (hash: vrssRxlmib0H9XlKpC8+6Ghb3s2yS+HVPUdqs6EpMN8=) 2: EF31E31847CE11EEB588375DC4F9AE02.roa (hash: kILGmUlpt7DdHWZSLztcZSmK4D+q9rXXCv0iWxnKi6I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.crl rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Klbs8PH_OfsVFWANEgo0cr4UtzI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 02:09:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 438 (0x1b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA485, serialNumber=2A56ECF0F1FF39FB1515600D120A3472BE14B732 Validity Not Before: Dec 23 02:09:58 2025 GMT Not After : Dec 30 02:09:58 2025 GMT Subject: CN=6949f9f7-f7ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:f0:1a:18:9b:a7:7e:17:a9:7f:1d:f4:a7:4b: 77:d4:a0:48:17:de:c1:26:d9:2e:25:93:3e:d7:2d: 0f:ca:af:35:dc:ac:ae:08:4c:a5:ff:1b:6e:95:10: 2f:78:0c:77:ff:37:1c:d9:b9:eb:42:b0:05:13:b4: ef:3f:d1:90:ae:22:79:38:35:22:29:d9:b6:0d:e0: 3f:c3:18:0e:6c:13:b8:ee:b1:25:fd:40:3c:59:6e: 37:42:10:6f:3a:c5:18:7d:7a:b9:a1:e6:c5:36:af: 2a:f1:0b:c4:72:3a:53:23:bf:fe:2f:2d:7e:84:36: 7f:5b:31:53:d8:2e:4d:a6:8e:89:a6:86:72:a6:ad: 39:e4:62:c5:b0:03:24:d5:8e:d0:54:5d:b4:45:12: 1e:76:31:e6:d9:5d:45:9f:4c:30:7f:33:ab:17:41: d5:b0:f6:65:b3:9b:3a:e7:8c:11:52:68:01:00:66: 2c:20:70:36:d3:d8:b4:cc:c2:f3:d4:1a:85:af:fb: 4a:c2:7b:db:ef:eb:ac:8b:9d:c3:27:9e:82:d3:5d: 71:c2:93:6d:38:84:c6:a5:1c:1b:a9:24:70:e9:62: 35:46:a5:73:a6:08:1b:ce:dd:a6:fc:e0:fd:15:00: 59:60:c4:54:5a:6b:ef:9b:a7:1f:60:e2:a8:d2:9d: 5d:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:34:E5:9E:1D:57:3E:AB:8A:12:4F:9A:89:44:6B:AD:AF:21:EB:AA X509v3 Authority Key Identifier: keyid:2A:56:EC:F0:F1:FF:39:FB:15:15:60:0D:12:0A:34:72:BE:14:B7:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Klbs8PH_OfsVFWANEgo0cr4UtzI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:6a:77:5f:86:c5:6e:6e:67:12:c9:6f:b2:30:7b:bc:e1:d9: 08:22:8f:79:bc:05:61:a1:3f:cc:83:76:5d:d8:6b:fb:e1:1b: 0d:05:0f:af:a3:f9:57:b9:f8:fe:2a:6e:7e:88:95:46:c0:26: 41:ee:e1:73:45:b8:1e:3c:62:6e:5c:b7:37:ad:86:de:73:93: 36:f0:18:c6:6f:58:aa:bf:a2:db:f3:d8:be:18:0e:c1:77:6e: 72:60:0d:6b:88:98:5c:5d:5d:97:87:cf:3e:a6:95:0c:bb:23: 0d:eb:7d:f6:d0:5f:2a:24:49:69:94:8f:c3:b2:cd:8f:04:f9: bc:bd:14:96:a0:48:b4:8d:d2:31:2f:e8:dc:96:fe:fd:9c:36: 52:ae:d6:e1:1e:6e:48:64:ba:32:3b:67:84:c0:08:38:d8:b0: 8b:88:16:dd:9c:07:68:8b:03:be:37:76:12:35:f9:61:ae:a1: 4f:1b:0b:63:18:04:79:b5:09:77:6f:42:41:fc:2a:0c:84:d5: 7e:1a:f5:e4:55:f2:42:aa:24:47:0f:a4:5d:f3:00:56:42:06: eb:6e:9e:f4:5a:22:b5:c3:9e:90:5a:c4:c1:72:ab:ac:72:8b: b7:8e:a0:58:ce:fd:ea:b5:88:47:2c:70:f2:40:b8:b1:b7:f8: c6:1e:37:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE0ODUxMTAvBgNVBAUTKDJBNTZFQ0YwRjFGRjM5RkIxNTE1NjAwRDEyMEEzNDcy QkUxNEI3MzIwHhcNMjUxMjIzMDIwOTU4WhcNMjUxMjMwMDIwOTU4WjAYMRYwFAYD VQQDDA02OTQ5ZjlmNy1mN2FkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAufAaGJunfhepfx30p0t31KBIF97BJtkuJZM+1y0Pyq813KyuCEyl/xtulRAv eAx3/zcc2bnrQrAFE7TvP9GQriJ5ODUiKdm2DeA/wxgObBO47rEl/UA8WW43QhBv OsUYfXq5oebFNq8q8QvEcjpTI7/+Ly1+hDZ/WzFT2C5Npo6JpoZypq055GLFsAMk 1Y7QVF20RRIedjHm2V1Fn0wwfzOrF0HVsPZls5s654wRUmgBAGYsIHA209i0zMLz 1BqFr/tKwnvb7+usi53DJ56C011xwpNtOITGpRwbqSRw6WI1RqVzpggbzt2m/OD9 FQBZYMRUWmvvm6cfYOKo0p1d6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIg05Z4d Vz6rihJPmolEa62vIeuqMB8GA1UdIwQYMBaAFCpW7PDx/zn7FRVgDRIKNHK+FLcy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTQ4NS82MkE5Mjg2NjQ3 Q0UxMUVFODZDMjM4NUNDNEY5QUUwMi9LbGJzOFBIX09mc1ZGV0FORWdvMGNyNFV0 ekkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tsYnM4UEhfT2ZzVkZXQU5FZ28wY3I0VXR6SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTQ4NS82MkE5Mjg2NjQ3Q0UxMUVFODZDMjM4NUNDNEY5QUUwMi9LbGJzOFBIX09m c1ZGV0FORWdvMGNyNFV0ekkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVandfhsVubmcSyW+yMHu84dkIIo95vAVhoT/Mg3Zd2Gv74RsNBQ+v o/lXufj+Km5+iJVGwCZB7uFzRbgePGJuXLc3rYbec5M28BjGb1iqv6Lb89i+GA7B d25yYA1riJhcXV2Xh88+ppUMuyMN63320F8qJElplI/Dss2PBPm8vRSWoEi0jdIx L+jclv79nDZSrtbhHm5IZLoyO2eEwAg42LCLiBbdnAdoiwO+N3YSNflhrqFPGwtj GAR5tQl3b0JB/CoMhNV+GvXkVfJCqiRHD6Rd8wBWQgbrbp70WiK1w56QWsTBcqus cou3jqBYzv3qtYhHLHDyQLixt/jGHjcA -----END CERTIFICATE-----Generated at Wed Dec 24 14:09:26 2025 by rpki-client