This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.mft File: KHuwzWb71-W3qIumZ4kSTAsExXg.mft (raw, json) Hash identifier: jBkaNWAX7/FpkTSiMiMyLio9cQihyHvDVz7ZfQdENKA= Subject key identifier: E6:52:C3:61:54:EC:FF:8D:68:C5:76:45:8C:7A:A4:72:EE:2E:D4:6F Authority key identifier: 28:7B:B0:CD:66:FB:D7:E5:B7:A8:8B:A6:67:89:12:4C:0B:04:C5:78 Certificate issuer: /CN=A91EAE25/serialNumber=287BB0CD66FBD7E5B7A88BA66789124C0B04C578 Certificate serial: 0BE8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHuwzWb71-W3qIumZ4kSTAsExXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.mft Manifest number: 0BDB Signing time: Mon 22 Dec 2025 18:25:57 +0000 Manifest this update: Mon 22 Dec 2025 18:25:57 +0000 Manifest next update: Mon 29 Dec 2025 18:25:57 +0000 Files and hashes: 1: KHuwzWb71-W3qIumZ4kSTAsExXg.crl (hash: +ZJTOJdSoRaWYgsKJP6D/Xsy74tJ9Aak2tSRYGg0Qu4=) 2: 2BA212DC306D11EA81D19B38C4F9AE02.roa (hash: t1CbmrYkwmBmGPrreNUR9MWvKRnTUYs/Z13bobbplHk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.crl rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHuwzWb71-W3qIumZ4kSTAsExXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 18:25:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3048 (0xbe8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAE25, serialNumber=287BB0CD66FBD7E5B7A88BA66789124C0B04C578 Validity Not Before: Dec 22 18:25:57 2025 GMT Not After : Dec 29 18:25:57 2025 GMT Subject: CN=69498d35-f693 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:49:38:ca:65:0d:8e:77:9d:5f:20:c3:68:55: 0f:07:88:f4:db:f6:f6:58:c9:51:f3:b5:ee:20:35: 49:3e:73:c3:62:14:66:e0:5d:f1:95:05:f8:46:77: ba:86:3b:8a:30:4c:20:f0:c5:e3:cd:66:7e:b9:f0: a3:cb:9c:18:84:fb:d4:2b:46:a0:a2:4d:3d:f3:eb: 76:3c:04:09:01:09:6d:a2:e9:e6:33:92:b5:0f:6b: be:a4:3e:c8:01:f4:7b:5b:ac:93:bb:20:37:33:2a: f6:ba:5b:06:18:9a:26:47:d6:fa:e1:bf:b6:a5:28: b8:51:1c:35:81:3a:24:98:01:43:2e:a0:a9:c2:a6: 3f:06:18:49:82:48:7e:4f:7e:1e:bc:f8:31:d8:33: b9:d1:e5:26:3b:6f:43:32:44:ad:8c:9a:cc:0a:42: 75:f5:c3:88:89:6a:4f:a2:6f:49:c6:c0:72:c7:fd: 0e:90:61:d5:25:8d:77:f7:7f:22:20:62:48:a9:ca: b1:79:36:12:44:0a:99:b7:fe:87:9b:68:f9:58:be: 6c:37:54:76:f1:2b:f0:8a:6a:22:5a:0e:f1:9e:2f: 92:56:02:26:c5:7b:2b:9b:f7:fb:70:86:a9:1e:de: c2:a0:70:93:0a:a5:b4:38:9e:6a:6b:ac:b3:fe:ab: 3c:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:52:C3:61:54:EC:FF:8D:68:C5:76:45:8C:7A:A4:72:EE:2E:D4:6F X509v3 Authority Key Identifier: keyid:28:7B:B0:CD:66:FB:D7:E5:B7:A8:8B:A6:67:89:12:4C:0B:04:C5:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHuwzWb71-W3qIumZ4kSTAsExXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:ef:80:ce:fe:ba:72:25:fe:3f:ca:c3:fe:d7:07:16:7c:be: 9b:c2:c0:d4:87:b6:37:71:b2:88:9a:c3:67:be:be:66:43:f3: d7:42:c9:37:e2:37:2d:5b:44:1f:f5:14:e7:7b:41:31:75:40: 1a:de:19:90:35:bb:5f:25:39:8f:07:4b:47:a4:3a:4c:0f:35: 2b:34:c5:6f:cd:84:f7:44:13:24:cb:22:9d:af:c0:4e:08:8d: 9d:87:e7:70:00:ac:47:17:0d:0b:6f:47:66:e6:d1:e0:60:4b: 3b:29:65:68:a7:85:ea:06:e7:44:6b:20:a0:59:02:f8:05:dd: c5:d4:00:08:8e:d6:01:fc:61:b3:f5:9f:8d:86:46:ca:d9:a4: dc:9a:e4:b3:56:fd:6f:81:86:ee:89:8e:05:45:5f:d0:bb:3f: 8c:a8:87:c3:46:ee:f3:2a:65:f8:d8:20:59:a6:e5:da:4a:55: e5:87:d2:c9:9a:e4:97:4b:2f:e3:b6:42:c4:5d:13:bc:9d:8a: 6a:4c:11:74:22:b4:ed:0c:0c:a9:7c:11:1f:31:f3:a1:ff:62: 5d:e8:bc:2c:3e:40:89:56:f4:3f:5b:1e:7a:b7:7f:80:2d:78: c3:c4:25:30:ed:0b:7b:aa:fc:40:53:c8:50:fd:ec:37:5f:53: bc:5b:7b:f3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC+gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFFMjUxMTAvBgNVBAUTKDI4N0JCMENENjZGQkQ3RTVCN0E4OEJBNjY3ODkxMjRD MEIwNEM1NzgwHhcNMjUxMjIyMTgyNTU3WhcNMjUxMjI5MTgyNTU3WjAYMRYwFAYD VQQDDA02OTQ5OGQzNS1mNjkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvUk4ymUNjnedXyDDaFUPB4j02/b2WMlR87XuIDVJPnPDYhRm4F3xlQX4Rne6 hjuKMEwg8MXjzWZ+ufCjy5wYhPvUK0agok098+t2PAQJAQltounmM5K1D2u+pD7I AfR7W6yTuyA3Myr2ulsGGJomR9b64b+2pSi4URw1gTokmAFDLqCpwqY/BhhJgkh+ T34evPgx2DO50eUmO29DMkStjJrMCkJ19cOIiWpPom9JxsByx/0OkGHVJY13938i IGJIqcqxeTYSRAqZt/6Hm2j5WL5sN1R28SvwimoiWg7xni+SVgImxXsrm/f7cIap Ht7CoHCTCqW0OJ5qa6yz/qs8jQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOZSw2FU 7P+NaMV2RYx6pHLuLtRvMB8GA1UdIwQYMBaAFCh7sM1m+9flt6iLpmeJEkwLBMV4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUUyNS82OEU1N0FFRTMw NjgxMUVBQTcwNkUzMkFDNEY5QUUwMi9LSHV3eldiNzEtVzNxSXVtWjRrU1RBc0V4 WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tIdXd6V2I3MS1XM3FJdW1aNGtTVEFzRXhYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUUyNS82OEU1N0FFRTMwNjgxMUVBQTcwNkUzMkFDNEY5QUUwMi9LSHV3eldiNzEt VzNxSXVtWjRrU1RBc0V4WGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/74DO/rpyJf4/ysP+1wcWfL6bwsDUh7Y3cbKImsNnvr5mQ/PXQsk3 4jctW0Qf9RTne0ExdUAa3hmQNbtfJTmPB0tHpDpMDzUrNMVvzYT3RBMkyyKdr8BO CI2dh+dwAKxHFw0Lb0dm5tHgYEs7KWVop4XqBudEayCgWQL4Bd3F1AAIjtYB/GGz 9Z+NhkbK2aTcmuSzVv1vgYbuiY4FRV/Quz+MqIfDRu7zKmX42CBZpuXaSlXlh9LJ muSXSy/jtkLEXRO8nYpqTBF0IrTtDAypfBEfMfOh/2Jd6LwsPkCJVvQ/Wx56t3+A LXjDxCUw7Qt7qvxAU8hQ/ew3X1O8W3vz -----END CERTIFICATE-----Generated at Tue Dec 23 20:03:56 2025 by rpki-client