This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FEEA9/CED0A9E61D9711E2BF3E818108B02CD2/KUHHFh7UouCbuRyrxEPIzLwDLtg.mft File: KUHHFh7UouCbuRyrxEPIzLwDLtg.mft (raw, json) Hash identifier: Gh4homHsJE+tmFR4ErtC6N6OtKnbOCIk0lMPVOcbUVU= Subject key identifier: 43:B8:47:25:9A:DB:BA:9E:16:1A:EB:10:BE:0C:9B:93:BF:40:4B:96 Authority key identifier: 29:41:C7:16:1E:D4:A2:E0:9B:B9:1C:AB:C4:43:C8:CC:BC:03:2E:D8 Certificate issuer: /CN=A91FEEA9/serialNumber=2941C7161ED4A2E09BB91CABC443C8CCBC032ED8 Certificate serial: 34F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KUHHFh7UouCbuRyrxEPIzLwDLtg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FEEA9/CED0A9E61D9711E2BF3E818108B02CD2/KUHHFh7UouCbuRyrxEPIzLwDLtg.mft Manifest number: 34EC Signing time: Sat 06 Dec 2025 14:46:22 +0000 Manifest this update: Sat 06 Dec 2025 14:46:21 +0000 Manifest next update: Sat 13 Dec 2025 14:46:21 +0000 Files and hashes: 1: KUHHFh7UouCbuRyrxEPIzLwDLtg.crl (hash: 45ufMND4UDybVgbuG2jFaQyybMbbxa4ArjN4Edx3wO8=) 2: 796A04A6BA1A11F08C920A83C4F9AE02.roa (hash: XrkdqNUQGwomIdIUUZC2gUbbnUvFxDZ/p2osIbne7lw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FEEA9/CED0A9E61D9711E2BF3E818108B02CD2/KUHHFh7UouCbuRyrxEPIzLwDLtg.crl rsync://rpki.apnic.net/member_repository/A91FEEA9/CED0A9E61D9711E2BF3E818108B02CD2/KUHHFh7UouCbuRyrxEPIzLwDLtg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KUHHFh7UouCbuRyrxEPIzLwDLtg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 14:46:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13555 (0x34f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FEEA9, serialNumber=2941C7161ED4A2E09BB91CABC443C8CCBC032ED8 Validity Not Before: Dec 6 14:46:21 2025 GMT Not After : Dec 13 14:46:21 2025 GMT Subject: CN=693441bd-5145 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:5f:e3:b3:e1:48:c8:62:9f:4c:8b:37:20:7a: f6:0f:f3:49:f7:fd:f3:c1:bd:70:d8:23:3b:35:21: bf:c7:8e:34:b3:fc:50:a8:05:61:97:4c:15:02:7f: ad:62:2c:49:2a:4d:5a:08:5f:10:54:d3:d7:1e:16: 0e:f6:9a:bf:f4:d6:67:45:3d:80:03:74:fc:6f:0d: 73:4e:6e:63:e3:1c:c7:fe:ca:bf:6c:3d:36:dc:aa: 9f:70:86:7a:f6:4d:c2:46:4a:8f:5d:c1:c8:ce:08: 7e:e0:6d:2d:4e:e7:bb:b8:ff:83:ed:b3:56:83:36: fc:ec:3c:a4:bc:b8:d1:fe:30:83:1e:69:3b:35:6c: b2:13:b3:07:13:bc:68:55:2c:c9:c9:37:f2:fe:ef: eb:24:a6:3c:14:9b:b3:23:c6:d1:60:e7:86:2e:6c: be:0e:3d:e1:6f:21:96:dd:4e:36:a1:dd:44:15:5b: ba:14:92:07:55:ed:5d:ba:a8:09:c7:09:e2:f8:4f: 5e:09:40:1b:28:c6:0e:2c:77:a7:40:14:61:36:2c: ad:fb:05:17:b6:05:80:d7:c9:7e:40:8d:18:9f:b3: e2:a8:75:f8:f5:66:f3:0d:c5:9b:41:03:0a:99:3b: f1:0e:9c:6a:e5:6a:bb:d0:ef:aa:1a:8c:40:f2:bc: 9f:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:B8:47:25:9A:DB:BA:9E:16:1A:EB:10:BE:0C:9B:93:BF:40:4B:96 X509v3 Authority Key Identifier: keyid:29:41:C7:16:1E:D4:A2:E0:9B:B9:1C:AB:C4:43:C8:CC:BC:03:2E:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FEEA9/CED0A9E61D9711E2BF3E818108B02CD2/KUHHFh7UouCbuRyrxEPIzLwDLtg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KUHHFh7UouCbuRyrxEPIzLwDLtg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FEEA9/CED0A9E61D9711E2BF3E818108B02CD2/KUHHFh7UouCbuRyrxEPIzLwDLtg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:6a:a4:8f:2c:94:5f:64:c1:5e:c3:09:bc:16:12:96:f0:a3: 7e:81:9c:ab:c3:3a:e3:26:da:22:c4:6b:56:0c:07:21:4f:45: f9:91:1e:ad:f5:52:96:c2:c0:f0:33:ed:fd:a3:22:78:f0:cf: 87:44:4e:86:ef:91:ed:05:4e:5d:1f:18:4c:86:63:02:b4:46: 47:b5:58:2c:9f:cf:f8:76:1f:66:69:22:db:10:e3:2b:a6:38: 6c:e0:c3:ce:f8:ee:c5:ca:39:e9:5f:79:73:6c:ef:a9:8a:f8: 3d:9f:8f:cf:1c:31:28:90:fd:1b:ff:70:f7:fd:e5:f5:53:62: 46:4e:8c:f7:45:d7:08:7c:c7:eb:c4:4f:54:11:a5:21:e5:01: 59:6a:f9:60:4a:db:ac:63:1f:72:b4:3d:d9:42:48:c6:a4:27: 30:9e:0c:25:2a:15:7a:7c:c6:b7:02:9a:b2:30:d1:ba:e5:7e: c0:49:3a:34:11:78:03:9a:96:bc:bd:b9:75:10:c0:26:fd:a5: 05:cd:25:03:6c:a2:f6:b5:bf:30:fe:c6:17:79:3b:02:9c:33: 6e:1c:18:20:b6:71:2a:53:3b:11:ca:1d:e1:8f:60:33:de:63: 11:63:81:65:59:f5:ad:70:b7:ab:59:e3:53:cd:96:8e:1e:61: d4:d7:92:97 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNPMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkVFQTkxMTAvBgNVBAUTKDI5NDFDNzE2MUVENEEyRTA5QkI5MUNBQkM0NDNDOEND QkMwMzJFRDgwHhcNMjUxMjA2MTQ0NjIxWhcNMjUxMjEzMTQ0NjIxWjAYMRYwFAYD VQQDEw02OTM0NDFiZC01MTQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyl/js+FIyGKfTIs3IHr2D/NJ9/3zwb1w2CM7NSG/x440s/xQqAVhl0wVAn+t YixJKk1aCF8QVNPXHhYO9pq/9NZnRT2AA3T8bw1zTm5j4xzH/sq/bD023KqfcIZ6 9k3CRkqPXcHIzgh+4G0tTue7uP+D7bNWgzb87DykvLjR/jCDHmk7NWyyE7MHE7xo VSzJyTfy/u/rJKY8FJuzI8bRYOeGLmy+Dj3hbyGW3U42od1EFVu6FJIHVe1duqgJ xwni+E9eCUAbKMYOLHenQBRhNiyt+wUXtgWA18l+QI0Yn7PiqHX49WbzDcWbQQMK mTvxDpxq5Wq70O+qGoxA8ryfSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEO4RyWa 27qeFhrrEL4Mm5O/QEuWMB8GA1UdIwQYMBaAFClBxxYe1KLgm7kcq8RDyMy8Ay7Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRUVBOS9DRUQwQTlFNjFE OTcxMUUyQkYzRTgxODEwOEIwMkNEMi9LVUhIRmg3VW91Q2J1UnlyeEVQSXpMd0RM dGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tVSEhGaDdVb3VDYnVSeXJ4RVBJekx3REx0Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RUVBOS9DRUQwQTlFNjFEOTcxMUUyQkYzRTgxODEwOEIwMkNEMi9LVUhIRmg3VW91 Q2J1UnlyeEVQSXpMd0RMdGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAraqSPLJRfZMFewwm8FhKW8KN+gZyrwzrjJtoixGtWDAchT0X5kR6t 9VKWwsDwM+39oyJ48M+HRE6G75HtBU5dHxhMhmMCtEZHtVgsn8/4dh9maSLbEOMr pjhs4MPO+O7FyjnpX3lzbO+pivg9n4/PHDEokP0b/3D3/eX1U2JGToz3RdcIfMfr xE9UEaUh5QFZavlgStusYx9ytD3ZQkjGpCcwngwlKhV6fMa3ApqyMNG65X7ASTo0 EXgDmpa8vbl1EMAm/aUFzSUDbKL2tb8w/sYXeTsCnDNuHBggtnEqUzsRyh3hj2Az 3mMRY4FlWfWtcLerWeNTzZaOHmHU15KX -----END CERTIFICATE-----Generated at Mon Dec 8 06:18:24 2025 by rpki-client