This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9112A7D/A04A60B4246511EDB8D42021C4F9AE02/klUgH_qh5mcsBsLfbovhFYLML64.mft File: klUgH_qh5mcsBsLfbovhFYLML64.mft (raw, json) Hash identifier: MZhQ7HWqG9cMy3ENLxPCf6qE6FQMXsYPHKCTY6BgcbA= Subject key identifier: 0F:98:D8:97:EC:58:B9:7F:14:2B:2F:62:F3:90:DB:27:C0:BD:74:A6 Authority key identifier: 92:55:20:1F:FA:A1:E6:67:2C:06:C2:DF:6E:8B:E1:15:82:CC:2F:AE Certificate issuer: /CN=A9112A7D/serialNumber=9255201FFAA1E6672C06C2DF6E8BE11582CC2FAE Certificate serial: 02A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/klUgH_qh5mcsBsLfbovhFYLML64.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112A7D/A04A60B4246511EDB8D42021C4F9AE02/klUgH_qh5mcsBsLfbovhFYLML64.mft Manifest number: 02A5 Signing time: Sun 21 Dec 2025 00:42:35 +0000 Manifest this update: Sun 21 Dec 2025 00:42:34 +0000 Manifest next update: Sun 28 Dec 2025 00:42:34 +0000 Files and hashes: 1: klUgH_qh5mcsBsLfbovhFYLML64.crl (hash: CdpsK40mDtSGDeDvtfMWI+G2QX4Pj7s2SwqTqg0nV6I=) 2: 6DE1A436246811ED82556323C4F9AE02.roa (hash: wBqvUEdJXS+W4twJcgw0kDbGssoYll+0BYZGvLl67rM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112A7D/A04A60B4246511EDB8D42021C4F9AE02/klUgH_qh5mcsBsLfbovhFYLML64.crl rsync://rpki.apnic.net/member_repository/A9112A7D/A04A60B4246511EDB8D42021C4F9AE02/klUgH_qh5mcsBsLfbovhFYLML64.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/klUgH_qh5mcsBsLfbovhFYLML64.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 00:42:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 681 (0x2a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112A7D, serialNumber=9255201FFAA1E6672C06C2DF6E8BE11582CC2FAE Validity Not Before: Dec 21 00:42:34 2025 GMT Not After : Dec 28 00:42:34 2025 GMT Subject: CN=6947427b-2858 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:e6:7c:7a:8b:f9:f1:7f:fb:fa:4f:f4:98:25: e3:26:bf:b9:07:f6:30:69:fa:8e:cb:98:b0:d1:c3: 0c:45:c8:3c:88:bd:f0:59:8a:9d:cb:ee:77:65:50: 5e:23:8f:c0:0f:92:f9:23:15:13:1b:e6:53:b8:ba: bf:c8:9c:36:f0:31:13:a7:87:4e:7e:fe:27:66:ee: c4:91:d5:ab:a8:c4:55:e5:99:36:58:e3:1a:2f:3e: b1:62:29:e3:b4:20:c2:9e:e0:86:a7:ce:bb:0d:05: 54:b0:d8:c2:af:36:e7:b1:e6:8f:24:43:e3:eb:23: 5b:8e:ad:fd:ad:e1:01:08:d3:28:d3:23:fb:8e:3a: e2:f2:b0:54:6c:bb:39:30:82:f8:d1:03:0d:32:38: f0:d2:02:65:78:69:45:21:69:f6:c0:69:30:3e:5a: bf:19:bc:00:bf:ea:43:27:a0:a9:5a:0c:04:00:7d: 36:f0:15:e9:e8:ca:b9:56:96:20:ce:4d:96:9f:b5: 23:1e:02:84:33:61:be:6c:ab:a4:89:7b:87:78:87: 33:a8:50:06:1e:53:59:9e:cd:29:5e:c7:7d:18:41: 69:54:2d:93:32:91:da:4d:70:3a:1f:aa:40:de:28: 1e:04:9e:57:38:e2:0d:fb:9d:9d:49:34:37:03:71: f3:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:98:D8:97:EC:58:B9:7F:14:2B:2F:62:F3:90:DB:27:C0:BD:74:A6 X509v3 Authority Key Identifier: keyid:92:55:20:1F:FA:A1:E6:67:2C:06:C2:DF:6E:8B:E1:15:82:CC:2F:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112A7D/A04A60B4246511EDB8D42021C4F9AE02/klUgH_qh5mcsBsLfbovhFYLML64.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/klUgH_qh5mcsBsLfbovhFYLML64.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112A7D/A04A60B4246511EDB8D42021C4F9AE02/klUgH_qh5mcsBsLfbovhFYLML64.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:2d:9f:67:48:79:aa:92:57:fd:c1:c3:88:6c:35:38:71:03: 6a:bc:c0:12:95:01:bd:0e:35:67:d3:93:0e:c6:95:30:96:e1: c2:f5:45:89:98:83:0f:c3:a0:76:36:cf:1f:01:f0:9c:8a:63: e5:27:83:91:a6:d6:13:08:69:33:9a:fd:2f:81:ce:1f:8d:94: 46:20:c9:5d:2a:03:31:a7:a5:18:15:3a:71:f9:cf:19:1a:e2: 27:e4:0a:ac:b4:c3:bf:61:4e:cd:3a:6a:be:65:c8:5b:26:a7: f6:c8:5d:5c:38:33:df:85:95:f1:68:77:a9:61:b3:09:a6:d3: 02:c1:0d:43:65:22:bd:a6:75:75:b9:a2:c9:e5:0d:77:64:81: ba:f4:39:0f:1a:91:fb:c6:58:42:d4:f6:36:96:53:19:80:98: 0c:32:a4:85:a3:6b:42:8f:4f:2e:b9:61:5a:c8:66:16:53:83: 2d:7e:ee:e2:ab:19:c8:bc:69:e3:b4:ba:30:af:d1:43:da:85: 5e:a0:d7:6c:af:b5:0e:69:8e:b0:10:06:1b:a4:99:87:63:34: 33:fe:c5:09:bc:af:01:4b:09:e5:08:8a:ca:bd:99:aa:d8:a7: 22:57:7f:04:62:d6:ff:90:85:4e:51:42:3e:55:53:1a:30:8f: 79:c8:7a:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAqkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTJBN0QxMTAvBgNVBAUTKDkyNTUyMDFGRkFBMUU2NjcyQzA2QzJERjZFOEJFMTE1 ODJDQzJGQUUwHhcNMjUxMjIxMDA0MjM0WhcNMjUxMjI4MDA0MjM0WjAYMRYwFAYD VQQDDA02OTQ3NDI3Yi0yODU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArOZ8eov58X/7+k/0mCXjJr+5B/YwafqOy5iw0cMMRcg8iL3wWYqdy+53ZVBe I4/AD5L5IxUTG+ZTuLq/yJw28DETp4dOfv4nZu7EkdWrqMRV5Zk2WOMaLz6xYinj tCDCnuCGp867DQVUsNjCrzbnseaPJEPj6yNbjq39reEBCNMo0yP7jjri8rBUbLs5 MIL40QMNMjjw0gJleGlFIWn2wGkwPlq/GbwAv+pDJ6CpWgwEAH028BXp6Mq5VpYg zk2Wn7UjHgKEM2G+bKukiXuHeIczqFAGHlNZns0pXsd9GEFpVC2TMpHaTXA6H6pA 3igeBJ5XOOIN+52dSTQ3A3HzlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA+Y2Jfs WLl/FCsvYvOQ2yfAvXSmMB8GA1UdIwQYMBaAFJJVIB/6oeZnLAbC326L4RWCzC+u MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMkE3RC9BMDRBNjBCNDI0 NjUxMUVEQjhENDIwMjFDNEY5QUUwMi9rbFVnSF9xaDVtY3NCc0xmYm92aEZZTE1M NjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tsVWdIX3FoNW1jc0JzTGZib3ZoRllMTUw2NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MkE3RC9BMDRBNjBCNDI0NjUxMUVEQjhENDIwMjFDNEY5QUUwMi9rbFVnSF9xaDVt Y3NCc0xmYm92aEZZTE1MNjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJLZ9nSHmqklf9wcOIbDU4cQNqvMASlQG9DjVn05MOxpUwluHC9UWJ mIMPw6B2Ns8fAfCcimPlJ4ORptYTCGkzmv0vgc4fjZRGIMldKgMxp6UYFTpx+c8Z GuIn5AqstMO/YU7NOmq+ZchbJqf2yF1cODPfhZXxaHepYbMJptMCwQ1DZSK9pnV1 uaLJ5Q13ZIG69DkPGpH7xlhC1PY2llMZgJgMMqSFo2tCj08uuWFayGYWU4Mtfu7i qxnIvGnjtLowr9FD2oVeoNdsr7UOaY6wEAYbpJmHYzQz/sUJvK8BSwnlCIrKvZmq 2KciV38EYtb/kIVOUUI+VVMaMI95yHrf -----END CERTIFICATE-----Generated at Sun Dec 21 12:13:44 2025 by rpki-client