This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91999F5/6A3DB5789F7911EC9CB47A0AC4F9AE02/khLuorkaMmYPdScf7IWJswnDifA.mft File: khLuorkaMmYPdScf7IWJswnDifA.mft (raw, json) Hash identifier: qYfPbDY/8wgk7+Uy4d77EPIpi3uyn7l4+wbD9HL9NmM= Subject key identifier: CC:08:E6:F7:6D:39:51:C6:37:94:E4:D4:15:29:DB:1C:3B:6D:AB:BA Authority key identifier: 92:12:EE:A2:B9:1A:32:66:0F:75:27:1F:EC:85:89:B3:09:C3:89:F0 Certificate issuer: /CN=A91999F5/serialNumber=9212EEA2B91A32660F75271FEC8589B309C389F0 Certificate serial: 040A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khLuorkaMmYPdScf7IWJswnDifA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91999F5/6A3DB5789F7911EC9CB47A0AC4F9AE02/khLuorkaMmYPdScf7IWJswnDifA.mft Manifest number: 0402 Signing time: Fri 26 Dec 2025 23:32:42 +0000 Manifest this update: Fri 26 Dec 2025 23:32:42 +0000 Manifest next update: Fri 02 Jan 2026 23:32:42 +0000 Files and hashes: 1: khLuorkaMmYPdScf7IWJswnDifA.crl (hash: e8ikvhfZimGNjUFiYMFVJwv6Ckwyl7TsGikXCaoOCyU=) 2: F84777FCD9DC11EDA4083A71C4F9AE02.roa (hash: CoOJrAcKTrWo0nejzXhp58RWFVEIO9a7vZX9DurBX3o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91999F5/6A3DB5789F7911EC9CB47A0AC4F9AE02/khLuorkaMmYPdScf7IWJswnDifA.crl rsync://rpki.apnic.net/member_repository/A91999F5/6A3DB5789F7911EC9CB47A0AC4F9AE02/khLuorkaMmYPdScf7IWJswnDifA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khLuorkaMmYPdScf7IWJswnDifA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 Jan 2026 23:32:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1034 (0x40a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91999F5, serialNumber=9212EEA2B91A32660F75271FEC8589B309C389F0 Validity Not Before: Dec 26 23:32:42 2025 GMT Not After : Jan 2 23:32:42 2026 GMT Subject: CN=694f1b1a-c05d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:ff:ee:11:ee:92:ad:45:fe:fb:67:f2:8e:e4: 2f:02:ca:ce:47:20:27:98:0a:4b:df:cf:4a:ad:ec: 76:3c:b2:81:a2:e0:24:dc:c7:3e:dc:8e:ae:c4:48: 43:7a:34:26:a6:32:d3:3c:84:09:60:63:ce:dc:39: c2:44:d3:a1:2a:38:49:69:93:d3:5c:35:d1:34:b5: 60:af:91:48:c7:50:6e:6a:74:9a:52:19:6b:55:ff: 75:78:be:b8:ac:6f:4c:29:8c:b6:0b:c0:74:de:e6: ff:ef:b1:84:fb:e2:25:9d:cb:a4:47:4d:82:1b:3a: 5b:77:06:a7:cd:7e:8e:42:35:99:db:ce:10:f7:8c: 69:8c:c9:5b:ab:11:67:48:1c:59:b2:85:ea:53:aa: 74:6d:ec:ad:bf:a7:db:05:bf:64:3e:bc:7d:98:26: 10:44:f5:f0:9e:1a:3a:bb:fe:56:62:4e:dc:cd:a1: 4c:d3:cc:14:f1:c8:b0:e6:54:b5:25:1d:aa:fb:7b: 4f:bd:54:02:26:7a:d1:02:b3:33:5f:d1:0e:bd:57: 36:68:ce:11:33:71:b2:de:75:4d:b0:a7:9f:a8:eb: e1:23:f0:4b:88:30:d6:0f:b2:a8:86:77:02:c3:37: d6:37:71:24:5d:3e:38:d7:ec:67:41:f0:a1:64:a5: 35:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:08:E6:F7:6D:39:51:C6:37:94:E4:D4:15:29:DB:1C:3B:6D:AB:BA X509v3 Authority Key Identifier: keyid:92:12:EE:A2:B9:1A:32:66:0F:75:27:1F:EC:85:89:B3:09:C3:89:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91999F5/6A3DB5789F7911EC9CB47A0AC4F9AE02/khLuorkaMmYPdScf7IWJswnDifA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khLuorkaMmYPdScf7IWJswnDifA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91999F5/6A3DB5789F7911EC9CB47A0AC4F9AE02/khLuorkaMmYPdScf7IWJswnDifA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:02:53:a9:7c:5b:cc:63:ab:49:03:a5:72:63:56:38:3f:80: 3e:6b:61:14:03:7a:e8:bc:7d:78:a9:aa:0c:72:38:63:38:e8: 6b:10:3d:b1:31:a2:93:ca:41:cc:a9:c0:26:42:0d:62:42:2e: a3:5e:fd:03:bb:72:f5:b1:35:eb:79:22:f0:9b:e9:f3:77:91: 98:1b:82:e9:1b:94:93:ad:a2:dc:51:58:f5:56:96:5e:16:75: 17:64:e0:03:1f:97:8a:27:c5:ef:0a:90:12:5d:56:3d:7b:f8: be:88:55:4a:27:6e:92:42:55:48:af:aa:97:2c:3d:54:4f:e4: d9:a5:3b:e1:93:b1:c1:02:fd:03:8d:45:04:8b:bd:84:0e:bf: 9c:9a:9a:2d:47:86:25:88:6d:3d:9c:b6:56:31:e4:b6:b8:46: 7e:3d:40:b6:03:42:ea:88:b8:ae:d5:d2:5c:71:d1:9f:61:da: 95:06:ff:d4:d9:bd:79:20:8e:8b:83:06:5b:41:d9:8a:06:8c: 8b:b5:7a:83:f0:ad:94:08:12:0f:d7:ea:69:ef:f6:1f:de:a6: 23:9e:74:be:33:ec:c1:a3:3b:37:4b:23:a5:5a:59:d2:f7:06: 28:78:b3:3a:fd:3b:a1:d0:06:6a:ec:c2:73:6c:c3:89:a9:c9: c7:bd:2f:e9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBAowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTk5RjUxMTAvBgNVBAUTKDkyMTJFRUEyQjkxQTMyNjYwRjc1MjcxRkVDODU4OUIz MDlDMzg5RjAwHhcNMjUxMjI2MjMzMjQyWhcNMjYwMTAyMjMzMjQyWjAYMRYwFAYD VQQDDA02OTRmMWIxYS1jMDVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2v/uEe6SrUX++2fyjuQvAsrORyAnmApL389Krex2PLKBouAk3Mc+3I6uxEhD ejQmpjLTPIQJYGPO3DnCRNOhKjhJaZPTXDXRNLVgr5FIx1BuanSaUhlrVf91eL64 rG9MKYy2C8B03ub/77GE++IlncukR02CGzpbdwanzX6OQjWZ284Q94xpjMlbqxFn SBxZsoXqU6p0beytv6fbBb9kPrx9mCYQRPXwnho6u/5WYk7czaFM08wU8ciw5lS1 JR2q+3tPvVQCJnrRArMzX9EOvVc2aM4RM3Gy3nVNsKefqOvhI/BLiDDWD7KohncC wzfWN3EkXT441+xnQfChZKU1HQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMwI5vdt OVHGN5Tk1BUp2xw7bau6MB8GA1UdIwQYMBaAFJIS7qK5GjJmD3UnH+yFibMJw4nw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTlGNS82QTNEQjU3ODlG NzkxMUVDOUNCNDdBMEFDNEY5QUUwMi9raEx1b3JrYU1tWVBkU2NmN0lXSnN3bkRp ZkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2toTHVvcmthTW1ZUGRTY2Y3SVdKc3duRGlmQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OTlGNS82QTNEQjU3ODlGNzkxMUVDOUNCNDdBMEFDNEY5QUUwMi9raEx1b3JrYU1t WVBkU2NmN0lXSnN3bkRpZkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAAlOpfFvMY6tJA6VyY1Y4P4A+a2EUA3rovH14qaoMcjhjOOhrED2x MaKTykHMqcAmQg1iQi6jXv0Du3L1sTXreSLwm+nzd5GYG4LpG5STraLcUVj1VpZe FnUXZOADH5eKJ8XvCpASXVY9e/i+iFVKJ26SQlVIr6qXLD1UT+TZpTvhk7HBAv0D jUUEi72EDr+cmpotR4YliG09nLZWMeS2uEZ+PUC2A0LqiLiu1dJccdGfYdqVBv/U 2b15II6LgwZbQdmKBoyLtXqD8K2UCBIP1+pp7/Yf3qYjnnS+M+zBozs3SyOlWlnS 9wYoeLM6/Tuh0AZq7MJzbMOJqcnHvS/p -----END CERTIFICATE-----Generated at Sun Dec 28 23:21:45 2025 by rpki-client