This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6A35/99277846D49211EFB564DE62C4F9AE02/kkhmtAwwRC1pbyR3AVR1xfBwKsg.mft File: kkhmtAwwRC1pbyR3AVR1xfBwKsg.mft (raw, json) Hash identifier: vr/sRgpQihQ5q0x2r2xt0hb/mFioU3nNYABPTkUE1Xk= Subject key identifier: E7:89:39:43:A4:E4:6F:82:1F:FD:A3:6A:FA:02:0E:96:F2:41:92:8B Authority key identifier: 92:48:66:B4:0C:30:44:2D:69:6F:24:77:01:54:75:C5:F0:70:2A:C8 Certificate issuer: /CN=A91C6A35/serialNumber=924866B40C30442D696F2477015475C5F0702AC8 Certificate serial: AC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kkhmtAwwRC1pbyR3AVR1xfBwKsg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6A35/99277846D49211EFB564DE62C4F9AE02/kkhmtAwwRC1pbyR3AVR1xfBwKsg.mft Manifest number: AB Signing time: Fri 19 Dec 2025 05:15:46 +0000 Manifest this update: Fri 19 Dec 2025 05:15:45 +0000 Manifest next update: Fri 26 Dec 2025 05:15:45 +0000 Files and hashes: 1: kkhmtAwwRC1pbyR3AVR1xfBwKsg.crl (hash: PR9rIM5TOvdtgTFJAtRIIakPhJIzY4S0ug1jbYh7fU0=) 2: 06522672D49411EFA8DF5E69C4F9AE02.roa (hash: xnlYEk4KW2VhWwSazH9YyKPxeFaHVTp0cHWmf0iyBnI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6A35/99277846D49211EFB564DE62C4F9AE02/kkhmtAwwRC1pbyR3AVR1xfBwKsg.crl rsync://rpki.apnic.net/member_repository/A91C6A35/99277846D49211EFB564DE62C4F9AE02/kkhmtAwwRC1pbyR3AVR1xfBwKsg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kkhmtAwwRC1pbyR3AVR1xfBwKsg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 05:15:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 172 (0xac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6A35, serialNumber=924866B40C30442D696F2477015475C5F0702AC8 Validity Not Before: Dec 19 05:15:45 2025 GMT Not After : Dec 26 05:15:45 2025 GMT Subject: CN=6944df82-f49e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:68:a0:55:b8:43:84:82:d4:56:23:cb:f9:b5: 12:a6:90:18:77:d4:42:4d:8e:0c:4b:be:ad:4c:27: bf:d7:e2:eb:10:92:68:64:20:17:4e:75:19:5f:96: 63:75:75:89:4e:7e:45:bf:45:dc:b8:7d:9f:8e:15: 87:4f:4f:39:1a:39:26:d6:50:4b:12:11:6d:13:94: 80:4c:45:18:54:4b:02:e0:9c:d6:0c:37:1d:dc:55: 16:27:8d:27:3a:49:89:38:8b:9f:b3:6a:d7:11:ff: 93:1d:6a:7c:f4:de:46:35:ea:2e:cb:c9:30:4b:65: 25:9b:c9:79:49:22:52:44:8c:7d:34:63:ec:76:52: 4a:37:ba:b2:14:a1:90:b2:dc:3d:e0:5d:50:e5:15: 68:27:f3:ac:d1:e4:42:4e:87:bf:59:ca:08:2b:c6: c9:99:62:d1:7c:40:7b:bd:da:d8:bf:94:5d:4f:48: d6:38:3c:bc:0b:f2:99:4b:77:30:85:b4:42:4b:d3: b4:ef:8b:a2:90:37:af:8e:e3:33:bd:b4:77:e4:a4: 84:f7:1c:26:7c:a9:c9:cd:14:05:fa:40:b1:8e:93: 2d:76:96:84:39:b9:09:10:0c:1e:e6:6a:10:ac:50: 35:94:ad:c6:a3:da:9a:07:2b:7b:84:a9:ba:d8:e6: 22:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:89:39:43:A4:E4:6F:82:1F:FD:A3:6A:FA:02:0E:96:F2:41:92:8B X509v3 Authority Key Identifier: keyid:92:48:66:B4:0C:30:44:2D:69:6F:24:77:01:54:75:C5:F0:70:2A:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6A35/99277846D49211EFB564DE62C4F9AE02/kkhmtAwwRC1pbyR3AVR1xfBwKsg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kkhmtAwwRC1pbyR3AVR1xfBwKsg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6A35/99277846D49211EFB564DE62C4F9AE02/kkhmtAwwRC1pbyR3AVR1xfBwKsg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:41:96:68:ef:f1:bf:f1:9b:c7:42:57:60:b2:57:d6:ce:f1: 31:47:97:86:97:e8:d7:bc:24:37:0b:32:95:ef:e9:17:e0:79: b9:4c:46:aa:ba:33:9f:97:e9:74:45:28:36:1f:8d:e3:a5:75: 6c:fa:1e:77:ad:bd:0d:22:03:a0:5a:0d:e8:30:c1:c3:90:a9: df:b7:a9:30:c9:4c:3f:06:77:80:81:f6:0d:9c:30:e9:3d:86: fc:de:e4:db:2f:28:9b:27:b8:b5:df:be:f2:0c:67:87:18:82: 20:22:b4:ce:99:6b:47:7f:0e:e3:de:49:cd:83:80:73:c5:19: b3:56:28:70:d2:cf:58:fb:81:a3:5a:28:5e:9d:56:ce:8a:79: e8:43:81:37:06:fe:dc:f5:b4:d1:06:e2:54:f1:9e:09:91:5a: 59:02:84:68:19:1b:48:44:a0:e5:6a:d2:b9:8d:d4:17:7d:36: 29:de:69:2f:96:3c:85:31:e1:21:05:bf:34:5b:63:1b:98:ef: 74:d6:7a:39:a5:ad:37:a4:ca:db:79:df:c8:e7:a0:20:fa:86: 07:6f:a4:ad:97:21:e7:dc:7d:2a:7c:a2:13:cd:7e:36:a9:3a: 56:3a:0b:f2:fc:ce:cc:e6:5c:a6:2d:2d:56:b5:ae:e9:9f:cd: aa:da:bc:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzZBMzUxMTAvBgNVBAUTKDkyNDg2NkI0MEMzMDQ0MkQ2OTZGMjQ3NzAxNTQ3NUM1 RjA3MDJBQzgwHhcNMjUxMjE5MDUxNTQ1WhcNMjUxMjI2MDUxNTQ1WjAYMRYwFAYD VQQDDA02OTQ0ZGY4Mi1mNDllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAomigVbhDhILUViPL+bUSppAYd9RCTY4MS76tTCe/1+LrEJJoZCAXTnUZX5Zj dXWJTn5Fv0XcuH2fjhWHT085Gjkm1lBLEhFtE5SATEUYVEsC4JzWDDcd3FUWJ40n OkmJOIufs2rXEf+THWp89N5GNeouy8kwS2Ulm8l5SSJSRIx9NGPsdlJKN7qyFKGQ stw94F1Q5RVoJ/Os0eRCToe/WcoIK8bJmWLRfEB7vdrYv5RdT0jWODy8C/KZS3cw hbRCS9O074uikDevjuMzvbR35KSE9xwmfKnJzRQF+kCxjpMtdpaEObkJEAwe5moQ rFA1lK3Go9qaByt7hKm62OYiLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOeJOUOk 5G+CH/2javoCDpbyQZKLMB8GA1UdIwQYMBaAFJJIZrQMMEQtaW8kdwFUdcXwcCrI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNkEzNS85OTI3Nzg0NkQ0 OTIxMUVGQjU2NERFNjJDNEY5QUUwMi9ra2htdEF3d1JDMXBieVIzQVZSMXhmQndL c2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2traG10QXd3UkMxcGJ5UjNBVlIxeGZCd0tzZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NkEzNS85OTI3Nzg0NkQ0OTIxMUVGQjU2NERFNjJDNEY5QUUwMi9ra2htdEF3d1JD MXBieVIzQVZSMXhmQndLc2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5QZZo7/G/8ZvHQldgslfWzvExR5eGl+jXvCQ3CzKV7+kX4Hm5TEaq ujOfl+l0RSg2H43jpXVs+h53rb0NIgOgWg3oMMHDkKnft6kwyUw/BneAgfYNnDDp PYb83uTbLyibJ7i1377yDGeHGIIgIrTOmWtHfw7j3knNg4BzxRmzVihw0s9Y+4Gj WihenVbOinnoQ4E3Bv7c9bTRBuJU8Z4JkVpZAoRoGRtIRKDlatK5jdQXfTYp3mkv ljyFMeEhBb80W2MbmO901no5pa03pMrbed/I56Ag+oYHb6StlyHn3H0qfKITzX42 qTpWOgvy/M7M5lymLS1Wta7pn82q2ry7 -----END CERTIFICATE-----Generated at Sat Dec 20 00:56:23 2025 by rpki-client