This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.mft File: Klbs8PH_OfsVFWANEgo0cr4UtzI.mft (raw, json) Hash identifier: wTq12k0fR8Kh6c935KrTdSist682v2SNc83A7oSSpYs= Subject key identifier: 8B:99:1B:65:87:2B:ED:A0:58:4C:60:AA:42:31:FA:6B:75:A0:D4:CD Authority key identifier: 2A:56:EC:F0:F1:FF:39:FB:15:15:60:0D:12:0A:34:72:BE:14:B7:32 Certificate issuer: /CN=A91EA485/serialNumber=2A56ECF0F1FF39FB1515600D120A3472BE14B732 Certificate serial: 01B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Klbs8PH_OfsVFWANEgo0cr4UtzI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.mft Manifest number: 01B0 Signing time: Fri 19 Dec 2025 02:21:32 +0000 Manifest this update: Fri 19 Dec 2025 02:21:32 +0000 Manifest next update: Fri 26 Dec 2025 02:21:32 +0000 Files and hashes: 1: Klbs8PH_OfsVFWANEgo0cr4UtzI.crl (hash: yUvHoRrjpoaBIagkRO+uWH5HOhdwez8yZpvQaQ65qG4=) 2: EF31E31847CE11EEB588375DC4F9AE02.roa (hash: kILGmUlpt7DdHWZSLztcZSmK4D+q9rXXCv0iWxnKi6I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.crl rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Klbs8PH_OfsVFWANEgo0cr4UtzI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 02:21:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 436 (0x1b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA485, serialNumber=2A56ECF0F1FF39FB1515600D120A3472BE14B732 Validity Not Before: Dec 19 02:21:32 2025 GMT Not After : Dec 26 02:21:32 2025 GMT Subject: CN=6944b6ac-1c6f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:de:4e:3c:98:82:c1:02:2b:82:ef:fc:76:2f: 64:40:67:b0:5b:54:7b:28:76:89:0c:c9:24:a5:c0: 3b:53:6b:b6:cf:1c:49:fb:44:d3:93:9a:fc:d7:34: 53:2e:40:7c:a4:65:d2:8e:37:b4:c6:6f:bc:ff:06: 1c:9d:0a:df:c7:81:7e:3e:bb:94:e5:93:b2:a0:06: 5d:4d:cb:94:0f:d8:51:03:39:ef:39:f6:77:09:66: 17:a3:60:a7:54:bd:a2:4d:41:99:21:f9:42:b1:6c: 94:c7:ab:b2:72:64:9b:c1:ea:fa:95:20:b3:19:3e: 3a:e6:f8:44:57:84:7c:11:a2:a1:05:64:13:54:90: c3:36:76:12:bb:96:7a:f6:26:8d:15:70:41:87:c0: 57:5e:d7:8c:61:11:ea:52:30:63:b2:e4:9f:63:26: 11:8e:a6:b7:5c:90:54:96:c7:ae:c1:81:ef:97:d5: d2:1b:96:88:04:e1:aa:72:42:89:e6:c7:89:9b:ae: ba:78:f3:54:d8:cf:ca:48:00:9d:56:25:8c:84:2b: 01:c0:d3:50:ef:57:25:fb:22:60:5a:2d:51:5a:85: ce:54:7f:9b:85:47:50:57:0a:f6:8b:2f:6a:fa:5c: 62:a8:ef:2e:26:af:53:af:56:21:78:ce:80:63:a0: ba:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:99:1B:65:87:2B:ED:A0:58:4C:60:AA:42:31:FA:6B:75:A0:D4:CD X509v3 Authority Key Identifier: keyid:2A:56:EC:F0:F1:FF:39:FB:15:15:60:0D:12:0A:34:72:BE:14:B7:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Klbs8PH_OfsVFWANEgo0cr4UtzI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:47:7c:d2:39:91:ed:69:c7:3d:d6:b5:9a:de:d0:45:6b:9c: a3:5f:1d:80:55:1f:04:27:d4:82:b4:6f:3f:0d:3b:98:76:8c: 12:aa:f9:3e:6b:6a:d5:47:2c:87:8d:c0:1e:19:81:3f:08:bb: 4d:0c:c0:3a:a5:d5:ef:86:c8:e8:c3:50:fe:95:57:a2:a9:16: d5:ff:41:25:ab:c3:79:68:01:c6:41:c2:cb:d5:72:24:89:45: 90:99:8c:e0:70:84:88:99:67:21:28:62:c8:02:c3:d5:2b:e7: 10:24:46:3d:b5:56:ee:42:92:ed:8d:b2:57:20:96:c4:46:3d: 2e:d9:f7:ff:84:3b:b6:bb:76:e1:c2:55:eb:3d:8f:af:21:05: a5:8c:1f:f0:2a:62:51:ec:4d:d4:15:b0:88:3b:9f:bd:8c:88: ce:6c:d4:30:b7:fe:51:1b:15:b0:33:15:a4:a4:3b:91:5a:ab: 27:31:c2:4a:40:24:0b:f5:3c:8e:c9:f2:28:b2:6f:66:5d:15: f9:51:4e:ee:53:04:99:f0:07:c4:d1:9f:dc:f2:da:7f:5c:77: 27:db:ca:f2:c7:32:81:ab:c2:ea:27:08:ad:6c:6d:d3:b2:44: 03:e4:d5:c7:37:a1:80:bb:fd:29:96:33:df:aa:32:fb:ab:81: 0f:92:b3:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE0ODUxMTAvBgNVBAUTKDJBNTZFQ0YwRjFGRjM5RkIxNTE1NjAwRDEyMEEzNDcy QkUxNEI3MzIwHhcNMjUxMjE5MDIyMTMyWhcNMjUxMjI2MDIyMTMyWjAYMRYwFAYD VQQDDA02OTQ0YjZhYy0xYzZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAj95OPJiCwQIrgu/8di9kQGewW1R7KHaJDMkkpcA7U2u2zxxJ+0TTk5r81zRT LkB8pGXSjje0xm+8/wYcnQrfx4F+PruU5ZOyoAZdTcuUD9hRAznvOfZ3CWYXo2Cn VL2iTUGZIflCsWyUx6uycmSbwer6lSCzGT465vhEV4R8EaKhBWQTVJDDNnYSu5Z6 9iaNFXBBh8BXXteMYRHqUjBjsuSfYyYRjqa3XJBUlseuwYHvl9XSG5aIBOGqckKJ 5seJm666ePNU2M/KSACdViWMhCsBwNNQ71cl+yJgWi1RWoXOVH+bhUdQVwr2iy9q +lxiqO8uJq9Tr1YheM6AY6C6/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIuZG2WH K+2gWExgqkIx+mt1oNTNMB8GA1UdIwQYMBaAFCpW7PDx/zn7FRVgDRIKNHK+FLcy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTQ4NS82MkE5Mjg2NjQ3 Q0UxMUVFODZDMjM4NUNDNEY5QUUwMi9LbGJzOFBIX09mc1ZGV0FORWdvMGNyNFV0 ekkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tsYnM4UEhfT2ZzVkZXQU5FZ28wY3I0VXR6SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTQ4NS82MkE5Mjg2NjQ3Q0UxMUVFODZDMjM4NUNDNEY5QUUwMi9LbGJzOFBIX09m c1ZGV0FORWdvMGNyNFV0ekkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPR3zSOZHtacc91rWa3tBFa5yjXx2AVR8EJ9SCtG8/DTuYdowSqvk+ a2rVRyyHjcAeGYE/CLtNDMA6pdXvhsjow1D+lVeiqRbV/0Elq8N5aAHGQcLL1XIk iUWQmYzgcISImWchKGLIAsPVK+cQJEY9tVbuQpLtjbJXIJbERj0u2ff/hDu2u3bh wlXrPY+vIQWljB/wKmJR7E3UFbCIO5+9jIjObNQwt/5RGxWwMxWkpDuRWqsnMcJK QCQL9TyOyfIosm9mXRX5UU7uUwSZ8AfE0Z/c8tp/XHcn28ryxzKBq8LqJwitbG3T skQD5NXHN6GAu/0pljPfqjL7q4EPkrN6 -----END CERTIFICATE-----Generated at Sun Dec 21 03:02:21 2025 by rpki-client