This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.mft File: Klbs8PH_OfsVFWANEgo0cr4UtzI.mft (raw, json) Hash identifier: KQfPeFPSLP1BZEEfjx+ON8TSd5smoWNmKFoJSMK5j5A= Subject key identifier: 79:67:2D:1E:8A:71:13:38:1F:D2:6F:F2:06:44:4C:D7:E1:70:45:E8 Authority key identifier: 2A:56:EC:F0:F1:FF:39:FB:15:15:60:0D:12:0A:34:72:BE:14:B7:32 Certificate issuer: /CN=A91EA485/serialNumber=2A56ECF0F1FF39FB1515600D120A3472BE14B732 Certificate serial: 01B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Klbs8PH_OfsVFWANEgo0cr4UtzI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.mft Manifest number: 01B5 Signing time: Mon 29 Dec 2025 02:14:35 +0000 Manifest this update: Mon 29 Dec 2025 02:14:34 +0000 Manifest next update: Mon 05 Jan 2026 02:14:34 +0000 Files and hashes: 1: Klbs8PH_OfsVFWANEgo0cr4UtzI.crl (hash: l113DvnD8b4OXnIrqcaTHfs/9PFq5m+lIvpidTmgBVI=) 2: EF31E31847CE11EEB588375DC4F9AE02.roa (hash: kILGmUlpt7DdHWZSLztcZSmK4D+q9rXXCv0iWxnKi6I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.crl rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Klbs8PH_OfsVFWANEgo0cr4UtzI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 Jan 2026 02:14:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 441 (0x1b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA485, serialNumber=2A56ECF0F1FF39FB1515600D120A3472BE14B732 Validity Not Before: Dec 29 02:14:34 2025 GMT Not After : Jan 5 02:14:34 2026 GMT Subject: CN=6951e40b-cf0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:01:68:44:66:7f:b5:5d:18:ff:05:16:80:e8: e9:8f:12:cd:d0:03:c4:a1:fc:63:64:c7:de:06:82: 1c:09:3f:c3:20:89:77:97:87:f1:b6:eb:3d:9d:d6: 92:3d:54:7e:7f:1e:3f:ab:8c:63:20:bb:3c:02:40: b9:23:0a:0c:71:7c:04:99:0a:f9:89:e6:29:86:89: dd:94:70:2f:48:d9:1a:ea:eb:77:76:78:1b:11:72: aa:19:a4:ce:4b:b8:3f:72:ce:14:a5:a8:32:6d:89: b6:5f:a8:b3:e6:b5:46:d9:f1:83:03:15:b8:f4:25: 03:69:fc:17:69:88:5e:5e:aa:30:ab:9f:0a:10:2f: 5d:81:ed:3f:cd:1b:8b:7a:a0:f6:53:20:4d:51:0c: a6:f5:79:b0:df:04:96:06:08:57:04:0e:7c:3c:14: 42:2d:8b:e1:b1:ff:fc:54:6b:eb:b1:00:80:5d:76: d7:42:aa:95:03:f1:cc:60:10:de:dd:76:24:06:7a: 29:b6:70:3d:8a:79:3e:16:27:38:29:26:20:12:e1: 90:39:d7:d5:d7:33:e4:fc:ab:8e:54:e9:81:83:8d: 29:15:6d:df:75:2d:4c:a4:8e:95:53:8b:22:dd:d8: e2:54:20:cd:58:aa:c9:33:6c:b1:26:c8:24:bd:26: 7d:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:67:2D:1E:8A:71:13:38:1F:D2:6F:F2:06:44:4C:D7:E1:70:45:E8 X509v3 Authority Key Identifier: keyid:2A:56:EC:F0:F1:FF:39:FB:15:15:60:0D:12:0A:34:72:BE:14:B7:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Klbs8PH_OfsVFWANEgo0cr4UtzI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:96:ac:37:e1:f2:59:56:95:de:db:e7:ff:9d:a6:fe:7e:0d: c8:f5:15:1f:e7:73:a2:47:f3:89:27:9f:85:75:81:cc:c9:10: ee:92:ac:8f:72:83:e1:3c:b0:69:ac:c8:1e:f7:ae:63:d7:32: e9:73:b0:18:95:ff:78:da:1e:34:cd:e8:d4:26:ef:05:02:12: d4:74:4c:f2:ad:83:19:66:66:f4:1b:c6:91:93:5d:bf:e6:f4: 41:b4:3b:60:7a:7d:5a:3e:e6:06:c6:92:b1:40:0d:b5:8a:15: 39:e8:72:4f:59:f3:e4:b5:7b:c3:79:4e:70:d8:9a:d8:ca:eb: d5:e2:93:db:1c:d6:4c:65:75:4e:7c:fe:af:aa:63:5c:98:de: 06:e8:b5:48:86:6d:e1:31:73:61:ed:50:51:2e:d1:f4:6c:8a: d4:e2:89:ae:78:73:6e:7d:f0:1d:4b:4e:67:9e:66:76:f7:cf: c1:1e:79:24:ba:24:8e:fc:46:24:d4:b9:f8:2f:3b:37:f4:6a: b3:e5:c5:e4:e9:c2:74:96:16:45:3e:94:ad:cc:34:5b:75:b2: a6:0a:cf:aa:67:7e:93:9b:c7:ca:ab:af:80:52:bc:42:88:05: 87:4b:c3:74:e2:25:2e:80:02:7e:e9:5d:cd:c2:4f:01:11:e7: 64:fa:38:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE0ODUxMTAvBgNVBAUTKDJBNTZFQ0YwRjFGRjM5RkIxNTE1NjAwRDEyMEEzNDcy QkUxNEI3MzIwHhcNMjUxMjI5MDIxNDM0WhcNMjYwMTA1MDIxNDM0WjAYMRYwFAYD VQQDDA02OTUxZTQwYi1jZjBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuwFoRGZ/tV0Y/wUWgOjpjxLN0APEofxjZMfeBoIcCT/DIIl3l4fxtus9ndaS PVR+fx4/q4xjILs8AkC5IwoMcXwEmQr5ieYphondlHAvSNka6ut3dngbEXKqGaTO S7g/cs4UpagybYm2X6iz5rVG2fGDAxW49CUDafwXaYheXqowq58KEC9dge0/zRuL eqD2UyBNUQym9Xmw3wSWBghXBA58PBRCLYvhsf/8VGvrsQCAXXbXQqqVA/HMYBDe 3XYkBnoptnA9ink+Fic4KSYgEuGQOdfV1zPk/KuOVOmBg40pFW3fdS1MpI6VU4si 3djiVCDNWKrJM2yxJsgkvSZ9dQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHlnLR6K cRM4H9Jv8gZETNfhcEXoMB8GA1UdIwQYMBaAFCpW7PDx/zn7FRVgDRIKNHK+FLcy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTQ4NS82MkE5Mjg2NjQ3 Q0UxMUVFODZDMjM4NUNDNEY5QUUwMi9LbGJzOFBIX09mc1ZGV0FORWdvMGNyNFV0 ekkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tsYnM4UEhfT2ZzVkZXQU5FZ28wY3I0VXR6SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTQ4NS82MkE5Mjg2NjQ3Q0UxMUVFODZDMjM4NUNDNEY5QUUwMi9LbGJzOFBIX09m c1ZGV0FORWdvMGNyNFV0ekkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQChlqw34fJZVpXe2+f/nab+fg3I9RUf53OiR/OJJ5+FdYHMyRDukqyP coPhPLBprMge965j1zLpc7AYlf942h40zejUJu8FAhLUdEzyrYMZZmb0G8aRk12/ 5vRBtDtgen1aPuYGxpKxQA21ihU56HJPWfPktXvDeU5w2JrYyuvV4pPbHNZMZXVO fP6vqmNcmN4G6LVIhm3hMXNh7VBRLtH0bIrU4omueHNuffAdS05nnmZ298/BHnkk uiSO/EYk1Ln4Lzs39Gqz5cXk6cJ0lhZFPpStzDRbdbKmCs+qZ36Tm8fKq6+AUrxC iAWHS8N04iUugAJ+6V3Nwk8BEedk+jja -----END CERTIFICATE-----Generated at Wed Dec 31 01:59:14 2025 by rpki-client