This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.mft File: KHuwzWb71-W3qIumZ4kSTAsExXg.mft (raw, json) Hash identifier: NzTxv7ygy+cscZm920nEdb9greFtBDasSDMm8ewP2DE= Subject key identifier: B1:BF:A1:66:DF:9E:B2:9B:EF:AC:5E:C8:FC:1D:F4:C6:83:35:F3:40 Authority key identifier: 28:7B:B0:CD:66:FB:D7:E5:B7:A8:8B:A6:67:89:12:4C:0B:04:C5:78 Certificate issuer: /CN=A91EAE25/serialNumber=287BB0CD66FBD7E5B7A88BA66789124C0B04C578 Certificate serial: 0BEA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHuwzWb71-W3qIumZ4kSTAsExXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.mft Manifest number: 0BDD Signing time: Fri 26 Dec 2025 18:25:53 +0000 Manifest this update: Fri 26 Dec 2025 18:25:53 +0000 Manifest next update: Fri 02 Jan 2026 18:25:53 +0000 Files and hashes: 1: KHuwzWb71-W3qIumZ4kSTAsExXg.crl (hash: UkXUIHXwEXeUgYqQVtA5ZWD+A27a2W7U3mg9IHUIme8=) 2: 2BA212DC306D11EA81D19B38C4F9AE02.roa (hash: t1CbmrYkwmBmGPrreNUR9MWvKRnTUYs/Z13bobbplHk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.crl rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHuwzWb71-W3qIumZ4kSTAsExXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 Jan 2026 18:25:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3050 (0xbea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAE25, serialNumber=287BB0CD66FBD7E5B7A88BA66789124C0B04C578 Validity Not Before: Dec 26 18:25:53 2025 GMT Not After : Jan 2 18:25:53 2026 GMT Subject: CN=694ed331-62dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:cc:d3:63:19:00:1f:b0:56:fb:6f:03:25:c2: 63:0f:0a:a5:fb:08:95:50:d9:95:13:d2:b1:58:9e: f2:91:44:e0:45:b7:a5:9b:4c:35:84:66:69:da:d6: 4b:78:24:55:8d:00:bf:9a:41:10:c7:96:e1:78:b0: bf:73:32:1d:82:1d:be:5f:79:3e:80:fe:77:3e:0e: d5:32:18:3a:52:5f:4c:c2:6e:22:d8:31:6b:8d:cc: 8d:08:d8:7b:79:bd:2d:bd:8a:08:a6:1f:1c:f5:ce: 91:6f:88:d4:17:4c:f6:92:27:e9:11:e7:e3:dd:a7: 67:72:41:23:3b:06:df:ff:7a:1c:d1:fb:34:a0:19: e6:b8:86:c5:2a:74:86:f0:ac:6d:1a:74:36:93:25: 5c:84:0f:4d:a9:35:3a:23:a6:33:19:cb:38:3b:a7: a6:2c:62:98:65:d6:fb:e7:3c:ad:9a:0d:37:77:ca: af:10:b6:5c:fc:03:48:3b:c4:a6:4b:16:dd:e4:9e: 90:86:4c:6e:43:b0:6b:1e:02:84:b9:2a:90:c6:30: 35:e9:4e:ac:9c:23:f3:6b:92:0b:52:cc:69:20:35: 9c:67:3c:dc:ca:5c:98:60:b3:19:fb:2e:a8:7d:38: d1:ce:db:5d:0f:95:ac:aa:a6:ea:3b:62:b5:04:ac: 88:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:BF:A1:66:DF:9E:B2:9B:EF:AC:5E:C8:FC:1D:F4:C6:83:35:F3:40 X509v3 Authority Key Identifier: keyid:28:7B:B0:CD:66:FB:D7:E5:B7:A8:8B:A6:67:89:12:4C:0B:04:C5:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHuwzWb71-W3qIumZ4kSTAsExXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:f4:29:69:23:f4:ef:13:b8:77:c6:98:bd:f9:8a:d5:df:bd: 0a:cf:86:25:2d:c0:f2:4c:b9:23:c9:42:2f:64:46:25:ce:ac: d8:e1:33:dc:c1:d2:98:52:14:c1:b6:f4:d2:50:34:83:b3:10: 2d:42:d9:6b:5e:85:2e:45:81:ae:d7:5d:7b:64:32:85:ed:8a: 9a:e8:13:46:32:12:dd:c1:4c:70:7d:ba:f4:6a:84:09:23:c6: 20:b9:c8:70:43:c9:95:d1:01:55:50:09:77:78:23:23:6b:9e: 21:1c:70:30:b0:5e:33:63:6d:92:4d:58:0e:fe:84:3e:a6:70: 0a:67:f1:44:0e:8b:5d:e6:4f:27:bf:aa:27:41:3e:a2:70:20: 4f:68:d4:99:cf:b8:2b:06:c4:53:4b:cc:59:14:14:ae:54:0b: 7a:38:4e:e9:46:a8:0e:49:f2:2d:8c:a0:fc:10:d6:6b:1a:08: 38:8b:e4:56:93:ba:ec:08:ae:d1:b2:9e:7c:b8:11:9d:c6:a2: d5:23:a0:3f:2b:b5:da:0e:2a:22:a1:b4:18:5e:74:8d:9b:7c: 4e:02:34:b3:9d:e3:cf:76:8f:c0:4f:39:81:56:ef:fb:84:f6: 6d:1d:53:73:f0:0f:cb:fe:c2:7f:f5:ab:0b:d3:b7:b4:22:2f: 3a:16:80:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC+owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFFMjUxMTAvBgNVBAUTKDI4N0JCMENENjZGQkQ3RTVCN0E4OEJBNjY3ODkxMjRD MEIwNEM1NzgwHhcNMjUxMjI2MTgyNTUzWhcNMjYwMTAyMTgyNTUzWjAYMRYwFAYD VQQDDA02OTRlZDMzMS02MmRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzszTYxkAH7BW+28DJcJjDwql+wiVUNmVE9KxWJ7ykUTgRbelm0w1hGZp2tZL eCRVjQC/mkEQx5bheLC/czIdgh2+X3k+gP53Pg7VMhg6Ul9Mwm4i2DFrjcyNCNh7 eb0tvYoIph8c9c6Rb4jUF0z2kifpEefj3adnckEjOwbf/3oc0fs0oBnmuIbFKnSG 8KxtGnQ2kyVchA9NqTU6I6YzGcs4O6emLGKYZdb75zytmg03d8qvELZc/ANIO8Sm Sxbd5J6QhkxuQ7BrHgKEuSqQxjA16U6snCPza5ILUsxpIDWcZzzcylyYYLMZ+y6o fTjRzttdD5WsqqbqO2K1BKyI9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLG/oWbf nrKb76xeyPwd9MaDNfNAMB8GA1UdIwQYMBaAFCh7sM1m+9flt6iLpmeJEkwLBMV4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUUyNS82OEU1N0FFRTMw NjgxMUVBQTcwNkUzMkFDNEY5QUUwMi9LSHV3eldiNzEtVzNxSXVtWjRrU1RBc0V4 WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tIdXd6V2I3MS1XM3FJdW1aNGtTVEFzRXhYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUUyNS82OEU1N0FFRTMwNjgxMUVBQTcwNkUzMkFDNEY5QUUwMi9LSHV3eldiNzEt VzNxSXVtWjRrU1RBc0V4WGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA99ClpI/TvE7h3xpi9+YrV370Kz4YlLcDyTLkjyUIvZEYlzqzY4TPc wdKYUhTBtvTSUDSDsxAtQtlrXoUuRYGu1117ZDKF7Yqa6BNGMhLdwUxwfbr0aoQJ I8YguchwQ8mV0QFVUAl3eCMja54hHHAwsF4zY22STVgO/oQ+pnAKZ/FEDotd5k8n v6onQT6icCBPaNSZz7grBsRTS8xZFBSuVAt6OE7pRqgOSfItjKD8ENZrGgg4i+RW k7rsCK7Rsp58uBGdxqLVI6A/K7XaDioiobQYXnSNm3xOAjSznePPdo/ATzmBVu/7 hPZtHVNz8A/L/sJ/9asL07e0Ii86FoCq -----END CERTIFICATE-----Generated at Sat Dec 27 04:32:42 2025 by rpki-client