This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A913B090/6B67243467F111EDBDC5852CC4F9AE02/s8lXWbAmAWnVga-ERmxca89vwds.mft File: s8lXWbAmAWnVga-ERmxca89vwds.mft (raw, json) Hash identifier: RktmhgZ7KHfcoQkism6IsxnrcwFIohpFnvchRBubhac= Subject key identifier: 62:E1:AD:76:DD:14:F0:73:10:26:4C:37:CF:55:50:1D:E1:81:0A:A1 Authority key identifier: B3:C9:57:59:B0:26:01:69:D5:81:AF:84:46:6C:5C:6B:CF:6F:C1:DB Certificate issuer: /CN=A913B090/serialNumber=B3C95759B0260169D581AF84466C5C6BCF6FC1DB Certificate serial: 0245 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s8lXWbAmAWnVga-ERmxca89vwds.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B090/6B67243467F111EDBDC5852CC4F9AE02/s8lXWbAmAWnVga-ERmxca89vwds.mft Manifest number: 0241 Signing time: Tue 23 Dec 2025 00:51:00 +0000 Manifest this update: Tue 23 Dec 2025 00:51:00 +0000 Manifest next update: Tue 30 Dec 2025 00:51:00 +0000 Files and hashes: 1: s8lXWbAmAWnVga-ERmxca89vwds.crl (hash: puRyvqCWMKMa4zpSgC0MiXdZSG/M2Oobfr5plTb/y6E=) 2: B57CACF267F511EDA884E65BC4F9AE02.roa (hash: uqE+ryUYHNLBPS1jaiyQ/Fm+6Bg+NYwJQStwm0tzSfw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B090/6B67243467F111EDBDC5852CC4F9AE02/s8lXWbAmAWnVga-ERmxca89vwds.crl rsync://rpki.apnic.net/member_repository/A913B090/6B67243467F111EDBDC5852CC4F9AE02/s8lXWbAmAWnVga-ERmxca89vwds.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s8lXWbAmAWnVga-ERmxca89vwds.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 00:50:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 581 (0x245) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B090, serialNumber=B3C95759B0260169D581AF84466C5C6BCF6FC1DB Validity Not Before: Dec 23 00:51:00 2025 GMT Not After : Dec 30 00:51:00 2025 GMT Subject: CN=6949e774-f677 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:0e:de:eb:6c:b7:2d:4c:56:ef:13:7d:7f:6a: 26:da:36:1a:b5:f7:f4:dc:17:59:f3:51:1e:18:8b: d7:29:f0:e9:15:8f:f6:11:66:74:4c:7d:4c:54:04: 6c:c1:6a:9e:22:7c:d8:d2:b4:89:33:b1:31:d0:03: ac:dc:31:44:b0:4e:1a:8d:6a:fa:ea:e3:6f:d0:fb: 84:df:7a:5d:68:c9:17:2a:47:8f:a8:32:fe:3c:0c: cb:88:82:8a:1a:b4:7b:e5:e4:d2:d3:b4:b7:d4:69: c6:28:2f:39:cc:fe:58:7b:34:55:ae:1e:d0:f2:e2: c3:dc:6e:10:36:e7:27:22:f9:49:83:3b:60:b8:5a: d8:71:7f:c3:68:51:b3:3d:61:00:39:c4:10:67:cd: d6:0a:24:5b:23:ec:27:76:d3:4f:71:9f:15:1b:52: 48:32:9f:45:3d:d3:10:8b:5f:b3:c1:72:fe:e3:84: cd:62:fb:f5:65:33:65:6f:36:d3:37:8a:ee:9a:34: f7:be:df:e6:63:b3:16:5c:16:1f:c7:e1:16:79:5b: e6:8c:15:7b:e0:e7:e6:8c:bc:93:93:4f:b9:b8:d6: 96:74:07:ea:cd:bb:12:2c:9d:10:3e:8f:42:c9:b3: be:1d:72:e6:1d:a2:88:09:50:61:28:15:57:bd:b3: b2:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:E1:AD:76:DD:14:F0:73:10:26:4C:37:CF:55:50:1D:E1:81:0A:A1 X509v3 Authority Key Identifier: keyid:B3:C9:57:59:B0:26:01:69:D5:81:AF:84:46:6C:5C:6B:CF:6F:C1:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B090/6B67243467F111EDBDC5852CC4F9AE02/s8lXWbAmAWnVga-ERmxca89vwds.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s8lXWbAmAWnVga-ERmxca89vwds.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B090/6B67243467F111EDBDC5852CC4F9AE02/s8lXWbAmAWnVga-ERmxca89vwds.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:61:cb:dc:fd:c0:49:7f:8c:22:3e:6c:cb:e0:62:06:39:72: c2:14:34:d9:7b:ea:6d:05:85:68:4d:e7:76:0e:d0:e2:2b:4d: 23:25:f7:a2:1f:d5:5b:40:e0:e6:06:1e:86:13:53:2d:bf:35: b7:17:f5:be:fb:b8:12:89:4f:a3:ca:95:30:ba:28:8a:bd:ba: 04:6a:14:83:1d:07:d9:c2:f3:31:6a:78:2e:cc:a5:c9:d3:b6: 66:6f:e5:bf:2e:b3:dc:9c:26:c9:56:5f:6c:f4:e5:87:13:05: 40:0c:7c:e5:30:a6:54:f5:f9:df:a6:e2:19:5a:fe:24:80:93: 6d:d7:d5:e5:c8:ad:7c:c3:5b:ed:d4:81:69:f7:a3:0f:ca:a6: 29:32:36:5f:e8:7b:96:d5:9c:b6:b0:0e:e7:56:73:3c:bc:20: 9d:23:de:80:cf:1b:60:b8:2f:2e:84:d3:33:76:75:8d:81:5c: 28:d9:f2:d2:40:f6:ff:bf:96:48:e7:6b:d5:b6:ec:fc:00:f2: 9c:29:98:10:91:d3:02:c2:30:dd:3b:40:4c:21:63:48:4d:c3: b4:bc:90:92:56:14:2c:d7:1f:3c:23:9b:14:59:a9:23:ce:fb: 73:9a:45:8b:5f:56:e3:1e:4a:5e:22:1e:59:00:99:92:e5:20: c5:d1:5f:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0IwOTAxMTAvBgNVBAUTKEIzQzk1NzU5QjAyNjAxNjlENTgxQUY4NDQ2NkM1QzZC Q0Y2RkMxREIwHhcNMjUxMjIzMDA1MTAwWhcNMjUxMjMwMDA1MTAwWjAYMRYwFAYD VQQDDA02OTQ5ZTc3NC1mNjc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtw7e62y3LUxW7xN9f2om2jYatff03BdZ81EeGIvXKfDpFY/2EWZ0TH1MVARs wWqeInzY0rSJM7Ex0AOs3DFEsE4ajWr66uNv0PuE33pdaMkXKkePqDL+PAzLiIKK GrR75eTS07S31GnGKC85zP5YezRVrh7Q8uLD3G4QNucnIvlJgztguFrYcX/DaFGz PWEAOcQQZ83WCiRbI+wndtNPcZ8VG1JIMp9FPdMQi1+zwXL+44TNYvv1ZTNlbzbT N4rumjT3vt/mY7MWXBYfx+EWeVvmjBV74OfmjLyTk0+5uNaWdAfqzbsSLJ0QPo9C ybO+HXLmHaKICVBhKBVXvbOyYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGLhrXbd FPBzECZMN89VUB3hgQqhMB8GA1UdIwQYMBaAFLPJV1mwJgFp1YGvhEZsXGvPb8Hb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjA5MC82QjY3MjQzNDY3 RjExMUVEQkRDNTg1MkNDNEY5QUUwMi9zOGxYV2JBbUFXblZnYS1FUm14Y2E4OXZ3 ZHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3M4bFhXYkFtQVduVmdhLUVSbXhjYTg5dndkcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QjA5MC82QjY3MjQzNDY3RjExMUVEQkRDNTg1MkNDNEY5QUUwMi9zOGxYV2JBbUFX blZnYS1FUm14Y2E4OXZ3ZHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAfYcvc/cBJf4wiPmzL4GIGOXLCFDTZe+ptBYVoTed2DtDiK00jJfei H9VbQODmBh6GE1MtvzW3F/W++7gSiU+jypUwuiiKvboEahSDHQfZwvMxanguzKXJ 07Zmb+W/LrPcnCbJVl9s9OWHEwVADHzlMKZU9fnfpuIZWv4kgJNt19XlyK18w1vt 1IFp96MPyqYpMjZf6HuW1Zy2sA7nVnM8vCCdI96AzxtguC8uhNMzdnWNgVwo2fLS QPb/v5ZI52vVtuz8APKcKZgQkdMCwjDdO0BMIWNITcO0vJCSVhQs1x88I5sUWakj zvtzmkWLX1bjHkpeIh5ZAJmS5SDF0V9N -----END CERTIFICATE-----Generated at Wed Dec 24 15:43:37 2025 by rpki-client