This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft File: 8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft (raw, json) Hash identifier: 3qsWiWouS+CX2eGM5NVONe/VUgYKI1RG8/6ewsPU0To= Subject key identifier: F6:51:A1:51:63:4A:88:67:7C:2B:0F:BB:F0:74:1F:9A:2C:33:86:B4 Authority key identifier: F2:D1:26:F1:42:08:6A:26:E3:C5:84:A7:0A:B3:E5:27:B3:03:81:82 Certificate issuer: /CN=A9156DB4/serialNumber=F2D126F142086A26E3C584A70AB3E527B3038182 Certificate serial: 0409 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8tEm8UIIaibjxYSnCrPlJ7MDgYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft Manifest number: 03FD Signing time: Sat 20 Dec 2025 23:42:14 +0000 Manifest this update: Sat 20 Dec 2025 23:42:14 +0000 Manifest next update: Sat 27 Dec 2025 23:42:14 +0000 Files and hashes: 1: 8tEm8UIIaibjxYSnCrPlJ7MDgYI.crl (hash: c37SVvZnTy7ZgqXAtuUDpCp+8KJh6ARicQR6d6BNbYw=) 2: 854ACCD2DFEA11ECB7DF0A2EC4F9AE02.roa (hash: C6Z/IfRVQV8LxL1Oc2uDTt0509ENzUWPGHXpk7TwKNY=) 3: 688C6AC29D9D11EC958A216AC4F9AE02.roa (hash: rQCKwpVXSCN9Y75hhPwPDo9+AXfNNoLzfRi82A6bdSI=) 4: 695DB5289D9D11EC958A216AC4F9AE02.roa (hash: c9fr6KD/Ih6e5aCRy3Bruof+Va6iYKpCGv8u+/ETzK0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.crl rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8tEm8UIIaibjxYSnCrPlJ7MDgYI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 23:42:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1033 (0x409) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156DB4, serialNumber=F2D126F142086A26E3C584A70AB3E527B3038182 Validity Not Before: Dec 20 23:42:14 2025 GMT Not After : Dec 27 23:42:14 2025 GMT Subject: CN=69473456-4bbb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:bf:f5:97:50:27:a3:f3:95:b9:7b:74:72:1e: de:45:88:cc:e2:ec:de:93:7e:56:16:f6:34:cc:f6: 99:5f:c8:8e:46:ad:4d:db:ec:1a:fa:da:e2:78:7f: 2d:71:4e:67:c7:6e:1b:9f:51:9a:8a:33:6c:a5:7e: 4a:bd:65:de:56:db:73:d7:45:d6:b2:18:56:58:99: 09:cd:73:3b:26:ae:36:ca:7c:04:ca:9b:f2:e0:ef: 3f:c9:d2:0a:94:77:f5:b9:86:ae:cb:ec:c8:85:84: f2:25:8c:d4:d2:b3:6c:9c:71:54:e8:dd:51:cd:b2: 1b:a1:fb:11:f6:4d:ae:b3:e4:11:c4:13:35:fb:40: cb:58:a3:5d:e2:77:11:7b:08:06:4b:f2:00:09:29: fe:aa:02:16:0d:c5:79:f1:2a:ca:3e:e6:d8:ac:b8: 51:2f:16:91:06:57:35:22:6b:d1:10:9c:51:58:56: 29:1d:84:0b:0d:e9:8b:0c:7c:28:b9:79:36:31:1f: b0:51:58:e9:42:7e:fa:0e:da:bb:d3:09:ad:2b:77: 7b:a6:d5:52:d2:76:f1:3c:c0:97:8f:95:3e:fa:15: cf:5e:38:74:60:50:55:7b:a2:1a:be:2d:cd:b3:4f: fb:5c:3b:ec:f9:dc:1a:d8:d8:92:22:53:ba:27:d7: 3d:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:51:A1:51:63:4A:88:67:7C:2B:0F:BB:F0:74:1F:9A:2C:33:86:B4 X509v3 Authority Key Identifier: keyid:F2:D1:26:F1:42:08:6A:26:E3:C5:84:A7:0A:B3:E5:27:B3:03:81:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8tEm8UIIaibjxYSnCrPlJ7MDgYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:f7:5e:4c:6f:8b:c4:9b:0c:d2:48:eb:61:b9:f9:9c:12:24: 79:e2:a7:fd:56:54:78:50:bf:61:df:7d:f6:fc:5b:92:f8:b3: ef:79:3f:2b:33:4d:6a:97:46:72:c0:df:78:6a:3a:67:d2:eb: 47:62:50:5a:3e:6e:9f:e6:3c:b5:d7:54:29:52:e4:56:87:c2: 94:8f:a6:ed:f8:af:69:23:9c:61:80:9c:d3:23:92:74:ff:4b: de:93:7e:73:c9:bc:8e:6b:7f:a6:2d:8a:53:29:e4:91:4d:a5: c9:e1:16:51:a1:2a:6e:c3:92:42:47:ec:aa:e7:da:0d:3e:64: bc:1c:bf:37:38:ad:05:2d:95:4b:47:a6:0e:c9:8a:76:53:3f: a5:4d:b1:c2:7b:33:58:b5:8e:cd:ad:e3:d1:48:0e:60:99:7c: ac:9a:2a:2e:f5:bb:31:60:e2:c5:f9:0a:41:9c:08:ba:25:ef: 47:98:95:30:f0:71:56:fb:7c:f3:bd:a2:58:34:2a:1e:cb:39: 4f:c3:64:c4:0e:dc:f0:31:35:a2:f4:79:8d:61:fe:8c:b1:4a: ab:6b:5b:b8:0f:dd:02:d2:ca:44:cd:e1:3e:3b:b5:f7:b7:6c: b9:c1:b0:17:4e:68:91:b6:18:26:bf:4c:34:e7:1d:ea:13:b1: 8a:fe:1e:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBAkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTZEQjQxMTAvBgNVBAUTKEYyRDEyNkYxNDIwODZBMjZFM0M1ODRBNzBBQjNFNTI3 QjMwMzgxODIwHhcNMjUxMjIwMjM0MjE0WhcNMjUxMjI3MjM0MjE0WjAYMRYwFAYD VQQDDA02OTQ3MzQ1Ni00YmJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmb/1l1Ano/OVuXt0ch7eRYjM4uzek35WFvY0zPaZX8iORq1N2+wa+trieH8t cU5nx24bn1GaijNspX5KvWXeVttz10XWshhWWJkJzXM7Jq42ynwEypvy4O8/ydIK lHf1uYauy+zIhYTyJYzU0rNsnHFU6N1RzbIbofsR9k2us+QRxBM1+0DLWKNd4ncR ewgGS/IACSn+qgIWDcV58SrKPubYrLhRLxaRBlc1ImvREJxRWFYpHYQLDemLDHwo uXk2MR+wUVjpQn76Dtq70wmtK3d7ptVS0nbxPMCXj5U++hXPXjh0YFBVe6Iavi3N s0/7XDvs+dwa2NiSIlO6J9c9gwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPZRoVFj SohnfCsPu/B0H5osM4a0MB8GA1UdIwQYMBaAFPLRJvFCCGom48WEpwqz5SezA4GC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NkRCNC9FODREQjk4QTlE OUExMUVDQkE5MjhGNDVDNEY5QUUwMi84dEVtOFVJSWFpYmp4WVNuQ3JQbEo3TURn WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzh0RW04VUlJYWlianhZU25DclBsSjdNRGdZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NkRCNC9FODREQjk4QTlEOUExMUVDQkE5MjhGNDVDNEY5QUUwMi84dEVtOFVJSWFp Ymp4WVNuQ3JQbEo3TURnWUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC3915Mb4vEmwzSSOthufmcEiR54qf9VlR4UL9h3332/FuS+LPveT8r M01ql0ZywN94ajpn0utHYlBaPm6f5jy111QpUuRWh8KUj6bt+K9pI5xhgJzTI5J0 /0vek35zybyOa3+mLYpTKeSRTaXJ4RZRoSpuw5JCR+yq59oNPmS8HL83OK0FLZVL R6YOyYp2Uz+lTbHCezNYtY7NrePRSA5gmXysmiou9bsxYOLF+QpBnAi6Je9HmJUw 8HFW+3zzvaJYNCoeyzlPw2TEDtzwMTWi9HmNYf6MsUqra1u4D90C0spEzeE+O7X3 t2y5wbAXTmiRthgmv0w05x3qE7GK/h5P -----END CERTIFICATE-----Generated at Sun Dec 21 13:05:47 2025 by rpki-client