This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91709F5/3283E7D4DFDA11EF8B478624C4F9AE02/8SiVeSEX6QcDoAIPTzWYMdsvk3o.mft File: 8SiVeSEX6QcDoAIPTzWYMdsvk3o.mft (raw, json) Hash identifier: 7at3CraKm2ANVc3njv+Kq4YX3di1ShOPQt3grgAr0xo= Subject key identifier: A2:97:B9:54:00:53:22:D9:1B:7E:58:73:9C:51:2F:B6:06:7B:AA:D4 Authority key identifier: F1:28:95:79:21:17:E9:07:03:A0:02:0F:4F:35:98:31:DB:2F:93:7A Certificate issuer: /CN=A91709F5/serialNumber=F12895792117E90703A0020F4F359831DB2F937A Certificate serial: 9D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8SiVeSEX6QcDoAIPTzWYMdsvk3o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91709F5/3283E7D4DFDA11EF8B478624C4F9AE02/8SiVeSEX6QcDoAIPTzWYMdsvk3o.mft Manifest number: 9C Signing time: Wed 03 Dec 2025 04:39:35 +0000 Manifest this update: Wed 03 Dec 2025 04:39:34 +0000 Manifest next update: Wed 10 Dec 2025 04:39:34 +0000 Files and hashes: 1: 8SiVeSEX6QcDoAIPTzWYMdsvk3o.crl (hash: HuQMBx2oGteZWRmMneuCzU+hVJbI17FPBcZfCWORDn4=) 2: A42925E8DFDA11EFB5E94125C4F9AE02.roa (hash: mx4Ct5Tnd5YkFq5qkT60Yq1dgh6KZfYC5nrKRxnyy28=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91709F5/3283E7D4DFDA11EF8B478624C4F9AE02/8SiVeSEX6QcDoAIPTzWYMdsvk3o.crl rsync://rpki.apnic.net/member_repository/A91709F5/3283E7D4DFDA11EF8B478624C4F9AE02/8SiVeSEX6QcDoAIPTzWYMdsvk3o.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8SiVeSEX6QcDoAIPTzWYMdsvk3o.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 04:39:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 157 (0x9d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91709F5, serialNumber=F12895792117E90703A0020F4F359831DB2F937A Validity Not Before: Dec 3 04:39:34 2025 GMT Not After : Dec 10 04:39:34 2025 GMT Subject: CN=692fbf06-ccf3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:ad:8e:41:21:24:eb:a5:ec:95:63:32:5f:1e: 96:4c:0a:6a:f4:e6:0c:e9:3b:9b:ee:72:77:20:21: 43:50:20:bc:e7:64:cd:e8:71:d0:25:a6:c0:51:4e: 38:ed:0f:38:e7:e6:7e:5e:3a:f9:42:ac:03:28:63: 8c:d5:ca:7a:12:6e:e1:9a:af:75:75:d0:7e:48:d8: 8a:ad:76:02:bb:17:97:d7:a7:8a:78:d8:80:85:75: b5:a8:2d:ee:46:b4:91:9d:9b:b3:6c:02:6a:96:f5: cc:a2:c1:96:a0:1d:1f:58:dc:10:91:84:bc:55:95: a8:db:94:62:b8:c7:d9:b4:37:60:d6:90:90:f0:b9: 48:66:a0:6b:0b:20:5f:8b:10:79:f2:e8:db:f5:84: 4c:51:b7:09:05:b2:13:f2:4a:86:4b:ba:d8:05:dd: b4:c0:5c:96:33:a6:f6:52:74:e5:78:93:80:c8:08: ea:29:a6:9d:c5:92:67:95:1c:fb:46:df:ec:4a:97: 0d:05:4d:80:10:7b:f5:29:ec:70:eb:9b:e3:22:39: 8c:c6:32:02:10:63:50:f8:ce:ce:a6:2c:d1:1a:5c: 40:8b:12:94:27:a4:34:ed:47:e4:36:31:59:a1:df: 2b:62:1a:b0:67:14:70:67:3d:7d:fc:8e:d2:7b:e2: e2:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:97:B9:54:00:53:22:D9:1B:7E:58:73:9C:51:2F:B6:06:7B:AA:D4 X509v3 Authority Key Identifier: keyid:F1:28:95:79:21:17:E9:07:03:A0:02:0F:4F:35:98:31:DB:2F:93:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91709F5/3283E7D4DFDA11EF8B478624C4F9AE02/8SiVeSEX6QcDoAIPTzWYMdsvk3o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8SiVeSEX6QcDoAIPTzWYMdsvk3o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91709F5/3283E7D4DFDA11EF8B478624C4F9AE02/8SiVeSEX6QcDoAIPTzWYMdsvk3o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:c2:2c:77:ec:10:7b:e3:d8:d0:79:92:64:41:f5:e4:9f:6b: a0:38:88:d6:d9:09:ae:a1:0a:31:d0:56:2e:52:cc:d5:88:dc: dd:ca:b2:5c:42:cf:b1:4a:b7:e2:47:3f:3d:29:49:2b:02:41: 5e:30:e1:f3:42:90:c0:63:78:40:15:42:2d:15:2b:d5:93:7a: ed:8e:ef:be:35:53:50:7f:f8:f8:71:51:25:b6:0c:b8:62:dc: e5:be:5b:82:45:64:82:d9:43:94:e6:0e:09:6d:cf:d8:33:c7: 5f:b0:5a:04:c4:2f:e7:89:fa:e2:df:da:61:0a:1a:cf:52:2b: cf:4a:14:7c:08:51:97:02:15:a2:87:61:c8:f5:13:c1:d4:63: 3a:e5:28:ed:70:63:cc:03:50:bc:c2:1a:cc:c3:40:46:e3:de: 08:70:3b:d0:65:91:75:0e:64:60:8b:cd:68:e8:74:8a:a1:33: 73:48:b9:32:66:5e:b8:13:93:c4:d2:cb:1b:ed:1f:4b:35:e9: 14:be:47:3c:d7:6a:9b:5a:68:e2:48:6f:2b:df:2c:af:35:0b: 5c:a4:17:1a:37:cb:7f:b7:75:26:7b:e8:2e:3b:9c:f1:29:09: 0b:2d:32:c2:12:a5:5c:e5:c7:1d:f4:e9:fa:3b:fc:eb:34:75: b9:b7:79:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA5RjUxMTAvBgNVBAUTKEYxMjg5NTc5MjExN0U5MDcwM0EwMDIwRjRGMzU5ODMx REIyRjkzN0EwHhcNMjUxMjAzMDQzOTM0WhcNMjUxMjEwMDQzOTM0WjAYMRYwFAYD VQQDEw02OTJmYmYwNi1jY2YzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqa2OQSEk66XslWMyXx6WTApq9OYM6Tub7nJ3ICFDUCC852TN6HHQJabAUU44 7Q845+Z+Xjr5QqwDKGOM1cp6Em7hmq91ddB+SNiKrXYCuxeX16eKeNiAhXW1qC3u RrSRnZuzbAJqlvXMosGWoB0fWNwQkYS8VZWo25RiuMfZtDdg1pCQ8LlIZqBrCyBf ixB58ujb9YRMUbcJBbIT8kqGS7rYBd20wFyWM6b2UnTleJOAyAjqKaadxZJnlRz7 Rt/sSpcNBU2AEHv1Kexw65vjIjmMxjICEGNQ+M7OpizRGlxAixKUJ6Q07UfkNjFZ od8rYhqwZxRwZz19/I7Se+LiMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKKXuVQA UyLZG35Yc5xRL7YGe6rUMB8GA1UdIwQYMBaAFPEolXkhF+kHA6ACD081mDHbL5N6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDlGNS8zMjgzRTdENERG REExMUVGOEI0Nzg2MjRDNEY5QUUwMi84U2lWZVNFWDZRY0RvQUlQVHpXWU1kc3Zr M28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzhTaVZlU0VYNlFjRG9BSVBUeldZTWRzdmszby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDlGNS8zMjgzRTdENERGREExMUVGOEI0Nzg2MjRDNEY5QUUwMi84U2lWZVNFWDZR Y0RvQUlQVHpXWU1kc3ZrM28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCqwix37BB749jQeZJkQfXkn2ugOIjW2QmuoQox0FYuUszViNzdyrJc Qs+xSrfiRz89KUkrAkFeMOHzQpDAY3hAFUItFSvVk3rtju++NVNQf/j4cVEltgy4 YtzlvluCRWSC2UOU5g4Jbc/YM8dfsFoExC/nifri39phChrPUivPShR8CFGXAhWi h2HI9RPB1GM65SjtcGPMA1C8whrMw0BG494IcDvQZZF1DmRgi81o6HSKoTNzSLky Zl64E5PE0ssb7R9LNekUvkc812qbWmjiSG8r3yyvNQtcpBcaN8t/t3Ume+guO5zx KQkLLTLCEqVc5ccd9On6O/zrNHW5t3mS -----END CERTIFICATE-----Generated at Wed Dec 3 14:14:35 2025 by rpki-client