This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91955D9/CD54D738A28511EFB66B1811C4F9AE02/8mqBAZFpUvsgvgHo_HyQ7cnun3g.mft File: 8mqBAZFpUvsgvgHo_HyQ7cnun3g.mft (raw, json) Hash identifier: Of4OzUC9UkLfo90vJc5G93v3z+rXzLbL9jj2Sg6wfWg= Subject key identifier: 2F:CC:BE:E5:D0:57:0C:0C:7A:B5:D5:D3:38:25:B0:9D:8A:1B:4D:43 Authority key identifier: F2:6A:81:01:91:69:52:FB:20:BE:01:E8:FC:7C:90:ED:C9:EE:9F:78 Certificate issuer: /CN=A91955D9/serialNumber=F26A8101916952FB20BE01E8FC7C90EDC9EE9F78 Certificate serial: CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8mqBAZFpUvsgvgHo_HyQ7cnun3g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91955D9/CD54D738A28511EFB66B1811C4F9AE02/8mqBAZFpUvsgvgHo_HyQ7cnun3g.mft Manifest number: CE Signing time: Tue 23 Dec 2025 04:42:27 +0000 Manifest this update: Tue 23 Dec 2025 04:42:27 +0000 Manifest next update: Tue 30 Dec 2025 04:42:27 +0000 Files and hashes: 1: 8mqBAZFpUvsgvgHo_HyQ7cnun3g.crl (hash: 9jhJoO187l3qV0FieAAM5OlDu2Je1F8PLpSY02YpMfo=) 2: 0D041790A28611EFBD5A8C11C4F9AE02.roa (hash: 97I65+Q066TDiRkq5FVajUp8ATxWSUAGmGMHS8ACfSY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91955D9/CD54D738A28511EFB66B1811C4F9AE02/8mqBAZFpUvsgvgHo_HyQ7cnun3g.crl rsync://rpki.apnic.net/member_repository/A91955D9/CD54D738A28511EFB66B1811C4F9AE02/8mqBAZFpUvsgvgHo_HyQ7cnun3g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8mqBAZFpUvsgvgHo_HyQ7cnun3g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 04:42:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 207 (0xcf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91955D9, serialNumber=F26A8101916952FB20BE01E8FC7C90EDC9EE9F78 Validity Not Before: Dec 23 04:42:27 2025 GMT Not After : Dec 30 04:42:27 2025 GMT Subject: CN=694a1db3-d5b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:60:cc:7d:51:e5:b0:5e:d1:c3:69:df:2d:45: 3f:de:63:75:2f:ef:96:53:b3:a4:af:d2:49:8d:61: 67:cf:24:1a:5b:76:88:4a:3f:63:19:53:16:cc:a2: 94:5c:31:3e:d7:96:b9:03:a6:78:2e:b0:d2:86:9e: e3:ba:90:35:bd:fc:c1:90:c8:e0:8d:b9:e9:e1:d9: 08:99:b7:ab:4c:64:ce:57:72:9d:d7:68:19:da:05: 45:6e:42:37:66:48:bd:aa:9e:34:e0:9d:c9:2d:b9: 92:e8:29:7b:d6:cc:38:34:87:48:9c:b8:4a:d7:f4: 74:05:b0:36:18:7f:40:0e:3f:2b:83:2f:20:36:73: 99:86:94:71:5d:1a:14:79:1b:5a:f3:5e:17:11:fc: c6:33:11:12:40:88:7b:87:1d:15:82:b2:91:f8:fd: a1:39:d6:da:b5:89:dd:5f:c0:cb:50:4f:d5:62:a1: 1a:9b:cd:90:16:b7:15:29:98:0f:d3:12:3c:87:bb: 1c:e5:f8:93:87:8c:3d:4a:dc:3d:0c:ac:fb:6f:65: d5:53:06:26:eb:63:87:19:8f:c4:0a:9a:e7:02:95: 02:03:3a:36:ef:29:92:c7:76:89:90:4f:4c:b5:02: a0:62:b9:39:e6:46:f2:90:39:ec:42:4e:ef:da:6d: 8a:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:CC:BE:E5:D0:57:0C:0C:7A:B5:D5:D3:38:25:B0:9D:8A:1B:4D:43 X509v3 Authority Key Identifier: keyid:F2:6A:81:01:91:69:52:FB:20:BE:01:E8:FC:7C:90:ED:C9:EE:9F:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91955D9/CD54D738A28511EFB66B1811C4F9AE02/8mqBAZFpUvsgvgHo_HyQ7cnun3g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8mqBAZFpUvsgvgHo_HyQ7cnun3g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91955D9/CD54D738A28511EFB66B1811C4F9AE02/8mqBAZFpUvsgvgHo_HyQ7cnun3g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:3b:6a:df:3a:56:c5:24:23:d7:eb:64:11:e9:1d:f1:2d:93: 4b:2d:25:82:f1:da:f5:cc:d2:6f:06:ac:38:a5:9b:a3:75:16: eb:e5:d0:48:3e:af:f6:1d:a6:7a:d7:99:74:7d:0a:ed:ee:0a: 54:bd:58:c5:57:20:fa:cf:5d:ad:8c:32:ed:72:2a:17:86:b6: 42:13:26:3d:18:43:9f:7c:0b:97:58:d0:b7:d6:c8:06:c8:13: 05:00:08:6c:97:84:c3:ff:65:16:2b:10:17:dc:3d:e9:58:a2: 13:6e:2d:f3:a9:6c:77:ef:6b:0f:ff:3a:be:7a:d5:9c:64:37: bb:3b:02:43:3c:ef:78:cc:87:c9:00:ad:7d:52:a8:73:bf:99: 7b:75:ce:a1:d5:3b:91:91:af:94:1b:25:58:ed:64:73:5c:c3: d3:bf:3a:30:b7:d4:10:b1:23:cc:49:bd:35:c8:1c:82:f3:ab: 6a:70:91:97:da:a8:36:a6:86:3e:2b:19:93:5a:d6:3e:35:d4: 54:56:2b:9e:1a:b6:b3:5d:bf:d3:7d:e6:ec:12:3a:83:d3:11: 13:9a:f4:d4:0b:39:75:18:ec:ce:8b:3e:d7:c3:bb:58:70:34: 22:da:18:7e:74:9a:93:62:1e:89:7d:57:8c:75:65:d6:98:49: b8:cc:96:d3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAM8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTU1RDkxMTAvBgNVBAUTKEYyNkE4MTAxOTE2OTUyRkIyMEJFMDFFOEZDN0M5MEVE QzlFRTlGNzgwHhcNMjUxMjIzMDQ0MjI3WhcNMjUxMjMwMDQ0MjI3WjAYMRYwFAYD VQQDDA02OTRhMWRiMy1kNWI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3GDMfVHlsF7Rw2nfLUU/3mN1L++WU7Okr9JJjWFnzyQaW3aISj9jGVMWzKKU XDE+15a5A6Z4LrDShp7jupA1vfzBkMjgjbnp4dkImberTGTOV3Kd12gZ2gVFbkI3 Zki9qp404J3JLbmS6Cl71sw4NIdInLhK1/R0BbA2GH9ADj8rgy8gNnOZhpRxXRoU eRta814XEfzGMxESQIh7hx0VgrKR+P2hOdbatYndX8DLUE/VYqEam82QFrcVKZgP 0xI8h7sc5fiTh4w9Stw9DKz7b2XVUwYm62OHGY/ECprnApUCAzo27ymSx3aJkE9M tQKgYrk55kbykDnsQk7v2m2K3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC/MvuXQ VwwMerXV0zglsJ2KG01DMB8GA1UdIwQYMBaAFPJqgQGRaVL7IL4B6Px8kO3J7p94 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTVEOS9DRDU0RDczOEEy ODUxMUVGQjY2QjE4MTFDNEY5QUUwMi84bXFCQVpGcFV2c2d2Z0hvX0h5UTdjbnVu M2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhtcUJBWkZwVXZzZ3ZnSG9fSHlRN2NudW4zZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NTVEOS9DRDU0RDczOEEyODUxMUVGQjY2QjE4MTFDNEY5QUUwMi84bXFCQVpGcFV2 c2d2Z0hvX0h5UTdjbnVuM2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJO2rfOlbFJCPX62QR6R3xLZNLLSWC8dr1zNJvBqw4pZujdRbr5dBI Pq/2HaZ615l0fQrt7gpUvVjFVyD6z12tjDLtcioXhrZCEyY9GEOffAuXWNC31sgG yBMFAAhsl4TD/2UWKxAX3D3pWKITbi3zqWx372sP/zq+etWcZDe7OwJDPO94zIfJ AK19Uqhzv5l7dc6h1TuRka+UGyVY7WRzXMPTvzowt9QQsSPMSb01yByC86tqcJGX 2qg2poY+KxmTWtY+NdRUViueGrazXb/TfebsEjqD0xETmvTUCzl1GOzOiz7Xw7tY cDQi2hh+dJqTYh6JfVeMdWXWmEm4zJbT -----END CERTIFICATE-----Generated at Wed Dec 24 14:14:23 2025 by rpki-client