This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.mft File: b8Lt8MURUqO-wRSaG9su2yk8nZU.mft (raw, json) Hash identifier: Ux/jx8eScILrcqKi818yj83g2R093PZIG+PXk7h8ePk= Subject key identifier: FB:24:64:26:9E:2D:32:31:D4:11:E9:3F:AF:43:C7:2F:04:E2:D8:84 Authority key identifier: 6F:C2:ED:F0:C5:11:52:A3:BE:C1:14:9A:1B:DB:2E:DB:29:3C:9D:95 Certificate issuer: /CN=A91AA28B/serialNumber=6FC2EDF0C51152A3BEC1149A1BDB2EDB293C9D95 Certificate serial: 0DC4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b8Lt8MURUqO-wRSaG9su2yk8nZU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.mft Manifest number: 0D99 Signing time: Thu 18 Dec 2025 17:44:51 +0000 Manifest this update: Thu 18 Dec 2025 17:44:51 +0000 Manifest next update: Thu 25 Dec 2025 17:44:51 +0000 Files and hashes: 1: b8Lt8MURUqO-wRSaG9su2yk8nZU.crl (hash: /spJFMqNdub8UMpwTh58DEAHxVe9cuuiVxQx9JhYi08=) 2: 4DD0C31C0E2011F0A0825648C4F9AE02.roa (hash: 8r7MWVk5x8o1qlWsJdhw0htq1GLcuT7GZDff98YKUWg=) 3: 11815E36135311EE94A8A114C4F9AE02.roa (hash: 4RiRLEUaqFnMyzAxg+jhTtVSLZnRrw+D1OLV5ZjDtiE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.crl rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b8Lt8MURUqO-wRSaG9su2yk8nZU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 17:44:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3524 (0xdc4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA28B, serialNumber=6FC2EDF0C51152A3BEC1149A1BDB2EDB293C9D95 Validity Not Before: Dec 18 17:44:51 2025 GMT Not After : Dec 25 17:44:51 2025 GMT Subject: CN=69443d93-9c95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:6b:d8:0d:7e:2b:7a:49:11:83:a2:1a:43:2d: de:71:1a:c6:53:ad:73:9a:45:25:9a:c6:c5:97:78: ab:1e:e6:6c:44:97:31:d0:40:60:6e:4a:c1:73:b6: 0d:14:70:88:14:74:bb:6c:3a:11:da:28:1e:9d:fd: 0d:f3:ce:85:8a:92:be:a3:29:43:34:bc:11:0c:e9: 94:64:99:d7:3a:59:e0:95:68:d1:dc:71:1a:8d:7c: 8e:69:c5:1d:3c:63:52:a0:c2:b9:95:ac:f1:9e:e8: 04:d3:2f:0d:06:30:d1:1f:91:74:23:30:56:59:23: 53:87:bc:dd:8c:33:1e:15:f1:b2:46:94:29:9d:99: b5:1a:4b:99:c7:28:ed:1f:46:47:61:59:6f:ad:1e: 55:0f:c7:dd:c1:0f:00:bb:f3:b0:d3:e3:b6:bd:4f: 71:4e:0b:5e:b2:3b:4c:ba:63:0d:56:76:a6:53:e4: 02:e1:3c:1b:86:0b:ea:2a:40:d1:70:49:4b:24:6c: dc:58:d5:78:34:a1:3b:b6:34:a2:38:ae:b4:89:8b: cd:d5:2a:ce:ab:ae:d6:a1:dd:78:a2:48:1e:0d:ce: 0f:90:41:b1:43:de:49:95:f4:a2:bd:c7:4d:d0:f0: 34:55:18:f6:90:51:8b:f4:87:00:0b:c1:09:d5:15: 0b:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:24:64:26:9E:2D:32:31:D4:11:E9:3F:AF:43:C7:2F:04:E2:D8:84 X509v3 Authority Key Identifier: keyid:6F:C2:ED:F0:C5:11:52:A3:BE:C1:14:9A:1B:DB:2E:DB:29:3C:9D:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b8Lt8MURUqO-wRSaG9su2yk8nZU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:ad:bd:8d:8d:79:29:71:14:68:bc:b7:b7:de:89:b7:b3:c1: f8:da:45:11:8b:b1:b9:7c:5c:98:b7:7e:00:c1:bf:e7:61:22: 14:e9:57:d1:41:a9:57:73:f0:1c:d4:ac:0d:91:28:08:3c:ad: 18:d9:48:93:61:33:65:8d:ed:49:e3:65:6a:37:b7:5d:d7:b6: d3:28:6a:3a:01:c8:3c:e6:ca:50:a4:e0:06:00:21:48:38:ad: a9:6e:d0:23:ce:98:0a:9a:9d:71:0f:ce:db:ad:65:b5:c5:10: 5e:78:db:16:07:d3:80:6d:dc:9f:34:c1:a7:38:4b:5a:9a:2b: 49:79:8c:5f:8a:d7:03:e3:a5:02:a1:fd:4e:1a:8c:63:e2:a9: 44:50:b6:3c:8b:e3:bc:ef:21:0a:f4:59:0b:98:6e:de:14:00: a7:50:5c:00:f5:31:4d:fa:a4:21:a7:31:dd:22:9a:80:5f:64: 05:15:37:84:4c:be:21:2d:fb:93:62:77:43:33:8b:d0:eb:dd: e8:c4:43:56:f8:83:89:b3:f4:e0:6c:a7:cb:ef:da:27:23:fc: 12:be:87:8f:a9:e3:65:ed:4b:1e:8b:7e:78:7d:21:84:8c:d7: 94:46:5f:9a:4e:d3:dc:3c:07:ad:86:1f:60:b4:65:24:fb:60: 21:e8:df:4c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDcQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUEyOEIxMTAvBgNVBAUTKDZGQzJFREYwQzUxMTUyQTNCRUMxMTQ5QTFCREIyRURC MjkzQzlEOTUwHhcNMjUxMjE4MTc0NDUxWhcNMjUxMjI1MTc0NDUxWjAYMRYwFAYD VQQDDA02OTQ0M2Q5My05Yzk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvWvYDX4rekkRg6IaQy3ecRrGU61zmkUlmsbFl3irHuZsRJcx0EBgbkrBc7YN FHCIFHS7bDoR2igenf0N886FipK+oylDNLwRDOmUZJnXOlnglWjR3HEajXyOacUd PGNSoMK5lazxnugE0y8NBjDRH5F0IzBWWSNTh7zdjDMeFfGyRpQpnZm1GkuZxyjt H0ZHYVlvrR5VD8fdwQ8Au/Ow0+O2vU9xTgtesjtMumMNVnamU+QC4TwbhgvqKkDR cElLJGzcWNV4NKE7tjSiOK60iYvN1SrOq67Wod14okgeDc4PkEGxQ95JlfSivcdN 0PA0VRj2kFGL9IcAC8EJ1RULlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPskZCae LTIx1BHpP69Dxy8E4tiEMB8GA1UdIwQYMBaAFG/C7fDFEVKjvsEUmhvbLtspPJ2V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQTI4Qi8xRTAyNjRBQURC QzgxMUU5QkVBOTEwNTFDNEY5QUUwMi9iOEx0OE1VUlVxTy13UlNhRzlzdTJ5azhu WlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I4THQ4TVVSVXFPLXdSU2FHOXN1MnlrOG5aVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QTI4Qi8xRTAyNjRBQURCQzgxMUU5QkVBOTEwNTFDNEY5QUUwMi9iOEx0OE1VUlVx Ty13UlNhRzlzdTJ5azhuWlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBprb2NjXkpcRRovLe33om3s8H42kURi7G5fFyYt34Awb/nYSIU6VfR QalXc/Ac1KwNkSgIPK0Y2UiTYTNlje1J42VqN7dd17bTKGo6Acg85spQpOAGACFI OK2pbtAjzpgKmp1xD87brWW1xRBeeNsWB9OAbdyfNMGnOEtamitJeYxfitcD46UC of1OGoxj4qlEULY8i+O87yEK9FkLmG7eFACnUFwA9TFN+qQhpzHdIpqAX2QFFTeE TL4hLfuTYndDM4vQ693oxENW+IOJs/TgbKfL79onI/wSvoePqeNl7Usei354fSGE jNeURl+aTtPcPAethh9gtGUk+2Ah6N9M -----END CERTIFICATE-----Generated at Fri Dec 19 17:27:26 2025 by rpki-client