This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1234/B0FF30FED02511ECA012553FC4F9AE02/08Yi55Dx3vFpKLvlVBgXJ8-MiPg.mft File: 08Yi55Dx3vFpKLvlVBgXJ8-MiPg.mft (raw, json) Hash identifier: dc2p3+mV0wToM4OrIfnpvDiJGx9QggwwhiDhas0Exh4= Subject key identifier: 16:D3:C9:68:5F:75:F0:87:B7:6F:6D:FD:6D:BD:B5:07:04:8B:4A:7F Authority key identifier: D3:C6:22:E7:90:F1:DE:F1:69:28:BB:E5:54:18:17:27:CF:8C:88:F8 Certificate issuer: /CN=A91D1234/serialNumber=D3C622E790F1DEF16928BBE554181727CF8C88F8 Certificate serial: 0380 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/08Yi55Dx3vFpKLvlVBgXJ8-MiPg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1234/B0FF30FED02511ECA012553FC4F9AE02/08Yi55Dx3vFpKLvlVBgXJ8-MiPg.mft Manifest number: 037C Signing time: Mon 22 Dec 2025 23:52:01 +0000 Manifest this update: Mon 22 Dec 2025 23:52:01 +0000 Manifest next update: Mon 29 Dec 2025 23:52:01 +0000 Files and hashes: 1: 08Yi55Dx3vFpKLvlVBgXJ8-MiPg.crl (hash: epZjmYcEJWBkWGNC9tEk3eG0VlWIajRvtcFFouyQy+E=) 2: 84A0C6B4D02811ECB2472344C4F9AE02.roa (hash: 2T9vsc4C1WKjq9QaM+1XQHhjEU7ftzmE6rg4euSNxbQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1234/B0FF30FED02511ECA012553FC4F9AE02/08Yi55Dx3vFpKLvlVBgXJ8-MiPg.crl rsync://rpki.apnic.net/member_repository/A91D1234/B0FF30FED02511ECA012553FC4F9AE02/08Yi55Dx3vFpKLvlVBgXJ8-MiPg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/08Yi55Dx3vFpKLvlVBgXJ8-MiPg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 23:52:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 896 (0x380) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1234, serialNumber=D3C622E790F1DEF16928BBE554181727CF8C88F8 Validity Not Before: Dec 22 23:52:01 2025 GMT Not After : Dec 29 23:52:01 2025 GMT Subject: CN=6949d9a1-ea32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:16:ad:76:ef:cc:5b:c9:06:e6:4c:fd:4c:2e: ab:37:fb:f4:02:bc:9b:d5:46:08:ee:84:a5:e6:a3: 2b:8b:18:ff:8f:cd:06:ed:fd:b1:c9:a6:e6:06:fc: 42:5b:37:11:f1:93:3e:1b:68:ed:5b:28:d3:58:3e: b4:38:26:86:ee:7b:a9:12:fa:98:bd:09:65:0b:72: 17:ab:f1:5f:c8:ca:c0:a8:c1:da:d3:ae:7c:2d:0e: d4:27:a6:46:f4:ae:05:e2:ea:bd:06:5b:35:f3:43: 27:cf:3a:3d:bf:0b:fa:35:6d:de:e2:9a:fe:9e:ce: 76:53:0f:22:f0:e7:92:63:cb:c2:04:b3:0e:a4:7f: 53:b1:da:84:85:f2:4c:63:a4:f7:aa:c0:2d:63:ec: 86:63:1d:f8:1d:42:33:ce:3a:0e:c8:56:32:bc:06: 77:c1:87:72:0c:9e:e0:d8:b2:aa:ff:9c:1b:17:87: ca:09:93:ab:b9:1b:69:e9:63:a5:be:87:cc:9d:e3: 22:e8:c0:eb:a9:81:47:b8:64:90:64:d1:33:79:b9: f9:6c:5a:50:c3:a2:ac:bd:23:93:3c:83:ca:a5:67: eb:31:c8:b6:53:6d:e1:8a:06:c3:56:7f:ec:87:ae: 6c:65:e9:9a:1c:6f:eb:f7:00:01:95:f3:f8:ef:ff: 3c:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:D3:C9:68:5F:75:F0:87:B7:6F:6D:FD:6D:BD:B5:07:04:8B:4A:7F X509v3 Authority Key Identifier: keyid:D3:C6:22:E7:90:F1:DE:F1:69:28:BB:E5:54:18:17:27:CF:8C:88:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1234/B0FF30FED02511ECA012553FC4F9AE02/08Yi55Dx3vFpKLvlVBgXJ8-MiPg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/08Yi55Dx3vFpKLvlVBgXJ8-MiPg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1234/B0FF30FED02511ECA012553FC4F9AE02/08Yi55Dx3vFpKLvlVBgXJ8-MiPg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:42:47:03:0e:55:f9:5d:80:f2:2e:07:d8:ea:39:27:1e:e1: 75:eb:da:cd:df:f3:ff:73:5d:04:7f:e9:f1:d6:aa:bb:32:fa: b8:bf:48:4f:e6:98:17:20:a4:c3:cf:71:50:47:42:a2:6f:91: fd:6c:a7:e0:b8:27:cd:ee:58:30:be:55:96:91:3e:a7:7e:a5: fe:30:a1:d9:20:14:90:ac:de:44:4e:6a:a1:39:93:8b:66:2a: 57:32:aa:21:9a:23:c9:82:97:e4:db:da:15:3d:45:ff:d9:b6: 6b:fe:1d:05:50:40:3f:33:80:3f:18:6a:fd:bc:cd:08:c5:c1: ff:e6:29:b1:20:4f:c0:50:0d:59:8a:59:1f:c8:75:f4:33:ee: 57:81:f4:59:ba:d2:80:b1:fd:e9:1f:d1:ce:54:98:3a:70:c2: 56:68:0f:3c:b6:6d:1b:75:65:35:96:69:93:c3:d2:3d:c5:36: c3:03:fe:bd:80:3c:ab:f9:38:15:1f:51:52:4d:27:82:12:18: 4a:fb:45:0d:32:4c:a8:d1:97:76:4b:27:3e:9a:8d:76:13:3d: 17:d9:00:31:82:b8:ac:6a:eb:f1:05:ef:85:2c:ce:40:32:f1: b0:e5:e2:2c:bd:36:82:9e:cf:6c:3a:a5:83:d2:c5:fe:08:96: b8:f3:1c:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA4AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDEyMzQxMTAvBgNVBAUTKEQzQzYyMkU3OTBGMURFRjE2OTI4QkJFNTU0MTgxNzI3 Q0Y4Qzg4RjgwHhcNMjUxMjIyMjM1MjAxWhcNMjUxMjI5MjM1MjAxWjAYMRYwFAYD VQQDDA02OTQ5ZDlhMS1lYTMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArhatdu/MW8kG5kz9TC6rN/v0Aryb1UYI7oSl5qMrixj/j80G7f2xyabmBvxC WzcR8ZM+G2jtWyjTWD60OCaG7nupEvqYvQllC3IXq/FfyMrAqMHa0658LQ7UJ6ZG 9K4F4uq9Bls180Mnzzo9vwv6NW3e4pr+ns52Uw8i8OeSY8vCBLMOpH9TsdqEhfJM Y6T3qsAtY+yGYx34HUIzzjoOyFYyvAZ3wYdyDJ7g2LKq/5wbF4fKCZOruRtp6WOl vofMneMi6MDrqYFHuGSQZNEzebn5bFpQw6KsvSOTPIPKpWfrMci2U23higbDVn/s h65sZemaHG/r9wABlfP47/88aQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBbTyWhf dfCHt29t/W29tQcEi0p/MB8GA1UdIwQYMBaAFNPGIueQ8d7xaSi75VQYFyfPjIj4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTIzNC9CMEZGMzBGRUQw MjUxMUVDQTAxMjU1M0ZDNEY5QUUwMi8wOFlpNTVEeDN2RnBLTHZsVkJnWEo4LU1p UGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA4WWk1NUR4M3ZGcEtMdmxWQmdYSjgtTWlQZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTIzNC9CMEZGMzBGRUQwMjUxMUVDQTAxMjU1M0ZDNEY5QUUwMi8wOFlpNTVEeDN2 RnBLTHZsVkJnWEo4LU1pUGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3QkcDDlX5XYDyLgfY6jknHuF169rN3/P/c10Ef+nx1qq7Mvq4v0hP 5pgXIKTDz3FQR0Kib5H9bKfguCfN7lgwvlWWkT6nfqX+MKHZIBSQrN5ETmqhOZOL ZipXMqohmiPJgpfk29oVPUX/2bZr/h0FUEA/M4A/GGr9vM0IxcH/5imxIE/AUA1Z ilkfyHX0M+5XgfRZutKAsf3pH9HOVJg6cMJWaA88tm0bdWU1lmmTw9I9xTbDA/69 gDyr+TgVH1FSTSeCEhhK+0UNMkyo0Zd2Syc+mo12Ez0X2QAxgrisauvxBe+FLM5A MvGw5eIsvTaCns9sOqWD0sX+CJa48xxj -----END CERTIFICATE-----Generated at Wed Dec 24 14:09:21 2025 by rpki-client