This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D671F/1EDC10BC171E11E8856BC443C4F9AE02/s8j34GTam1qm6nlgF-xg0okDeCo.mft File: s8j34GTam1qm6nlgF-xg0okDeCo.mft (raw, json) Hash identifier: T0remhV6h6jafXUJtJ5GNgmp51FQ3KiEJSWt5gfTi7c= Subject key identifier: EF:D5:84:73:6B:C8:0A:BB:BD:A5:D5:5B:BE:B3:AA:C8:2C:80:3E:79 Authority key identifier: B3:C8:F7:E0:64:DA:9B:5A:A6:EA:79:60:17:EC:60:D2:89:03:78:2A Certificate issuer: /CN=A91D671F/serialNumber=B3C8F7E064DA9B5AA6EA796017EC60D28903782A Certificate serial: 1689 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s8j34GTam1qm6nlgF-xg0okDeCo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D671F/1EDC10BC171E11E8856BC443C4F9AE02/s8j34GTam1qm6nlgF-xg0okDeCo.mft Manifest number: 1674 Signing time: Thu 18 Dec 2025 16:35:07 +0000 Manifest this update: Thu 18 Dec 2025 16:35:07 +0000 Manifest next update: Thu 25 Dec 2025 16:35:07 +0000 Files and hashes: 1: s8j34GTam1qm6nlgF-xg0okDeCo.crl (hash: Z1rJoGexzULJDXCBq/TWbNpGPi2uTNkajBX/Ms5Dw3Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D671F/1EDC10BC171E11E8856BC443C4F9AE02/s8j34GTam1qm6nlgF-xg0okDeCo.crl rsync://rpki.apnic.net/member_repository/A91D671F/1EDC10BC171E11E8856BC443C4F9AE02/s8j34GTam1qm6nlgF-xg0okDeCo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s8j34GTam1qm6nlgF-xg0okDeCo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 16:35:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5769 (0x1689) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D671F, serialNumber=B3C8F7E064DA9B5AA6EA796017EC60D28903782A Validity Not Before: Dec 18 16:35:07 2025 GMT Not After : Dec 25 16:35:07 2025 GMT Subject: CN=69442d3b-ce79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:87:2b:0d:2b:f8:39:ba:b6:5b:c9:e6:3a:11: 90:54:6d:c8:44:09:30:fc:ec:51:e6:c6:2e:00:aa: cf:78:d0:3c:5d:f9:2b:96:15:38:47:33:7b:12:b4: 0b:73:0c:14:4a:a0:d6:a6:db:8b:f5:a4:0a:66:99: 65:19:40:46:2b:4f:b5:07:f0:96:ca:ae:cd:fe:e9: 01:3a:e2:c8:6d:0c:84:f3:5e:07:76:26:e5:17:6f: f1:eb:1c:9f:a8:30:f5:c7:de:4b:df:fd:1c:b3:53: 70:7e:f1:65:51:fe:ff:ca:c5:6e:ff:18:0d:7d:9b: 12:59:6a:b5:a2:fa:b3:8d:f9:dc:7f:25:09:5b:57: 62:42:a1:f6:57:b1:38:b9:37:95:53:27:e9:94:4c: d6:a8:84:92:99:29:59:4e:3a:45:49:5b:d8:34:53: 19:48:17:5c:bd:a4:64:43:b7:d2:6f:67:39:7e:ce: 41:53:83:b1:65:5a:eb:d1:5f:ba:4f:38:4d:64:d7: ca:9e:34:e9:0e:88:e0:98:67:98:06:84:9f:19:cc: c0:8c:b0:09:ef:77:32:e7:b5:77:f0:d5:ba:04:d4: 89:b9:b5:81:ce:84:2c:6a:73:b9:8b:70:3a:71:41: 0e:77:d0:20:d0:15:cf:d2:95:4f:69:ab:26:5a:32: 7a:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:D5:84:73:6B:C8:0A:BB:BD:A5:D5:5B:BE:B3:AA:C8:2C:80:3E:79 X509v3 Authority Key Identifier: keyid:B3:C8:F7:E0:64:DA:9B:5A:A6:EA:79:60:17:EC:60:D2:89:03:78:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D671F/1EDC10BC171E11E8856BC443C4F9AE02/s8j34GTam1qm6nlgF-xg0okDeCo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s8j34GTam1qm6nlgF-xg0okDeCo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D671F/1EDC10BC171E11E8856BC443C4F9AE02/s8j34GTam1qm6nlgF-xg0okDeCo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:64:b8:e9:94:56:6c:21:16:81:e0:6b:59:60:34:a0:e6:02: c3:49:64:03:bd:5f:a4:3a:2d:59:47:60:21:d9:fa:38:82:67: ce:cb:c0:fb:5f:35:59:9d:a9:93:6c:73:03:3f:33:89:b7:43: 54:24:75:94:42:ca:d8:64:a8:42:e7:e7:ee:5a:66:42:12:a7: ae:a4:ac:3d:8b:69:63:05:ee:95:66:f2:c1:1f:29:4b:83:4f: 24:e8:b7:b8:cf:24:a6:b2:1e:21:46:de:f2:ce:e5:60:8d:02: 46:75:e2:6b:d8:85:7b:31:c0:3d:07:01:88:9c:18:1b:2c:9a: 24:87:46:0e:d0:10:a2:d2:64:a0:13:f2:61:b0:3d:88:83:b0: f9:b4:9c:4b:d8:d7:97:8a:74:4b:f3:33:6b:86:7a:97:8f:04: 6a:2d:c9:c8:d8:95:39:47:34:65:49:29:f4:18:3c:d1:c3:85: 19:16:07:a8:92:88:05:5b:27:45:56:1a:09:77:8e:0a:da:26: 0d:0f:33:f0:a5:73:79:ff:ba:7f:e6:49:3e:f3:4b:aa:82:a8: 72:90:37:fc:54:91:1a:46:7e:ca:89:51:1d:17:93:52:51:d7: f9:6f:54:e6:29:e2:20:43:9d:58:5e:08:d6:bf:3f:6a:03:df: b7:3b:e0:c5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFokwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDY3MUYxMTAvBgNVBAUTKEIzQzhGN0UwNjREQTlCNUFBNkVBNzk2MDE3RUM2MEQy ODkwMzc4MkEwHhcNMjUxMjE4MTYzNTA3WhcNMjUxMjI1MTYzNTA3WjAYMRYwFAYD VQQDDA02OTQ0MmQzYi1jZTc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzocrDSv4Obq2W8nmOhGQVG3IRAkw/OxR5sYuAKrPeNA8XfkrlhU4RzN7ErQL cwwUSqDWptuL9aQKZpllGUBGK0+1B/CWyq7N/ukBOuLIbQyE814HdiblF2/x6xyf qDD1x95L3/0cs1NwfvFlUf7/ysVu/xgNfZsSWWq1ovqzjfncfyUJW1diQqH2V7E4 uTeVUyfplEzWqISSmSlZTjpFSVvYNFMZSBdcvaRkQ7fSb2c5fs5BU4OxZVrr0V+6 TzhNZNfKnjTpDojgmGeYBoSfGczAjLAJ73cy57V38NW6BNSJubWBzoQsanO5i3A6 cUEOd9Ag0BXP0pVPaasmWjJ61wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO/VhHNr yAq7vaXVW76zqsgsgD55MB8GA1UdIwQYMBaAFLPI9+Bk2ptapup5YBfsYNKJA3gq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjcxRi8xRURDMTBCQzE3 MUUxMUU4ODU2QkM0NDNDNEY5QUUwMi9zOGozNEdUYW0xcW02bmxnRi14ZzBva0Rl Q28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3M4ajM0R1RhbTFxbTZubGdGLXhnMG9rRGVDby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NjcxRi8xRURDMTBCQzE3MUUxMUU4ODU2QkM0NDNDNEY5QUUwMi9zOGozNEdUYW0x cW02bmxnRi14ZzBva0RlQ28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByZLjplFZsIRaB4GtZYDSg5gLDSWQDvV+kOi1ZR2Ah2fo4gmfOy8D7 XzVZnamTbHMDPzOJt0NUJHWUQsrYZKhC5+fuWmZCEqeupKw9i2ljBe6VZvLBHylL g08k6Le4zySmsh4hRt7yzuVgjQJGdeJr2IV7McA9BwGInBgbLJokh0YO0BCi0mSg E/JhsD2Ig7D5tJxL2NeXinRL8zNrhnqXjwRqLcnI2JU5RzRlSSn0GDzRw4UZFgeo kogFWydFVhoJd44K2iYNDzPwpXN5/7p/5kk+80uqgqhykDf8VJEaRn7KiVEdF5NS Udf5b1TmKeIgQ51YXgjWvz9qA9+3O+DF -----END CERTIFICATE-----Generated at Fri Dec 19 00:54:31 2025 by rpki-client