This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8EAF/10B0E3D004EA11EABEDC8161C4F9AE02/8dIEca4xiTbXk7RttEgiB9lyRYs.mft File: 8dIEca4xiTbXk7RttEgiB9lyRYs.mft (raw, json) Hash identifier: WvEvYO4aAO9ni7k/tAHOvxsizKRM0teG461MMaJo7gU= Subject key identifier: 50:FB:E0:04:4F:C8:C4:64:CA:15:74:FC:38:75:65:85:55:B3:3E:1F Authority key identifier: F1:D2:04:71:AE:31:89:36:D7:93:B4:6D:B4:48:22:07:D9:72:45:8B Certificate issuer: /CN=A91D8EAF/serialNumber=F1D20471AE318936D793B46DB4482207D972458B Certificate serial: 0CCA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8dIEca4xiTbXk7RttEgiB9lyRYs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8EAF/10B0E3D004EA11EABEDC8161C4F9AE02/8dIEca4xiTbXk7RttEgiB9lyRYs.mft Manifest number: 0CB7 Signing time: Thu 18 Dec 2025 18:01:51 +0000 Manifest this update: Thu 18 Dec 2025 18:01:51 +0000 Manifest next update: Thu 25 Dec 2025 18:01:51 +0000 Files and hashes: 1: 8dIEca4xiTbXk7RttEgiB9lyRYs.crl (hash: KiJLBMDxxficuSV8u79Y19hCXkqMXgrWbfmzWSn8+Xw=) 2: 168AD09A04EF11EA9060B76BC4F9AE02.roa (hash: s3U0q40HWyXJCTwtjWa8KKHr421/tnOx6JMPLRqROA8=) 3: F4C2F7F604FF11EABFF6E022C4F9AE02.roa (hash: hMRVZDPhI9uQhHlcLsQL6+B9hhuCOLqR+jjUlDn3sAQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8EAF/10B0E3D004EA11EABEDC8161C4F9AE02/8dIEca4xiTbXk7RttEgiB9lyRYs.crl rsync://rpki.apnic.net/member_repository/A91D8EAF/10B0E3D004EA11EABEDC8161C4F9AE02/8dIEca4xiTbXk7RttEgiB9lyRYs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8dIEca4xiTbXk7RttEgiB9lyRYs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 18:01:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3274 (0xcca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8EAF, serialNumber=F1D20471AE318936D793B46DB4482207D972458B Validity Not Before: Dec 18 18:01:51 2025 GMT Not After : Dec 25 18:01:51 2025 GMT Subject: CN=6944418f-1359 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:03:fa:86:2b:a3:af:6c:5d:bc:37:7c:80:7b: c6:27:0a:a1:e0:56:a2:a4:73:f6:21:fc:6a:3c:aa: 42:0e:04:8b:b1:ed:d2:5d:cb:41:7c:a7:4e:d0:6b: 78:95:ef:4f:30:44:83:2d:17:8b:d2:dc:97:67:67: b3:10:97:fd:45:b6:a3:ae:08:f6:d0:66:da:6d:35: 5a:f4:b9:d3:03:a7:bb:ec:83:56:5d:9b:90:cc:52: cd:ca:a5:8f:56:45:85:4c:21:02:9d:7f:90:d5:a4: b0:8e:46:96:7f:e1:cc:fc:20:a2:f5:2a:76:bb:bf: 89:79:0e:50:9a:e9:d0:91:c9:45:13:fb:d7:4c:f0: 4c:dd:22:cd:1b:bb:13:52:fc:4b:b2:3f:e9:d2:de: 23:f4:88:ab:96:be:29:cf:e0:d7:64:e1:64:a0:31: 31:7e:c9:b9:5e:f5:1b:3f:ac:c1:21:2f:a7:e6:cb: c9:db:84:5e:5c:7a:9b:a5:e7:8c:38:7b:aa:c6:72: b8:33:26:cb:a9:2b:16:c6:bd:28:0e:0c:c1:6c:d3: 4e:d8:cd:f8:e0:e5:f5:99:89:07:e0:a5:28:ab:74: 0d:1e:1a:22:12:ce:4d:28:79:68:64:0f:14:aa:3e: d2:7c:ae:70:d1:0b:09:3b:fa:58:ff:d4:35:8b:16: 0a:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:FB:E0:04:4F:C8:C4:64:CA:15:74:FC:38:75:65:85:55:B3:3E:1F X509v3 Authority Key Identifier: keyid:F1:D2:04:71:AE:31:89:36:D7:93:B4:6D:B4:48:22:07:D9:72:45:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8EAF/10B0E3D004EA11EABEDC8161C4F9AE02/8dIEca4xiTbXk7RttEgiB9lyRYs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8dIEca4xiTbXk7RttEgiB9lyRYs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8EAF/10B0E3D004EA11EABEDC8161C4F9AE02/8dIEca4xiTbXk7RttEgiB9lyRYs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:5b:d9:24:66:e5:c6:54:ea:44:c0:dc:65:12:ff:6d:72:b3: df:cf:7e:c6:96:d2:c3:fe:99:6b:ff:c7:7a:97:1d:b3:15:3f: 26:95:7e:a9:73:b1:44:04:94:73:72:59:ed:d9:ab:d0:c5:a4: 8a:6d:b6:0d:19:18:b6:ac:21:a9:91:15:9b:38:77:f3:9f:69: 6d:ee:65:d1:c7:28:6a:8d:04:29:d7:16:e6:5a:25:f5:83:55: de:e5:4f:0c:7d:48:71:b1:70:cd:e0:bf:88:f1:54:da:b7:f5: 0f:26:df:9d:29:1b:29:53:71:55:f6:ff:6d:b0:fa:ee:e9:ba: 01:28:f3:d1:62:8f:0c:eb:8b:d6:ed:f9:e5:08:1f:c1:ef:42: 5b:30:d8:98:64:91:e9:de:dd:fe:4e:a2:08:e6:d1:67:b9:74: 65:8e:d2:8c:00:15:27:6c:6e:80:ae:62:03:af:88:2b:42:c6: d2:98:c8:d4:93:7c:88:3e:54:83:1c:9d:02:95:82:e8:60:1c: 4f:d1:1f:f7:4b:4b:12:04:e8:f1:3b:34:ab:1e:3a:9d:13:2a: ac:f5:66:12:05:46:b7:1a:d4:a7:c7:c4:44:1e:4a:8c:20:9e: 00:32:17:42:f8:a5:9b:0f:1c:11:34:a3:98:80:0e:7d:ac:6b: 1b:f7:a2:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDhFQUYxMTAvBgNVBAUTKEYxRDIwNDcxQUUzMTg5MzZENzkzQjQ2REI0NDgyMjA3 RDk3MjQ1OEIwHhcNMjUxMjE4MTgwMTUxWhcNMjUxMjI1MTgwMTUxWjAYMRYwFAYD VQQDDA02OTQ0NDE4Zi0xMzU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvgP6hiujr2xdvDd8gHvGJwqh4FaipHP2IfxqPKpCDgSLse3SXctBfKdO0Gt4 le9PMESDLReL0tyXZ2ezEJf9Rbajrgj20GbabTVa9LnTA6e77INWXZuQzFLNyqWP VkWFTCECnX+Q1aSwjkaWf+HM/CCi9Sp2u7+JeQ5QmunQkclFE/vXTPBM3SLNG7sT UvxLsj/p0t4j9Iirlr4pz+DXZOFkoDExfsm5XvUbP6zBIS+n5svJ24ReXHqbpeeM OHuqxnK4MybLqSsWxr0oDgzBbNNO2M344OX1mYkH4KUoq3QNHhoiEs5NKHloZA8U qj7SfK5w0QsJO/pY/9Q1ixYKKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFD74ARP yMRkyhV0/Dh1ZYVVsz4fMB8GA1UdIwQYMBaAFPHSBHGuMYk215O0bbRIIgfZckWL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOEVBRi8xMEIwRTNEMDA0 RUExMUVBQkVEQzgxNjFDNEY5QUUwMi84ZElFY2E0eGlUYlhrN1J0dEVnaUI5bHlS WXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhkSUVjYTR4aVRiWGs3UnR0RWdpQjlseVJZcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OEVBRi8xMEIwRTNEMDA0RUExMUVBQkVEQzgxNjFDNEY5QUUwMi84ZElFY2E0eGlU YlhrN1J0dEVnaUI5bHlSWXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArW9kkZuXGVOpEwNxlEv9tcrPfz37GltLD/plr/8d6lx2zFT8mlX6p c7FEBJRzclnt2avQxaSKbbYNGRi2rCGpkRWbOHfzn2lt7mXRxyhqjQQp1xbmWiX1 g1Xe5U8MfUhxsXDN4L+I8VTat/UPJt+dKRspU3FV9v9tsPru6boBKPPRYo8M64vW 7fnlCB/B70JbMNiYZJHp3t3+TqII5tFnuXRljtKMABUnbG6ArmIDr4grQsbSmMjU k3yIPlSDHJ0ClYLoYBxP0R/3S0sSBOjxOzSrHjqdEyqs9WYSBUa3GtSnx8REHkqM IJ4AMhdC+KWbDxwRNKOYgA59rGsb96JS -----END CERTIFICATE-----Generated at Fri Dec 19 23:50:20 2025 by rpki-client