This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E85F1/6AA4D60A0DFC11F0A1D98053C4F9AE02/yL8GWnSCLvjMYvSlTlnVhxILb0c.mft File: yL8GWnSCLvjMYvSlTlnVhxILb0c.mft (raw, json) Hash identifier: +fJq8RGjClpb5M47TM+B+DR071UjEUUz/JAFv8wS+ys= Subject key identifier: 72:96:0C:32:AC:E0:2E:1B:B8:8A:28:2D:71:09:1F:58:EF:F8:9D:49 Authority key identifier: C8:BF:06:5A:74:82:2E:F8:CC:62:F4:A5:4E:59:D5:87:12:0B:6F:47 Certificate issuer: /CN=A91E85F1/serialNumber=C8BF065A74822EF8CC62F4A54E59D587120B6F47 Certificate serial: 8C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yL8GWnSCLvjMYvSlTlnVhxILb0c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E85F1/6AA4D60A0DFC11F0A1D98053C4F9AE02/yL8GWnSCLvjMYvSlTlnVhxILb0c.mft Manifest number: 8A Signing time: Tue 23 Dec 2025 05:32:01 +0000 Manifest this update: Tue 23 Dec 2025 05:32:00 +0000 Manifest next update: Tue 30 Dec 2025 05:32:00 +0000 Files and hashes: 1: yL8GWnSCLvjMYvSlTlnVhxILb0c.crl (hash: I1eywFCj2CEsyaFUcYw3T9T2ANgeOv7nD/7gJDBJxoM=) 2: 4D144B780DFE11F09C46E054C4F9AE02.roa (hash: 4W8JwWYdmlkoGSHKhs2UcR0Dtn0CNiavMVkInr6eJqg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E85F1/6AA4D60A0DFC11F0A1D98053C4F9AE02/yL8GWnSCLvjMYvSlTlnVhxILb0c.crl rsync://rpki.apnic.net/member_repository/A91E85F1/6AA4D60A0DFC11F0A1D98053C4F9AE02/yL8GWnSCLvjMYvSlTlnVhxILb0c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yL8GWnSCLvjMYvSlTlnVhxILb0c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 05:32:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 140 (0x8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E85F1, serialNumber=C8BF065A74822EF8CC62F4A54E59D587120B6F47 Validity Not Before: Dec 23 05:32:00 2025 GMT Not After : Dec 30 05:32:00 2025 GMT Subject: CN=694a2951-188b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:cc:b7:30:ff:6e:be:7c:5f:64:7c:db:ad:f8: d1:72:bf:f7:e3:c3:61:bd:f4:b6:0d:2d:d0:8c:7b: cd:34:37:0c:d3:59:f4:e9:99:04:ee:81:cc:53:a0: e4:c0:bc:13:5b:50:7d:f6:a1:9d:5f:d3:54:fd:d4: 02:99:b0:30:83:2f:a6:79:eb:d1:0c:40:cd:3c:dd: 50:cd:7c:01:b6:2c:04:58:d3:59:61:de:13:2e:1b: 8a:90:8b:7e:93:f2:04:93:97:2c:d2:31:66:7d:4a: 1e:72:e6:9f:05:bd:4a:a4:13:a2:2e:3d:6c:7b:40: dd:82:06:bd:e5:fd:c3:f2:04:01:00:48:56:59:d5: be:df:e9:a6:95:69:c3:aa:a9:35:39:92:71:37:2e: b3:ac:34:99:d3:8d:7b:20:9a:12:03:a8:62:a4:8b: c5:58:1e:29:03:f5:ee:76:fb:22:8c:8d:26:01:5a: 6b:6c:a8:a2:99:1c:25:ac:34:49:02:e8:a7:08:2a: 96:70:91:37:9b:da:1c:97:5e:ed:ae:43:57:24:cf: a3:8e:55:77:97:fb:d1:8e:31:eb:73:e5:a2:ad:7c: f5:75:4a:e2:98:13:0e:6a:5f:a4:cf:e0:74:03:0e: 78:a5:25:09:3a:09:06:7c:c9:63:b9:67:23:42:3e: 6f:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:96:0C:32:AC:E0:2E:1B:B8:8A:28:2D:71:09:1F:58:EF:F8:9D:49 X509v3 Authority Key Identifier: keyid:C8:BF:06:5A:74:82:2E:F8:CC:62:F4:A5:4E:59:D5:87:12:0B:6F:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E85F1/6AA4D60A0DFC11F0A1D98053C4F9AE02/yL8GWnSCLvjMYvSlTlnVhxILb0c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yL8GWnSCLvjMYvSlTlnVhxILb0c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E85F1/6AA4D60A0DFC11F0A1D98053C4F9AE02/yL8GWnSCLvjMYvSlTlnVhxILb0c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:c6:f5:f1:3f:71:d2:f3:eb:9c:46:21:6d:d4:fc:69:b0:21: d2:d2:f3:ee:e0:b0:49:e1:38:ef:d9:af:34:29:b4:e8:99:cc: 6b:93:6c:9a:63:6f:36:d0:b9:7c:2c:0a:47:e1:39:a9:04:eb: 43:1a:90:03:16:f6:0a:c1:14:db:dd:c8:30:17:42:ac:01:a2: 5a:0e:50:d0:69:6f:94:23:83:01:16:f1:e4:87:c2:02:d4:46: 4d:79:f7:cd:29:f5:e3:3a:0c:b2:07:87:a7:76:3b:d5:fc:e8: 0b:a8:06:3d:fd:40:b1:45:5d:3d:52:fc:cc:09:01:c5:d0:42: 45:2d:48:67:30:cc:33:d8:6f:04:04:86:bd:04:57:51:8d:84: b7:7a:2a:13:14:17:37:84:d6:24:7c:15:63:66:33:0c:5f:4b: 62:40:00:68:52:10:5a:85:ec:f6:91:fe:ab:45:a5:1b:d9:06: d9:de:61:fc:53:a2:8b:9f:5b:8a:74:aa:06:38:48:c2:29:ac: 53:b1:0a:85:32:1b:a1:64:1e:75:5b:2c:82:36:1d:41:04:bd: 71:e8:ae:56:81:e2:54:e4:c0:9e:78:fc:13:ca:c4:bd:0e:d7: 21:54:f8:cb:e1:b6:84:39:4e:f7:b5:c8:d9:82:6f:8d:9d:4b: 3c:66:af:af -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg1RjExMTAvBgNVBAUTKEM4QkYwNjVBNzQ4MjJFRjhDQzYyRjRBNTRFNTlENTg3 MTIwQjZGNDcwHhcNMjUxMjIzMDUzMjAwWhcNMjUxMjMwMDUzMjAwWjAYMRYwFAYD VQQDDA02OTRhMjk1MS0xODhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo8y3MP9uvnxfZHzbrfjRcr/348NhvfS2DS3QjHvNNDcM01n06ZkE7oHMU6Dk wLwTW1B99qGdX9NU/dQCmbAwgy+meevRDEDNPN1QzXwBtiwEWNNZYd4TLhuKkIt+ k/IEk5cs0jFmfUoecuafBb1KpBOiLj1se0Ddgga95f3D8gQBAEhWWdW+3+mmlWnD qqk1OZJxNy6zrDSZ0417IJoSA6hipIvFWB4pA/XudvsijI0mAVprbKiimRwlrDRJ AuinCCqWcJE3m9ocl17trkNXJM+jjlV3l/vRjjHrc+WirXz1dUrimBMOal+kz+B0 Aw54pSUJOgkGfMljuWcjQj5vmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHKWDDKs 4C4buIooLXEJH1jv+J1JMB8GA1UdIwQYMBaAFMi/Blp0gi74zGL0pU5Z1YcSC29H MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODVGMS82QUE0RDYwQTBE RkMxMUYwQTFEOTgwNTNDNEY5QUUwMi95TDhHV25TQ0x2ak1ZdlNsVGxuVmh4SUxi MGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lMOEdXblNDTHZqTVl2U2xUbG5WaHhJTGIwYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF ODVGMS82QUE0RDYwQTBERkMxMUYwQTFEOTgwNTNDNEY5QUUwMi95TDhHV25TQ0x2 ak1ZdlNsVGxuVmh4SUxiMGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWxvXxP3HS8+ucRiFt1PxpsCHS0vPu4LBJ4Tjv2a80KbTomcxrk2ya Y2820Ll8LApH4TmpBOtDGpADFvYKwRTb3cgwF0KsAaJaDlDQaW+UI4MBFvHkh8IC 1EZNeffNKfXjOgyyB4endjvV/OgLqAY9/UCxRV09UvzMCQHF0EJFLUhnMMwz2G8E BIa9BFdRjYS3eioTFBc3hNYkfBVjZjMMX0tiQABoUhBahez2kf6rRaUb2QbZ3mH8 U6KLn1uKdKoGOEjCKaxTsQqFMhuhZB51WyyCNh1BBL1x6K5WgeJU5MCeePwTysS9 DtchVPjL4baEOU73tcjZgm+NnUs8Zq+v -----END CERTIFICATE-----Generated at Wed Dec 24 14:09:35 2025 by rpki-client