This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAEAF/BE3521B833F111EDB8361086C4F9AE02/8ghPeg88CpH4Jf79nxA18zVBWEw.mft File: 8ghPeg88CpH4Jf79nxA18zVBWEw.mft (raw, json) Hash identifier: Bj6zmnf80f6JIbVbLF1D0jovIcOKpOLlwYJ4+2LQz0Y= Subject key identifier: B8:C6:EA:25:DE:FA:25:4C:C1:5E:49:94:BE:48:C7:DA:A7:1F:B3:DF Authority key identifier: F2:08:4F:7A:0F:3C:0A:91:F8:25:FE:FD:9F:10:35:F3:35:41:58:4C Certificate issuer: /CN=A91EAEAF/serialNumber=F2084F7A0F3C0A91F825FEFD9F1035F33541584C Certificate serial: 0283 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8ghPeg88CpH4Jf79nxA18zVBWEw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAEAF/BE3521B833F111EDB8361086C4F9AE02/8ghPeg88CpH4Jf79nxA18zVBWEw.mft Manifest number: 027F Signing time: Tue 23 Dec 2025 00:34:22 +0000 Manifest this update: Tue 23 Dec 2025 00:34:22 +0000 Manifest next update: Tue 30 Dec 2025 00:34:22 +0000 Files and hashes: 1: 8ghPeg88CpH4Jf79nxA18zVBWEw.crl (hash: 11WNdKHXMgB8Dxd++EI373NJU3Vra9pieD4I3dKKcDU=) 2: EF0EFF5833F511EDA5C4F37DC4F9AE02.roa (hash: fi9xuBK43cEhmF28kvwaKFEKLhEO9BGiHXkRK7I94Hw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAEAF/BE3521B833F111EDB8361086C4F9AE02/8ghPeg88CpH4Jf79nxA18zVBWEw.crl rsync://rpki.apnic.net/member_repository/A91EAEAF/BE3521B833F111EDB8361086C4F9AE02/8ghPeg88CpH4Jf79nxA18zVBWEw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8ghPeg88CpH4Jf79nxA18zVBWEw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 00:34:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 643 (0x283) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAEAF, serialNumber=F2084F7A0F3C0A91F825FEFD9F1035F33541584C Validity Not Before: Dec 23 00:34:22 2025 GMT Not After : Dec 30 00:34:22 2025 GMT Subject: CN=6949e38e-b733 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:ca:88:8c:5d:19:ad:31:cf:7c:af:ad:1b:4f: 41:0d:fd:a0:25:2f:f7:b2:ce:c4:a8:f4:3f:f8:07: 3d:00:91:cb:cd:3f:62:2d:02:4a:43:e0:fc:2f:39: 6e:c0:d1:fa:4a:5d:98:0d:b5:c2:93:a2:f7:44:02: 7e:a6:0a:85:74:fe:c1:7f:bc:5f:c7:f4:75:50:3f: b1:8e:c7:a7:af:45:ab:33:f2:a7:ee:dd:e8:5b:64: fa:00:37:0d:17:5d:06:1d:04:4c:0f:23:78:cf:79: c0:36:23:45:61:a7:0b:42:58:6c:d1:6d:d7:46:6d: ff:1b:fa:0e:15:85:4e:ad:87:f0:11:ac:f8:be:3f: b1:ed:28:93:87:b9:38:e4:b3:32:ea:4e:25:66:39: b4:7b:4c:b4:60:a7:14:63:72:5e:8e:bb:10:4e:16: c1:02:2a:4e:5b:6c:a4:41:37:37:d5:9b:26:0c:d2: d5:b4:c7:20:02:f6:44:bf:88:41:81:c5:37:f1:39: 8f:15:0d:1a:34:af:d5:3c:be:1d:33:3d:33:c6:b2: e0:14:fb:19:c6:38:e8:c4:e0:de:81:a5:3e:5b:bc: e4:f2:5c:8e:55:96:88:2c:66:c7:ce:78:90:00:6b: 70:28:3f:4b:22:1e:a1:71:4d:dc:56:d2:79:55:ff: a9:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:C6:EA:25:DE:FA:25:4C:C1:5E:49:94:BE:48:C7:DA:A7:1F:B3:DF X509v3 Authority Key Identifier: keyid:F2:08:4F:7A:0F:3C:0A:91:F8:25:FE:FD:9F:10:35:F3:35:41:58:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAEAF/BE3521B833F111EDB8361086C4F9AE02/8ghPeg88CpH4Jf79nxA18zVBWEw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8ghPeg88CpH4Jf79nxA18zVBWEw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAEAF/BE3521B833F111EDB8361086C4F9AE02/8ghPeg88CpH4Jf79nxA18zVBWEw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:97:e7:75:47:d4:11:08:b1:8d:19:ed:ea:61:b6:c7:2e:f2: ee:45:fb:16:5f:43:25:d5:10:69:74:8a:23:e2:fb:ff:6b:3e: 35:90:f5:14:47:13:45:3c:6e:53:97:b5:2e:e0:69:36:fc:a1: 40:99:32:bb:29:4a:61:10:d5:fa:1b:9c:5c:88:5a:a3:bc:68: 7f:69:d5:55:9d:de:e2:d2:3e:f2:38:69:d0:eb:7f:71:3f:52: 79:a5:fb:a1:02:b0:fb:98:01:aa:03:f1:e5:44:c0:91:09:d4: 5e:f0:22:ed:7a:34:dc:65:5a:73:65:b9:50:30:9e:be:1a:20: 9b:32:8a:24:a9:c5:3f:0c:4f:e7:bf:75:f3:0a:f5:df:d0:ae: e4:24:be:34:5d:0a:0a:90:12:42:f2:80:63:ba:15:a8:f2:f6: 0c:da:43:99:8e:cd:40:49:6c:cb:f8:91:c9:a8:eb:5c:94:05: f0:9c:81:ca:7b:5c:5e:0b:5f:9d:67:7b:22:40:53:4f:34:68: 91:79:0c:ef:6d:9e:9d:46:06:a0:c2:55:75:0c:0e:5c:a0:72: ea:ca:48:c4:cd:c2:e6:27:e4:97:53:71:7e:b2:5f:03:13:f4: e8:2b:4c:35:81:df:26:b1:50:06:49:b8:86:17:94:6d:fd:8a: 6f:82:10:9b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAoMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFFQUYxMTAvBgNVBAUTKEYyMDg0RjdBMEYzQzBBOTFGODI1RkVGRDlGMTAzNUYz MzU0MTU4NEMwHhcNMjUxMjIzMDAzNDIyWhcNMjUxMjMwMDAzNDIyWjAYMRYwFAYD VQQDDA02OTQ5ZTM4ZS1iNzMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtsqIjF0ZrTHPfK+tG09BDf2gJS/3ss7EqPQ/+Ac9AJHLzT9iLQJKQ+D8Lzlu wNH6Sl2YDbXCk6L3RAJ+pgqFdP7Bf7xfx/R1UD+xjsenr0WrM/Kn7t3oW2T6ADcN F10GHQRMDyN4z3nANiNFYacLQlhs0W3XRm3/G/oOFYVOrYfwEaz4vj+x7SiTh7k4 5LMy6k4lZjm0e0y0YKcUY3JejrsQThbBAipOW2ykQTc31ZsmDNLVtMcgAvZEv4hB gcU38TmPFQ0aNK/VPL4dMz0zxrLgFPsZxjjoxODegaU+W7zk8lyOVZaILGbHzniQ AGtwKD9LIh6hcU3cVtJ5Vf+pBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLjG6iXe +iVMwV5JlL5Ix9qnH7PfMB8GA1UdIwQYMBaAFPIIT3oPPAqR+CX+/Z8QNfM1QVhM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUVBRi9CRTM1MjFCODMz RjExMUVEQjgzNjEwODZDNEY5QUUwMi84Z2hQZWc4OENwSDRKZjc5bnhBMTh6VkJX RXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhnaFBlZzg4Q3BINEpmNzlueEExOHpWQldFdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUVBRi9CRTM1MjFCODMzRjExMUVEQjgzNjEwODZDNEY5QUUwMi84Z2hQZWc4OENw SDRKZjc5bnhBMTh6VkJXRXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWl+d1R9QRCLGNGe3qYbbHLvLuRfsWX0Ml1RBpdIoj4vv/az41kPUU RxNFPG5Tl7Uu4Gk2/KFAmTK7KUphENX6G5xciFqjvGh/adVVnd7i0j7yOGnQ639x P1J5pfuhArD7mAGqA/HlRMCRCdRe8CLtejTcZVpzZblQMJ6+GiCbMookqcU/DE/n v3XzCvXf0K7kJL40XQoKkBJC8oBjuhWo8vYM2kOZjs1ASWzL+JHJqOtclAXwnIHK e1xeC1+dZ3siQFNPNGiReQzvbZ6dRgagwlV1DA5coHLqykjEzcLmJ+SXU3F+sl8D E/ToK0w1gd8msVAGSbiGF5Rt/YpvghCb -----END CERTIFICATE-----Generated at Wed Dec 24 15:43:16 2025 by rpki-client