This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FBEFA/172546BC0B3711F08C239863C4F9AE02/x8206hgWXlmC0KkZ_0f3JnbgUHM.mft File: x8206hgWXlmC0KkZ_0f3JnbgUHM.mft (raw, json) Hash identifier: GybzjKLaTCL/1tZkLLr1e+aygqQBVaFiqy6s7zausfo= Subject key identifier: 4E:39:77:F4:13:15:49:16:1F:9F:88:53:AA:CA:A8:CA:F8:AE:8D:38 Authority key identifier: C7:CD:B4:EA:18:16:5E:59:82:D0:A9:19:FF:47:F7:26:76:E0:50:73 Certificate issuer: /CN=A91FBEFA/serialNumber=C7CDB4EA18165E5982D0A919FF47F72676E05073 Certificate serial: 8B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x8206hgWXlmC0KkZ_0f3JnbgUHM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FBEFA/172546BC0B3711F08C239863C4F9AE02/x8206hgWXlmC0KkZ_0f3JnbgUHM.mft Manifest number: 8B Signing time: Tue 23 Dec 2025 05:31:09 +0000 Manifest this update: Tue 23 Dec 2025 05:31:08 +0000 Manifest next update: Tue 30 Dec 2025 05:31:08 +0000 Files and hashes: 1: x8206hgWXlmC0KkZ_0f3JnbgUHM.crl (hash: upD+lCq0jyq3uEJbEasiIC/ZPkfcij2gWbRQkmeHKyQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FBEFA/172546BC0B3711F08C239863C4F9AE02/x8206hgWXlmC0KkZ_0f3JnbgUHM.crl rsync://rpki.apnic.net/member_repository/A91FBEFA/172546BC0B3711F08C239863C4F9AE02/x8206hgWXlmC0KkZ_0f3JnbgUHM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x8206hgWXlmC0KkZ_0f3JnbgUHM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 05:31:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 139 (0x8b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FBEFA, serialNumber=C7CDB4EA18165E5982D0A919FF47F72676E05073 Validity Not Before: Dec 23 05:31:08 2025 GMT Not After : Dec 30 05:31:08 2025 GMT Subject: CN=694a291d-b184 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:a7:ce:63:95:a8:93:ac:b1:11:c8:ee:39:75: 74:3a:db:08:ab:f8:14:d0:be:ab:84:b4:1f:3d:4c: 25:d5:af:06:3d:06:77:28:49:1a:2c:4b:ef:9e:8c: 11:f4:c1:c5:81:26:70:55:cc:56:3e:bd:53:13:6d: 5e:8c:68:6f:3f:85:37:4f:54:25:e1:1f:7c:c7:41: 08:40:31:bf:a5:47:ff:98:06:46:8d:6e:63:60:c3: 27:15:5d:53:44:39:54:8c:7b:cd:c2:d5:c7:ab:ef: 24:f1:46:61:4a:37:8f:df:e3:f4:bb:3d:e3:98:e4: 4e:f7:03:9e:dc:fb:dd:b1:54:ec:b5:76:35:29:a7: 30:16:84:5a:58:58:40:ca:5c:71:3d:0b:1f:06:b0: d6:a9:51:35:16:04:9f:d5:38:48:a6:9d:76:ac:77: 09:0e:04:59:2b:ce:a7:fe:52:9a:06:d4:14:77:3d: 5c:b1:95:36:f1:2b:76:75:10:99:e5:3b:c2:af:81: 37:b4:eb:a1:c1:fa:a5:7c:b7:fc:b0:40:3e:6d:24: 14:94:b0:47:02:34:4a:4b:78:d2:02:6a:90:1d:be: 21:99:69:25:35:32:4b:8e:11:dc:80:d7:9c:b0:66: 39:be:4b:8d:03:be:4d:cf:30:df:e1:19:c1:47:da: 19:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:39:77:F4:13:15:49:16:1F:9F:88:53:AA:CA:A8:CA:F8:AE:8D:38 X509v3 Authority Key Identifier: keyid:C7:CD:B4:EA:18:16:5E:59:82:D0:A9:19:FF:47:F7:26:76:E0:50:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FBEFA/172546BC0B3711F08C239863C4F9AE02/x8206hgWXlmC0KkZ_0f3JnbgUHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x8206hgWXlmC0KkZ_0f3JnbgUHM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FBEFA/172546BC0B3711F08C239863C4F9AE02/x8206hgWXlmC0KkZ_0f3JnbgUHM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:32:86:9a:3a:0c:69:ed:b9:7c:18:fd:27:c2:bd:8b:95:9b: 73:36:b7:61:e7:ba:c0:65:67:05:32:55:cb:6b:fa:61:2e:26: 7d:3f:a1:17:69:c0:93:05:be:9e:ea:fd:87:3f:11:38:bd:c5: a1:c3:02:14:f3:d0:3b:78:4e:fe:df:44:78:2d:cc:60:16:4e: 68:74:de:84:ca:72:e1:04:c3:ef:cf:ac:03:3c:b3:2f:64:ac: a6:88:c8:f0:bd:f6:50:7f:c9:da:ce:57:4a:29:3d:37:0f:f7: 7b:54:0c:b5:4f:a0:7a:42:e7:a1:81:ea:bf:2f:23:27:93:96: 54:c2:34:c4:e7:c7:3d:a6:b6:da:2b:8c:df:1e:09:fa:a7:9b: 3e:6a:5a:52:75:ad:96:19:ab:ca:66:9c:af:dd:60:e3:f1:8f: cb:9b:26:a2:d3:d2:6f:91:d4:fc:0c:dc:ae:d9:d6:71:dd:d3: 56:7c:6d:f6:66:58:ed:1c:b7:c4:02:0c:31:9c:7f:e9:b4:95: 16:fc:ac:c9:3d:53:47:ba:b1:2a:68:46:b9:f7:8d:19:b6:db: 61:ac:18:7a:2d:f0:55:5e:02:12:2f:45:2c:3c:9a:8b:03:94: cb:18:a8:83:ef:62:87:59:8f:ee:e1:5e:42:37:3f:f3:cd:f0: 38:50:06:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkJFRkExMTAvBgNVBAUTKEM3Q0RCNEVBMTgxNjVFNTk4MkQwQTkxOUZGNDdGNzI2 NzZFMDUwNzMwHhcNMjUxMjIzMDUzMTA4WhcNMjUxMjMwMDUzMTA4WjAYMRYwFAYD VQQDDA02OTRhMjkxZC1iMTg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwqfOY5Wok6yxEcjuOXV0OtsIq/gU0L6rhLQfPUwl1a8GPQZ3KEkaLEvvnowR 9MHFgSZwVcxWPr1TE21ejGhvP4U3T1Ql4R98x0EIQDG/pUf/mAZGjW5jYMMnFV1T RDlUjHvNwtXHq+8k8UZhSjeP3+P0uz3jmORO9wOe3PvdsVTstXY1KacwFoRaWFhA ylxxPQsfBrDWqVE1FgSf1ThIpp12rHcJDgRZK86n/lKaBtQUdz1csZU28St2dRCZ 5TvCr4E3tOuhwfqlfLf8sEA+bSQUlLBHAjRKS3jSAmqQHb4hmWklNTJLjhHcgNec sGY5vkuNA75NzzDf4RnBR9oZJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE45d/QT FUkWH5+IU6rKqMr4ro04MB8GA1UdIwQYMBaAFMfNtOoYFl5ZgtCpGf9H9yZ24FBz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQkVGQS8xNzI1NDZCQzBC MzcxMUYwOEMyMzk4NjNDNEY5QUUwMi94ODIwNmhnV1hsbUMwS2taXzBmM0puYmdV SE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3g4MjA2aGdXWGxtQzBLa1pfMGYzSm5iZ1VITS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QkVGQS8xNzI1NDZCQzBCMzcxMUYwOEMyMzk4NjNDNEY5QUUwMi94ODIwNmhnV1hs bUMwS2taXzBmM0puYmdVSE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMMoaaOgxp7bl8GP0nwr2LlZtzNrdh57rAZWcFMlXLa/phLiZ9P6EX acCTBb6e6v2HPxE4vcWhwwIU89A7eE7+30R4LcxgFk5odN6EynLhBMPvz6wDPLMv ZKymiMjwvfZQf8nazldKKT03D/d7VAy1T6B6Quehgeq/LyMnk5ZUwjTE58c9prba K4zfHgn6p5s+alpSda2WGavKZpyv3WDj8Y/Lmyai09JvkdT8DNyu2dZx3dNWfG32 ZljtHLfEAgwxnH/ptJUW/KzJPVNHurEqaEa5940ZttthrBh6LfBVXgISL0UsPJqL A5TLGKiD72KHWY/u4V5CNz/zzfA4UAZs -----END CERTIFICATE-----Generated at Wed Dec 24 15:46:53 2025 by rpki-client