This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft File: 8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft (raw, json) Hash identifier: kl9iu9GIVt5tWIMsLvSz/SWqUyec3dvl1Fvv2z60Z4M= Subject key identifier: 18:7D:EB:9D:BF:FA:F5:88:FB:C4:01:FD:49:EC:45:40:E9:E9:6B:AE Authority key identifier: F2:D1:26:F1:42:08:6A:26:E3:C5:84:A7:0A:B3:E5:27:B3:03:81:82 Certificate issuer: /CN=A9156DB4/serialNumber=F2D126F142086A26E3C584A70AB3E527B3038182 Certificate serial: 040F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8tEm8UIIaibjxYSnCrPlJ7MDgYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft Manifest number: 0403 Signing time: Wed 31 Dec 2025 23:55:29 +0000 Manifest this update: Wed 31 Dec 2025 23:55:29 +0000 Manifest next update: Wed 07 Jan 2026 23:55:29 +0000 Files and hashes: 1: 8tEm8UIIaibjxYSnCrPlJ7MDgYI.crl (hash: xvVKMoiXcWW7jAa0gmwYnx5q1REqMcfDp2o4UNarUac=) 2: 854ACCD2DFEA11ECB7DF0A2EC4F9AE02.roa (hash: C6Z/IfRVQV8LxL1Oc2uDTt0509ENzUWPGHXpk7TwKNY=) 3: 688C6AC29D9D11EC958A216AC4F9AE02.roa (hash: rQCKwpVXSCN9Y75hhPwPDo9+AXfNNoLzfRi82A6bdSI=) 4: 695DB5289D9D11EC958A216AC4F9AE02.roa (hash: c9fr6KD/Ih6e5aCRy3Bruof+Va6iYKpCGv8u+/ETzK0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.crl rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8tEm8UIIaibjxYSnCrPlJ7MDgYI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 07 Jan 2026 23:55:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1039 (0x40f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156DB4, serialNumber=F2D126F142086A26E3C584A70AB3E527B3038182 Validity Not Before: Dec 31 23:55:29 2025 GMT Not After : Jan 7 23:55:29 2026 GMT Subject: CN=6955b7f1-8043 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:cc:d8:54:05:65:00:51:81:d4:8a:9c:e4:50: 05:f5:9f:6d:ef:45:5f:d8:78:6f:e2:03:83:14:cc: e3:fd:ca:a4:0c:ef:d8:91:e0:6a:f5:c9:f0:47:7d: 96:9a:2d:40:ff:1f:55:dc:98:ba:3b:c0:0a:6e:a5: 14:d0:be:0d:6f:01:02:16:c6:a3:88:53:b8:98:1b: cd:25:a1:d6:a3:7c:83:53:c7:70:96:fa:41:35:6e: b0:8d:8b:14:e2:19:07:88:c9:7c:05:ad:15:dd:b7: 9f:29:db:49:93:20:53:81:a0:e2:9d:39:b6:b6:54: 31:1d:dd:33:27:39:39:d5:68:19:b8:d0:c1:a7:43: 64:7e:60:0b:aa:7b:ee:91:f9:84:10:1d:0b:9d:7c: 57:99:db:9e:a5:c8:bc:b9:b2:ba:bc:62:31:3b:2b: 97:c8:d1:a1:25:b0:02:6f:29:a8:7e:cc:be:49:9f: b1:de:2a:52:2f:54:3b:0d:69:fc:ed:0e:5a:d2:30: 23:53:d5:ac:e3:d2:e6:56:dc:d1:1c:22:b6:65:4a: 72:65:89:78:af:38:d5:33:86:d9:89:1e:a9:3f:b3: 35:e2:a2:89:36:d1:82:dc:7a:af:1c:31:9e:a5:18: 07:a1:63:a5:03:3d:68:e9:2a:fe:d6:6d:36:45:2e: 3d:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:7D:EB:9D:BF:FA:F5:88:FB:C4:01:FD:49:EC:45:40:E9:E9:6B:AE X509v3 Authority Key Identifier: keyid:F2:D1:26:F1:42:08:6A:26:E3:C5:84:A7:0A:B3:E5:27:B3:03:81:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8tEm8UIIaibjxYSnCrPlJ7MDgYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:6d:5f:26:a0:53:66:23:0f:3a:a6:08:05:57:60:fd:f5:9a: 95:5b:31:36:48:11:ea:69:30:d7:e6:b4:48:e3:bd:30:4d:71: 86:24:13:ae:39:b7:1c:07:ab:4d:1f:55:03:9b:ac:cc:bd:5d: e6:e0:dc:13:b5:4c:ee:6c:54:84:0e:60:e8:0a:29:e4:d4:2b: d2:fd:d1:03:68:b6:63:bb:c9:d6:6c:30:10:60:f6:4f:38:e1: 2c:21:7a:12:1f:63:cb:a4:45:43:85:63:11:8d:4d:9c:ba:cb: 0e:8b:b7:0f:f5:2b:db:6b:1c:0d:95:11:78:94:e9:d2:07:5d: c2:35:81:75:8c:83:de:a0:42:84:78:bd:06:78:ce:24:0e:57: be:3b:1d:23:1e:bb:c1:3e:9c:81:a1:0b:39:5f:8d:36:0c:92: 01:28:9f:07:b6:ed:19:8b:f1:82:da:66:cc:1a:21:47:cd:b6: a9:80:9e:09:7d:1b:e1:c8:37:f1:90:fe:1d:9d:02:56:1e:3e: ae:f5:be:c3:37:9c:1f:db:54:f5:7e:05:c0:ec:0e:e4:28:71: aa:af:78:8b:20:15:84:e8:95:88:e9:2f:3d:c5:6d:2c:d4:15: 21:7d:1d:06:b9:ee:37:e9:34:fa:d8:14:0f:05:8b:7b:e6:be: 5f:e8:ed:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBA8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTZEQjQxMTAvBgNVBAUTKEYyRDEyNkYxNDIwODZBMjZFM0M1ODRBNzBBQjNFNTI3 QjMwMzgxODIwHhcNMjUxMjMxMjM1NTI5WhcNMjYwMTA3MjM1NTI5WjAYMRYwFAYD VQQDDA02OTU1YjdmMS04MDQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1szYVAVlAFGB1Iqc5FAF9Z9t70Vf2Hhv4gODFMzj/cqkDO/YkeBq9cnwR32W mi1A/x9V3Ji6O8AKbqUU0L4NbwECFsajiFO4mBvNJaHWo3yDU8dwlvpBNW6wjYsU 4hkHiMl8Ba0V3befKdtJkyBTgaDinTm2tlQxHd0zJzk51WgZuNDBp0NkfmALqnvu kfmEEB0LnXxXmduepci8ubK6vGIxOyuXyNGhJbACbymofsy+SZ+x3ipSL1Q7DWn8 7Q5a0jAjU9Ws49LmVtzRHCK2ZUpyZYl4rzjVM4bZiR6pP7M14qKJNtGC3HqvHDGe pRgHoWOlAz1o6Sr+1m02RS498QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBh9652/ +vWI+8QB/UnsRUDp6WuuMB8GA1UdIwQYMBaAFPLRJvFCCGom48WEpwqz5SezA4GC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NkRCNC9FODREQjk4QTlE OUExMUVDQkE5MjhGNDVDNEY5QUUwMi84dEVtOFVJSWFpYmp4WVNuQ3JQbEo3TURn WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzh0RW04VUlJYWlianhZU25DclBsSjdNRGdZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NkRCNC9FODREQjk4QTlEOUExMUVDQkE5MjhGNDVDNEY5QUUwMi84dEVtOFVJSWFp Ymp4WVNuQ3JQbEo3TURnWUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqbV8moFNmIw86pggFV2D99ZqVWzE2SBHqaTDX5rRI470wTXGGJBOu ObccB6tNH1UDm6zMvV3m4NwTtUzubFSEDmDoCink1CvS/dEDaLZju8nWbDAQYPZP OOEsIXoSH2PLpEVDhWMRjU2cussOi7cP9SvbaxwNlRF4lOnSB13CNYF1jIPeoEKE eL0GeM4kDle+Ox0jHrvBPpyBoQs5X402DJIBKJ8Htu0Zi/GC2mbMGiFHzbapgJ4J fRvhyDfxkP4dnQJWHj6u9b7DN5wf21T1fgXA7A7kKHGqr3iLIBWE6JWI6S89xW0s 1BUhfR0Gue436TT62BQPBYt75r5f6O1y -----END CERTIFICATE-----Generated at Fri Jan 2 23:22:51 2026 by rpki-client