This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.mft File: b8Lt8MURUqO-wRSaG9su2yk8nZU.mft (raw, json) Hash identifier: 1qeGenKU/HL7ACnVjgkjeekevJn05u1rDnEKu4yZtTM= Subject key identifier: 31:7B:43:C3:60:5B:D6:09:FE:9C:51:1A:08:7B:12:2E:FF:DE:65:C4 Authority key identifier: 6F:C2:ED:F0:C5:11:52:A3:BE:C1:14:9A:1B:DB:2E:DB:29:3C:9D:95 Certificate issuer: /CN=A91AA28B/serialNumber=6FC2EDF0C51152A3BEC1149A1BDB2EDB293C9D95 Certificate serial: 0DC5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b8Lt8MURUqO-wRSaG9su2yk8nZU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.mft Manifest number: 0D9A Signing time: Sat 20 Dec 2025 17:38:00 +0000 Manifest this update: Sat 20 Dec 2025 17:38:00 +0000 Manifest next update: Sat 27 Dec 2025 17:38:00 +0000 Files and hashes: 1: b8Lt8MURUqO-wRSaG9su2yk8nZU.crl (hash: UaEKP7lVyme0J4i3KUZ5/End3VH3bSbaJu89bVNvM3w=) 2: 4DD0C31C0E2011F0A0825648C4F9AE02.roa (hash: 8r7MWVk5x8o1qlWsJdhw0htq1GLcuT7GZDff98YKUWg=) 3: 11815E36135311EE94A8A114C4F9AE02.roa (hash: 4RiRLEUaqFnMyzAxg+jhTtVSLZnRrw+D1OLV5ZjDtiE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.crl rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b8Lt8MURUqO-wRSaG9su2yk8nZU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 17:37:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3525 (0xdc5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA28B, serialNumber=6FC2EDF0C51152A3BEC1149A1BDB2EDB293C9D95 Validity Not Before: Dec 20 17:38:00 2025 GMT Not After : Dec 27 17:38:00 2025 GMT Subject: CN=6946def8-6f2b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:c0:a0:6a:26:5a:a2:49:5d:6a:e3:dd:08:78: b8:c6:02:c5:5c:f7:98:65:57:90:55:77:0a:05:b4: 77:0a:cc:99:36:09:e7:dc:02:0e:47:97:6c:f2:71: f0:39:04:40:5a:d3:c6:46:69:22:c2:b4:3e:2f:41: 94:e6:66:e7:c4:93:e1:05:bf:bf:ea:8b:7c:6f:20: 98:0f:ff:47:78:f7:fd:88:4a:a5:bf:36:af:3b:bb: 5d:24:f3:81:55:a7:81:ee:70:6e:d3:72:ec:ec:1b: 9c:ab:ba:ac:85:c6:d5:14:ec:b9:47:89:06:54:92: f5:a6:fd:15:e7:ee:0a:1c:38:1d:b2:6b:96:60:09: 0c:19:da:a7:7c:02:63:16:9c:78:87:1d:b1:1f:7d: 7b:46:a0:ea:0d:49:97:47:5c:34:83:73:f4:fb:f2: f4:2b:38:e7:71:ea:ce:5d:ce:9c:98:b9:d1:26:c8: 1b:68:81:30:90:a5:b0:62:eb:f6:82:31:73:48:06: af:2f:95:62:e7:e6:df:e0:c2:ca:fe:a5:3a:f3:73: 74:d3:86:92:fc:d9:c0:c4:52:18:0c:bd:cd:9c:8e: ab:f8:4c:72:1b:0f:26:b6:70:84:97:7e:20:b3:62: b4:58:ed:af:72:16:48:a5:d1:5b:c9:d9:1f:5c:2c: 2a:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:7B:43:C3:60:5B:D6:09:FE:9C:51:1A:08:7B:12:2E:FF:DE:65:C4 X509v3 Authority Key Identifier: keyid:6F:C2:ED:F0:C5:11:52:A3:BE:C1:14:9A:1B:DB:2E:DB:29:3C:9D:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b8Lt8MURUqO-wRSaG9su2yk8nZU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:ab:e5:3c:0d:1b:fb:f2:a4:3e:f6:e7:0e:2f:d0:8a:bd:ab: 2d:7b:a9:5d:57:3e:00:b4:77:14:7e:39:9c:ad:7a:94:17:0b: af:10:99:be:52:1f:4b:5a:2f:5a:47:77:3a:b7:6d:9a:c8:81: 0c:26:12:34:97:3b:c3:9f:09:43:b5:51:fc:0c:1e:51:c0:1e: 07:9e:43:78:a3:b2:b2:47:4e:87:14:42:f4:be:c3:43:ce:6c: 69:e6:4a:86:7f:da:00:a0:5f:37:42:30:f0:dd:30:5f:25:a7: a4:7a:0a:a0:d5:58:40:6c:6b:03:65:38:6b:01:32:35:64:75: 0e:39:20:5f:dd:ce:74:d1:4d:74:2c:78:0d:36:f0:7c:18:7e: ec:79:a0:f5:54:2c:02:f9:a5:eb:78:8a:f8:78:48:4b:ec:54: a1:15:65:f5:4b:29:08:24:0e:83:71:3f:fa:3d:4a:69:d0:72: 9d:94:8c:af:93:10:f5:30:9d:3f:3c:88:71:df:fc:ac:3c:64: 63:c6:2d:63:eb:e8:6d:b3:59:61:79:64:86:c0:44:68:f2:bf: 3d:7a:c6:81:0d:3d:22:0c:9d:fd:a0:cf:4c:cc:eb:d3:d5:29: 95:28:7d:73:89:f4:d9:4c:e3:5e:5b:68:87:e0:90:10:81:27: a3:eb:52:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDcUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUEyOEIxMTAvBgNVBAUTKDZGQzJFREYwQzUxMTUyQTNCRUMxMTQ5QTFCREIyRURC MjkzQzlEOTUwHhcNMjUxMjIwMTczODAwWhcNMjUxMjI3MTczODAwWjAYMRYwFAYD VQQDDA02OTQ2ZGVmOC02ZjJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwMCgaiZaokldauPdCHi4xgLFXPeYZVeQVXcKBbR3CsyZNgnn3AIOR5ds8nHw OQRAWtPGRmkiwrQ+L0GU5mbnxJPhBb+/6ot8byCYD/9HePf9iEqlvzavO7tdJPOB VaeB7nBu03Ls7Bucq7qshcbVFOy5R4kGVJL1pv0V5+4KHDgdsmuWYAkMGdqnfAJj Fpx4hx2xH317RqDqDUmXR1w0g3P0+/L0KzjncerOXc6cmLnRJsgbaIEwkKWwYuv2 gjFzSAavL5Vi5+bf4MLK/qU683N004aS/NnAxFIYDL3NnI6r+ExyGw8mtnCEl34g s2K0WO2vchZIpdFbydkfXCwqkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDF7Q8Ng W9YJ/pxRGgh7Ei7/3mXEMB8GA1UdIwQYMBaAFG/C7fDFEVKjvsEUmhvbLtspPJ2V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQTI4Qi8xRTAyNjRBQURC QzgxMUU5QkVBOTEwNTFDNEY5QUUwMi9iOEx0OE1VUlVxTy13UlNhRzlzdTJ5azhu WlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I4THQ4TVVSVXFPLXdSU2FHOXN1MnlrOG5aVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QTI4Qi8xRTAyNjRBQURCQzgxMUU5QkVBOTEwNTFDNEY5QUUwMi9iOEx0OE1VUlVx Ty13UlNhRzlzdTJ5azhuWlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjq+U8DRv78qQ+9ucOL9CKvaste6ldVz4AtHcUfjmcrXqUFwuvEJm+ Uh9LWi9aR3c6t22ayIEMJhI0lzvDnwlDtVH8DB5RwB4HnkN4o7KyR06HFEL0vsND zmxp5kqGf9oAoF83QjDw3TBfJaekegqg1VhAbGsDZThrATI1ZHUOOSBf3c500U10 LHgNNvB8GH7seaD1VCwC+aXreIr4eEhL7FShFWX1SykIJA6DcT/6PUpp0HKdlIyv kxD1MJ0/PIhx3/ysPGRjxi1j6+hts1lheWSGwERo8r89esaBDT0iDJ39oM9MzOvT 1SmVKH1zifTZTONeW2iH4JAQgSej61IY -----END CERTIFICATE-----Generated at Sun Dec 21 16:16:23 2025 by rpki-client