This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B49C0/6CB38358B34411ECABCE2A62C4F9AE02/8VAZIKVfOnwnEDkUn_oop8HMOPE.mft File: 8VAZIKVfOnwnEDkUn_oop8HMOPE.mft (raw, json) Hash identifier: Jf8cMGirWaclIshVRO/4EdDDh1Zp646TPjGdU/eUvP8= Subject key identifier: EB:DE:74:C7:23:10:04:F6:9E:3E:2A:E0:12:5D:FB:85:36:A0:FA:02 Authority key identifier: F1:50:19:20:A5:5F:3A:7C:27:10:39:14:9F:FA:28:A7:C1:CC:38:F1 Certificate issuer: /CN=A91B49C0/serialNumber=F1501920A55F3A7C271039149FFA28A7C1CC38F1 Certificate serial: 03CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8VAZIKVfOnwnEDkUn_oop8HMOPE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B49C0/6CB38358B34411ECABCE2A62C4F9AE02/8VAZIKVfOnwnEDkUn_oop8HMOPE.mft Manifest number: 03C7 Signing time: Wed 24 Dec 2025 23:45:14 +0000 Manifest this update: Wed 24 Dec 2025 23:45:14 +0000 Manifest next update: Wed 31 Dec 2025 23:45:14 +0000 Files and hashes: 1: 8VAZIKVfOnwnEDkUn_oop8HMOPE.crl (hash: OpykfcBEi2KOwRa4xwNZXJnInPwYqwRXzjdLEJGsdLU=) 2: 8304B142B34711EC90A6DA67C4F9AE02.roa (hash: 3vUZjFTkW2synuvsfLkZE7Uj9BWq6GQxB8oRjg8f8YA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B49C0/6CB38358B34411ECABCE2A62C4F9AE02/8VAZIKVfOnwnEDkUn_oop8HMOPE.crl rsync://rpki.apnic.net/member_repository/A91B49C0/6CB38358B34411ECABCE2A62C4F9AE02/8VAZIKVfOnwnEDkUn_oop8HMOPE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8VAZIKVfOnwnEDkUn_oop8HMOPE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Dec 2025 23:45:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 972 (0x3cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B49C0, serialNumber=F1501920A55F3A7C271039149FFA28A7C1CC38F1 Validity Not Before: Dec 24 23:45:14 2025 GMT Not After : Dec 31 23:45:14 2025 GMT Subject: CN=694c7b0a-693a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:9d:8d:c8:00:fb:53:ba:48:d5:a8:93:5a:ff: f8:50:eb:7c:cd:b2:86:48:f7:97:57:7d:a5:e3:d5: ab:cc:c7:1f:e8:06:16:9d:3a:68:47:9a:1c:d1:bf: 36:c8:d6:68:ca:02:24:59:96:5a:4b:52:f9:ea:62: 41:a6:4d:54:8d:43:92:2c:f7:9d:89:fc:8f:98:dd: f3:d2:21:d5:2d:82:5c:d7:a9:f0:6e:a3:6f:52:5c: 66:bd:34:e4:ca:b0:92:04:65:78:d6:12:ab:95:86: 46:c2:da:e4:0e:1b:1e:a0:30:a6:1a:a3:7d:71:e2: 75:c3:b5:53:5c:86:91:f4:c5:47:1c:4a:95:a2:d7: 43:97:9c:e3:a4:b6:7b:c7:61:24:22:32:0d:c0:f0: b3:8b:f2:73:2e:6b:6c:b6:a0:8c:d8:3e:eb:3d:14: d7:f7:98:fa:bd:2d:26:26:cd:fb:4f:d9:7d:39:fe: ac:99:a0:db:90:2f:a3:6d:61:f1:53:9a:6b:eb:cb: 41:76:7a:ab:ae:2b:04:ff:e7:1a:48:b4:6d:67:2f: a4:45:cd:63:75:72:f5:15:a2:73:4b:a7:b3:95:3f: 6e:ae:0e:35:29:62:e9:97:07:f6:f4:4f:e8:71:60: 1b:7a:a3:13:4c:3b:09:61:a1:03:1c:02:c3:dd:96: 21:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:DE:74:C7:23:10:04:F6:9E:3E:2A:E0:12:5D:FB:85:36:A0:FA:02 X509v3 Authority Key Identifier: keyid:F1:50:19:20:A5:5F:3A:7C:27:10:39:14:9F:FA:28:A7:C1:CC:38:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B49C0/6CB38358B34411ECABCE2A62C4F9AE02/8VAZIKVfOnwnEDkUn_oop8HMOPE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8VAZIKVfOnwnEDkUn_oop8HMOPE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B49C0/6CB38358B34411ECABCE2A62C4F9AE02/8VAZIKVfOnwnEDkUn_oop8HMOPE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:62:de:d6:84:79:4b:e6:ae:bb:d6:34:6e:45:9b:f9:a3:4e: 7f:ae:0d:2d:b8:8c:a7:0f:9d:08:be:b2:9e:f2:5f:bc:26:bb: db:44:44:dd:0b:0e:4c:b3:0d:fd:75:a0:73:39:bf:8b:4b:a1: e3:ef:0a:df:b6:49:a6:7a:01:56:d6:c4:a8:05:68:9a:c8:77: c1:89:64:82:f7:76:3d:77:58:9b:3b:a3:b8:2b:96:99:c3:b3: 63:c5:2a:c9:0c:8d:6a:dc:c7:1e:a0:9f:c7:71:71:91:55:a3: 2d:40:14:5c:4a:91:fb:98:47:2a:ed:61:9f:5a:cd:b4:18:33: bd:e5:42:45:2b:b8:46:a8:b4:fc:d9:9a:59:a8:69:36:c8:13: 22:69:c2:cb:77:06:be:01:e0:ac:bf:cd:3d:27:03:bb:29:f1: 13:e8:96:40:2a:2f:68:79:67:9d:02:76:b7:a2:4e:15:4e:13: 0f:98:74:a5:62:f6:d2:2a:f9:87:2f:e0:8b:97:3f:82:1d:dc: 75:e1:89:c3:8a:e7:60:6d:8a:80:b6:c5:10:8d:23:f2:91:1a: 47:54:cb:b6:84:36:01:e8:42:ec:9f:f5:c9:d8:9e:ac:c9:94: 8f:9f:be:e3:12:f2:56:c4:5b:62:e3:47:b8:53:8d:40:ea:a6: 81:dc:a6:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA8wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQ5QzAxMTAvBgNVBAUTKEYxNTAxOTIwQTU1RjNBN0MyNzEwMzkxNDlGRkEyOEE3 QzFDQzM4RjEwHhcNMjUxMjI0MjM0NTE0WhcNMjUxMjMxMjM0NTE0WjAYMRYwFAYD VQQDDA02OTRjN2IwYS02OTNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy52NyAD7U7pI1aiTWv/4UOt8zbKGSPeXV32l49WrzMcf6AYWnTpoR5oc0b82 yNZoygIkWZZaS1L56mJBpk1UjUOSLPedifyPmN3z0iHVLYJc16nwbqNvUlxmvTTk yrCSBGV41hKrlYZGwtrkDhseoDCmGqN9ceJ1w7VTXIaR9MVHHEqVotdDl5zjpLZ7 x2EkIjINwPCzi/JzLmtstqCM2D7rPRTX95j6vS0mJs37T9l9Of6smaDbkC+jbWHx U5pr68tBdnqrrisE/+caSLRtZy+kRc1jdXL1FaJzS6ezlT9urg41KWLplwf29E/o cWAbeqMTTDsJYaEDHALD3ZYhMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOvedMcj EAT2nj4q4BJd+4U2oPoCMB8GA1UdIwQYMBaAFPFQGSClXzp8JxA5FJ/6KKfBzDjx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDlDMC82Q0IzODM1OEIz NDQxMUVDQUJDRTJBNjJDNEY5QUUwMi84VkFaSUtWZk9ud25FRGtVbl9vb3A4SE1P UEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhWQVpJS1ZmT253bkVEa1VuX29vcDhITU9QRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDlDMC82Q0IzODM1OEIzNDQxMUVDQUJDRTJBNjJDNEY5QUUwMi84VkFaSUtWZk9u d25FRGtVbl9vb3A4SE1PUEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB1Yt7WhHlL5q671jRuRZv5o05/rg0tuIynD50IvrKe8l+8JrvbRETd Cw5Msw39daBzOb+LS6Hj7wrftkmmegFW1sSoBWiayHfBiWSC93Y9d1ibO6O4K5aZ w7NjxSrJDI1q3MceoJ/HcXGRVaMtQBRcSpH7mEcq7WGfWs20GDO95UJFK7hGqLT8 2ZpZqGk2yBMiacLLdwa+AeCsv809JwO7KfET6JZAKi9oeWedAna3ok4VThMPmHSl YvbSKvmHL+CLlz+CHdx14YnDiudgbYqAtsUQjSPykRpHVMu2hDYB6ELsn/XJ2J6s yZSPn77jEvJWxFti40e4U41A6qaB3KZJ -----END CERTIFICATE-----Generated at Fri Dec 26 23:43:12 2025 by rpki-client