This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF8D1/7C4E34BC675511EAA087302BC4F9AE02/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.mft File: 8EZlk8K2zqnL8C4mqua_eQ9Sfqg.mft (raw, json) Hash identifier: 2XIqChynq3dXn+0Ognf9/ROqu0K9qeeA6XR/7TP/n4U= Subject key identifier: E3:B9:D9:96:17:7F:C0:65:9D:E4:7A:85:66:6F:32:72:BA:50:F8:AF Authority key identifier: F0:46:65:93:C2:B6:CE:A9:CB:F0:2E:26:AA:E6:BF:79:0F:52:7E:A8 Certificate issuer: /CN=A91BF8D1/serialNumber=F0466593C2B6CEA9CBF02E26AAE6BF790F527EA8 Certificate serial: 0ABF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF8D1/7C4E34BC675511EAA087302BC4F9AE02/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.mft Manifest number: 0AB7 Signing time: Sat 20 Dec 2025 19:00:13 +0000 Manifest this update: Sat 20 Dec 2025 19:00:12 +0000 Manifest next update: Sat 27 Dec 2025 19:00:12 +0000 Files and hashes: 1: 8EZlk8K2zqnL8C4mqua_eQ9Sfqg.crl (hash: ROL/Q/l7SeF6XEwWScJ4z0+kJ7GkHIYgrtScpmxcF08=) 2: 19250B84675711EAA928E22DC4F9AE02.roa (hash: bm4J9Gs8kg53MtutKeTvvvRSq0MtCTJcSE5YLit7Dts=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF8D1/7C4E34BC675511EAA087302BC4F9AE02/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.crl rsync://rpki.apnic.net/member_repository/A91BF8D1/7C4E34BC675511EAA087302BC4F9AE02/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 19:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2751 (0xabf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF8D1, serialNumber=F0466593C2B6CEA9CBF02E26AAE6BF790F527EA8 Validity Not Before: Dec 20 19:00:12 2025 GMT Not After : Dec 27 19:00:12 2025 GMT Subject: CN=6946f23d-1a8c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:30:70:b8:00:af:98:8e:5c:65:a7:32:30:f6: ec:48:c7:82:00:2c:17:62:62:01:93:d8:03:6f:0d: d9:05:6c:93:cd:3f:35:16:2c:79:b6:37:05:68:27: d8:ec:96:bf:7f:f8:46:1c:5a:c7:34:a8:f1:b8:55: 05:3f:49:b5:13:ac:33:5d:a1:8c:44:22:44:4c:66: 30:f7:74:96:f5:c7:b6:ed:5d:f7:df:17:57:30:17: b2:fe:15:ed:04:c4:93:89:d7:fd:45:cc:a5:4f:f8: 8e:e9:99:6a:86:9f:0e:93:d3:1e:90:c1:96:04:a1: a6:8f:df:a3:0b:fe:65:ba:38:6f:c8:fe:fe:c8:1e: 74:2c:da:71:c8:f0:8e:f6:d8:84:e7:1f:f7:aa:86: 8e:69:3e:6e:3f:86:01:5c:37:c9:fa:ee:74:16:de: 45:75:a5:ee:4c:05:70:e5:c8:5a:1b:60:32:c3:2f: 10:fc:d3:da:96:21:fa:3c:a3:6a:6c:98:80:ec:ad: 58:9b:aa:21:bf:02:26:0e:48:8c:3f:5b:af:fa:c2: 17:c2:ec:94:53:87:6f:0f:35:cc:92:66:6e:a5:f1: c7:d3:05:8e:30:02:b5:ff:17:bb:fe:42:2e:a3:75: f6:50:1c:0a:64:bf:a1:4f:b4:46:23:4f:72:98:22: b6:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:B9:D9:96:17:7F:C0:65:9D:E4:7A:85:66:6F:32:72:BA:50:F8:AF X509v3 Authority Key Identifier: keyid:F0:46:65:93:C2:B6:CE:A9:CB:F0:2E:26:AA:E6:BF:79:0F:52:7E:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF8D1/7C4E34BC675511EAA087302BC4F9AE02/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF8D1/7C4E34BC675511EAA087302BC4F9AE02/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:2c:97:ef:db:2f:61:41:d0:95:92:76:cb:e9:2f:1e:33:97: d1:9c:f5:57:46:28:8d:92:44:e1:67:38:1e:8a:69:2d:16:af: 35:57:85:fd:d4:07:7e:fc:ed:d1:10:5c:e7:62:f3:16:5f:3e: c1:af:4b:eb:9b:94:87:1e:5b:d2:82:1a:23:ce:d5:b8:fe:07: 66:d4:47:3e:a7:2b:82:b4:5d:d7:91:02:7a:5a:8c:ed:7f:b0: e3:84:75:69:47:30:c0:c9:9a:21:47:3d:76:e4:00:d4:4a:26: a8:b9:e8:bd:16:9f:cb:4a:1a:b8:c5:a5:51:cb:20:81:fd:f6: e6:52:a6:af:ed:0f:b0:70:57:b3:cc:9b:db:32:63:e0:4a:e5: 4a:3d:a2:78:61:22:d1:a9:a1:e2:99:f6:0f:00:88:90:7e:d7: c3:4a:f5:3d:81:aa:bd:ff:54:8d:99:bb:a9:40:c0:03:33:bf: 6b:c8:e7:2b:31:dc:d5:64:81:80:76:1b:dd:ed:79:87:5d:1f: b3:3e:87:7f:eb:92:40:4c:9c:9a:5d:d3:ef:23:3a:b6:30:2f: 5f:ce:a5:da:b4:86:80:38:fa:4b:ff:bf:5a:f2:3f:18:91:e5: b3:1f:92:62:f4:f5:04:c9:24:6f:0d:84:26:17:6b:8b:bd:5f: 0d:8a:4d:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCr8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkY4RDExMTAvBgNVBAUTKEYwNDY2NTkzQzJCNkNFQTlDQkYwMkUyNkFBRTZCRjc5 MEY1MjdFQTgwHhcNMjUxMjIwMTkwMDEyWhcNMjUxMjI3MTkwMDEyWjAYMRYwFAYD VQQDDA02OTQ2ZjIzZC0xYThjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9TBwuACvmI5cZacyMPbsSMeCACwXYmIBk9gDbw3ZBWyTzT81Fix5tjcFaCfY 7Ja/f/hGHFrHNKjxuFUFP0m1E6wzXaGMRCJETGYw93SW9ce27V333xdXMBey/hXt BMSTidf9RcylT/iO6Zlqhp8Ok9MekMGWBKGmj9+jC/5lujhvyP7+yB50LNpxyPCO 9tiE5x/3qoaOaT5uP4YBXDfJ+u50Ft5FdaXuTAVw5chaG2Aywy8Q/NPaliH6PKNq bJiA7K1Ym6ohvwImDkiMP1uv+sIXwuyUU4dvDzXMkmZupfHH0wWOMAK1/xe7/kIu o3X2UBwKZL+hT7RGI09ymCK2YwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOO52ZYX f8BlneR6hWZvMnK6UPivMB8GA1UdIwQYMBaAFPBGZZPCts6py/AuJqrmv3kPUn6o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjhEMS83QzRFMzRCQzY3 NTUxMUVBQTA4NzMwMkJDNEY5QUUwMi84RVpsazhLMnpxbkw4QzRtcXVhX2VROVNm cWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhFWmxrOEsyenFuTDhDNG1xdWFfZVE5U2ZxZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RjhEMS83QzRFMzRCQzY3NTUxMUVBQTA4NzMwMkJDNEY5QUUwMi84RVpsazhLMnpx bkw4QzRtcXVhX2VROVNmcWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfLJfv2y9hQdCVknbL6S8eM5fRnPVXRiiNkkThZzgeimktFq81V4X9 1Ad+/O3REFznYvMWXz7Br0vrm5SHHlvSghojztW4/gdm1Ec+pyuCtF3XkQJ6Wozt f7DjhHVpRzDAyZohRz125ADUSiaouei9Fp/LShq4xaVRyyCB/fbmUqav7Q+wcFez zJvbMmPgSuVKPaJ4YSLRqaHimfYPAIiQftfDSvU9gaq9/1SNmbupQMADM79ryOcr MdzVZIGAdhvd7XmHXR+zPod/65JATJyaXdPvIzq2MC9fzqXatIaAOPpL/79a8j8Y keWzH5Ji9PUEySRvDYQmF2uLvV8Nik1E -----END CERTIFICATE-----Generated at Mon Dec 22 07:59:03 2025 by rpki-client