This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0372/20A54FC89D8511EE9181C121C4F9AE02/8psj6k4RTNycptN_Xvee9MNccoI.mft File: 8psj6k4RTNycptN_Xvee9MNccoI.mft (raw, json) Hash identifier: /Si1OIyvg8xnJIvdiDrpbDiUt5nlA3CULpIOWIqhENU= Subject key identifier: F3:82:AE:A0:9C:45:73:5D:01:21:52:F6:D3:8B:D7:46:B9:D5:6E:FD Authority key identifier: F2:9B:23:EA:4E:11:4C:DC:9C:A6:D3:7F:5E:F7:9E:F4:C3:5C:72:82 Certificate issuer: /CN=A91C0372/serialNumber=F29B23EA4E114CDC9CA6D37F5EF79EF4C35C7282 Certificate serial: 017A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8psj6k4RTNycptN_Xvee9MNccoI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0372/20A54FC89D8511EE9181C121C4F9AE02/8psj6k4RTNycptN_Xvee9MNccoI.mft Manifest number: 0177 Signing time: Fri 19 Dec 2025 02:59:04 +0000 Manifest this update: Fri 19 Dec 2025 02:59:03 +0000 Manifest next update: Fri 26 Dec 2025 02:59:03 +0000 Files and hashes: 1: 8psj6k4RTNycptN_Xvee9MNccoI.crl (hash: xz5PiMrSJTE7l4kF+KzLFg/2YtMayZLARJvCiyiUj2A=) 2: 4B42335C9D8711EEAF2A6E25C4F9AE02.roa (hash: fBtaOlMCOFGQQtGdBagxQGnrYFNg/qX3d4dMpzhuZnA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0372/20A54FC89D8511EE9181C121C4F9AE02/8psj6k4RTNycptN_Xvee9MNccoI.crl rsync://rpki.apnic.net/member_repository/A91C0372/20A54FC89D8511EE9181C121C4F9AE02/8psj6k4RTNycptN_Xvee9MNccoI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8psj6k4RTNycptN_Xvee9MNccoI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 02:59:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 378 (0x17a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0372, serialNumber=F29B23EA4E114CDC9CA6D37F5EF79EF4C35C7282 Validity Not Before: Dec 19 02:59:03 2025 GMT Not After : Dec 26 02:59:03 2025 GMT Subject: CN=6944bf77-1743 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:b5:a6:a5:3a:ad:51:b9:f9:fd:fd:aa:92:9a: 25:b9:64:9f:83:b7:d8:15:3f:1f:11:03:19:97:b0: 86:d9:e5:1f:94:24:2f:04:6a:3e:a0:ba:f9:c3:58: e2:a4:bf:8e:eb:5a:9e:b8:52:21:85:d5:01:e6:61: b5:f5:1f:09:a0:b9:21:74:f1:8f:66:8b:b6:5a:ac: 0f:c0:f6:11:1c:ba:c0:27:8a:78:d4:dc:06:cf:7c: 9f:93:d9:bf:ec:86:e1:3b:fc:ce:d5:94:e8:69:85: ec:e7:07:11:42:d6:3b:f1:4d:3b:26:fb:5a:3b:fd: c4:52:9a:44:24:c8:e3:5c:0e:58:2f:3b:57:e0:55: 2e:e1:15:44:cf:ef:a2:47:c2:ad:db:ac:39:a3:e0: 93:00:e3:2d:bd:77:4e:67:5f:18:6b:8e:28:e4:3c: 4b:a1:78:6e:e0:82:e3:2b:13:7c:ef:f6:b8:d8:f1: ff:60:62:ed:32:05:72:5e:82:32:e4:5b:ec:8e:65: a5:48:ad:c4:26:7c:df:d0:24:f9:36:80:c9:af:72: 63:3e:cc:53:69:df:bb:a1:5a:49:a0:20:7d:80:55: da:e8:89:a4:d7:f3:14:11:eb:9a:6b:95:77:10:26: 53:b0:d9:d5:d6:1e:4e:e7:a1:7e:b5:83:71:2f:f2: c4:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:82:AE:A0:9C:45:73:5D:01:21:52:F6:D3:8B:D7:46:B9:D5:6E:FD X509v3 Authority Key Identifier: keyid:F2:9B:23:EA:4E:11:4C:DC:9C:A6:D3:7F:5E:F7:9E:F4:C3:5C:72:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0372/20A54FC89D8511EE9181C121C4F9AE02/8psj6k4RTNycptN_Xvee9MNccoI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8psj6k4RTNycptN_Xvee9MNccoI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0372/20A54FC89D8511EE9181C121C4F9AE02/8psj6k4RTNycptN_Xvee9MNccoI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:9a:99:28:5a:83:a2:70:3c:1c:1b:64:cb:c3:ee:df:6c:35: 65:07:71:7c:16:60:38:25:69:b1:52:2f:ee:31:fc:17:d1:58: 6b:61:e4:74:cb:96:28:98:d6:0c:47:c6:9c:79:35:33:de:99: 0b:c1:36:66:2b:3e:8c:77:57:19:ac:38:9d:97:e5:57:46:db: 2f:16:f3:ff:4b:4b:70:9c:94:76:34:b3:e5:46:eb:ce:06:73: e2:81:fa:a9:e0:5e:ca:54:21:65:a6:ba:57:7d:62:29:5f:0b: 3a:a8:14:c5:b8:7b:7b:50:98:12:81:05:2b:4c:d6:c3:0a:75: 11:83:5b:d9:45:05:0e:ec:ee:94:57:d5:93:30:a4:b1:fe:97: 31:c8:17:f7:99:6d:20:da:7a:2f:f9:64:61:12:5c:23:f9:3c: 10:12:6f:bd:14:41:81:cd:63:37:10:1f:90:4b:ae:ef:33:7a: b6:5d:6d:94:db:0f:21:84:07:1a:3f:c4:53:33:52:73:21:2c: 3e:63:86:26:53:32:4d:22:9e:c4:a3:33:ac:84:19:cb:22:61: 7b:03:36:19:34:ef:a7:e1:f6:b9:ce:f2:23:e2:0d:4e:45:cd: 08:ed:34:9e:b2:73:a9:40:3a:c2:b9:a4:06:7d:9a:53:e2:27: 90:c5:48:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzAzNzIxMTAvBgNVBAUTKEYyOUIyM0VBNEUxMTRDREM5Q0E2RDM3RjVFRjc5RUY0 QzM1QzcyODIwHhcNMjUxMjE5MDI1OTAzWhcNMjUxMjI2MDI1OTAzWjAYMRYwFAYD VQQDDA02OTQ0YmY3Ny0xNzQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqrWmpTqtUbn5/f2qkpoluWSfg7fYFT8fEQMZl7CG2eUflCQvBGo+oLr5w1ji pL+O61qeuFIhhdUB5mG19R8JoLkhdPGPZou2WqwPwPYRHLrAJ4p41NwGz3yfk9m/ 7IbhO/zO1ZToaYXs5wcRQtY78U07JvtaO/3EUppEJMjjXA5YLztX4FUu4RVEz++i R8Kt26w5o+CTAOMtvXdOZ18Ya44o5DxLoXhu4ILjKxN87/a42PH/YGLtMgVyXoIy 5FvsjmWlSK3EJnzf0CT5NoDJr3JjPsxTad+7oVpJoCB9gFXa6Imk1/MUEeuaa5V3 ECZTsNnV1h5O56F+tYNxL/LEBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPOCrqCc RXNdASFS9tOL10a51W79MB8GA1UdIwQYMBaAFPKbI+pOEUzcnKbTf173nvTDXHKC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMDM3Mi8yMEE1NEZDODlE ODUxMUVFOTE4MUMxMjFDNEY5QUUwMi84cHNqNms0UlROeWNwdE5fWHZlZTlNTmNj b0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhwc2o2azRSVE55Y3B0Tl9YdmVlOU1OY2NvSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MDM3Mi8yMEE1NEZDODlEODUxMUVFOTE4MUMxMjFDNEY5QUUwMi84cHNqNms0UlRO eWNwdE5fWHZlZTlNTmNjb0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVmpkoWoOicDwcG2TLw+7fbDVlB3F8FmA4JWmxUi/uMfwX0VhrYeR0 y5YomNYMR8aceTUz3pkLwTZmKz6Md1cZrDidl+VXRtsvFvP/S0twnJR2NLPlRuvO BnPigfqp4F7KVCFlprpXfWIpXws6qBTFuHt7UJgSgQUrTNbDCnURg1vZRQUO7O6U V9WTMKSx/pcxyBf3mW0g2nov+WRhElwj+TwQEm+9FEGBzWM3EB+QS67vM3q2XW2U 2w8hhAcaP8RTM1JzISw+Y4YmUzJNIp7EozOshBnLImF7AzYZNO+n4fa5zvIj4g1O Rc0I7TSesnOpQDrCuaQGfZpT4ieQxUgv -----END CERTIFICATE-----Generated at Fri Dec 19 19:06:02 2025 by rpki-client