This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB8A3/96650F38FD1711EC82898365C4F9AE02/L8Qw8eIVy9fgjyZDiDcDUALeMak.mft File: L8Qw8eIVy9fgjyZDiDcDUALeMak.mft (raw, json) Hash identifier: evXtBd4/rpSQ/3OJzrPtx3PLrKCaa3azecQUp8tRFJs= Subject key identifier: F4:89:46:B7:34:42:79:CC:99:13:80:83:4B:EE:55:3B:59:D6:8B:D7 Authority key identifier: 2F:C4:30:F1:E2:15:CB:D7:E0:8F:26:43:88:37:03:50:02:DE:31:A9 Certificate issuer: /CN=A91CB8A3/serialNumber=2FC430F1E215CBD7E08F26438837035002DE31A9 Certificate serial: 031D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L8Qw8eIVy9fgjyZDiDcDUALeMak.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB8A3/96650F38FD1711EC82898365C4F9AE02/L8Qw8eIVy9fgjyZDiDcDUALeMak.mft Manifest number: 0311 Signing time: Sun 21 Dec 2025 00:22:34 +0000 Manifest this update: Sun 21 Dec 2025 00:22:34 +0000 Manifest next update: Sun 28 Dec 2025 00:22:34 +0000 Files and hashes: 1: L8Qw8eIVy9fgjyZDiDcDUALeMak.crl (hash: 72O4s/y7GN5QeqIv//oCZVBSLs7XHX1WVHlJJNUr0EA=) 2: 36B29DDC841711F0AB46F416C4F9AE02.roa (hash: mBez32ljXmIU/FGdNqv/QIBBd8Jpz2uUA0e46aOruT4=) 3: 5E616E44841711F0B7A8C63CC4F9AE02.roa (hash: I75VXJWFaD1GwhF1O0TXZ8SEa9d38CWsNr1ZhVLKJs0=) 4: CC1ACE7A6BC711F098C3B76CC4F9AE02.roa (hash: l12GGHb5zU8WFaP5yfw8CrXUTcEdQRcdzqYPOrrqqtY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB8A3/96650F38FD1711EC82898365C4F9AE02/L8Qw8eIVy9fgjyZDiDcDUALeMak.crl rsync://rpki.apnic.net/member_repository/A91CB8A3/96650F38FD1711EC82898365C4F9AE02/L8Qw8eIVy9fgjyZDiDcDUALeMak.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L8Qw8eIVy9fgjyZDiDcDUALeMak.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 00:22:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 797 (0x31d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB8A3, serialNumber=2FC430F1E215CBD7E08F26438837035002DE31A9 Validity Not Before: Dec 21 00:22:34 2025 GMT Not After : Dec 28 00:22:34 2025 GMT Subject: CN=69473dca-a2e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:3f:83:ec:02:9a:48:8f:af:87:ac:28:1f:32: f5:8b:70:9a:27:59:f7:61:53:83:09:38:d9:51:8d: 88:f1:7c:af:90:6d:a1:09:ac:f7:e5:31:d9:73:c9: 11:f6:57:7c:ce:34:df:d1:65:93:39:bd:79:0f:6f: 64:d9:2d:69:4d:fe:2b:6b:44:b6:44:a5:65:1f:2d: 03:0f:34:c4:cb:5b:19:54:0e:c4:21:76:ae:1e:55: a3:80:a3:8c:3f:7c:8b:dc:36:50:eb:41:23:29:3d: 63:6c:f9:19:ac:40:51:75:96:ec:46:8f:5a:0a:20: 5d:73:49:dd:f7:c7:6e:2a:a0:73:5c:ff:77:13:87: 2d:eb:01:cd:a2:9d:72:74:69:81:61:22:c5:98:1f: 06:98:4d:06:bc:99:93:ce:38:7b:6e:a6:bb:4c:47: b2:6f:25:b0:8c:a3:35:21:47:57:15:dc:8b:bc:13: 23:80:08:e5:e0:fa:34:50:0e:21:46:44:16:a4:de: 4f:06:48:8a:8a:50:0d:eb:c5:de:e8:18:7b:27:85: 68:ba:65:27:f9:a9:27:1c:fb:bd:2e:3c:26:b1:1e: 2d:57:e7:63:b4:ba:14:db:0c:d7:f0:37:80:a3:3e: 2e:46:83:3b:78:06:d9:2c:92:a9:0b:cc:d8:e8:8b: d5:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:89:46:B7:34:42:79:CC:99:13:80:83:4B:EE:55:3B:59:D6:8B:D7 X509v3 Authority Key Identifier: keyid:2F:C4:30:F1:E2:15:CB:D7:E0:8F:26:43:88:37:03:50:02:DE:31:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB8A3/96650F38FD1711EC82898365C4F9AE02/L8Qw8eIVy9fgjyZDiDcDUALeMak.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L8Qw8eIVy9fgjyZDiDcDUALeMak.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB8A3/96650F38FD1711EC82898365C4F9AE02/L8Qw8eIVy9fgjyZDiDcDUALeMak.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:0c:b2:83:6b:2f:79:34:f9:8b:fa:ad:21:fe:30:17:a2:fc: e3:03:bc:ff:15:dd:04:c5:a4:e6:c0:04:f1:f9:14:94:92:a9: 16:9d:6b:a7:53:a4:8d:a8:af:7d:76:12:7f:68:0c:0c:df:46: a0:fa:96:6b:d6:b1:cf:25:e3:cc:a5:cc:ce:5d:41:0d:be:b9: ea:43:ec:2d:6f:7f:9e:2e:19:d9:a4:77:7c:68:63:35:e5:0d: 8d:44:5b:82:ee:5c:20:39:c6:28:cf:02:f2:f7:49:5b:30:ab: 42:eb:5c:ea:22:3b:e3:4e:d6:ae:98:0c:68:42:3e:76:fa:a5: ec:12:db:e3:17:9e:de:1e:8b:be:8b:8a:b7:13:9d:0f:9b:15: f6:d7:7a:91:52:79:69:0b:62:e3:2d:c3:84:93:7d:05:fa:f0: ff:d0:b4:9e:66:c7:de:9a:7b:c6:af:2e:6b:5a:e8:e2:0e:ca: 42:fe:6d:23:a9:d7:38:27:5d:94:8d:00:15:15:13:ff:7a:09: 20:40:e2:98:20:5b:33:a5:c9:cf:1e:b5:73:ef:ef:c7:bf:a5: ff:6c:23:e8:4f:46:6e:63:ee:ee:84:14:f9:c8:b1:50:5e:76: 2b:2f:f7:c4:8d:87:2c:43:bd:71:a6:57:1a:53:2d:db:68:b4: d6:1c:c1:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAx0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0I4QTMxMTAvBgNVBAUTKDJGQzQzMEYxRTIxNUNCRDdFMDhGMjY0Mzg4MzcwMzUw MDJERTMxQTkwHhcNMjUxMjIxMDAyMjM0WhcNMjUxMjI4MDAyMjM0WjAYMRYwFAYD VQQDDA02OTQ3M2RjYS1hMmU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1T+D7AKaSI+vh6woHzL1i3CaJ1n3YVODCTjZUY2I8XyvkG2hCaz35THZc8kR 9ld8zjTf0WWTOb15D29k2S1pTf4ra0S2RKVlHy0DDzTEy1sZVA7EIXauHlWjgKOM P3yL3DZQ60EjKT1jbPkZrEBRdZbsRo9aCiBdc0nd98duKqBzXP93E4ct6wHNop1y dGmBYSLFmB8GmE0GvJmTzjh7bqa7TEeybyWwjKM1IUdXFdyLvBMjgAjl4Po0UA4h RkQWpN5PBkiKilAN68Xe6Bh7J4VoumUn+aknHPu9LjwmsR4tV+djtLoU2wzX8DeA oz4uRoM7eAbZLJKpC8zY6IvVNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPSJRrc0 QnnMmROAg0vuVTtZ1ovXMB8GA1UdIwQYMBaAFC/EMPHiFcvX4I8mQ4g3A1AC3jGp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjhBMy85NjY1MEYzOEZE MTcxMUVDODI4OTgzNjVDNEY5QUUwMi9MOFF3OGVJVnk5ZmdqeVpEaURjRFVBTGVN YWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0w4UXc4ZUlWeTlmZ2p5WkRpRGNEVUFMZU1hay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QjhBMy85NjY1MEYzOEZEMTcxMUVDODI4OTgzNjVDNEY5QUUwMi9MOFF3OGVJVnk5 ZmdqeVpEaURjRFVBTGVNYWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLDLKDay95NPmL+q0h/jAXovzjA7z/Fd0ExaTmwATx+RSUkqkWnWun U6SNqK99dhJ/aAwM30ag+pZr1rHPJePMpczOXUENvrnqQ+wtb3+eLhnZpHd8aGM1 5Q2NRFuC7lwgOcYozwLy90lbMKtC61zqIjvjTtaumAxoQj52+qXsEtvjF57eHou+ i4q3E50PmxX213qRUnlpC2LjLcOEk30F+vD/0LSeZsfemnvGry5rWujiDspC/m0j qdc4J12UjQAVFRP/egkgQOKYIFszpcnPHrVz7+/Hv6X/bCPoT0ZuY+7uhBT5yLFQ XnYrL/fEjYcsQ71xplcaUy3baLTWHMG7 -----END CERTIFICATE-----Generated at Sun Dec 21 19:25:02 2025 by rpki-client