This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D112B/1CD0E0502F3411EB97FE1786C4F9AE02/8Esk0kgu8B-It9DWKlOSJzm3iA0.mft File: 8Esk0kgu8B-It9DWKlOSJzm3iA0.mft (raw, json) Hash identifier: sUIvsnEvgEubtmCcXhpY+uOcqpvI3gDevjaxjw96ars= Subject key identifier: B5:02:24:9E:95:41:45:1A:F9:92:37:BF:81:C5:E7:8C:A9:71:00:8B Authority key identifier: F0:4B:24:D2:48:2E:F0:1F:88:B7:D0:D6:2A:53:92:27:39:B7:88:0D Certificate issuer: /CN=A91D112B/serialNumber=F04B24D2482EF01F88B7D0D62A53922739B7880D Certificate serial: 07B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8Esk0kgu8B-It9DWKlOSJzm3iA0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D112B/1CD0E0502F3411EB97FE1786C4F9AE02/8Esk0kgu8B-It9DWKlOSJzm3iA0.mft Manifest number: 07A6 Signing time: Fri 26 Dec 2025 20:45:34 +0000 Manifest this update: Fri 26 Dec 2025 20:45:34 +0000 Manifest next update: Fri 02 Jan 2026 20:45:34 +0000 Files and hashes: 1: 8Esk0kgu8B-It9DWKlOSJzm3iA0.crl (hash: keqxe8wHpkFFINeRRDknC2/ZDQEE/t5ETqGdxzGt4Cg=) 2: D00FC228F46111ECA631AC55C4F9AE02.roa (hash: LAD7dRCik0KzxFNr8quzKbBZIsig686rpItw8aFMMeA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D112B/1CD0E0502F3411EB97FE1786C4F9AE02/8Esk0kgu8B-It9DWKlOSJzm3iA0.crl rsync://rpki.apnic.net/member_repository/A91D112B/1CD0E0502F3411EB97FE1786C4F9AE02/8Esk0kgu8B-It9DWKlOSJzm3iA0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8Esk0kgu8B-It9DWKlOSJzm3iA0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 Jan 2026 20:45:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1968 (0x7b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D112B, serialNumber=F04B24D2482EF01F88B7D0D62A53922739B7880D Validity Not Before: Dec 26 20:45:34 2025 GMT Not After : Jan 2 20:45:34 2026 GMT Subject: CN=694ef3ee-a3e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:a9:83:8b:2e:64:c5:53:11:c5:1b:83:11:ec: f1:5d:8a:6c:d3:76:c4:93:49:29:7c:35:69:3f:25: b9:02:13:37:c7:0d:a9:88:41:e2:41:b2:4a:44:fb: ca:5e:3e:d9:11:f0:01:a4:9d:4c:be:ed:a8:33:08: c7:d0:8d:32:f3:f9:e2:fa:64:9e:a5:df:da:b2:c5: 71:eb:19:28:a2:a4:f2:bc:20:ed:2a:19:97:96:5a: 7e:12:60:f0:90:ed:9f:b1:99:83:df:66:5f:9d:4a: 52:01:81:cc:d6:13:48:d5:bf:39:c9:ab:37:bc:5f: ea:59:ee:41:99:61:71:c2:78:8d:e4:0d:2f:6e:de: 95:6e:76:37:1a:d2:73:45:18:d9:02:77:b9:eb:ae: 70:f5:bb:53:d7:54:e3:5a:22:63:22:5b:a2:90:7e: 66:12:56:8c:96:a1:df:7b:4e:d9:39:8f:44:55:02: 8c:7e:50:64:3e:f4:20:ba:2c:c3:8e:9f:9e:5e:b3: a5:e5:f9:e0:2c:67:34:35:da:49:22:28:bd:1e:79: d8:c6:85:12:51:64:e3:73:77:54:9a:f0:c5:e0:d4: 3a:f3:d2:06:1b:16:4b:2d:ee:03:d4:84:2f:f8:9c: dc:66:0d:f9:78:cc:8c:ce:53:1b:ca:09:f2:a7:bc: 3a:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:02:24:9E:95:41:45:1A:F9:92:37:BF:81:C5:E7:8C:A9:71:00:8B X509v3 Authority Key Identifier: keyid:F0:4B:24:D2:48:2E:F0:1F:88:B7:D0:D6:2A:53:92:27:39:B7:88:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D112B/1CD0E0502F3411EB97FE1786C4F9AE02/8Esk0kgu8B-It9DWKlOSJzm3iA0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8Esk0kgu8B-It9DWKlOSJzm3iA0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D112B/1CD0E0502F3411EB97FE1786C4F9AE02/8Esk0kgu8B-It9DWKlOSJzm3iA0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:02:71:8c:1d:dd:2e:1f:41:9d:06:35:a1:0f:bd:a5:9f:fe: a5:87:9e:25:12:5c:c5:46:8f:da:e6:fa:c3:47:27:25:c5:6a: 3b:14:45:dd:c3:f7:d8:0f:b8:a8:2c:ca:33:6e:33:63:37:12: 4e:6d:d4:12:fd:64:7d:a0:cc:81:68:a1:fa:de:fe:6d:a1:25: 76:13:12:37:9a:ff:f9:ee:01:44:6f:2b:5d:b8:ab:44:58:7a: 53:c0:d3:41:c3:a1:c0:bb:11:21:ae:1f:cb:9c:43:bc:14:1d: d4:a3:4d:5a:04:ba:f9:b8:73:8e:8d:98:ab:9c:a0:ee:d4:0d: 50:bc:f4:94:00:f3:93:43:c9:ad:94:bc:f8:2e:da:e0:b1:a7: 19:c1:17:98:33:e4:bf:79:ba:82:8e:83:cc:c3:b0:de:6a:3f: 84:a2:9e:29:13:d0:a9:6b:a9:5f:e5:c9:13:c3:e8:b7:2b:76: 64:b2:0c:4f:42:39:f2:8a:30:1b:a6:ae:ee:f1:aa:6f:cf:b0: 1b:20:f7:83:e5:e9:bd:c9:e6:1b:b3:4f:02:ae:74:51:f6:33: cb:f0:3a:a7:23:a3:ef:3d:c7:a8:48:a3:66:a0:4c:f9:02:06: a9:93:78:b8:c2:0c:b6:c1:03:f2:ed:f1:df:9c:8a:cb:dc:37: 34:30:8f:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB7AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDExMkIxMTAvBgNVBAUTKEYwNEIyNEQyNDgyRUYwMUY4OEI3RDBENjJBNTM5MjI3 MzlCNzg4MEQwHhcNMjUxMjI2MjA0NTM0WhcNMjYwMTAyMjA0NTM0WjAYMRYwFAYD VQQDDA02OTRlZjNlZS1hM2UwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1qmDiy5kxVMRxRuDEezxXYps03bEk0kpfDVpPyW5AhM3xw2piEHiQbJKRPvK Xj7ZEfABpJ1Mvu2oMwjH0I0y8/ni+mSepd/assVx6xkooqTyvCDtKhmXllp+EmDw kO2fsZmD32ZfnUpSAYHM1hNI1b85yas3vF/qWe5BmWFxwniN5A0vbt6VbnY3GtJz RRjZAne5665w9btT11TjWiJjIluikH5mElaMlqHfe07ZOY9EVQKMflBkPvQguizD jp+eXrOl5fngLGc0NdpJIii9HnnYxoUSUWTjc3dUmvDF4NQ689IGGxZLLe4D1IQv +JzcZg35eMyMzlMbygnyp7w6XQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLUCJJ6V QUUa+ZI3v4HF54ypcQCLMB8GA1UdIwQYMBaAFPBLJNJILvAfiLfQ1ipTkic5t4gN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTEyQi8xQ0QwRTA1MDJG MzQxMUVCOTdGRTE3ODZDNEY5QUUwMi84RXNrMGtndThCLUl0OURXS2xPU0p6bTNp QTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhFc2swa2d1OEItSXQ5RFdLbE9TSnptM2lBMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTEyQi8xQ0QwRTA1MDJGMzQxMUVCOTdGRTE3ODZDNEY5QUUwMi84RXNrMGtndThC LUl0OURXS2xPU0p6bTNpQTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCxAnGMHd0uH0GdBjWhD72ln/6lh54lElzFRo/a5vrDRyclxWo7FEXd w/fYD7ioLMozbjNjNxJObdQS/WR9oMyBaKH63v5toSV2ExI3mv/57gFEbytduKtE WHpTwNNBw6HAuxEhrh/LnEO8FB3Uo01aBLr5uHOOjZirnKDu1A1QvPSUAPOTQ8mt lLz4LtrgsacZwReYM+S/ebqCjoPMw7Deaj+Eop4pE9Cpa6lf5ckTw+i3K3ZksgxP QjnyijAbpq7u8apvz7AbIPeD5em9yeYbs08CrnRR9jPL8DqnI6PvPceoSKNmoEz5 Agapk3i4wgy2wQPy7fHfnIrL3Dc0MI/7 -----END CERTIFICATE-----Generated at Sat Dec 27 11:06:33 2025 by rpki-client