This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D14EF/26401006860B11EB91C12D63C4F9AE02/8bZbeXYWOXNS7L1KLHdPz37G1HA.mft File: 8bZbeXYWOXNS7L1KLHdPz37G1HA.mft (raw, json) Hash identifier: VGF9fXtPuAEdLRhpstaWExy43bU0dFXrVXZEUxeqRCE= Subject key identifier: 2C:2D:B9:1B:81:C6:59:1F:9E:1A:71:B3:52:75:0D:0D:16:98:21:FA Authority key identifier: F1:B6:5B:79:76:16:39:73:52:EC:BD:4A:2C:77:4F:CF:7E:C6:D4:70 Certificate issuer: /CN=A91D14EF/serialNumber=F1B65B797616397352ECBD4A2C774FCF7EC6D470 Certificate serial: 06C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bZbeXYWOXNS7L1KLHdPz37G1HA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D14EF/26401006860B11EB91C12D63C4F9AE02/8bZbeXYWOXNS7L1KLHdPz37G1HA.mft Manifest number: 06C0 Signing time: Sun 28 Dec 2025 21:27:20 +0000 Manifest this update: Sun 28 Dec 2025 21:27:20 +0000 Manifest next update: Sun 04 Jan 2026 21:27:20 +0000 Files and hashes: 1: 8bZbeXYWOXNS7L1KLHdPz37G1HA.crl (hash: L7aTUu0IeEN5GThV3SuQpqL17+RKjFVplWui43xxLHk=) 2: 226402B0860D11EB8F541B68C4F9AE02.roa (hash: oKHV5TBmq4GqrFfr2VIYxjHb/BXfTV1fp7LSb6WOO9s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D14EF/26401006860B11EB91C12D63C4F9AE02/8bZbeXYWOXNS7L1KLHdPz37G1HA.crl rsync://rpki.apnic.net/member_repository/A91D14EF/26401006860B11EB91C12D63C4F9AE02/8bZbeXYWOXNS7L1KLHdPz37G1HA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bZbeXYWOXNS7L1KLHdPz37G1HA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 Jan 2026 21:27:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1734 (0x6c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D14EF, serialNumber=F1B65B797616397352ECBD4A2C774FCF7EC6D470 Validity Not Before: Dec 28 21:27:20 2025 GMT Not After : Jan 4 21:27:20 2026 GMT Subject: CN=6951a0b8-3697 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:ac:85:56:d7:13:b0:92:69:1e:bd:63:c3:34: d0:81:cf:69:b0:29:2e:89:9e:ff:32:e1:11:a0:5f: f5:98:6e:12:d0:b4:67:74:34:23:36:ce:87:99:67: a9:8a:3b:0f:7f:61:f4:e6:fb:e8:b2:9f:58:3d:7a: e7:0a:bf:6c:f1:a9:fa:3f:37:b4:3e:80:17:30:40: c4:1c:af:7b:e1:cf:02:4a:29:a9:d9:87:c7:bd:09: 6b:a5:d1:29:18:fc:84:f0:2c:70:f5:45:4d:7c:38: 1d:db:29:fb:3d:a3:ef:75:8a:1e:35:96:bf:3c:83: a0:54:5c:3c:02:62:ed:c5:68:3b:34:67:96:62:90: 93:69:d4:e3:c5:a6:e9:26:e0:b5:6d:65:0d:5c:52: f9:d3:4a:27:4e:9f:4f:49:d2:97:f7:f3:5f:e8:fe: 91:ba:54:33:05:06:dd:64:e8:55:71:5b:b0:6a:08: b7:ef:bf:68:f0:42:f7:cb:20:8a:40:31:92:b3:33: 1e:f8:3f:35:10:84:da:94:7c:f6:e3:70:bf:9a:13: 96:c0:45:70:e9:5e:65:fa:ad:70:9b:b8:6a:2f:3a: 00:0d:82:76:0b:9a:5d:7c:03:5d:36:22:d9:61:e5: 74:be:06:c9:a0:93:6c:30:26:99:24:6e:5b:a1:f0: a5:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:2D:B9:1B:81:C6:59:1F:9E:1A:71:B3:52:75:0D:0D:16:98:21:FA X509v3 Authority Key Identifier: keyid:F1:B6:5B:79:76:16:39:73:52:EC:BD:4A:2C:77:4F:CF:7E:C6:D4:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D14EF/26401006860B11EB91C12D63C4F9AE02/8bZbeXYWOXNS7L1KLHdPz37G1HA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bZbeXYWOXNS7L1KLHdPz37G1HA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D14EF/26401006860B11EB91C12D63C4F9AE02/8bZbeXYWOXNS7L1KLHdPz37G1HA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:d4:42:c2:81:33:d8:b2:1b:4a:7d:cf:de:19:8f:d5:fc:25: 58:af:e5:29:f3:39:ee:e7:22:bf:9b:c1:8f:36:04:18:6c:48: ad:dd:02:37:84:d9:b4:4a:d5:2d:d1:83:16:99:06:7d:9e:9d: f1:47:89:ea:2c:35:58:0e:85:74:25:8c:46:c6:eb:d3:4a:ac: 75:5d:6e:82:79:c9:c2:b5:26:e9:cf:86:47:53:5f:49:c3:bf: 0e:a3:2f:03:78:47:87:95:3d:bc:25:b8:89:88:fa:a8:bc:73: 9a:a4:a3:6f:64:bc:77:71:15:ac:92:b5:71:1a:03:e2:f7:a7: a5:66:70:be:78:10:9f:21:fc:53:fe:de:8a:35:78:b1:3e:18: 73:a1:ca:44:56:33:c4:10:ed:88:8e:df:60:83:5a:7b:61:94: 1a:fe:85:3e:ae:9e:15:e5:8d:95:43:d0:cc:01:0b:99:a0:1f: 66:26:e1:3e:bb:f5:46:0a:13:e2:56:35:20:1f:6c:d9:00:f1: 77:fa:83:ae:df:df:d5:40:80:fa:72:35:93:3c:bb:38:9a:16: 07:11:7c:ec:35:82:7b:22:60:90:1b:39:1d:92:70:a4:a5:6f: 7c:d5:2e:c0:44:95:de:f0:2e:6d:bd:69:49:16:dd:06:89:d7: 0e:b5:61:80 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBsYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDE0RUYxMTAvBgNVBAUTKEYxQjY1Qjc5NzYxNjM5NzM1MkVDQkQ0QTJDNzc0RkNG N0VDNkQ0NzAwHhcNMjUxMjI4MjEyNzIwWhcNMjYwMTA0MjEyNzIwWjAYMRYwFAYD VQQDDA02OTUxYTBiOC0zNjk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvKyFVtcTsJJpHr1jwzTQgc9psCkuiZ7/MuERoF/1mG4S0LRndDQjNs6HmWep ijsPf2H05vvosp9YPXrnCr9s8an6Pze0PoAXMEDEHK974c8CSimp2YfHvQlrpdEp GPyE8Cxw9UVNfDgd2yn7PaPvdYoeNZa/PIOgVFw8AmLtxWg7NGeWYpCTadTjxabp JuC1bWUNXFL500onTp9PSdKX9/Nf6P6RulQzBQbdZOhVcVuwagi3779o8EL3yyCK QDGSszMe+D81EITalHz243C/mhOWwEVw6V5l+q1wm7hqLzoADYJ2C5pdfANdNiLZ YeV0vgbJoJNsMCaZJG5bofClnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCwtuRuB xlkfnhpxs1J1DQ0WmCH6MB8GA1UdIwQYMBaAFPG2W3l2FjlzUuy9Six3T89+xtRw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTRFRi8yNjQwMTAwNjg2 MEIxMUVCOTFDMTJENjNDNEY5QUUwMi84YlpiZVhZV09YTlM3TDFLTEhkUHozN0cx SEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhiWmJlWFlXT1hOUzdMMUtMSGRQejM3RzFIQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTRFRi8yNjQwMTAwNjg2MEIxMUVCOTFDMTJENjNDNEY5QUUwMi84YlpiZVhZV09Y TlM3TDFLTEhkUHozN0cxSEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQ1ELCgTPYshtKfc/eGY/V/CVYr+Up8znu5yK/m8GPNgQYbEit3QI3 hNm0StUt0YMWmQZ9np3xR4nqLDVYDoV0JYxGxuvTSqx1XW6CecnCtSbpz4ZHU19J w78Ooy8DeEeHlT28JbiJiPqovHOapKNvZLx3cRWskrVxGgPi96elZnC+eBCfIfxT /t6KNXixPhhzocpEVjPEEO2Ijt9gg1p7YZQa/oU+rp4V5Y2VQ9DMAQuZoB9mJuE+ u/VGChPiVjUgH2zZAPF3+oOu39/VQID6cjWTPLs4mhYHEXzsNYJ7ImCQGzkdknCk pW981S7ARJXe8C5tvWlJFt0GidcOtWGA -----END CERTIFICATE-----Generated at Mon Dec 29 02:24:33 2025 by rpki-client