This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.mft File: y8ZgM3D76EzM4GToT08m7b7CZ7E.mft (raw, json) Hash identifier: bWqnkQWJw1MLS+o6hpT2YY6kSXyPo/SVASXbiDkr4ak= Subject key identifier: 66:FE:C2:B6:76:58:89:8E:CA:3A:D8:15:42:0F:8D:CC:15:16:3B:3D Authority key identifier: CB:C6:60:33:70:FB:E8:4C:CC:E0:64:E8:4F:4F:26:ED:BE:C2:67:B1 Certificate issuer: /CN=A91D9CA8/serialNumber=CBC6603370FBE84CCCE064E84F4F26EDBEC267B1 Certificate serial: BE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y8ZgM3D76EzM4GToT08m7b7CZ7E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.mft Manifest number: B3 Signing time: Mon 29 Dec 2025 05:18:25 +0000 Manifest this update: Mon 29 Dec 2025 05:18:25 +0000 Manifest next update: Mon 05 Jan 2026 05:18:25 +0000 Files and hashes: 1: y8ZgM3D76EzM4GToT08m7b7CZ7E.crl (hash: eI1zMwrlBEQ4s5sdqis+P33wps9lBQxVQ/zr4gON1ZI=) 2: 459A40A0399111F0B589186BC4F9AE02.roa (hash: m6LxhqSKzKitfbLvhayOz3v+ioNxwddzbxWryqPlX6o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.crl rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y8ZgM3D76EzM4GToT08m7b7CZ7E.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 Jan 2026 05:18:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 190 (0xbe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9CA8, serialNumber=CBC6603370FBE84CCCE064E84F4F26EDBEC267B1 Validity Not Before: Dec 29 05:18:25 2025 GMT Not After : Jan 5 05:18:25 2026 GMT Subject: CN=69520f21-6a15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:51:c1:0b:16:04:d3:cb:e0:11:05:d0:bb:f4: 11:8e:64:bd:39:75:7d:1d:4c:24:56:b6:bd:80:48: 5d:28:5e:bc:b2:90:6d:a0:f2:24:e7:ca:d6:dc:fa: da:e3:6b:e6:8c:cf:82:8c:34:99:4c:78:d1:ff:b3: a4:92:32:ad:83:7f:4c:03:c3:03:c1:02:99:a5:ea: 82:b0:51:1a:2d:59:3f:5c:8d:ff:a4:ce:ee:76:ad: 96:8f:d5:06:da:08:64:ab:f9:57:2f:d3:a3:62:57: cd:ce:2b:1a:c4:49:1f:ba:a0:c4:8c:95:09:e6:70: 93:c8:c2:ed:79:d0:1c:d8:cd:b1:27:3d:d2:c6:11: b9:8b:64:7e:cd:3f:4d:6d:98:f8:ef:9d:2d:59:42: 14:8c:59:da:11:23:7e:e1:9f:d4:6e:b0:80:1a:e1: d7:10:a8:9d:bc:80:06:c2:39:65:5e:09:77:5a:e5: 76:83:73:92:6b:0e:dd:b7:22:c0:20:78:42:f8:80: a9:6e:cf:6b:da:3f:8b:9c:63:3f:98:b1:f0:7d:78: 1e:be:ca:e4:90:fb:f5:b1:93:e2:aa:60:bf:5e:55: 94:1d:23:73:9e:90:43:0a:cb:09:8d:27:3b:ae:7c: 74:e5:58:4a:af:a7:ae:9c:09:ef:d3:ef:4a:7e:7c: 30:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:FE:C2:B6:76:58:89:8E:CA:3A:D8:15:42:0F:8D:CC:15:16:3B:3D X509v3 Authority Key Identifier: keyid:CB:C6:60:33:70:FB:E8:4C:CC:E0:64:E8:4F:4F:26:ED:BE:C2:67:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y8ZgM3D76EzM4GToT08m7b7CZ7E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d8:ef:6e:b8:43:cd:fe:78:25:e0:1d:06:d9:a2:b0:71:f8:e4: fe:26:4c:60:5d:e6:3d:f5:dd:fd:ff:fb:35:7c:71:9f:dd:42: 48:a9:51:2c:b4:dc:07:36:f7:1e:28:27:2c:83:e3:b9:5f:9d: bd:0d:be:e4:d8:96:3d:2b:8b:c5:c7:2b:b9:7d:3c:ad:e1:1a: 44:2d:7b:38:64:0e:e5:f8:70:b6:83:a7:70:01:c1:fa:f3:79: 5e:fe:28:73:a8:e3:44:7c:b4:07:30:a1:fc:c3:d2:89:75:c0: 48:70:0c:81:cd:2c:60:c4:41:dd:e8:a5:99:18:e4:9c:b9:4b: 20:07:49:ec:1f:65:2f:89:45:77:c8:0b:9a:e0:2a:19:22:34: 0e:10:7f:c6:01:0f:29:a7:67:9e:3b:47:4c:ab:0b:59:7e:ae: e0:46:25:f7:34:18:fc:33:52:75:d1:de:be:61:23:aa:47:da: 35:1f:6c:27:b1:6a:6b:49:63:78:91:33:58:6d:61:21:c6:ff: ac:d8:2c:74:00:cf:ca:60:e3:b5:97:ab:88:cc:3c:27:b4:38: 38:83:2f:5c:dc:a2:a9:85:f3:38:13:b4:52:1b:8a:70:41:f1: 77:9a:74:1a:95:55:b1:1b:af:f0:c1:7a:12:70:68:39:2c:42: 26:e0:9d:96 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAL4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDlDQTgxMTAvBgNVBAUTKENCQzY2MDMzNzBGQkU4NENDQ0UwNjRFODRGNEYyNkVE QkVDMjY3QjEwHhcNMjUxMjI5MDUxODI1WhcNMjYwMTA1MDUxODI1WjAYMRYwFAYD VQQDDA02OTUyMGYyMS02YTE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjVHBCxYE08vgEQXQu/QRjmS9OXV9HUwkVra9gEhdKF68spBtoPIk58rW3Pra 42vmjM+CjDSZTHjR/7OkkjKtg39MA8MDwQKZpeqCsFEaLVk/XI3/pM7udq2Wj9UG 2ghkq/lXL9OjYlfNzisaxEkfuqDEjJUJ5nCTyMLtedAc2M2xJz3SxhG5i2R+zT9N bZj4750tWUIUjFnaESN+4Z/UbrCAGuHXEKidvIAGwjllXgl3WuV2g3OSaw7dtyLA IHhC+ICpbs9r2j+LnGM/mLHwfXgevsrkkPv1sZPiqmC/XlWUHSNznpBDCssJjSc7 rnx05VhKr6eunAnv0+9KfnwwkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGb+wrZ2 WImOyjrYFUIPjcwVFjs9MB8GA1UdIwQYMBaAFMvGYDNw++hMzOBk6E9PJu2+wmex MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOUNBOC8yMERBMjc0NkU0 RkQxMUVGQUMxQ0U2N0ZDNEY5QUUwMi95OFpnTTNENzZFek00R1RvVDA4bTdiN0Na N0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3k4WmdNM0Q3NkV6TTRHVG9UMDhtN2I3Q1o3RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OUNBOC8yMERBMjc0NkU0RkQxMUVGQUMxQ0U2N0ZDNEY5QUUwMi95OFpnTTNENzZF ek00R1RvVDA4bTdiN0NaN0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDY7264Q83+eCXgHQbZorBx+OT+JkxgXeY99d39//s1fHGf3UJIqVEs tNwHNvceKCcsg+O5X529Db7k2JY9K4vFxyu5fTyt4RpELXs4ZA7l+HC2g6dwAcH6 83le/ihzqONEfLQHMKH8w9KJdcBIcAyBzSxgxEHd6KWZGOScuUsgB0nsH2UviUV3 yAua4CoZIjQOEH/GAQ8pp2eeO0dMqwtZfq7gRiX3NBj8M1J10d6+YSOqR9o1H2wn sWprSWN4kTNYbWEhxv+s2Cx0AM/KYOO1l6uIzDwntDg4gy9c3KKphfM4E7RSG4pw QfF3mnQalVWxG6/wwXoScGg5LEIm4J2W -----END CERTIFICATE-----Generated at Mon Dec 29 08:25:39 2025 by rpki-client