This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E85F1/6AA4D60A0DFC11F0A1D98053C4F9AE02/yL8GWnSCLvjMYvSlTlnVhxILb0c.mft File: yL8GWnSCLvjMYvSlTlnVhxILb0c.mft (raw, json) Hash identifier: vJsgYKowl6FXbqx/II8G4etzv3PwFT/1PWUYQF5L88k= Subject key identifier: BC:76:C5:1E:76:3D:0D:B5:3B:8C:B9:FA:04:BA:84:9A:A2:8E:32:94 Authority key identifier: C8:BF:06:5A:74:82:2E:F8:CC:62:F4:A5:4E:59:D5:87:12:0B:6F:47 Certificate issuer: /CN=A91E85F1/serialNumber=C8BF065A74822EF8CC62F4A54E59D587120B6F47 Certificate serial: 90 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yL8GWnSCLvjMYvSlTlnVhxILb0c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E85F1/6AA4D60A0DFC11F0A1D98053C4F9AE02/yL8GWnSCLvjMYvSlTlnVhxILb0c.mft Manifest number: 8E Signing time: Wed 31 Dec 2025 05:34:45 +0000 Manifest this update: Wed 31 Dec 2025 05:34:44 +0000 Manifest next update: Wed 07 Jan 2026 05:34:44 +0000 Files and hashes: 1: yL8GWnSCLvjMYvSlTlnVhxILb0c.crl (hash: mK1iwb2RCntGcHU0ds7CoTGO5YhYEnoADVONPrKKjIM=) 2: 4D144B780DFE11F09C46E054C4F9AE02.roa (hash: 4W8JwWYdmlkoGSHKhs2UcR0Dtn0CNiavMVkInr6eJqg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E85F1/6AA4D60A0DFC11F0A1D98053C4F9AE02/yL8GWnSCLvjMYvSlTlnVhxILb0c.crl rsync://rpki.apnic.net/member_repository/A91E85F1/6AA4D60A0DFC11F0A1D98053C4F9AE02/yL8GWnSCLvjMYvSlTlnVhxILb0c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yL8GWnSCLvjMYvSlTlnVhxILb0c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 07 Jan 2026 05:34:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 144 (0x90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E85F1, serialNumber=C8BF065A74822EF8CC62F4A54E59D587120B6F47 Validity Not Before: Dec 31 05:34:44 2025 GMT Not After : Jan 7 05:34:44 2026 GMT Subject: CN=6954b5f5-3a65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:42:73:e8:9e:50:77:f7:13:d2:bf:d5:77:67: 07:9d:5d:a4:d4:98:c9:bf:ee:f8:8f:e3:b9:e5:a3: 0d:f5:90:35:a2:f0:4d:52:5f:63:0e:b6:af:96:44: 35:cb:d1:f8:21:ac:10:e7:8e:a9:df:a0:9f:11:f4: a5:33:36:03:d8:26:fc:4f:22:a5:67:5c:8e:c6:cc: 08:6c:84:4c:8c:6a:e8:58:06:fe:a2:52:78:3e:db: 2c:6b:a6:55:d7:2b:f6:05:da:de:15:f1:f9:ce:af: 23:cb:0e:d4:93:b5:01:1a:35:2a:ab:7f:f4:c7:8d: 82:fb:cf:a7:cd:e6:07:37:ba:1b:4d:e7:b2:1a:f5: af:ca:94:51:bd:f9:b6:bf:73:8b:8d:4c:53:05:2e: a7:b8:60:ea:6d:58:dc:92:99:52:42:a4:81:c1:20: 64:6d:73:35:ef:ea:bd:bf:81:59:71:24:a2:0c:30: ad:48:b2:69:25:6a:e6:10:e6:2e:0c:7e:fb:db:ea: a6:80:e3:26:94:30:ca:fe:9e:d6:21:2f:1e:21:89: 40:7b:7e:54:06:0b:e7:87:0f:70:01:15:07:5f:83: 90:84:bf:6d:20:65:97:70:c9:be:8f:92:f3:cb:b6: 12:0b:11:ce:db:3d:4d:80:57:c6:e7:a3:5c:35:b4: c0:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:76:C5:1E:76:3D:0D:B5:3B:8C:B9:FA:04:BA:84:9A:A2:8E:32:94 X509v3 Authority Key Identifier: keyid:C8:BF:06:5A:74:82:2E:F8:CC:62:F4:A5:4E:59:D5:87:12:0B:6F:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E85F1/6AA4D60A0DFC11F0A1D98053C4F9AE02/yL8GWnSCLvjMYvSlTlnVhxILb0c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yL8GWnSCLvjMYvSlTlnVhxILb0c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E85F1/6AA4D60A0DFC11F0A1D98053C4F9AE02/yL8GWnSCLvjMYvSlTlnVhxILb0c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:9d:1f:bc:23:76:ed:67:06:c7:82:73:7d:18:8d:20:07:10: b8:39:84:86:55:e9:30:2b:9c:5e:1a:37:58:74:d5:91:cb:1d: a5:3b:f4:f8:38:25:5c:f7:63:cd:dd:eb:f9:42:66:e7:1c:ac: b9:fd:db:e9:c0:82:8e:a3:e4:a4:43:37:27:90:80:2f:c5:24: b3:e3:4d:f8:dd:33:25:f2:ad:0e:fc:d9:1d:b7:2f:a2:56:31: 4a:1a:62:8f:0c:22:fc:b7:8a:c5:2a:11:19:30:2b:1a:87:2f: 9e:3a:77:c5:52:9d:06:f8:e0:97:f2:fb:09:97:16:27:f5:e4: d8:4e:63:db:05:56:5f:99:8f:99:dd:85:3f:02:a5:83:bd:3a: dc:f4:c2:b4:0b:85:c7:8e:fc:9e:2a:8c:f5:72:6d:b3:e8:09: eb:e3:53:b7:98:45:fa:f4:c2:8a:bd:df:1a:0c:bd:32:c5:e0: 2f:69:4b:d7:64:ad:78:89:70:3b:99:e1:ee:0f:62:2f:d9:3c: 2d:94:98:1c:a3:10:1c:9f:70:b3:f7:3f:cf:a2:07:ac:e6:92: f9:0a:29:31:98:0c:98:3d:ca:f2:18:b7:b3:d3:47:ae:26:59: c7:f5:0f:55:79:35:0c:d0:59:19:b9:06:ac:b0:8c:a9:a3:b6: 16:68:e2:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg1RjExMTAvBgNVBAUTKEM4QkYwNjVBNzQ4MjJFRjhDQzYyRjRBNTRFNTlENTg3 MTIwQjZGNDcwHhcNMjUxMjMxMDUzNDQ0WhcNMjYwMTA3MDUzNDQ0WjAYMRYwFAYD VQQDDA02OTU0YjVmNS0zYTY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtUJz6J5Qd/cT0r/Vd2cHnV2k1JjJv+74j+O55aMN9ZA1ovBNUl9jDravlkQ1 y9H4IawQ546p36CfEfSlMzYD2Cb8TyKlZ1yOxswIbIRMjGroWAb+olJ4Ptssa6ZV 1yv2BdreFfH5zq8jyw7Uk7UBGjUqq3/0x42C+8+nzeYHN7obTeeyGvWvypRRvfm2 v3OLjUxTBS6nuGDqbVjckplSQqSBwSBkbXM17+q9v4FZcSSiDDCtSLJpJWrmEOYu DH772+qmgOMmlDDK/p7WIS8eIYlAe35UBgvnhw9wARUHX4OQhL9tIGWXcMm+j5Lz y7YSCxHO2z1NgFfG56NcNbTAHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLx2xR52 PQ21O4y5+gS6hJqijjKUMB8GA1UdIwQYMBaAFMi/Blp0gi74zGL0pU5Z1YcSC29H MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODVGMS82QUE0RDYwQTBE RkMxMUYwQTFEOTgwNTNDNEY5QUUwMi95TDhHV25TQ0x2ak1ZdlNsVGxuVmh4SUxi MGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lMOEdXblNDTHZqTVl2U2xUbG5WaHhJTGIwYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF ODVGMS82QUE0RDYwQTBERkMxMUYwQTFEOTgwNTNDNEY5QUUwMi95TDhHV25TQ0x2 ak1ZdlNsVGxuVmh4SUxiMGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBlnR+8I3btZwbHgnN9GI0gBxC4OYSGVekwK5xeGjdYdNWRyx2lO/T4 OCVc92PN3ev5QmbnHKy5/dvpwIKOo+SkQzcnkIAvxSSz40343TMl8q0O/Nkdty+i VjFKGmKPDCL8t4rFKhEZMCsahy+eOnfFUp0G+OCX8vsJlxYn9eTYTmPbBVZfmY+Z 3YU/AqWDvTrc9MK0C4XHjvyeKoz1cm2z6Anr41O3mEX69MKKvd8aDL0yxeAvaUvX ZK14iXA7meHuD2Iv2TwtlJgcoxAcn3Cz9z/Poges5pL5CikxmAyYPcryGLez00eu JlnH9Q9VeTUM0FkZuQassIypo7YWaOLm -----END CERTIFICATE-----Generated at Wed Dec 31 09:07:52 2025 by rpki-client