This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.mft File: g8kBUb4XghT8FnWDNNO21Sd6PL8.mft (raw, json) Hash identifier: pPukMkZ+8uFkHrX/uhVki331X0GYgsvVNEjzWHEnGAY= Subject key identifier: 2C:4E:23:28:77:EA:40:9E:01:41:75:8A:87:EC:A4:EF:34:60:69:7C Authority key identifier: 83:C9:01:51:BE:17:82:14:FC:16:75:83:34:D3:B6:D5:27:7A:3C:BF Certificate issuer: /CN=A91F4091/serialNumber=83C90151BE178214FC16758334D3B6D5277A3CBF Certificate serial: 0125 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g8kBUb4XghT8FnWDNNO21Sd6PL8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.mft Manifest number: 0123 Signing time: Fri 19 Dec 2025 03:49:13 +0000 Manifest this update: Fri 19 Dec 2025 03:49:13 +0000 Manifest next update: Fri 26 Dec 2025 03:49:13 +0000 Files and hashes: 1: g8kBUb4XghT8FnWDNNO21Sd6PL8.crl (hash: UX+bwatY4mkFKsQu5qYoKu478zxviSeutgGLMwtq+78=) 2: 1E110D7E1DA011EFBC90D55EC4F9AE02.roa (hash: YulPvT0hM25YZIDv5KjG+XciSXVC4OQirSgi0X2f6Hc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.crl rsync://rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g8kBUb4XghT8FnWDNNO21Sd6PL8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 03:49:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 293 (0x125) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4091, serialNumber=83C90151BE178214FC16758334D3B6D5277A3CBF Validity Not Before: Dec 19 03:49:13 2025 GMT Not After : Dec 26 03:49:13 2025 GMT Subject: CN=6944cb39-574e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:90:87:a6:57:94:be:91:ee:70:b4:01:b2:36: f8:c6:56:81:7c:cd:2e:8f:e4:56:91:50:68:92:fc: 28:f8:28:d6:06:f9:c6:ee:d8:e1:78:a7:71:4f:0b: b8:9e:b3:53:7a:d4:e4:68:62:cd:35:6a:c3:f5:88: 1c:18:e9:8b:28:5a:4c:8b:75:13:e0:54:8a:46:77: 82:3b:93:42:39:0a:96:e1:23:ad:b7:99:fa:6f:20: 4d:19:f0:f7:98:21:21:70:77:84:47:91:2e:d2:6a: 8e:a7:24:0e:b8:22:2c:60:df:e6:18:9c:bf:73:ac: af:57:30:55:33:92:51:7d:e4:61:63:07:de:e7:41: 37:93:75:38:10:97:64:60:54:88:ee:dc:25:0f:77: e4:a7:32:9b:df:c4:1d:d8:ec:65:06:7c:51:cc:1f: 0f:5c:b5:37:7f:87:f5:81:6e:8f:da:b3:0b:e2:a3: 09:fe:c0:61:e0:85:6b:51:04:b9:2a:89:4c:5c:77: ad:71:7e:ee:1a:e1:20:df:ef:93:41:a0:ff:3f:f3: 7e:da:9d:4e:b6:b6:c1:36:9b:57:6d:85:23:f7:9f: 30:65:1d:e8:8b:e6:f3:a9:31:31:7c:81:30:8a:12: 5c:1f:0e:2a:0b:c6:75:e0:55:34:ed:05:6a:8d:f4: 8c:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:4E:23:28:77:EA:40:9E:01:41:75:8A:87:EC:A4:EF:34:60:69:7C X509v3 Authority Key Identifier: keyid:83:C9:01:51:BE:17:82:14:FC:16:75:83:34:D3:B6:D5:27:7A:3C:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g8kBUb4XghT8FnWDNNO21Sd6PL8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:79:cc:0f:8e:46:ff:c8:0b:52:fd:30:58:3b:e7:73:6e:34: 42:9e:eb:41:f8:ed:6c:f4:41:e6:f7:c6:09:3a:7f:5c:ad:05: 74:69:cd:79:e2:46:77:69:4c:47:8a:25:91:17:a3:50:10:8a: 77:a9:20:ba:67:57:17:bf:dd:54:ea:71:75:4c:46:0b:de:c1: e7:d9:89:65:1f:0d:37:5a:64:8d:e9:7e:fb:68:ff:52:d8:44: ee:a9:d7:84:91:e2:a5:2a:f0:7e:fb:3b:e9:e1:62:5f:29:ab: 2c:17:2b:65:58:c9:a9:38:9b:fa:0f:58:4d:e8:da:8b:ce:e6: 5a:5a:49:bc:89:a9:1f:81:ee:0a:42:da:61:78:75:84:1e:a7: 88:03:0d:dd:1a:a9:93:ac:02:07:f0:72:68:fb:eb:bd:59:f1: 29:e7:17:4a:17:1f:ee:80:00:a9:df:6e:29:1d:0d:5c:38:e3: b6:f7:c0:b4:85:75:0e:79:1a:72:4c:ce:3a:fd:3f:bb:74:31: 27:96:85:42:d6:c1:20:87:17:68:61:48:91:ee:3f:41:3d:5e: 34:6e:f9:45:c4:a9:29:79:9b:a3:12:fc:ce:6b:98:dd:43:37: d7:ad:f8:6c:df:b7:d4:c8:f5:55:cc:05:f3:32:8c:87:b8:77: 5b:b3:91:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjQwOTExMTAvBgNVBAUTKDgzQzkwMTUxQkUxNzgyMTRGQzE2NzU4MzM0RDNCNkQ1 Mjc3QTNDQkYwHhcNMjUxMjE5MDM0OTEzWhcNMjUxMjI2MDM0OTEzWjAYMRYwFAYD VQQDDA02OTQ0Y2IzOS01NzRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx5CHpleUvpHucLQBsjb4xlaBfM0uj+RWkVBokvwo+CjWBvnG7tjheKdxTwu4 nrNTetTkaGLNNWrD9YgcGOmLKFpMi3UT4FSKRneCO5NCOQqW4SOtt5n6byBNGfD3 mCEhcHeER5Eu0mqOpyQOuCIsYN/mGJy/c6yvVzBVM5JRfeRhYwfe50E3k3U4EJdk YFSI7twlD3fkpzKb38Qd2OxlBnxRzB8PXLU3f4f1gW6P2rML4qMJ/sBh4IVrUQS5 KolMXHetcX7uGuEg3++TQaD/P/N+2p1OtrbBNptXbYUj958wZR3oi+bzqTExfIEw ihJcHw4qC8Z14FU07QVqjfSMkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCxOIyh3 6kCeAUF1iofspO80YGl8MB8GA1UdIwQYMBaAFIPJAVG+F4IU/BZ1gzTTttUnejy/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNDA5MS81QTExNkJBQTFE OUQxMUVGQTEwRjJEM0FDNEY5QUUwMi9nOGtCVWI0WGdoVDhGbldETk5PMjFTZDZQ TDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2c4a0JVYjRYZ2hUOEZuV0ROTk8yMVNkNlBMOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NDA5MS81QTExNkJBQTFEOUQxMUVGQTEwRjJEM0FDNEY5QUUwMi9nOGtCVWI0WGdo VDhGbldETk5PMjFTZDZQTDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjecwPjkb/yAtS/TBYO+dzbjRCnutB+O1s9EHm98YJOn9crQV0ac15 4kZ3aUxHiiWRF6NQEIp3qSC6Z1cXv91U6nF1TEYL3sHn2YllHw03WmSN6X77aP9S 2ETuqdeEkeKlKvB++zvp4WJfKassFytlWMmpOJv6D1hN6NqLzuZaWkm8iakfge4K QtpheHWEHqeIAw3dGqmTrAIH8HJo++u9WfEp5xdKFx/ugACp324pHQ1cOOO298C0 hXUOeRpyTM46/T+7dDEnloVC1sEghxdoYUiR7j9BPV40bvlFxKkpeZujEvzOa5jd QzfXrfhs37fUyPVVzAXzMoyHuHdbs5Fg -----END CERTIFICATE-----Generated at Sat Dec 20 00:58:50 2025 by rpki-client