This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A913B090/6B67243467F111EDBDC5852CC4F9AE02/s8lXWbAmAWnVga-ERmxca89vwds.mft File: s8lXWbAmAWnVga-ERmxca89vwds.mft (raw, json) Hash identifier: rBxST8gbBARzvQ/OHnOsArfBeJeu9u+Wy+40zN9eJu0= Subject key identifier: C1:A3:68:7A:F2:1E:26:7E:FB:C4:EF:11:8F:89:7E:B0:51:B6:F0:41 Authority key identifier: B3:C9:57:59:B0:26:01:69:D5:81:AF:84:46:6C:5C:6B:CF:6F:C1:DB Certificate issuer: /CN=A913B090/serialNumber=B3C95759B0260169D581AF84466C5C6BCF6FC1DB Certificate serial: 023C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s8lXWbAmAWnVga-ERmxca89vwds.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B090/6B67243467F111EDBDC5852CC4F9AE02/s8lXWbAmAWnVga-ERmxca89vwds.mft Manifest number: 0238 Signing time: Fri 05 Dec 2025 00:13:27 +0000 Manifest this update: Fri 05 Dec 2025 00:13:27 +0000 Manifest next update: Fri 12 Dec 2025 00:13:27 +0000 Files and hashes: 1: s8lXWbAmAWnVga-ERmxca89vwds.crl (hash: YAiSnrz+LnD6Gd9Gr8CToti8BBuEKEBYeFL5MuIXmiM=) 2: B57CACF267F511EDA884E65BC4F9AE02.roa (hash: uqE+ryUYHNLBPS1jaiyQ/Fm+6Bg+NYwJQStwm0tzSfw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B090/6B67243467F111EDBDC5852CC4F9AE02/s8lXWbAmAWnVga-ERmxca89vwds.crl rsync://rpki.apnic.net/member_repository/A913B090/6B67243467F111EDBDC5852CC4F9AE02/s8lXWbAmAWnVga-ERmxca89vwds.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s8lXWbAmAWnVga-ERmxca89vwds.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 00:13:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 572 (0x23c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B090, serialNumber=B3C95759B0260169D581AF84466C5C6BCF6FC1DB Validity Not Before: Dec 5 00:13:27 2025 GMT Not After : Dec 12 00:13:27 2025 GMT Subject: CN=693223a7-d9e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:38:11:be:27:3d:3c:c3:eb:bd:81:23:17:6f: fd:55:e0:5a:70:83:1c:51:e1:2f:9c:4f:b4:97:8f: 73:5a:53:89:35:49:98:15:97:10:52:0e:10:a3:39: 03:fd:c0:fa:ce:83:97:57:cd:1f:32:38:15:86:b8: 89:2d:c2:6c:a2:cd:f3:21:ab:35:09:0a:3a:81:6b: a3:35:03:76:94:c1:15:d1:2d:62:00:ab:44:74:a6: ae:b2:90:b4:56:2b:14:6d:7d:13:91:a4:9c:23:2a: 94:31:95:2a:7f:f1:1b:14:0d:9f:9b:6d:22:fd:c4: 1e:73:27:3e:89:11:18:5f:63:df:cf:dc:b8:1b:e8: 94:a3:73:18:21:62:76:5d:1c:05:26:6c:2f:2e:38: 33:f7:c5:09:2a:27:9e:0a:41:57:0c:b7:c8:04:88: 22:6c:e3:19:3c:50:09:94:c6:44:e8:7c:5b:66:52: b8:4e:7b:66:5c:94:29:76:ff:bc:2b:8d:84:80:80: 34:66:45:68:3a:35:2b:9e:2a:90:57:97:c5:1f:06: fa:98:14:7e:2a:f9:44:87:0d:dd:ce:95:bd:46:d7: 64:1d:51:f1:51:17:6e:e5:32:c5:e6:f9:64:9e:50: b6:b9:58:18:f5:09:46:09:24:be:92:01:c2:97:45: c6:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:A3:68:7A:F2:1E:26:7E:FB:C4:EF:11:8F:89:7E:B0:51:B6:F0:41 X509v3 Authority Key Identifier: keyid:B3:C9:57:59:B0:26:01:69:D5:81:AF:84:46:6C:5C:6B:CF:6F:C1:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B090/6B67243467F111EDBDC5852CC4F9AE02/s8lXWbAmAWnVga-ERmxca89vwds.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s8lXWbAmAWnVga-ERmxca89vwds.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B090/6B67243467F111EDBDC5852CC4F9AE02/s8lXWbAmAWnVga-ERmxca89vwds.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:cf:df:27:bf:e6:8d:3d:83:96:0a:c8:59:06:46:95:2b:21: 8e:e8:1c:75:3e:09:b0:6e:35:f5:18:28:e1:dd:1e:37:ae:6f: e3:7f:91:48:a4:6f:7d:85:82:e4:4f:d8:db:66:65:f1:69:33: fa:3f:b9:ca:22:41:2a:55:0e:9c:41:78:dd:4e:b1:87:d9:33: 17:29:61:be:ce:43:b2:99:bb:17:4b:20:11:f8:0c:e8:4c:da: ce:5c:41:af:1b:15:ae:94:c6:3d:cc:00:a8:0c:62:ab:be:ad: ec:52:70:6a:d1:2a:a5:39:79:55:94:a8:d7:bc:58:fb:2d:3a: 07:42:59:55:96:c0:63:bd:a8:9d:c5:1c:7c:72:86:dd:7f:44: 85:2f:f1:53:0b:18:58:e0:72:1f:67:d8:53:88:49:f0:44:6b: 61:c4:5e:8c:e8:5f:5c:ca:c5:1e:08:ef:0b:da:7c:be:e0:ca: b7:50:36:58:b3:56:6e:8f:20:59:98:06:1a:1a:51:93:74:b2: 11:81:2a:16:13:d2:e9:53:6a:f7:05:c6:e7:c1:46:f2:70:95: 61:0b:66:f5:95:0b:92:32:19:bf:27:f8:fe:02:8d:f5:3f:fd: b3:a7:4e:1d:b5:02:62:93:e5:62:de:db:5e:cf:57:c9:b0:34: 06:fb:43:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0IwOTAxMTAvBgNVBAUTKEIzQzk1NzU5QjAyNjAxNjlENTgxQUY4NDQ2NkM1QzZC Q0Y2RkMxREIwHhcNMjUxMjA1MDAxMzI3WhcNMjUxMjEyMDAxMzI3WjAYMRYwFAYD VQQDEw02OTMyMjNhNy1kOWUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxTgRvic9PMPrvYEjF2/9VeBacIMcUeEvnE+0l49zWlOJNUmYFZcQUg4QozkD /cD6zoOXV80fMjgVhriJLcJsos3zIas1CQo6gWujNQN2lMEV0S1iAKtEdKauspC0 VisUbX0TkaScIyqUMZUqf/EbFA2fm20i/cQecyc+iREYX2Pfz9y4G+iUo3MYIWJ2 XRwFJmwvLjgz98UJKieeCkFXDLfIBIgibOMZPFAJlMZE6HxbZlK4TntmXJQpdv+8 K42EgIA0ZkVoOjUrniqQV5fFHwb6mBR+KvlEhw3dzpW9RtdkHVHxURdu5TLF5vlk nlC2uVgY9QlGCSS+kgHCl0XGBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMGjaHry HiZ++8TvEY+JfrBRtvBBMB8GA1UdIwQYMBaAFLPJV1mwJgFp1YGvhEZsXGvPb8Hb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjA5MC82QjY3MjQzNDY3 RjExMUVEQkRDNTg1MkNDNEY5QUUwMi9zOGxYV2JBbUFXblZnYS1FUm14Y2E4OXZ3 ZHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3M4bFhXYkFtQVduVmdhLUVSbXhjYTg5dndkcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QjA5MC82QjY3MjQzNDY3RjExMUVEQkRDNTg1MkNDNEY5QUUwMi9zOGxYV2JBbUFX blZnYS1FUm14Y2E4OXZ3ZHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQz98nv+aNPYOWCshZBkaVKyGO6Bx1PgmwbjX1GCjh3R43rm/jf5FI pG99hYLkT9jbZmXxaTP6P7nKIkEqVQ6cQXjdTrGH2TMXKWG+zkOymbsXSyAR+Azo TNrOXEGvGxWulMY9zACoDGKrvq3sUnBq0SqlOXlVlKjXvFj7LToHQllVlsBjvaid xRx8cobdf0SFL/FTCxhY4HIfZ9hTiEnwRGthxF6M6F9cysUeCO8L2ny+4Mq3UDZY s1ZujyBZmAYaGlGTdLIRgSoWE9LpU2r3BcbnwUbycJVhC2b1lQuSMhm/J/j+Ao31 P/2zp04dtQJik+Vi3ttez1fJsDQG+0Mx -----END CERTIFICATE-----Generated at Sat Dec 6 11:22:57 2025 by rpki-client