This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft File: 8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft (raw, json) Hash identifier: I7U8t9+oXo/l9DVeqtVl287T50w8k4JjnfY7b9oh7Mw= Subject key identifier: AA:92:DC:9A:85:4E:DF:78:E9:6A:BE:31:67:FF:BC:DE:EF:30:7E:05 Authority key identifier: F2:D1:26:F1:42:08:6A:26:E3:C5:84:A7:0A:B3:E5:27:B3:03:81:82 Certificate issuer: /CN=A9156DB4/serialNumber=F2D126F142086A26E3C584A70AB3E527B3038182 Certificate serial: 0402 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8tEm8UIIaibjxYSnCrPlJ7MDgYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft Manifest number: 03F6 Signing time: Sat 06 Dec 2025 23:07:53 +0000 Manifest this update: Sat 06 Dec 2025 23:07:53 +0000 Manifest next update: Sat 13 Dec 2025 23:07:53 +0000 Files and hashes: 1: 8tEm8UIIaibjxYSnCrPlJ7MDgYI.crl (hash: 2Erjvb5IVWf5ppHIcOnUjG7m8WoCF4pEsNSXmaSCBhU=) 2: 688C6AC29D9D11EC958A216AC4F9AE02.roa (hash: rQCKwpVXSCN9Y75hhPwPDo9+AXfNNoLzfRi82A6bdSI=) 3: 854ACCD2DFEA11ECB7DF0A2EC4F9AE02.roa (hash: C6Z/IfRVQV8LxL1Oc2uDTt0509ENzUWPGHXpk7TwKNY=) 4: 695DB5289D9D11EC958A216AC4F9AE02.roa (hash: c9fr6KD/Ih6e5aCRy3Bruof+Va6iYKpCGv8u+/ETzK0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.crl rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8tEm8UIIaibjxYSnCrPlJ7MDgYI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 21:31:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1026 (0x402) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156DB4, serialNumber=F2D126F142086A26E3C584A70AB3E527B3038182 Validity Not Before: Dec 6 23:07:53 2025 GMT Not After : Dec 13 23:07:53 2025 GMT Subject: CN=6934b749-96a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:83:8b:0f:3d:53:3d:df:d9:0d:ae:ab:0c:b7: 90:79:38:df:92:d6:06:f8:67:62:15:9b:6f:02:cf: 86:fc:8a:13:b5:2a:21:d0:fd:cc:4b:6a:07:64:51: fa:fa:b5:49:0e:07:84:1d:08:f3:c3:57:14:21:e7: 92:80:be:b6:8b:0c:af:37:e5:08:ea:88:fa:19:43: ca:f3:cc:b6:fb:de:07:f2:4a:09:48:da:c3:98:d6: d5:36:0d:c0:8c:76:38:2e:a8:a0:fc:ed:d4:85:b1: 5a:c7:9d:ab:d4:b6:e5:67:b7:2b:5a:0d:b5:90:a4: 08:72:02:91:be:a1:63:e2:75:93:fe:43:99:44:22: e8:4b:e4:d3:e9:0c:d7:e6:1f:d5:e9:f8:ee:a3:02: 94:1c:f4:74:cf:83:9b:45:1a:68:14:e8:07:41:bf: 5a:71:9c:43:49:a2:e0:35:1f:e3:b1:d9:2f:84:68: 62:a7:24:3d:35:f2:be:7a:0c:3c:76:89:1e:a7:44: 22:ad:21:f6:fb:04:76:37:91:55:30:6c:42:33:ff: 06:66:0a:cd:f2:82:a8:17:8c:cf:94:62:eb:39:91: b8:46:2b:61:10:3d:26:87:1e:64:03:2e:2c:a1:a2: 21:eb:d8:2a:e8:7c:96:26:47:87:36:dd:79:5d:88: c3:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:92:DC:9A:85:4E:DF:78:E9:6A:BE:31:67:FF:BC:DE:EF:30:7E:05 X509v3 Authority Key Identifier: keyid:F2:D1:26:F1:42:08:6A:26:E3:C5:84:A7:0A:B3:E5:27:B3:03:81:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8tEm8UIIaibjxYSnCrPlJ7MDgYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:f1:93:6e:96:52:5c:6d:25:e1:a8:54:7e:a6:6c:7f:9c:2b: 68:de:7e:8c:4b:d3:65:1d:a4:49:76:0a:ed:56:0b:b8:8e:60: 47:10:90:4e:98:9b:93:93:8f:2f:a7:a6:81:b9:a5:21:4b:3c: 49:73:e6:dd:8b:64:5a:26:f5:8e:7a:df:5d:71:32:ce:62:ca: 60:a8:d2:69:b6:e9:9a:e6:24:7d:dd:99:e4:e1:ac:43:5b:9b: 35:9d:7f:19:f3:6a:31:4a:67:ff:61:fd:2f:75:3d:12:79:6a: 1d:5c:b3:df:b0:17:be:3b:f1:c7:39:04:e2:85:30:22:40:b2: 50:5b:c9:94:4e:42:a5:d6:1a:3e:2c:ab:40:94:8a:9f:a1:e1: cd:bc:a4:b1:9e:2f:77:2d:a4:5e:b5:5e:da:30:c6:2c:36:76: 9d:1a:28:cd:28:c5:dd:77:ee:e7:37:97:13:09:bb:fc:bd:07: 41:bc:5c:31:77:73:05:74:58:a1:95:4a:e4:87:8f:94:89:63: 06:58:b8:fd:7f:20:d7:6e:55:60:ce:a1:4e:d6:33:a5:d4:c5: 5e:38:03:95:0c:36:7e:01:af:35:36:61:f4:2c:94:2d:e7:11: 18:e7:90:98:60:7c:78:61:c0:ea:9f:ce:cd:ce:54:1e:6c:19: f9:3b:e3:47 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBAIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTZEQjQxMTAvBgNVBAUTKEYyRDEyNkYxNDIwODZBMjZFM0M1ODRBNzBBQjNFNTI3 QjMwMzgxODIwHhcNMjUxMjA2MjMwNzUzWhcNMjUxMjEzMjMwNzUzWjAYMRYwFAYD VQQDEw02OTM0Yjc0OS05NmE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyIOLDz1TPd/ZDa6rDLeQeTjfktYG+GdiFZtvAs+G/IoTtSoh0P3MS2oHZFH6 +rVJDgeEHQjzw1cUIeeSgL62iwyvN+UI6oj6GUPK88y2+94H8koJSNrDmNbVNg3A jHY4Lqig/O3UhbFax52r1LblZ7crWg21kKQIcgKRvqFj4nWT/kOZRCLoS+TT6QzX 5h/V6fjuowKUHPR0z4ObRRpoFOgHQb9acZxDSaLgNR/jsdkvhGhipyQ9NfK+egw8 dokep0QirSH2+wR2N5FVMGxCM/8GZgrN8oKoF4zPlGLrOZG4RithED0mhx5kAy4s oaIh69gq6HyWJkeHNt15XYjDhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKqS3JqF Tt946Wq+MWf/vN7vMH4FMB8GA1UdIwQYMBaAFPLRJvFCCGom48WEpwqz5SezA4GC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NkRCNC9FODREQjk4QTlE OUExMUVDQkE5MjhGNDVDNEY5QUUwMi84dEVtOFVJSWFpYmp4WVNuQ3JQbEo3TURn WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzh0RW04VUlJYWlianhZU25DclBsSjdNRGdZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NkRCNC9FODREQjk4QTlEOUExMUVDQkE5MjhGNDVDNEY5QUUwMi84dEVtOFVJSWFp Ymp4WVNuQ3JQbEo3TURnWUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB98ZNullJcbSXhqFR+pmx/nCto3n6MS9NlHaRJdgrtVgu4jmBHEJBO mJuTk48vp6aBuaUhSzxJc+bdi2RaJvWOet9dcTLOYspgqNJptuma5iR93Znk4axD W5s1nX8Z82oxSmf/Yf0vdT0SeWodXLPfsBe+O/HHOQTihTAiQLJQW8mUTkKl1ho+ LKtAlIqfoeHNvKSxni93LaRetV7aMMYsNnadGijNKMXdd+7nN5cTCbv8vQdBvFwx d3MFdFihlUrkh4+UiWMGWLj9fyDXblVgzqFO1jOl1MVeOAOVDDZ+Aa81NmH0LJQt 5xEY55CYYHx4YcDqn87NzlQebBn5O+NH -----END CERTIFICATE-----Generated at Sun Dec 7 01:54:20 2025 by rpki-client