This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91709F5/3283E7D4DFDA11EF8B478624C4F9AE02/8SiVeSEX6QcDoAIPTzWYMdsvk3o.mft File: 8SiVeSEX6QcDoAIPTzWYMdsvk3o.mft (raw, json) Hash identifier: aX+wSpJJ0DnFkqbXG5XOBxFPZvtiwsdA6Bj/6tmq1OM= Subject key identifier: 90:F5:C6:9B:F8:71:3E:20:79:19:18:1F:5D:67:B9:BC:3A:77:BD:C7 Authority key identifier: F1:28:95:79:21:17:E9:07:03:A0:02:0F:4F:35:98:31:DB:2F:93:7A Certificate issuer: /CN=A91709F5/serialNumber=F12895792117E90703A0020F4F359831DB2F937A Certificate serial: 9F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8SiVeSEX6QcDoAIPTzWYMdsvk3o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91709F5/3283E7D4DFDA11EF8B478624C4F9AE02/8SiVeSEX6QcDoAIPTzWYMdsvk3o.mft Manifest number: 9E Signing time: Sun 07 Dec 2025 04:29:40 +0000 Manifest this update: Sun 07 Dec 2025 04:29:40 +0000 Manifest next update: Sun 14 Dec 2025 04:29:40 +0000 Files and hashes: 1: 8SiVeSEX6QcDoAIPTzWYMdsvk3o.crl (hash: GxkW4TdEgm4LVhd+QTRXrmndMcxiJypc516aXaW+1Lc=) 2: A42925E8DFDA11EFB5E94125C4F9AE02.roa (hash: mx4Ct5Tnd5YkFq5qkT60Yq1dgh6KZfYC5nrKRxnyy28=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91709F5/3283E7D4DFDA11EF8B478624C4F9AE02/8SiVeSEX6QcDoAIPTzWYMdsvk3o.crl rsync://rpki.apnic.net/member_repository/A91709F5/3283E7D4DFDA11EF8B478624C4F9AE02/8SiVeSEX6QcDoAIPTzWYMdsvk3o.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8SiVeSEX6QcDoAIPTzWYMdsvk3o.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 04:29:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 159 (0x9f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91709F5, serialNumber=F12895792117E90703A0020F4F359831DB2F937A Validity Not Before: Dec 7 04:29:40 2025 GMT Not After : Dec 14 04:29:40 2025 GMT Subject: CN=693502b4-8ac8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:cd:09:fc:1c:c3:9b:c9:ac:91:ed:6e:96:2f: c0:b4:b3:bb:59:a1:8d:2c:69:12:a0:a5:4e:df:f1: 35:a6:09:59:61:aa:69:b8:24:b3:79:e3:28:05:09: 6c:e6:6f:c0:ab:5d:15:a8:34:3e:57:46:de:5f:49: 12:73:cf:2e:1d:e8:a6:38:19:3c:63:66:51:a5:77: ab:4a:19:35:5f:e2:e7:9e:2c:76:e7:51:09:9e:a5: 3c:a4:49:66:b5:f3:b7:2a:82:42:f3:ff:88:90:56: df:18:c2:e4:c6:84:01:f6:94:0c:3e:01:da:1a:75: 76:3e:a8:6a:fb:1a:16:cd:c0:5e:4e:b4:69:74:25: d2:99:a4:46:a0:a6:ab:f7:79:b9:d7:1f:7d:95:57: d9:fd:f2:4b:ad:81:17:8a:fd:f5:4b:51:be:b9:f4: 4f:9f:4c:02:5c:11:54:4f:36:55:74:9d:47:82:db: e7:80:11:78:19:28:7d:a3:b2:a9:22:27:1f:3a:59: be:d7:16:26:d6:41:7a:ed:41:1a:d9:ec:ab:9f:92: 43:80:cf:1c:6f:60:79:4b:4e:20:eb:18:2f:5e:56: 24:bd:dd:d0:0e:4d:66:a1:65:e3:0a:c7:59:1f:06: 9a:e2:ef:5a:a9:a8:c5:e0:94:b9:15:ab:0f:c5:9e: 02:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:F5:C6:9B:F8:71:3E:20:79:19:18:1F:5D:67:B9:BC:3A:77:BD:C7 X509v3 Authority Key Identifier: keyid:F1:28:95:79:21:17:E9:07:03:A0:02:0F:4F:35:98:31:DB:2F:93:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91709F5/3283E7D4DFDA11EF8B478624C4F9AE02/8SiVeSEX6QcDoAIPTzWYMdsvk3o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8SiVeSEX6QcDoAIPTzWYMdsvk3o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91709F5/3283E7D4DFDA11EF8B478624C4F9AE02/8SiVeSEX6QcDoAIPTzWYMdsvk3o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:6b:07:86:5c:58:51:84:ec:83:3d:0e:89:a4:e7:e9:9f:97: f5:30:1a:51:92:b9:1a:8d:34:2c:1a:34:3b:68:28:71:b6:c1: c0:31:ed:8d:ad:9f:08:1f:ef:3d:eb:db:90:31:c9:68:7e:48: 5f:95:46:1e:af:ac:69:21:e1:6f:71:d0:ee:8e:da:5f:a6:76: 62:ea:72:98:fd:bd:e7:44:ce:e2:2c:5a:13:9f:1d:a9:75:f7: 4c:5b:7b:62:66:46:19:22:d3:3a:01:a9:e2:bf:0b:3e:71:fd: d5:ec:03:2b:4e:60:bb:3c:0e:58:ce:70:41:6f:ab:f6:c4:2b: 42:2b:82:91:34:e1:c2:a6:95:28:8f:d6:0d:87:c0:35:dd:82: 4e:6a:72:11:f0:98:13:55:71:64:04:03:01:f4:0e:67:95:6f: c9:9b:46:aa:3b:c1:e0:1e:01:ef:bd:c3:4f:0b:7a:58:91:0f: af:33:12:00:87:46:03:84:0d:09:d0:c0:0b:d9:20:7a:d8:d9: b9:73:d9:65:af:50:f3:c4:82:f1:22:7f:1a:b5:c3:5d:cc:01: 86:18:25:e7:66:14:df:52:bf:2b:58:ff:c5:d9:8d:a7:56:cc: 61:4c:e2:31:e7:a5:3b:34:e5:af:3f:54:7a:bb:d3:b8:f5:8d: 24:7c:12:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA5RjUxMTAvBgNVBAUTKEYxMjg5NTc5MjExN0U5MDcwM0EwMDIwRjRGMzU5ODMx REIyRjkzN0EwHhcNMjUxMjA3MDQyOTQwWhcNMjUxMjE0MDQyOTQwWjAYMRYwFAYD VQQDEw02OTM1MDJiNC04YWM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9M0J/BzDm8mske1uli/AtLO7WaGNLGkSoKVO3/E1pglZYappuCSzeeMoBQls 5m/Aq10VqDQ+V0beX0kSc88uHeimOBk8Y2ZRpXerShk1X+Lnnix251EJnqU8pElm tfO3KoJC8/+IkFbfGMLkxoQB9pQMPgHaGnV2Pqhq+xoWzcBeTrRpdCXSmaRGoKar 93m51x99lVfZ/fJLrYEXiv31S1G+ufRPn0wCXBFUTzZVdJ1HgtvngBF4GSh9o7Kp IicfOlm+1xYm1kF67UEa2eyrn5JDgM8cb2B5S04g6xgvXlYkvd3QDk1moWXjCsdZ Hwaa4u9aqajF4JS5FasPxZ4C7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJD1xpv4 cT4geRkYH11nubw6d73HMB8GA1UdIwQYMBaAFPEolXkhF+kHA6ACD081mDHbL5N6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDlGNS8zMjgzRTdENERG REExMUVGOEI0Nzg2MjRDNEY5QUUwMi84U2lWZVNFWDZRY0RvQUlQVHpXWU1kc3Zr M28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzhTaVZlU0VYNlFjRG9BSVBUeldZTWRzdmszby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDlGNS8zMjgzRTdENERGREExMUVGOEI0Nzg2MjRDNEY5QUUwMi84U2lWZVNFWDZR Y0RvQUlQVHpXWU1kc3ZrM28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxaweGXFhRhOyDPQ6JpOfpn5f1MBpRkrkajTQsGjQ7aChxtsHAMe2N rZ8IH+8969uQMclofkhflUYer6xpIeFvcdDujtpfpnZi6nKY/b3nRM7iLFoTnx2p dfdMW3tiZkYZItM6Aanivws+cf3V7AMrTmC7PA5YznBBb6v2xCtCK4KRNOHCppUo j9YNh8A13YJOanIR8JgTVXFkBAMB9A5nlW/Jm0aqO8HgHgHvvcNPC3pYkQ+vMxIA h0YDhA0J0MAL2SB62Nm5c9llr1DzxILxIn8atcNdzAGGGCXnZhTfUr8rWP/F2Y2n VsxhTOIx56U7NOWvP1R6u9O49Y0kfBI8 -----END CERTIFICATE-----Generated at Sun Dec 7 09:01:48 2025 by rpki-client