This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.mft File: b8Lt8MURUqO-wRSaG9su2yk8nZU.mft (raw, json) Hash identifier: L30TEv65U2UCaiAhACKHdTHlXcRG/opmwJPZboIOyXQ= Subject key identifier: 57:2C:85:6D:7D:BE:F6:31:E3:5E:AA:6A:C4:E0:F2:29:02:DC:08:38 Authority key identifier: 6F:C2:ED:F0:C5:11:52:A3:BE:C1:14:9A:1B:DB:2E:DB:29:3C:9D:95 Certificate issuer: /CN=A91AA28B/serialNumber=6FC2EDF0C51152A3BEC1149A1BDB2EDB293C9D95 Certificate serial: 0DBE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b8Lt8MURUqO-wRSaG9su2yk8nZU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.mft Manifest number: 0D93 Signing time: Sat 06 Dec 2025 17:23:02 +0000 Manifest this update: Sat 06 Dec 2025 17:23:01 +0000 Manifest next update: Sat 13 Dec 2025 17:23:01 +0000 Files and hashes: 1: b8Lt8MURUqO-wRSaG9su2yk8nZU.crl (hash: SWWxQ6V8QwFsrc3aV8+GFdNBOKwsYuCTEtTQUKLs8yA=) 2: 4DD0C31C0E2011F0A0825648C4F9AE02.roa (hash: 8r7MWVk5x8o1qlWsJdhw0htq1GLcuT7GZDff98YKUWg=) 3: 11815E36135311EE94A8A114C4F9AE02.roa (hash: 4RiRLEUaqFnMyzAxg+jhTtVSLZnRrw+D1OLV5ZjDtiE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.crl rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b8Lt8MURUqO-wRSaG9su2yk8nZU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 17:23:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3518 (0xdbe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA28B, serialNumber=6FC2EDF0C51152A3BEC1149A1BDB2EDB293C9D95 Validity Not Before: Dec 6 17:23:01 2025 GMT Not After : Dec 13 17:23:01 2025 GMT Subject: CN=69346675-dd6b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:82:eb:08:ca:26:8f:ff:98:3b:7c:0d:f7:df: 26:62:f9:a4:ff:d0:6c:84:dd:11:9f:53:da:01:9f: 78:88:63:60:70:8d:e5:30:67:e7:1c:f4:55:95:6d: fc:c0:d2:3f:d8:8a:2e:c7:bb:c7:3b:2d:ab:b9:ad: 03:fa:e5:c9:14:de:02:42:9f:97:43:49:70:15:ff: 22:7b:95:ca:f7:ee:e2:b0:5b:32:50:88:06:dc:f1: 22:84:78:03:a3:a8:c3:1a:4b:c4:f8:4d:1a:eb:c1: 0e:c5:de:16:d1:cb:d2:da:04:ce:c0:49:36:5d:1d: ee:61:cc:8b:28:6b:97:c5:c6:42:54:cb:39:06:b8: 7a:d6:7e:dc:e8:30:17:ab:07:d1:f7:10:07:2b:06: 9b:f0:01:cc:cf:f4:17:62:52:52:02:41:b8:e2:44: 16:d9:1f:b3:3f:6f:ce:20:6b:15:69:17:e7:43:f3: 40:c4:cd:99:d4:8c:2d:f3:3b:1e:18:6f:b8:a2:87: 64:bb:cc:be:0c:d6:c2:8e:ea:7b:84:6f:f7:02:a1: 55:7a:08:a3:48:cf:7b:10:42:1b:49:0c:ea:35:fa: b1:4d:6b:c7:5b:19:7f:ce:ae:3e:e3:cc:2b:9e:18: d6:d9:c7:21:02:53:fe:6d:77:76:fc:ff:1c:9e:85: 23:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:2C:85:6D:7D:BE:F6:31:E3:5E:AA:6A:C4:E0:F2:29:02:DC:08:38 X509v3 Authority Key Identifier: keyid:6F:C2:ED:F0:C5:11:52:A3:BE:C1:14:9A:1B:DB:2E:DB:29:3C:9D:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b8Lt8MURUqO-wRSaG9su2yk8nZU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:76:55:0a:7d:8d:57:93:68:54:aa:5b:2d:26:df:17:c4:01: 0e:15:c5:81:2c:3f:6d:d2:6f:e4:08:0d:2e:39:cb:1d:7c:a1: f9:56:6b:f1:6a:44:c2:23:c9:76:b7:25:0c:af:13:05:8f:8f: 4b:80:7d:53:d5:68:3a:63:2c:cb:cf:4e:d3:87:5c:08:2c:14: 36:5d:0c:bd:8c:23:5f:52:6c:1e:7c:8e:65:a2:1e:d2:32:a5: a6:f5:67:04:d4:40:2b:f5:bd:aa:7e:99:c0:3b:98:46:6b:d3: 9f:38:a4:71:b8:d1:4b:5a:ff:2f:d5:e8:ff:7f:ee:2d:1f:cd: dc:b4:ac:a5:82:27:f8:23:4d:bf:72:4e:ed:ef:46:2c:d9:e2: 83:14:a1:61:37:f6:13:d0:71:cc:af:e6:b5:c5:cd:0e:c7:b7: bc:61:02:ad:a8:9b:10:61:f0:32:47:63:c8:d3:5b:e0:db:b0: 46:de:b3:e9:3b:e6:fd:d7:4f:40:93:d9:3d:0b:5b:9f:12:89: 30:2b:7e:15:10:ff:85:26:77:43:34:bb:f2:ae:c1:48:8b:17: f1:1a:63:36:07:ad:aa:38:79:ee:ed:3c:04:1b:18:e3:93:d6: 0c:3b:4f:ad:12:f5:70:d8:f0:d5:56:e8:35:ac:64:be:9f:97: 91:43:55:80 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDb4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUEyOEIxMTAvBgNVBAUTKDZGQzJFREYwQzUxMTUyQTNCRUMxMTQ5QTFCREIyRURC MjkzQzlEOTUwHhcNMjUxMjA2MTcyMzAxWhcNMjUxMjEzMTcyMzAxWjAYMRYwFAYD VQQDEw02OTM0NjY3NS1kZDZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyILrCMomj/+YO3wN998mYvmk/9BshN0Rn1PaAZ94iGNgcI3lMGfnHPRVlW38 wNI/2Ioux7vHOy2rua0D+uXJFN4CQp+XQ0lwFf8ie5XK9+7isFsyUIgG3PEihHgD o6jDGkvE+E0a68EOxd4W0cvS2gTOwEk2XR3uYcyLKGuXxcZCVMs5Brh61n7c6DAX qwfR9xAHKwab8AHMz/QXYlJSAkG44kQW2R+zP2/OIGsVaRfnQ/NAxM2Z1Iwt8zse GG+4oodku8y+DNbCjup7hG/3AqFVegijSM97EEIbSQzqNfqxTWvHWxl/zq4+48wr nhjW2cchAlP+bXd2/P8cnoUjjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFcshW19 vvYx416qasTg8ikC3Ag4MB8GA1UdIwQYMBaAFG/C7fDFEVKjvsEUmhvbLtspPJ2V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQTI4Qi8xRTAyNjRBQURC QzgxMUU5QkVBOTEwNTFDNEY5QUUwMi9iOEx0OE1VUlVxTy13UlNhRzlzdTJ5azhu WlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I4THQ4TVVSVXFPLXdSU2FHOXN1MnlrOG5aVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QTI4Qi8xRTAyNjRBQURCQzgxMUU5QkVBOTEwNTFDNEY5QUUwMi9iOEx0OE1VUlVx Ty13UlNhRzlzdTJ5azhuWlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+dlUKfY1Xk2hUqlstJt8XxAEOFcWBLD9t0m/kCA0uOcsdfKH5Vmvx akTCI8l2tyUMrxMFj49LgH1T1Wg6YyzLz07Th1wILBQ2XQy9jCNfUmwefI5loh7S MqWm9WcE1EAr9b2qfpnAO5hGa9OfOKRxuNFLWv8v1ej/f+4tH83ctKylgif4I02/ ck7t70Ys2eKDFKFhN/YT0HHMr+a1xc0Ox7e8YQKtqJsQYfAyR2PI01vg27BG3rPp O+b9109Ak9k9C1ufEokwK34VEP+FJndDNLvyrsFIixfxGmM2B62qOHnu7TwEGxjj k9YMO0+tEvVw2PDVVug1rGS+n5eRQ1WA -----END CERTIFICATE-----Generated at Sun Dec 7 01:55:13 2025 by rpki-client