This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9916/239DC426618B11ED88ABBC22C4F9AE02/8uRlf7CxUUJzxQ7r-Q9EFv2lSwc.mft File: 8uRlf7CxUUJzxQ7r-Q9EFv2lSwc.mft (raw, json) Hash identifier: ksrgwOhNsaKTrAPR+fOdfWdhQ5+9xthNxpKl6fKXTjg= Subject key identifier: CD:39:50:ED:65:C2:1F:52:DD:A1:54:54:16:1F:3A:01:F8:A5:2B:09 Authority key identifier: F2:E4:65:7F:B0:B1:51:42:73:C5:0E:EB:F9:0F:44:16:FD:A5:4B:07 Certificate issuer: /CN=A91C9916/serialNumber=F2E4657FB0B1514273C50EEBF90F4416FDA54B07 Certificate serial: 0239 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8uRlf7CxUUJzxQ7r-Q9EFv2lSwc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9916/239DC426618B11ED88ABBC22C4F9AE02/8uRlf7CxUUJzxQ7r-Q9EFv2lSwc.mft Manifest number: 0239 Signing time: Sun 07 Dec 2025 00:21:38 +0000 Manifest this update: Sun 07 Dec 2025 00:21:37 +0000 Manifest next update: Sun 14 Dec 2025 00:21:37 +0000 Files and hashes: 1: 8uRlf7CxUUJzxQ7r-Q9EFv2lSwc.crl (hash: k/nZb+ppkJUwcEUauOUZ3GH6ksLcXri2oXpVeBQK2Xw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9916/239DC426618B11ED88ABBC22C4F9AE02/8uRlf7CxUUJzxQ7r-Q9EFv2lSwc.crl rsync://rpki.apnic.net/member_repository/A91C9916/239DC426618B11ED88ABBC22C4F9AE02/8uRlf7CxUUJzxQ7r-Q9EFv2lSwc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8uRlf7CxUUJzxQ7r-Q9EFv2lSwc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 00:21:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 569 (0x239) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9916, serialNumber=F2E4657FB0B1514273C50EEBF90F4416FDA54B07 Validity Not Before: Dec 7 00:21:37 2025 GMT Not After : Dec 14 00:21:37 2025 GMT Subject: CN=6934c892-5c39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:7f:02:bc:28:18:fc:f1:f9:66:e5:f7:31:3e: 76:07:26:0b:1e:3b:3c:3c:ab:e6:fd:73:44:3a:e1: 0a:bc:3c:6c:15:d8:10:a0:2b:a4:90:d2:4b:74:dd: 05:ae:b8:3c:a1:0b:16:e8:6c:e8:f6:c8:9f:bf:71: da:bd:0d:5c:ce:30:0c:b4:05:0e:bc:c1:87:dc:7d: e8:cd:0e:a3:2f:05:3c:f3:02:54:29:0f:a2:5e:65: 93:1b:74:83:d7:87:85:e4:bd:c9:c9:a7:e9:6e:98: 90:83:42:78:b5:97:d7:5c:02:f7:8b:af:eb:25:38: dd:a1:fc:ef:f2:0a:1c:cd:5d:d1:0a:6d:c6:31:5f: a0:26:58:eb:31:0f:ec:45:e4:de:ad:97:17:ed:15: 43:d7:a6:4c:88:c5:30:9b:89:b3:82:25:2a:17:4c: 5d:f0:4e:8c:30:2a:9c:af:c4:c6:55:e4:39:1b:8d: cc:38:7b:e4:9d:79:59:21:54:c4:5a:5a:d7:4e:d2: e2:5f:45:8c:f0:06:42:ec:09:ac:9b:00:9c:4c:18: bc:e3:37:77:7a:c9:9a:36:59:50:0c:41:74:1d:3b: 41:ed:51:36:b8:df:b3:27:eb:6e:40:0c:d0:63:b4: 8f:46:77:0d:01:47:9e:e5:35:61:2f:b6:81:9d:64: 15:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:39:50:ED:65:C2:1F:52:DD:A1:54:54:16:1F:3A:01:F8:A5:2B:09 X509v3 Authority Key Identifier: keyid:F2:E4:65:7F:B0:B1:51:42:73:C5:0E:EB:F9:0F:44:16:FD:A5:4B:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9916/239DC426618B11ED88ABBC22C4F9AE02/8uRlf7CxUUJzxQ7r-Q9EFv2lSwc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8uRlf7CxUUJzxQ7r-Q9EFv2lSwc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9916/239DC426618B11ED88ABBC22C4F9AE02/8uRlf7CxUUJzxQ7r-Q9EFv2lSwc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:2b:23:9d:bc:ba:13:5b:e9:73:86:f2:a4:da:94:20:c4:b1: 42:1d:b5:66:2b:fc:c4:7e:08:8a:65:5f:24:2e:c1:f4:cd:cd: 26:8b:33:c8:9d:83:f8:b9:ea:bc:be:6c:7a:77:ef:da:1a:7d: 6c:2d:4a:35:4a:a3:a8:e4:44:90:87:3a:bf:da:bb:c2:0a:4b: 03:ad:1b:73:08:6d:e6:70:af:2b:b5:bb:36:93:11:7d:f0:ae: 90:16:70:84:2e:98:91:cf:01:9c:fb:7f:6c:5a:70:f3:49:d2: 58:f6:28:fb:4c:e0:cc:19:ec:ae:c0:14:5f:3f:35:b7:d8:a9: f2:d0:77:06:0c:40:ca:fb:b3:11:3b:49:32:ab:a4:95:15:04: 8f:c2:11:e3:b3:ff:6b:b9:0f:dc:15:a5:de:e3:17:b2:0e:aa: 34:44:5e:e8:c8:4d:d2:e0:c9:1d:f0:ab:57:82:bb:c7:5d:a4: fc:8e:fb:09:1d:32:73:c3:a7:60:bb:f4:79:25:5a:7f:7b:77: 14:42:26:50:da:82:e0:a7:64:3f:d9:c8:5f:b0:f0:ca:a9:65: 34:38:dc:61:03:f4:8c:43:15:8a:f7:ac:83:72:76:37:56:09: 09:c8:ee:79:02:16:0c:24:11:e4:7b:2b:1a:a7:d0:3f:74:6a: 3f:e9:96:12 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk5MTYxMTAvBgNVBAUTKEYyRTQ2NTdGQjBCMTUxNDI3M0M1MEVFQkY5MEY0NDE2 RkRBNTRCMDcwHhcNMjUxMjA3MDAyMTM3WhcNMjUxMjE0MDAyMTM3WjAYMRYwFAYD VQQDEw02OTM0Yzg5Mi01YzM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAun8CvCgY/PH5ZuX3MT52ByYLHjs8PKvm/XNEOuEKvDxsFdgQoCukkNJLdN0F rrg8oQsW6Gzo9sifv3HavQ1czjAMtAUOvMGH3H3ozQ6jLwU88wJUKQ+iXmWTG3SD 14eF5L3JyafpbpiQg0J4tZfXXAL3i6/rJTjdofzv8goczV3RCm3GMV+gJljrMQ/s ReTerZcX7RVD16ZMiMUwm4mzgiUqF0xd8E6MMCqcr8TGVeQ5G43MOHvknXlZIVTE WlrXTtLiX0WM8AZC7AmsmwCcTBi84zd3esmaNllQDEF0HTtB7VE2uN+zJ+tuQAzQ Y7SPRncNAUee5TVhL7aBnWQV9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM05UO1l wh9S3aFUVBYfOgH4pSsJMB8GA1UdIwQYMBaAFPLkZX+wsVFCc8UO6/kPRBb9pUsH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTkxNi8yMzlEQzQyNjYx OEIxMUVEODhBQkJDMjJDNEY5QUUwMi84dVJsZjdDeFVVSnp4UTdyLVE5RUZ2MmxT d2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzh1UmxmN0N4VVVKenhRN3ItUTlFRnYybFN3Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTkxNi8yMzlEQzQyNjYxOEIxMUVEODhBQkJDMjJDNEY5QUUwMi84dVJsZjdDeFVV Snp4UTdyLVE5RUZ2MmxTd2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYKyOdvLoTW+lzhvKk2pQgxLFCHbVmK/zEfgiKZV8kLsH0zc0mizPI nYP4ueq8vmx6d+/aGn1sLUo1SqOo5ESQhzq/2rvCCksDrRtzCG3mcK8rtbs2kxF9 8K6QFnCELpiRzwGc+39sWnDzSdJY9ij7TODMGeyuwBRfPzW32Kny0HcGDEDK+7MR O0kyq6SVFQSPwhHjs/9ruQ/cFaXe4xeyDqo0RF7oyE3S4Mkd8KtXgrvHXaT8jvsJ HTJzw6dgu/R5JVp/e3cUQiZQ2oLgp2Q/2chfsPDKqWU0ONxhA/SMQxWK96yDcnY3 VgkJyO55AhYMJBHkeysap9A/dGo/6ZYS -----END CERTIFICATE-----Generated at Sun Dec 7 02:59:09 2025 by rpki-client