This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D671F/1EDC10BC171E11E8856BC443C4F9AE02/s8j34GTam1qm6nlgF-xg0okDeCo.mft File: s8j34GTam1qm6nlgF-xg0okDeCo.mft (raw, json) Hash identifier: TiGni3LvYAOcBEt96dALiYBN8/yZhF2yuq96KOXZk8g= Subject key identifier: 6A:3E:31:1B:E9:EA:9D:17:DA:BB:72:6F:C4:B4:A7:0F:8E:14:78:23 Authority key identifier: B3:C8:F7:E0:64:DA:9B:5A:A6:EA:79:60:17:EC:60:D2:89:03:78:2A Certificate issuer: /CN=A91D671F/serialNumber=B3C8F7E064DA9B5AA6EA796017EC60D28903782A Certificate serial: 1682 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s8j34GTam1qm6nlgF-xg0okDeCo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D671F/1EDC10BC171E11E8856BC443C4F9AE02/s8j34GTam1qm6nlgF-xg0okDeCo.mft Manifest number: 166D Signing time: Thu 04 Dec 2025 16:22:27 +0000 Manifest this update: Thu 04 Dec 2025 16:22:26 +0000 Manifest next update: Thu 11 Dec 2025 16:22:26 +0000 Files and hashes: 1: s8j34GTam1qm6nlgF-xg0okDeCo.crl (hash: dbLS/F7QMQmH8876xhx0BOW/jDax2VOlz1eGjpU3y2g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D671F/1EDC10BC171E11E8856BC443C4F9AE02/s8j34GTam1qm6nlgF-xg0okDeCo.crl rsync://rpki.apnic.net/member_repository/A91D671F/1EDC10BC171E11E8856BC443C4F9AE02/s8j34GTam1qm6nlgF-xg0okDeCo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s8j34GTam1qm6nlgF-xg0okDeCo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 16:22:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5762 (0x1682) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D671F, serialNumber=B3C8F7E064DA9B5AA6EA796017EC60D28903782A Validity Not Before: Dec 4 16:22:26 2025 GMT Not After : Dec 11 16:22:26 2025 GMT Subject: CN=6931b542-c739 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:c2:0c:3b:64:02:ae:b1:64:79:16:f5:b4:0e: d9:20:7b:dd:83:c2:46:44:69:aa:dd:51:5f:a5:9c: ef:89:f3:e9:81:36:fa:66:ee:28:bf:57:54:cd:3a: 8b:ed:35:50:0e:94:bd:9a:a0:81:b6:eb:d1:b0:34: 26:f0:22:39:4f:a4:97:87:59:d5:71:3c:68:a6:6f: 5f:13:df:f7:1b:1b:60:cb:e2:2f:a8:e0:2c:98:5e: e9:29:27:8b:c2:e0:e2:66:22:a2:45:26:96:4f:fb: cd:88:d5:7f:61:e5:c0:e2:ba:35:f7:2d:f4:9e:8b: d7:4a:05:59:b8:50:8f:55:a0:cd:6f:d3:ef:77:1b: 48:c0:24:e8:c0:9d:2a:ba:28:8f:e8:83:c9:e7:5b: 3e:1d:ba:94:f1:83:bf:3b:f0:78:47:45:7b:96:1d: 59:23:0c:5d:94:e3:ed:c7:9e:aa:48:03:e8:77:76: 4e:6b:ee:5f:d5:36:87:e6:fb:6f:dc:b8:c4:71:86: 5f:d7:35:ce:49:f9:0b:ee:69:dd:9e:69:31:26:20: 4b:7c:cf:25:e5:da:60:e7:81:c2:df:5f:08:d4:42: b0:77:8a:ef:8a:18:52:43:b6:a8:e6:62:15:2e:36: b2:18:2f:84:9a:b5:fe:ab:e8:1f:94:db:ef:5b:5a: c8:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:3E:31:1B:E9:EA:9D:17:DA:BB:72:6F:C4:B4:A7:0F:8E:14:78:23 X509v3 Authority Key Identifier: keyid:B3:C8:F7:E0:64:DA:9B:5A:A6:EA:79:60:17:EC:60:D2:89:03:78:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D671F/1EDC10BC171E11E8856BC443C4F9AE02/s8j34GTam1qm6nlgF-xg0okDeCo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s8j34GTam1qm6nlgF-xg0okDeCo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D671F/1EDC10BC171E11E8856BC443C4F9AE02/s8j34GTam1qm6nlgF-xg0okDeCo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:4c:db:67:00:be:d0:90:2b:e0:87:0c:2c:d9:6f:2b:b3:25: 30:69:ef:32:2a:9c:fd:0e:63:eb:a5:e4:5a:41:e7:89:d9:cb: 78:1d:39:0c:b9:c4:20:cc:5c:79:51:ab:f3:7f:6f:01:f9:59: 03:c5:f1:a4:6c:93:29:98:cf:0e:05:ad:28:d7:24:63:65:79: 7c:33:63:9a:81:4e:67:c3:a9:51:48:c9:62:b1:b3:de:5a:d0: 98:77:ed:eb:3c:19:3d:18:ac:e1:8a:bc:11:16:c5:28:c3:08: 99:e7:10:66:28:73:2a:d0:b9:6d:9e:b7:40:8e:9e:9e:9b:ec: c9:94:25:bb:c4:4c:30:18:e8:00:b9:f7:06:4b:48:23:bb:ab: f0:98:57:5e:2e:dc:1b:58:1d:be:23:37:03:23:16:ae:6a:56: 5e:01:9e:cc:ca:4e:da:28:44:55:04:56:ab:26:a0:6b:ae:9d: b4:60:df:89:b0:92:46:60:c1:68:33:74:05:03:7b:74:57:50: 0b:22:e6:0b:19:85:a9:f1:04:51:15:31:b7:ca:c2:49:ea:39: e5:7b:88:71:3b:ed:f3:fe:0f:03:a6:dc:3c:65:07:8e:64:75: 7d:e2:f7:08:09:27:72:2c:3d:be:84:ce:d2:4e:6c:04:c6:b2: 58:93:db:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFoIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDY3MUYxMTAvBgNVBAUTKEIzQzhGN0UwNjREQTlCNUFBNkVBNzk2MDE3RUM2MEQy ODkwMzc4MkEwHhcNMjUxMjA0MTYyMjI2WhcNMjUxMjExMTYyMjI2WjAYMRYwFAYD VQQDEw02OTMxYjU0Mi1jNzM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAscIMO2QCrrFkeRb1tA7ZIHvdg8JGRGmq3VFfpZzvifPpgTb6Zu4ov1dUzTqL 7TVQDpS9mqCBtuvRsDQm8CI5T6SXh1nVcTxopm9fE9/3Gxtgy+IvqOAsmF7pKSeL wuDiZiKiRSaWT/vNiNV/YeXA4ro19y30novXSgVZuFCPVaDNb9PvdxtIwCTowJ0q uiiP6IPJ51s+HbqU8YO/O/B4R0V7lh1ZIwxdlOPtx56qSAPod3ZOa+5f1TaH5vtv 3LjEcYZf1zXOSfkL7mndnmkxJiBLfM8l5dpg54HC318I1EKwd4rvihhSQ7ao5mIV LjayGC+EmrX+q+gflNvvW1rIHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGo+MRvp 6p0X2rtyb8S0pw+OFHgjMB8GA1UdIwQYMBaAFLPI9+Bk2ptapup5YBfsYNKJA3gq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjcxRi8xRURDMTBCQzE3 MUUxMUU4ODU2QkM0NDNDNEY5QUUwMi9zOGozNEdUYW0xcW02bmxnRi14ZzBva0Rl Q28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3M4ajM0R1RhbTFxbTZubGdGLXhnMG9rRGVDby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NjcxRi8xRURDMTBCQzE3MUUxMUU4ODU2QkM0NDNDNEY5QUUwMi9zOGozNEdUYW0x cW02bmxnRi14ZzBva0RlQ28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBsTNtnAL7QkCvghwws2W8rsyUwae8yKpz9DmPrpeRaQeeJ2ct4HTkM ucQgzFx5Uavzf28B+VkDxfGkbJMpmM8OBa0o1yRjZXl8M2OagU5nw6lRSMlisbPe WtCYd+3rPBk9GKzhirwRFsUowwiZ5xBmKHMq0LltnrdAjp6em+zJlCW7xEwwGOgA ufcGS0gju6vwmFdeLtwbWB2+IzcDIxaualZeAZ7Myk7aKERVBFarJqBrrp20YN+J sJJGYMFoM3QFA3t0V1ALIuYLGYWp8QRRFTG3ysJJ6jnle4hxO+3z/g8Dptw8ZQeO ZHV94vcICSdyLD2+hM7STmwExrJYk9uC -----END CERTIFICATE-----Generated at Sat Dec 6 15:18:22 2025 by rpki-client