This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAEAF/BE3521B833F111EDB8361086C4F9AE02/8ghPeg88CpH4Jf79nxA18zVBWEw.mft File: 8ghPeg88CpH4Jf79nxA18zVBWEw.mft (raw, json) Hash identifier: M8yxIdJXE8KPdnvqMfzllevyl8WFIIWAHYyVsw9pMI4= Subject key identifier: 3C:32:0E:E6:AC:04:27:92:25:CC:01:94:D2:0C:87:04:21:67:6B:4E Authority key identifier: F2:08:4F:7A:0F:3C:0A:91:F8:25:FE:FD:9F:10:35:F3:35:41:58:4C Certificate issuer: /CN=A91EAEAF/serialNumber=F2084F7A0F3C0A91F825FEFD9F1035F33541584C Certificate serial: 027B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8ghPeg88CpH4Jf79nxA18zVBWEw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAEAF/BE3521B833F111EDB8361086C4F9AE02/8ghPeg88CpH4Jf79nxA18zVBWEw.mft Manifest number: 0277 Signing time: Sun 07 Dec 2025 00:08:29 +0000 Manifest this update: Sun 07 Dec 2025 00:08:28 +0000 Manifest next update: Sun 14 Dec 2025 00:08:28 +0000 Files and hashes: 1: 8ghPeg88CpH4Jf79nxA18zVBWEw.crl (hash: /y5ivcg6UVUAPqSpal5Qlu12GEhz/nQUai2rxs96IG4=) 2: EF0EFF5833F511EDA5C4F37DC4F9AE02.roa (hash: fi9xuBK43cEhmF28kvwaKFEKLhEO9BGiHXkRK7I94Hw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAEAF/BE3521B833F111EDB8361086C4F9AE02/8ghPeg88CpH4Jf79nxA18zVBWEw.crl rsync://rpki.apnic.net/member_repository/A91EAEAF/BE3521B833F111EDB8361086C4F9AE02/8ghPeg88CpH4Jf79nxA18zVBWEw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8ghPeg88CpH4Jf79nxA18zVBWEw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 00:08:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 635 (0x27b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAEAF, serialNumber=F2084F7A0F3C0A91F825FEFD9F1035F33541584C Validity Not Before: Dec 7 00:08:28 2025 GMT Not After : Dec 14 00:08:28 2025 GMT Subject: CN=6934c57d-6819 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:c0:b1:2a:37:5a:de:e8:f2:71:09:63:bd:cd: 9a:d1:ed:48:9a:f7:7c:d5:4d:01:cf:95:83:20:bf: f6:8a:7d:16:b9:8a:86:ec:06:6e:73:5b:51:38:6f: 55:1f:8c:4e:f2:48:a1:36:c9:95:31:15:c4:fe:74: 9a:14:3d:83:22:3c:66:a7:94:ab:a1:3c:40:cc:88: ac:e4:26:98:2d:72:2c:6d:46:84:c4:3b:5f:4c:c9: 6e:bc:b5:9d:88:98:38:6f:85:da:27:fe:02:3f:64: 51:e0:f0:fa:63:f7:34:f1:a2:7e:ca:47:06:fb:3f: 62:e3:18:80:55:26:76:d8:73:42:7a:7b:80:a6:5a: f2:18:96:cc:44:f4:81:4d:69:99:e2:88:4e:1b:7d: d4:d5:70:bf:b1:8c:1c:69:c4:db:dc:5f:d5:8f:db: c8:4a:4f:35:32:a6:22:c8:1f:92:36:61:49:df:6c: 78:7f:d4:98:91:8e:69:88:39:0f:ac:0e:fe:a5:cb: ea:d1:f3:1a:e2:04:46:fb:b7:9b:53:54:23:95:71: b3:16:45:a2:68:45:dd:6b:c5:c2:9e:21:24:5d:19: 29:f2:f4:aa:02:d1:0d:3a:f3:03:45:3f:0f:7f:f7: 93:4a:fa:a6:5c:6a:55:6c:0f:6e:e4:ba:d9:a6:b6: 18:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:32:0E:E6:AC:04:27:92:25:CC:01:94:D2:0C:87:04:21:67:6B:4E X509v3 Authority Key Identifier: keyid:F2:08:4F:7A:0F:3C:0A:91:F8:25:FE:FD:9F:10:35:F3:35:41:58:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAEAF/BE3521B833F111EDB8361086C4F9AE02/8ghPeg88CpH4Jf79nxA18zVBWEw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8ghPeg88CpH4Jf79nxA18zVBWEw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAEAF/BE3521B833F111EDB8361086C4F9AE02/8ghPeg88CpH4Jf79nxA18zVBWEw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:87:07:3f:8f:56:18:71:d2:13:61:08:47:73:85:33:f1:5a: 97:db:36:d4:68:18:28:ce:32:c5:59:a4:fc:35:42:11:c9:e0: ab:2a:a4:77:56:70:5e:fa:2d:37:ac:84:10:4a:5d:3e:35:73: ef:99:29:a6:a0:05:30:69:4f:25:49:da:26:30:e8:77:5e:3c: e9:d7:9b:56:20:80:fc:a2:ac:b4:c5:d7:8a:e9:e9:23:00:34: 5c:e4:e1:c3:18:71:0e:f3:a1:20:0a:3e:0b:78:7e:cb:09:38: 5b:ad:e2:98:2f:9b:d2:d4:7f:08:4a:d2:31:49:0b:a3:ee:f7: 63:46:28:5c:71:e7:3a:b5:f0:a8:89:71:ff:06:46:ad:46:8d: f8:d5:7e:18:a1:56:c5:c0:c5:ed:6a:cd:3a:f3:26:54:32:cd: 7d:02:21:dd:6a:1d:85:e4:8f:82:0e:1f:f6:48:16:e1:2e:09: 33:8b:e4:fe:c9:17:4b:52:59:1f:eb:73:15:ea:6a:c6:0c:99: a6:7c:f4:7e:4b:ae:f5:4c:79:cf:f7:00:05:91:38:69:da:33: 04:d7:44:37:06:4d:32:d3:e0:07:f0:1f:4f:d0:51:57:3c:3d: ac:08:59:db:e2:fd:30:5c:b0:6c:6c:75:a8:d1:3d:e1:88:de: cb:c2:69:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAnswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFFQUYxMTAvBgNVBAUTKEYyMDg0RjdBMEYzQzBBOTFGODI1RkVGRDlGMTAzNUYz MzU0MTU4NEMwHhcNMjUxMjA3MDAwODI4WhcNMjUxMjE0MDAwODI4WjAYMRYwFAYD VQQDEw02OTM0YzU3ZC02ODE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm8CxKjda3ujycQljvc2a0e1Imvd81U0Bz5WDIL/2in0WuYqG7AZuc1tROG9V H4xO8kihNsmVMRXE/nSaFD2DIjxmp5SroTxAzIis5CaYLXIsbUaExDtfTMluvLWd iJg4b4XaJ/4CP2RR4PD6Y/c08aJ+ykcG+z9i4xiAVSZ22HNCenuAplryGJbMRPSB TWmZ4ohOG33U1XC/sYwcacTb3F/Vj9vISk81MqYiyB+SNmFJ32x4f9SYkY5piDkP rA7+pcvq0fMa4gRG+7ebU1QjlXGzFkWiaEXda8XCniEkXRkp8vSqAtENOvMDRT8P f/eTSvqmXGpVbA9u5LrZprYYDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDwyDuas BCeSJcwBlNIMhwQhZ2tOMB8GA1UdIwQYMBaAFPIIT3oPPAqR+CX+/Z8QNfM1QVhM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUVBRi9CRTM1MjFCODMz RjExMUVEQjgzNjEwODZDNEY5QUUwMi84Z2hQZWc4OENwSDRKZjc5bnhBMTh6VkJX RXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhnaFBlZzg4Q3BINEpmNzlueEExOHpWQldFdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUVBRi9CRTM1MjFCODMzRjExMUVEQjgzNjEwODZDNEY5QUUwMi84Z2hQZWc4OENw SDRKZjc5bnhBMTh6VkJXRXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHhwc/j1YYcdITYQhHc4Uz8VqX2zbUaBgozjLFWaT8NUIRyeCrKqR3 VnBe+i03rIQQSl0+NXPvmSmmoAUwaU8lSdomMOh3Xjzp15tWIID8oqy0xdeK6ekj ADRc5OHDGHEO86EgCj4LeH7LCThbreKYL5vS1H8IStIxSQuj7vdjRihccec6tfCo iXH/BkatRo341X4YoVbFwMXtas068yZUMs19AiHdah2F5I+CDh/2SBbhLgkzi+T+ yRdLUlkf63MV6mrGDJmmfPR+S671THnP9wAFkThp2jME10Q3Bk0y0+AH8B9P0FFX PD2sCFnb4v0wXLBsbHWo0T3hiN7Lwmn8 -----END CERTIFICATE-----Generated at Mon Dec 8 09:15:19 2025 by rpki-client