This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.mft File: g8kBUb4XghT8FnWDNNO21Sd6PL8.mft (raw, json) Hash identifier: HFn7ockTklSW0r2S0lsJLVwMF/9oRg5aLTPp/KnxK1Y= Subject key identifier: E6:93:D5:0A:96:36:FB:DC:BA:28:66:DB:76:77:E0:5C:4D:52:3D:57 Authority key identifier: 83:C9:01:51:BE:17:82:14:FC:16:75:83:34:D3:B6:D5:27:7A:3C:BF Certificate issuer: /CN=A91F4091/serialNumber=83C90151BE178214FC16758334D3B6D5277A3CBF Certificate serial: 011E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g8kBUb4XghT8FnWDNNO21Sd6PL8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.mft Manifest number: 011C Signing time: Fri 05 Dec 2025 02:50:15 +0000 Manifest this update: Fri 05 Dec 2025 02:50:15 +0000 Manifest next update: Fri 12 Dec 2025 02:50:15 +0000 Files and hashes: 1: g8kBUb4XghT8FnWDNNO21Sd6PL8.crl (hash: ABUFlQhF4p+l7JU1ZE+3Ubvn68bhTZ1ecOjPNP4Whlg=) 2: 1E110D7E1DA011EFBC90D55EC4F9AE02.roa (hash: YulPvT0hM25YZIDv5KjG+XciSXVC4OQirSgi0X2f6Hc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.crl rsync://rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g8kBUb4XghT8FnWDNNO21Sd6PL8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 286 (0x11e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4091, serialNumber=83C90151BE178214FC16758334D3B6D5277A3CBF Validity Not Before: Dec 5 02:50:15 2025 GMT Not After : Dec 12 02:50:15 2025 GMT Subject: CN=69324867-0d81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:fe:95:c4:1f:db:47:e7:fc:a6:98:7c:62:6e: 40:35:86:9a:90:80:80:fc:31:86:9e:f6:ce:56:5e: 89:31:71:5d:e0:4d:f2:0a:25:a5:c8:77:ae:21:7a: 4a:f2:d7:e5:e8:13:bd:06:e0:43:65:73:e7:63:48: 73:5d:92:54:d1:a2:0a:cc:7b:97:34:17:50:ca:8e: 94:65:9c:41:10:52:7d:2c:fb:0e:d8:6e:4c:39:a4: b8:e5:d6:03:da:22:d2:db:7a:24:be:fd:a1:6f:8d: 13:9e:40:03:f1:97:3e:10:c7:5f:ce:91:98:f4:5c: 99:ec:82:14:8f:95:b7:69:4d:7a:eb:d3:c9:43:51: 2e:e2:0a:bc:b4:b1:31:5f:0e:fd:bc:54:35:5d:69: 6d:82:d7:f4:3f:1b:3d:79:5c:51:8f:d8:b0:b6:19: 54:5f:9b:30:ef:de:90:3d:04:42:4f:de:e2:12:48: dc:ba:f2:65:65:dc:8e:7d:07:9d:6b:49:d6:b8:0b: d5:29:f5:1a:af:2a:c4:7a:ec:72:83:9a:ac:33:5b: 8d:ad:6f:bc:51:1e:17:0a:48:67:d5:2b:7e:1a:2e: 2d:04:92:a1:cf:9d:d4:e8:10:ad:cb:ed:80:83:c1: f7:a7:43:19:f6:dd:03:1b:56:07:ca:b4:1f:80:60: 71:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:93:D5:0A:96:36:FB:DC:BA:28:66:DB:76:77:E0:5C:4D:52:3D:57 X509v3 Authority Key Identifier: keyid:83:C9:01:51:BE:17:82:14:FC:16:75:83:34:D3:B6:D5:27:7A:3C:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g8kBUb4XghT8FnWDNNO21Sd6PL8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c1:de:7a:0b:00:67:2f:00:6d:68:09:4e:0e:62:c9:15:18:3c: b1:39:3e:21:5d:89:bf:67:3d:c6:61:0b:08:1f:76:e9:58:48: 60:14:92:25:fa:04:a1:fd:57:5f:07:b3:ad:9b:73:2e:82:79: a8:4c:8b:18:32:fe:5a:05:8a:61:b4:41:6d:7b:99:00:2d:81: 51:7c:5c:2d:d8:c0:6e:b7:e3:ef:fa:68:bf:3f:85:b2:20:50: 6e:4d:8e:99:40:2e:55:02:e1:42:0e:1a:cb:b9:e4:f2:34:47: 72:45:64:4c:30:af:f7:19:5c:db:04:7e:7c:c7:d2:16:0d:77: a8:38:61:79:e6:b0:b8:fd:9c:62:87:c8:ff:69:8b:89:b9:ac: 66:aa:c0:c6:03:9d:fc:8d:20:cb:a6:6a:bd:c4:79:34:d9:36: 37:84:ba:03:53:85:3a:2d:9f:1a:05:78:5f:77:41:3f:35:e3: 1c:0c:78:0a:20:c6:58:3c:da:d4:00:7c:d0:78:de:ca:23:44: 21:22:50:fa:32:87:db:7b:0d:5d:e4:a2:c6:40:56:7e:b6:4d: 53:17:4f:14:79:55:20:e3:2a:24:78:ab:60:98:84:3a:bc:61: 11:3a:61:60:67:f7:4c:16:59:ff:f7:c7:59:cf:8d:44:65:8b: d3:58:cc:79 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAR4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjQwOTExMTAvBgNVBAUTKDgzQzkwMTUxQkUxNzgyMTRGQzE2NzU4MzM0RDNCNkQ1 Mjc3QTNDQkYwHhcNMjUxMjA1MDI1MDE1WhcNMjUxMjEyMDI1MDE1WjAYMRYwFAYD VQQDEw02OTMyNDg2Ny0wZDgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4P6VxB/bR+f8pph8Ym5ANYaakICA/DGGnvbOVl6JMXFd4E3yCiWlyHeuIXpK 8tfl6BO9BuBDZXPnY0hzXZJU0aIKzHuXNBdQyo6UZZxBEFJ9LPsO2G5MOaS45dYD 2iLS23okvv2hb40TnkAD8Zc+EMdfzpGY9FyZ7IIUj5W3aU1669PJQ1Eu4gq8tLEx Xw79vFQ1XWltgtf0Pxs9eVxRj9iwthlUX5sw796QPQRCT97iEkjcuvJlZdyOfQed a0nWuAvVKfUaryrEeuxyg5qsM1uNrW+8UR4XCkhn1St+Gi4tBJKhz53U6BCty+2A g8H3p0MZ9t0DG1YHyrQfgGBxQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOaT1QqW Nvvcuihm23Z34FxNUj1XMB8GA1UdIwQYMBaAFIPJAVG+F4IU/BZ1gzTTttUnejy/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNDA5MS81QTExNkJBQTFE OUQxMUVGQTEwRjJEM0FDNEY5QUUwMi9nOGtCVWI0WGdoVDhGbldETk5PMjFTZDZQ TDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2c4a0JVYjRYZ2hUOEZuV0ROTk8yMVNkNlBMOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NDA5MS81QTExNkJBQTFEOUQxMUVGQTEwRjJEM0FDNEY5QUUwMi9nOGtCVWI0WGdo VDhGbldETk5PMjFTZDZQTDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDB3noLAGcvAG1oCU4OYskVGDyxOT4hXYm/Zz3GYQsIH3bpWEhgFJIl +gSh/VdfB7Otm3MugnmoTIsYMv5aBYphtEFte5kALYFRfFwt2MBut+Pv+mi/P4Wy IFBuTY6ZQC5VAuFCDhrLueTyNEdyRWRMMK/3GVzbBH58x9IWDXeoOGF55rC4/Zxi h8j/aYuJuaxmqsDGA538jSDLpmq9xHk02TY3hLoDU4U6LZ8aBXhfd0E/NeMcDHgK IMZYPNrUAHzQeN7KI0QhIlD6Mofbew1d5KLGQFZ+tk1TF08UeVUg4yokeKtgmIQ6 vGEROmFgZ/dMFln/98dZz41EZYvTWMx5 -----END CERTIFICATE-----Generated at Sun Dec 7 01:49:18 2025 by rpki-client