This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5AAA/8B2824529FF711E2AD9CEDEE2F5A7754/8YaDAEWuVIbpCXNDfanSB6VmhpE.mft File: 8YaDAEWuVIbpCXNDfanSB6VmhpE.mft (raw, json) Hash identifier: N15iPtj5TVxPJ1GirZ8YH5MqLDbKujO7IsB3arMn6To= Subject key identifier: AE:4E:FD:6C:03:A2:46:9B:DD:D9:64:CD:BE:63:A7:5C:F7:1C:A5:74 Authority key identifier: F1:86:83:00:45:AE:54:86:E9:09:73:43:7D:A9:D2:07:A5:66:86:91 Certificate issuer: /CN=A91F5AAA/serialNumber=F186830045AE5486E90973437DA9D207A5668691 Certificate serial: 324C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8YaDAEWuVIbpCXNDfanSB6VmhpE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5AAA/8B2824529FF711E2AD9CEDEE2F5A7754/8YaDAEWuVIbpCXNDfanSB6VmhpE.mft Manifest number: 324C Signing time: Sat 06 Dec 2025 15:14:19 +0000 Manifest this update: Sat 06 Dec 2025 15:14:19 +0000 Manifest next update: Sat 13 Dec 2025 15:14:19 +0000 Files and hashes: 1: 8YaDAEWuVIbpCXNDfanSB6VmhpE.crl (hash: r4oloHorbz2ahEiyP9IAP5ecmFnp1zFVrSIMUUaPqFA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5AAA/8B2824529FF711E2AD9CEDEE2F5A7754/8YaDAEWuVIbpCXNDfanSB6VmhpE.crl rsync://rpki.apnic.net/member_repository/A91F5AAA/8B2824529FF711E2AD9CEDEE2F5A7754/8YaDAEWuVIbpCXNDfanSB6VmhpE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8YaDAEWuVIbpCXNDfanSB6VmhpE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12876 (0x324c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5AAA, serialNumber=F186830045AE5486E90973437DA9D207A5668691 Validity Not Before: Dec 6 15:14:19 2025 GMT Not After : Dec 13 15:14:19 2025 GMT Subject: CN=6934484b-9640 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:b3:22:2d:51:49:30:71:bc:71:cb:57:cf:95: 6a:2a:90:79:36:81:55:33:f3:aa:cd:29:d4:e3:cb: 78:1d:17:b8:8f:b8:52:31:fa:1a:0f:e3:f6:5a:b4: 9b:47:bd:06:d1:d3:e6:7d:c1:aa:52:a5:b5:6c:8f: a3:9d:bd:5c:87:91:05:61:61:fa:0d:1f:d8:c6:a5: ac:9f:3a:74:6e:f7:bf:59:93:cc:23:d9:ad:e8:3b: ad:e9:ae:af:07:62:ca:c7:c4:7e:c5:91:93:ee:58: 75:ee:ee:3d:ac:0d:78:5a:a5:4d:13:37:48:d8:e6: 73:1a:e8:ce:bf:17:0d:a5:55:4f:94:39:bf:9d:4a: fb:34:05:0b:95:ab:20:1e:98:1f:74:c3:c7:18:27: 93:d8:90:7c:26:c1:3a:e5:69:af:90:65:0c:59:b7: 74:a1:6b:4f:c4:c9:2a:a8:49:13:8a:ad:c1:89:5c: 0c:6b:2e:2e:0c:85:bf:df:a9:d9:4a:cd:72:37:e6: 1c:01:28:c5:80:ca:1e:86:a5:41:e7:b9:de:3d:01: d7:4d:68:eb:3a:12:47:aa:33:99:09:a9:39:7f:f9: 3f:8b:d1:78:fa:04:a2:2d:3e:45:9f:c5:19:2b:18: d8:58:f6:e8:3b:e3:a8:41:98:c5:35:95:40:c6:9b: 51:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:4E:FD:6C:03:A2:46:9B:DD:D9:64:CD:BE:63:A7:5C:F7:1C:A5:74 X509v3 Authority Key Identifier: keyid:F1:86:83:00:45:AE:54:86:E9:09:73:43:7D:A9:D2:07:A5:66:86:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5AAA/8B2824529FF711E2AD9CEDEE2F5A7754/8YaDAEWuVIbpCXNDfanSB6VmhpE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8YaDAEWuVIbpCXNDfanSB6VmhpE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5AAA/8B2824529FF711E2AD9CEDEE2F5A7754/8YaDAEWuVIbpCXNDfanSB6VmhpE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:a2:a4:70:e4:9a:c1:1c:35:ce:91:dc:ca:bd:e8:2b:10:de: 68:83:c6:c5:fb:ec:4c:5f:21:b9:d1:57:37:d9:ce:33:ea:78: b9:a8:f2:b2:80:9f:a0:11:8a:70:e8:b9:ad:79:1a:ff:d8:90: aa:14:8b:d7:09:41:25:42:7b:f6:c5:2a:98:a5:d9:b2:b7:b2: fd:c1:89:ff:bc:14:61:4c:3f:a8:f2:db:3e:ef:54:bd:41:a3: 0b:d0:54:db:13:d7:e6:62:b1:67:92:93:1b:6a:a3:b3:b0:a9: a7:94:ce:eb:f1:57:65:6a:16:92:18:65:75:90:8a:11:e1:b5: 68:40:c9:f8:61:7f:22:d0:1b:7e:0c:be:28:ba:cb:68:80:e9: fc:c3:95:65:bb:5a:2b:da:d8:3a:d1:4c:e5:94:b6:7c:23:18: 46:d4:43:e7:88:d8:e9:16:d9:b2:96:2d:da:f7:6d:d2:14:4f: b8:22:8a:3c:25:77:4f:9d:fe:74:07:d0:4f:26:de:25:f5:cf: 60:0d:de:50:95:4e:96:4c:e0:2c:2b:50:c1:07:4e:e9:77:2a: 4e:b0:01:2a:52:97:a9:51:1c:29:19:fc:09:1f:45:60:f0:2f: 3b:5d:aa:b3:03:5e:58:78:2f:07:5d:f6:db:db:1f:ef:3b:83: 25:fe:99:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICMkwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjVBQUExMTAvBgNVBAUTKEYxODY4MzAwNDVBRTU0ODZFOTA5NzM0MzdEQTlEMjA3 QTU2Njg2OTEwHhcNMjUxMjA2MTUxNDE5WhcNMjUxMjEzMTUxNDE5WjAYMRYwFAYD VQQDEw02OTM0NDg0Yi05NjQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqbMiLVFJMHG8cctXz5VqKpB5NoFVM/OqzSnU48t4HRe4j7hSMfoaD+P2WrSb R70G0dPmfcGqUqW1bI+jnb1ch5EFYWH6DR/YxqWsnzp0bve/WZPMI9mt6Dut6a6v B2LKx8R+xZGT7lh17u49rA14WqVNEzdI2OZzGujOvxcNpVVPlDm/nUr7NAULlasg HpgfdMPHGCeT2JB8JsE65WmvkGUMWbd0oWtPxMkqqEkTiq3BiVwMay4uDIW/36nZ Ss1yN+YcASjFgMoehqVB57nePQHXTWjrOhJHqjOZCak5f/k/i9F4+gSiLT5Fn8UZ KxjYWPboO+OoQZjFNZVAxptRuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK5O/WwD okab3dlkzb5jp1z3HKV0MB8GA1UdIwQYMBaAFPGGgwBFrlSG6QlzQ32p0gelZoaR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNUFBQS84QjI4MjQ1MjlG RjcxMUUyQUQ5Q0VERUUyRjVBNzc1NC84WWFEQUVXdVZJYnBDWE5EZmFuU0I2Vm1o cEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhZYURBRVd1VklicENYTkRmYW5TQjZWbWhwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NUFBQS84QjI4MjQ1MjlGRjcxMUUyQUQ5Q0VERUUyRjVBNzc1NC84WWFEQUVXdVZJ YnBDWE5EZmFuU0I2Vm1ocEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAzoqRw5JrBHDXOkdzKvegrEN5og8bF++xMXyG50Vc32c4z6ni5qPKy gJ+gEYpw6LmteRr/2JCqFIvXCUElQnv2xSqYpdmyt7L9wYn/vBRhTD+o8ts+71S9 QaML0FTbE9fmYrFnkpMbaqOzsKmnlM7r8VdlahaSGGV1kIoR4bVoQMn4YX8i0Bt+ DL4oustogOn8w5Vlu1or2tg60UzllLZ8IxhG1EPniNjpFtmyli3a923SFE+4Ioo8 JXdPnf50B9BPJt4l9c9gDd5QlU6WTOAsK1DBB07pdypOsAEqUpepURwpGfwJH0Vg 8C87XaqzA15YeC8HXfbb2x/vO4Ml/plf -----END CERTIFICATE-----Generated at Sat Dec 6 18:33:39 2025 by rpki-client