This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91281E0/761A7EACE2A311E9AE8BB528C4F9AE02/jeHQtWEwmAuDkA-3j62mcN4uCmU.mft File: jeHQtWEwmAuDkA-3j62mcN4uCmU.mft (raw, json) Hash identifier: yDTfGftqifxToi7oYvoQVsaEos0bbf0tsjyCF7L8z1s= Subject key identifier: 4C:F7:FE:8D:53:AD:9F:73:5F:32:77:71:B2:3F:FC:63:C4:FB:14:C1 Authority key identifier: 8D:E1:D0:B5:61:30:98:0B:83:90:0F:B7:8F:AD:A6:70:DE:2E:0A:65 Certificate issuer: /CN=A91281E0/serialNumber=8DE1D0B56130980B83900FB78FADA670DE2E0A65 Certificate serial: 0D67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jeHQtWEwmAuDkA-3j62mcN4uCmU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91281E0/761A7EACE2A311E9AE8BB528C4F9AE02/jeHQtWEwmAuDkA-3j62mcN4uCmU.mft Manifest number: 0D5B Signing time: Sat 06 Dec 2025 17:24:18 +0000 Manifest this update: Sat 06 Dec 2025 17:24:18 +0000 Manifest next update: Sat 13 Dec 2025 17:24:18 +0000 Files and hashes: 1: jeHQtWEwmAuDkA-3j62mcN4uCmU.crl (hash: /7j4XmFkUmhHA7VI0zPAltIhHu8zzeGOHoXDQHPUn5M=) 2: 72B84162E2A411E9A300492AC4F9AE02.roa (hash: hbFGbb4fXsbz6F3BPhzZvLmW3bUeWq5CqpJ6o7pIq8g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91281E0/761A7EACE2A311E9AE8BB528C4F9AE02/jeHQtWEwmAuDkA-3j62mcN4uCmU.crl rsync://rpki.apnic.net/member_repository/A91281E0/761A7EACE2A311E9AE8BB528C4F9AE02/jeHQtWEwmAuDkA-3j62mcN4uCmU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jeHQtWEwmAuDkA-3j62mcN4uCmU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 17:24:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3431 (0xd67) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91281E0, serialNumber=8DE1D0B56130980B83900FB78FADA670DE2E0A65 Validity Not Before: Dec 6 17:24:18 2025 GMT Not After : Dec 13 17:24:18 2025 GMT Subject: CN=693466c2-2308 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:15:9a:60:d7:04:61:6a:1f:85:12:32:a4:01: b2:d0:0a:08:f5:6c:0e:4d:58:7e:f7:d5:e5:01:46: 88:9d:d7:5b:32:af:90:3c:13:ad:41:df:22:5b:3c: c3:01:53:cf:10:77:25:12:86:9c:61:ee:c2:6c:7d: 8a:43:10:3a:28:0d:a1:9f:54:4c:fe:42:67:a3:60: 5f:8a:8c:22:3e:d4:8b:4c:b8:74:34:f2:29:d5:8b: 5c:21:42:f5:cb:6a:dd:c7:2e:c0:e4:c4:8f:5b:e6: ae:75:04:67:9b:60:e5:aa:b2:a3:69:cd:c6:90:25: cc:e2:70:e8:9f:ef:8a:5b:3e:d9:bf:e8:dc:14:36: 54:f6:6d:61:c7:16:37:e6:d4:28:31:8c:16:49:ab: d9:ea:71:e1:e0:30:2a:6a:73:f7:22:c8:aa:e1:ed: 1b:53:1f:36:69:19:ff:1a:c5:b2:70:75:8c:74:3a: 77:ad:e9:71:b3:dd:16:0b:67:ef:e1:f9:23:b9:ed: b5:90:48:f6:a2:b9:d7:3f:f9:cc:ee:2e:a8:a6:8c: 86:50:6f:e8:8f:28:26:19:a9:0e:7d:c6:e9:7a:78: 02:ea:d8:bb:a9:65:37:87:8d:0a:ff:7a:51:1e:a8: 8c:04:aa:3c:09:a0:c5:be:85:a2:c2:6b:79:ed:99: 64:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:F7:FE:8D:53:AD:9F:73:5F:32:77:71:B2:3F:FC:63:C4:FB:14:C1 X509v3 Authority Key Identifier: keyid:8D:E1:D0:B5:61:30:98:0B:83:90:0F:B7:8F:AD:A6:70:DE:2E:0A:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91281E0/761A7EACE2A311E9AE8BB528C4F9AE02/jeHQtWEwmAuDkA-3j62mcN4uCmU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jeHQtWEwmAuDkA-3j62mcN4uCmU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91281E0/761A7EACE2A311E9AE8BB528C4F9AE02/jeHQtWEwmAuDkA-3j62mcN4uCmU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:0b:44:c4:ee:26:1f:15:de:47:e5:fd:e1:7b:13:1e:59:42: 58:24:5f:1f:16:74:16:f7:29:74:3b:29:1f:35:43:1d:29:76: b7:b6:80:97:f1:4e:b4:c6:2e:33:c4:d6:d3:e7:97:8e:4a:a2: ea:a1:9f:03:aa:ef:3d:21:cc:b1:da:e0:cc:3f:22:30:a8:0e: 27:b1:71:73:f0:4d:e9:8e:27:b3:7b:fd:02:0d:4b:91:bc:d9: e1:4e:77:56:fc:56:19:66:29:8d:d2:43:32:b8:fe:d1:09:8b: e5:af:27:7e:5d:42:15:8a:a9:99:89:68:ed:4d:d3:1b:ee:eb: 01:bd:f0:75:bd:3c:ad:ed:da:2f:99:64:4b:97:c7:b8:8c:46: c9:88:1c:1a:12:00:98:5b:39:11:9b:da:67:23:0f:3d:9b:cf: b1:9d:97:10:25:de:1c:39:f9:a1:24:f6:dd:f9:38:75:ee:54: 09:12:11:9e:6c:b2:81:85:50:ad:69:4a:bd:01:f2:e1:12:e8: f2:90:58:f0:1f:dd:8b:b3:ea:25:33:75:11:ff:2c:79:80:6d: 3c:69:ca:44:15:ef:63:d2:d0:86:68:71:5f:e5:d5:2d:51:b5: 7c:13:a1:8e:8c:b1:38:20:97:8d:37:b8:69:c7:1e:c8:cf:df: 15:c0:cb:81 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDWcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjgxRTAxMTAvBgNVBAUTKDhERTFEMEI1NjEzMDk4MEI4MzkwMEZCNzhGQURBNjcw REUyRTBBNjUwHhcNMjUxMjA2MTcyNDE4WhcNMjUxMjEzMTcyNDE4WjAYMRYwFAYD VQQDEw02OTM0NjZjMi0yMzA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAthWaYNcEYWofhRIypAGy0AoI9WwOTVh+99XlAUaInddbMq+QPBOtQd8iWzzD AVPPEHclEoacYe7CbH2KQxA6KA2hn1RM/kJno2BfiowiPtSLTLh0NPIp1YtcIUL1 y2rdxy7A5MSPW+audQRnm2DlqrKjac3GkCXM4nDon++KWz7Zv+jcFDZU9m1hxxY3 5tQoMYwWSavZ6nHh4DAqanP3Isiq4e0bUx82aRn/GsWycHWMdDp3relxs90WC2fv 4fkjue21kEj2ornXP/nM7i6opoyGUG/ojygmGakOfcbpengC6ti7qWU3h40K/3pR HqiMBKo8CaDFvoWiwmt57ZlkAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEz3/o1T rZ9zXzJ3cbI//GPE+xTBMB8GA1UdIwQYMBaAFI3h0LVhMJgLg5APt4+tpnDeLgpl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODFFMC83NjFBN0VBQ0Uy QTMxMUU5QUU4QkI1MjhDNEY5QUUwMi9qZUhRdFdFd21BdURrQS0zajYybWNONHVD bVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2plSFF0V0V3bUF1RGtBLTNqNjJtY040dUNtVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODFFMC83NjFBN0VBQ0UyQTMxMUU5QUU4QkI1MjhDNEY5QUUwMi9qZUhRdFdFd21B dURrQS0zajYybWNONHVDbVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJC0TE7iYfFd5H5f3hexMeWUJYJF8fFnQW9yl0OykfNUMdKXa3toCX 8U60xi4zxNbT55eOSqLqoZ8Dqu89Icyx2uDMPyIwqA4nsXFz8E3pjieze/0CDUuR vNnhTndW/FYZZimN0kMyuP7RCYvlryd+XUIViqmZiWjtTdMb7usBvfB1vTyt7dov mWRLl8e4jEbJiBwaEgCYWzkRm9pnIw89m8+xnZcQJd4cOfmhJPbd+Th17lQJEhGe bLKBhVCtaUq9AfLhEujykFjwH92Ls+olM3UR/yx5gG08acpEFe9j0tCGaHFf5dUt UbV8E6GOjLE4IJeNN7hpxx7Iz98VwMuB -----END CERTIFICATE-----Generated at Sun Dec 7 00:02:41 2025 by rpki-client