This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft File: JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft (raw, json) Hash identifier: m8pfRLoj6m5K5Unk4nVL7LlO8cG3mHZvlhtcsezL49M= Subject key identifier: B2:BC:B1:48:1E:A8:A4:71:85:0B:39:38:E0:D1:65:DF:EC:63:98:75 Authority key identifier: 24:53:CE:7C:42:53:DB:B2:C7:AC:3D:29:01:3E:90:D5:F5:3C:5D:09 Certificate issuer: /CN=A91820CC/serialNumber=2453CE7C4253DBB2C7AC3D29013E90D5F53C5D09 Certificate serial: 87 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/JFPOfEJT27LHrD0pAT6Q1fU8XQk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft Manifest number: 85 Signing time: Fri 05 Dec 2025 04:38:28 +0000 Manifest this update: Fri 05 Dec 2025 04:38:27 +0000 Manifest next update: Fri 12 Dec 2025 04:38:27 +0000 Files and hashes: 1: JFPOfEJT27LHrD0pAT6Q1fU8XQk.crl (hash: wC6mHqTXnb5bmECe7wD4ltkCrYCnNklirUPeZ2Rnn7I=) 2: D9D9E8C0191511F092B86383C4F9AE02.roa (hash: gLLXVBbnqOuYpmPZP1sg2HQN+ZDT78K787nO1Ano868=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.crl rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/JFPOfEJT27LHrD0pAT6Q1fU8XQk.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:38:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 135 (0x87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91820CC, serialNumber=2453CE7C4253DBB2C7AC3D29013E90D5F53C5D09 Validity Not Before: Dec 5 04:38:27 2025 GMT Not After : Dec 12 04:38:27 2025 GMT Subject: CN=693261c3-1dd7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:fe:76:c7:ca:50:e9:96:39:92:16:04:2b:35: 07:17:8e:c0:51:a4:eb:e6:c1:3a:4b:2d:fa:43:db: c7:72:ab:02:79:07:3d:04:29:4e:fa:07:3a:4e:68: fd:f5:b7:f3:4c:4c:00:ae:7a:e0:bb:70:00:f3:5a: f2:47:04:92:49:ac:ee:d1:9b:85:d9:7a:fd:d3:8c: 64:f6:62:0f:9a:c3:69:95:77:63:cf:fe:d1:83:a5: 3e:90:b5:35:ad:98:12:9a:26:b3:94:2b:48:18:ce: 15:1e:af:8c:5c:62:57:07:96:d2:a0:d9:a0:74:a6: e6:b6:1c:92:c8:9d:4b:95:fb:0e:b9:b0:ef:f3:12: d6:76:60:7f:e6:56:8b:04:74:ba:29:78:c9:ba:5a: 4c:4b:96:aa:4e:de:d3:d3:72:50:a4:1a:9d:42:a0: 45:84:22:36:fc:27:d1:94:73:ec:f0:ca:0d:46:eb: c4:04:3b:68:7f:c4:ae:5f:04:f1:f2:c6:4a:9a:3e: b5:a4:e6:a5:73:64:94:db:ce:33:0d:10:90:74:dd: 19:46:c4:8c:96:4c:37:5f:2c:bb:f1:de:a2:e6:ee: 3a:c1:d7:77:56:a9:3a:60:89:15:ce:44:9b:a3:85: 18:2d:e8:62:23:00:85:d9:88:a5:3c:4d:9e:94:48: 42:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:BC:B1:48:1E:A8:A4:71:85:0B:39:38:E0:D1:65:DF:EC:63:98:75 X509v3 Authority Key Identifier: keyid:24:53:CE:7C:42:53:DB:B2:C7:AC:3D:29:01:3E:90:D5:F5:3C:5D:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/JFPOfEJT27LHrD0pAT6Q1fU8XQk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:a7:ec:66:7c:ab:ff:68:65:88:d7:a5:92:ff:9f:6f:a4:f3: b2:24:9c:b8:67:51:13:f5:bc:22:9b:ad:f9:21:a3:df:8f:32: c0:dd:5c:d3:2d:b4:81:71:00:f2:fa:88:7e:3c:08:b5:87:be: 77:4f:24:64:7b:8a:36:4e:ce:a6:16:e5:49:a0:57:74:e0:88: 50:89:e6:71:cb:d8:5a:af:b3:1f:52:0d:87:3b:2e:3f:37:fe: 86:75:11:b5:78:29:f0:41:1d:fe:5f:b2:db:12:b0:c8:c4:ee: f6:04:c5:08:8f:14:fb:c8:dc:ce:ca:8a:a8:43:62:de:a4:02: b3:6c:89:fb:dc:71:cb:51:91:54:de:03:65:6f:de:94:30:ea: bf:89:ff:ee:f7:f2:4a:f8:d8:4b:ba:4b:87:87:d6:38:39:0d: 38:fe:a3:a4:0d:38:85:a3:75:05:5b:60:75:41:ff:ce:6b:b0: e6:da:5d:02:1d:ce:41:b4:e9:02:39:a0:e5:96:e8:c0:23:6f: bf:84:d7:4e:0e:9b:90:50:ab:34:79:05:88:64:93:26:0e:46: 6b:ff:8e:a3:51:85:ea:d8:ee:59:89:76:58:49:ef:e7:2c:6e: 48:c8:d6:6f:84:09:1a:e7:c6:c9:ad:c6:59:73:c5:c3:5d:ec: e9:3c:2f:95 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODIwQ0MxMTAvBgNVBAUTKDI0NTNDRTdDNDI1M0RCQjJDN0FDM0QyOTAxM0U5MEQ1 RjUzQzVEMDkwHhcNMjUxMjA1MDQzODI3WhcNMjUxMjEyMDQzODI3WjAYMRYwFAYD VQQDEw02OTMyNjFjMy0xZGQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4P52x8pQ6ZY5khYEKzUHF47AUaTr5sE6Sy36Q9vHcqsCeQc9BClO+gc6Tmj9 9bfzTEwArnrgu3AA81ryRwSSSazu0ZuF2Xr904xk9mIPmsNplXdjz/7Rg6U+kLU1 rZgSmiazlCtIGM4VHq+MXGJXB5bSoNmgdKbmthySyJ1LlfsOubDv8xLWdmB/5laL BHS6KXjJulpMS5aqTt7T03JQpBqdQqBFhCI2/CfRlHPs8MoNRuvEBDtof8SuXwTx 8sZKmj61pOalc2SU284zDRCQdN0ZRsSMlkw3Xyy78d6i5u46wdd3Vqk6YIkVzkSb o4UYLehiIwCF2YilPE2elEhCiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLK8sUge qKRxhQs5OODRZd/sY5h1MB8GA1UdIwQYMBaAFCRTznxCU9uyx6w9KQE+kNX1PF0J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MjBDQy9CREQ0QUYzQzBC RDkxMUYwOEM2MDdGODdDNEY5QUUwMi9KRlBPZkVKVDI3TEhyRDBwQVQ2UTFmVThY UWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0pGUE9mRUpUMjdMSHJEMHBBVDZRMWZVOFhRay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MjBDQy9CREQ0QUYzQzBCRDkxMUYwOEM2MDdGODdDNEY5QUUwMi9KRlBPZkVKVDI3 TEhyRDBwQVQ2UTFmVThYUWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhp+xmfKv/aGWI16WS/59vpPOyJJy4Z1ET9bwim635IaPfjzLA3VzT LbSBcQDy+oh+PAi1h753TyRke4o2Ts6mFuVJoFd04IhQieZxy9har7MfUg2HOy4/ N/6GdRG1eCnwQR3+X7LbErDIxO72BMUIjxT7yNzOyoqoQ2LepAKzbIn73HHLUZFU 3gNlb96UMOq/if/u9/JK+NhLukuHh9Y4OQ04/qOkDTiFo3UFW2B1Qf/Oa7Dm2l0C Hc5BtOkCOaDllujAI2+/hNdODpuQUKs0eQWIZJMmDkZr/46jUYXq2O5ZiXZYSe/n LG5IyNZvhAka58bJrcZZc8XDXezpPC+V -----END CERTIFICATE-----Generated at Sat Dec 6 21:05:59 2025 by rpki-client