This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5098/220B1728CBC211EFA3246573C4F9AE02/RJUXO9LCk43jBnfP3ec80xuKJnY.mft File: RJUXO9LCk43jBnfP3ec80xuKJnY.mft (raw, json) Hash identifier: jT7Y89/sZ17uwOA7jbdyn8gUrp9UdxigvFOM+gU6xW8= Subject key identifier: CB:7C:C8:38:DB:52:20:14:2D:8E:90:31:58:97:54:1E:E3:8B:CC:20 Authority key identifier: 44:95:17:3B:D2:C2:93:8D:E3:06:77:CF:DD:E7:3C:D3:1B:8A:26:76 Certificate issuer: /CN=A91A5098/serialNumber=4495173BD2C2938DE30677CFDDE73CD31B8A2676 Certificate serial: B5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RJUXO9LCk43jBnfP3ec80xuKJnY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5098/220B1728CBC211EFA3246573C4F9AE02/RJUXO9LCk43jBnfP3ec80xuKJnY.mft Manifest number: B5 Signing time: Sat 20 Dec 2025 15:56:23 +0000 Manifest this update: Sat 20 Dec 2025 15:56:23 +0000 Manifest next update: Sat 27 Dec 2025 15:56:23 +0000 Files and hashes: 1: RJUXO9LCk43jBnfP3ec80xuKJnY.crl (hash: U/4KGPUL9+OrGoxh0z1V9Vw+vAHbTeOhdRdtt1RQk6Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5098/220B1728CBC211EFA3246573C4F9AE02/RJUXO9LCk43jBnfP3ec80xuKJnY.crl rsync://rpki.apnic.net/member_repository/A91A5098/220B1728CBC211EFA3246573C4F9AE02/RJUXO9LCk43jBnfP3ec80xuKJnY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RJUXO9LCk43jBnfP3ec80xuKJnY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 15:56:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 181 (0xb5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5098, serialNumber=4495173BD2C2938DE30677CFDDE73CD31B8A2676 Validity Not Before: Dec 20 15:56:23 2025 GMT Not After : Dec 27 15:56:23 2025 GMT Subject: CN=6946c727-afc3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:c5:8c:aa:d0:e4:e1:c7:d0:8b:36:94:41:33: 59:7c:92:23:e5:3b:f3:a8:52:de:ec:22:9a:a4:70: 5f:6a:0e:85:6f:a5:c8:b9:84:33:cd:c8:f6:46:bc: eb:8a:c5:eb:49:ec:0c:75:ac:5d:9d:44:89:36:43: ac:1c:2b:b9:2e:5c:e9:36:8e:d1:98:82:e6:5e:c3: 74:06:35:ac:bb:a0:39:9a:c6:4d:55:29:36:3f:cd: 8f:d3:14:74:a0:47:5f:21:c9:ac:8d:d0:23:63:f7: a9:0a:0d:34:50:6f:76:5e:47:3f:43:e0:4f:74:47: be:2d:b1:e0:c4:a5:59:75:2f:f4:e9:5c:2f:53:d9: a5:72:da:84:69:9e:df:dc:1c:c6:fd:5b:ea:92:4a: 36:5f:1d:6e:1e:cf:97:92:82:62:97:43:a0:7a:6b: a8:9d:04:fd:ac:bc:fa:f2:38:3a:4e:f2:cc:46:9c: cb:ae:01:36:52:2f:f6:cb:21:c0:fc:4a:56:19:c3: bd:fe:f8:4a:9f:bd:81:22:e8:52:6d:f5:60:8f:67: ce:9f:4d:e5:f6:e1:7e:bb:30:58:44:f5:ff:72:cc: 70:66:99:a9:a0:3d:6f:fe:21:99:d8:96:c4:a9:ac: ae:1f:70:eb:34:c4:b5:93:cc:ca:a6:1a:d4:a6:bb: ce:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:7C:C8:38:DB:52:20:14:2D:8E:90:31:58:97:54:1E:E3:8B:CC:20 X509v3 Authority Key Identifier: keyid:44:95:17:3B:D2:C2:93:8D:E3:06:77:CF:DD:E7:3C:D3:1B:8A:26:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5098/220B1728CBC211EFA3246573C4F9AE02/RJUXO9LCk43jBnfP3ec80xuKJnY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RJUXO9LCk43jBnfP3ec80xuKJnY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5098/220B1728CBC211EFA3246573C4F9AE02/RJUXO9LCk43jBnfP3ec80xuKJnY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:b0:0d:fb:d1:ad:55:59:2d:61:16:39:3c:b5:43:91:35:49: fc:aa:f4:3f:63:22:88:e1:6b:43:4c:ca:d5:3a:10:22:bf:9d: b7:fc:8b:49:52:2f:14:28:d8:97:ea:c9:cf:a3:be:59:29:51: 4c:6a:65:be:66:43:76:68:69:c1:11:cc:88:1c:69:b3:80:48: 77:04:c0:53:56:5f:91:ca:67:a0:72:11:6c:25:6e:c2:c5:da: d2:ce:11:6d:c0:ae:9e:eb:c8:52:b9:39:46:45:d3:b4:9c:75: f5:ba:33:80:15:13:81:24:88:cc:2c:fb:7a:77:68:bd:59:7d: c2:cb:76:e5:13:7b:0e:d4:94:b7:a8:bc:43:29:d4:05:a9:d3: 8a:5d:2b:f1:b1:5a:39:bb:4c:43:89:67:94:6e:96:53:b8:12: 20:0d:70:1f:ff:6c:09:b5:6d:be:f0:60:2d:9e:b2:43:c7:49: 35:9f:70:76:a8:87:cc:6a:a6:2f:a4:0f:b3:35:25:8c:93:1f: d1:25:8f:d1:f1:bb:e9:31:c7:e6:59:cb:6a:21:b1:c5:7c:95: 2d:ec:a9:26:c6:ce:9b:1c:2c:19:00:a7:2f:3a:67:da:56:b4: d5:95:28:4d:66:17:00:5a:e6:dc:15:5f:b3:31:dc:8e:37:31: b9:b4:63:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTUwOTgxMTAvBgNVBAUTKDQ0OTUxNzNCRDJDMjkzOERFMzA2NzdDRkRERTczQ0Qz MUI4QTI2NzYwHhcNMjUxMjIwMTU1NjIzWhcNMjUxMjI3MTU1NjIzWjAYMRYwFAYD VQQDDA02OTQ2YzcyNy1hZmMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAscWMqtDk4cfQizaUQTNZfJIj5TvzqFLe7CKapHBfag6Fb6XIuYQzzcj2Rrzr isXrSewMdaxdnUSJNkOsHCu5LlzpNo7RmILmXsN0BjWsu6A5msZNVSk2P82P0xR0 oEdfIcmsjdAjY/epCg00UG92Xkc/Q+BPdEe+LbHgxKVZdS/06VwvU9mlctqEaZ7f 3BzG/Vvqkko2Xx1uHs+XkoJil0OgemuonQT9rLz68jg6TvLMRpzLrgE2Ui/2yyHA /EpWGcO9/vhKn72BIuhSbfVgj2fOn03l9uF+uzBYRPX/csxwZpmpoD1v/iGZ2JbE qayuH3DrNMS1k8zKphrUprvOqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMt8yDjb UiAULY6QMViXVB7ji8wgMB8GA1UdIwQYMBaAFESVFzvSwpON4wZ3z93nPNMbiiZ2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTA5OC8yMjBCMTcyOENC QzIxMUVGQTMyNDY1NzNDNEY5QUUwMi9SSlVYTzlMQ2s0M2pCbmZQM2VjODB4dUtK blkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JKVVhPOUxDazQzakJuZlAzZWM4MHh1S0puWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTA5OC8yMjBCMTcyOENCQzIxMUVGQTMyNDY1NzNDNEY5QUUwMi9SSlVYTzlMQ2s0 M2pCbmZQM2VjODB4dUtKblkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQsA370a1VWS1hFjk8tUORNUn8qvQ/YyKI4WtDTMrVOhAiv523/ItJ Ui8UKNiX6snPo75ZKVFMamW+ZkN2aGnBEcyIHGmzgEh3BMBTVl+RymegchFsJW7C xdrSzhFtwK6e68hSuTlGRdO0nHX1ujOAFROBJIjMLPt6d2i9WX3Cy3blE3sO1JS3 qLxDKdQFqdOKXSvxsVo5u0xDiWeUbpZTuBIgDXAf/2wJtW2+8GAtnrJDx0k1n3B2 qIfMaqYvpA+zNSWMkx/RJY/R8bvpMcfmWctqIbHFfJUt7Kkmxs6bHCwZAKcvOmfa VrTVlShNZhcAWubcFV+zMdyONzG5tGN8 -----END CERTIFICATE-----Generated at Sun Dec 21 23:17:05 2025 by rpki-client