This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5098/220B1728CBC211EFA3246573C4F9AE02/RJUXO9LCk43jBnfP3ec80xuKJnY.mft File: RJUXO9LCk43jBnfP3ec80xuKJnY.mft (raw, json) Hash identifier: lMFcE+3zPACrZgZCk0KQ2s19WE+L7fXtcUxHshr9ESU= Subject key identifier: 06:EE:2B:18:DC:85:9D:62:4D:17:1D:2C:56:CE:5C:9F:41:CC:84:19 Authority key identifier: 44:95:17:3B:D2:C2:93:8D:E3:06:77:CF:DD:E7:3C:D3:1B:8A:26:76 Certificate issuer: /CN=A91A5098/serialNumber=4495173BD2C2938DE30677CFDDE73CD31B8A2676 Certificate serial: AE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RJUXO9LCk43jBnfP3ec80xuKJnY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5098/220B1728CBC211EFA3246573C4F9AE02/RJUXO9LCk43jBnfP3ec80xuKJnY.mft Manifest number: AE Signing time: Sat 06 Dec 2025 15:48:23 +0000 Manifest this update: Sat 06 Dec 2025 15:48:22 +0000 Manifest next update: Sat 13 Dec 2025 15:48:22 +0000 Files and hashes: 1: RJUXO9LCk43jBnfP3ec80xuKJnY.crl (hash: nzq9jKLtaE/AJyiU7YsxdAFmY7fcLhnYd62OUMhf03E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5098/220B1728CBC211EFA3246573C4F9AE02/RJUXO9LCk43jBnfP3ec80xuKJnY.crl rsync://rpki.apnic.net/member_repository/A91A5098/220B1728CBC211EFA3246573C4F9AE02/RJUXO9LCk43jBnfP3ec80xuKJnY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RJUXO9LCk43jBnfP3ec80xuKJnY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 174 (0xae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5098, serialNumber=4495173BD2C2938DE30677CFDDE73CD31B8A2676 Validity Not Before: Dec 6 15:48:22 2025 GMT Not After : Dec 13 15:48:22 2025 GMT Subject: CN=69345046-dc0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:62:ad:be:39:d1:4b:47:5d:d7:67:72:90:2e: 42:05:87:af:cb:c8:5c:89:1c:38:09:86:55:d6:e2: 00:2e:ef:f8:d4:5a:d0:72:d2:27:b8:01:c1:c3:6d: 57:b8:ab:7e:78:7c:10:36:78:e9:e3:8a:27:37:08: 39:7d:9d:17:78:e4:1e:b0:16:a5:c5:df:53:cd:85: 78:b2:b6:77:01:c3:6d:6b:a3:46:e7:21:1e:cd:69: 57:90:96:5f:58:c0:bb:a0:8a:aa:88:d3:f4:bf:5e: b5:be:8b:39:0a:f7:eb:e8:f7:fc:13:ee:4d:d5:49: d5:6c:80:78:9f:26:12:01:5c:ae:38:e2:a4:8a:0d: 40:12:b2:4b:44:fb:61:d4:ae:59:d8:42:d2:2e:28: 11:d4:9c:74:eb:af:7e:87:ae:62:0a:d9:32:16:6c: 8a:58:69:f9:fa:64:14:fc:e6:f0:2e:dd:5f:3a:44: 85:28:90:05:7e:57:30:d4:03:22:66:cc:c3:ec:62: f7:aa:8c:44:28:7a:be:75:88:2a:77:27:2d:3a:f4: 85:fb:74:93:3f:44:90:e3:00:2d:ac:49:3b:89:e7: 61:4d:24:a0:c4:cf:80:93:de:b5:c2:e2:ea:ff:b2: 31:a7:5d:ff:7f:72:c3:1c:38:02:78:d9:cb:8e:e3: a5:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:EE:2B:18:DC:85:9D:62:4D:17:1D:2C:56:CE:5C:9F:41:CC:84:19 X509v3 Authority Key Identifier: keyid:44:95:17:3B:D2:C2:93:8D:E3:06:77:CF:DD:E7:3C:D3:1B:8A:26:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5098/220B1728CBC211EFA3246573C4F9AE02/RJUXO9LCk43jBnfP3ec80xuKJnY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RJUXO9LCk43jBnfP3ec80xuKJnY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5098/220B1728CBC211EFA3246573C4F9AE02/RJUXO9LCk43jBnfP3ec80xuKJnY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:b8:06:4e:f0:65:4f:ea:24:98:fc:ef:bd:db:c1:df:16:9d: 9b:32:64:53:ec:53:f0:dc:7f:8e:82:80:1b:b7:15:02:20:de: 17:ea:2c:1f:e7:8e:20:1b:30:dc:7a:f4:7c:82:67:10:e4:b7: 8e:5a:cd:1e:3d:06:78:f3:64:15:d1:19:50:60:d4:03:92:22: f9:fd:12:69:9d:db:64:d7:9d:a1:87:3c:7f:51:b6:e5:98:10: f0:9e:50:a5:68:94:b7:0f:ef:a9:d5:85:53:ae:75:27:00:c0: 46:1d:4e:ba:da:99:0a:17:67:a6:6a:44:34:a2:da:cf:64:87: 19:1c:91:41:9b:02:6f:7f:26:00:03:38:b9:0c:fd:e7:93:5e: 86:7c:7e:c2:a5:7d:05:f2:60:77:c7:43:4d:f8:d2:6a:c3:0a: b0:31:a1:00:bf:12:78:e8:4b:83:b1:1c:df:96:55:f7:b7:bb: 2f:38:33:62:1c:90:d3:f0:18:85:e5:16:7d:0d:11:63:7d:c5: ae:c1:71:9a:9f:7b:00:d3:76:e4:cb:fe:30:9e:66:3f:a8:64: 25:65:d2:73:c8:c0:ba:92:c3:7e:ea:72:0b:15:2f:96:76:b4: eb:f1:24:3a:1d:36:80:13:54:e2:7f:3f:28:97:c8:39:ca:fa: f0:57:ef:ee -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAK4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTUwOTgxMTAvBgNVBAUTKDQ0OTUxNzNCRDJDMjkzOERFMzA2NzdDRkRERTczQ0Qz MUI4QTI2NzYwHhcNMjUxMjA2MTU0ODIyWhcNMjUxMjEzMTU0ODIyWjAYMRYwFAYD VQQDEw02OTM0NTA0Ni1kYzBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxWKtvjnRS0dd12dykC5CBYevy8hciRw4CYZV1uIALu/41FrQctInuAHBw21X uKt+eHwQNnjp44onNwg5fZ0XeOQesBalxd9TzYV4srZ3AcNta6NG5yEezWlXkJZf WMC7oIqqiNP0v161vos5Cvfr6Pf8E+5N1UnVbIB4nyYSAVyuOOKkig1AErJLRPth 1K5Z2ELSLigR1Jx0669+h65iCtkyFmyKWGn5+mQU/ObwLt1fOkSFKJAFflcw1AMi ZszD7GL3qoxEKHq+dYgqdyctOvSF+3STP0SQ4wAtrEk7iedhTSSgxM+Ak961wuLq /7Ixp13/f3LDHDgCeNnLjuOlfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAbuKxjc hZ1iTRcdLFbOXJ9BzIQZMB8GA1UdIwQYMBaAFESVFzvSwpON4wZ3z93nPNMbiiZ2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTA5OC8yMjBCMTcyOENC QzIxMUVGQTMyNDY1NzNDNEY5QUUwMi9SSlVYTzlMQ2s0M2pCbmZQM2VjODB4dUtK blkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JKVVhPOUxDazQzakJuZlAzZWM4MHh1S0puWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTA5OC8yMjBCMTcyOENCQzIxMUVGQTMyNDY1NzNDNEY5QUUwMi9SSlVYTzlMQ2s0 M2pCbmZQM2VjODB4dUtKblkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCguAZO8GVP6iSY/O+928HfFp2bMmRT7FPw3H+OgoAbtxUCIN4X6iwf 544gGzDcevR8gmcQ5LeOWs0ePQZ482QV0RlQYNQDkiL5/RJpndtk152hhzx/Ubbl mBDwnlClaJS3D++p1YVTrnUnAMBGHU662pkKF2emakQ0otrPZIcZHJFBmwJvfyYA Azi5DP3nk16GfH7CpX0F8mB3x0NN+NJqwwqwMaEAvxJ46EuDsRzfllX3t7svODNi HJDT8BiF5RZ9DRFjfcWuwXGan3sA03bky/4wnmY/qGQlZdJzyMC6ksN+6nILFS+W drTr8SQ6HTaAE1Tifz8ol8g5yvrwV+/u -----END CERTIFICATE-----Generated at Sat Dec 6 21:45:19 2025 by rpki-client