This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B35DF/1EA0199CD89E11EFB4212C56C4F9AE02/jiZ6MV35Dplf9M1LLPj8TDMksts.mft File: jiZ6MV35Dplf9M1LLPj8TDMksts.mft (raw, json) Hash identifier: o3QQYuNV/YXft7n0qDDYPL/gwQ9jIbLJ5DGGtQpKdTc= Subject key identifier: 12:09:A9:AE:A7:90:59:C3:F4:FE:59:85:3B:E5:29:9F:0D:43:79:4A Authority key identifier: 8E:26:7A:31:5D:F9:0E:99:5F:F4:CD:4B:2C:F8:FC:4C:33:24:B2:DB Certificate issuer: /CN=A91B35DF/serialNumber=8E267A315DF90E995FF4CD4B2CF8FC4C3324B2DB Certificate serial: A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jiZ6MV35Dplf9M1LLPj8TDMksts.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B35DF/1EA0199CD89E11EFB4212C56C4F9AE02/jiZ6MV35Dplf9M1LLPj8TDMksts.mft Manifest number: A4 Signing time: Fri 05 Dec 2025 04:16:38 +0000 Manifest this update: Fri 05 Dec 2025 04:16:38 +0000 Manifest next update: Fri 12 Dec 2025 04:16:38 +0000 Files and hashes: 1: jiZ6MV35Dplf9M1LLPj8TDMksts.crl (hash: tCP9Q3hx3hsUgnio7OG3inEKaFMe9xol0bA6x+PKpSg=) 2: EF714C70D89F11EFA1D2E672C4F9AE02.roa (hash: TZSTn/V1Hb26UcW7zXgR6yK/030+S0LlzJiALzOU8GU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B35DF/1EA0199CD89E11EFB4212C56C4F9AE02/jiZ6MV35Dplf9M1LLPj8TDMksts.crl rsync://rpki.apnic.net/member_repository/A91B35DF/1EA0199CD89E11EFB4212C56C4F9AE02/jiZ6MV35Dplf9M1LLPj8TDMksts.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jiZ6MV35Dplf9M1LLPj8TDMksts.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:16:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 166 (0xa6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B35DF, serialNumber=8E267A315DF90E995FF4CD4B2CF8FC4C3324B2DB Validity Not Before: Dec 5 04:16:38 2025 GMT Not After : Dec 12 04:16:38 2025 GMT Subject: CN=69325ca6-24b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:ed:16:97:d4:28:0e:f2:a7:31:ae:06:f9:6f: f1:5e:3b:80:8e:76:bd:e7:42:bd:82:0e:df:a1:40: fa:6b:e2:48:c6:89:8d:d7:17:e5:ed:5b:df:ba:38: a1:9b:83:38:30:04:e8:39:0a:92:99:06:b6:2c:3c: 68:03:cf:dc:4e:d2:d8:8b:4f:dd:ec:44:f0:39:6c: a5:c0:fd:fa:0b:fb:ce:07:8b:ee:35:18:3a:da:fa: 31:4f:80:17:03:1d:98:9c:18:bf:4e:64:98:e3:ee: 92:84:db:0e:27:48:9d:1d:0c:2d:82:67:c7:0d:e9: 1e:b5:3d:3f:b3:79:ae:c5:4a:07:cf:d3:5d:2b:0a: d2:f4:26:5f:8a:a4:33:1f:8a:07:0a:00:23:18:2b: 16:19:e1:f3:47:9a:b4:ec:e9:70:8c:0a:f2:cf:02: 9b:40:88:2d:5b:15:ea:25:c7:20:73:7b:30:1b:1a: be:c4:e9:0e:37:20:29:b5:6f:6d:c3:db:b5:93:e1: 57:0e:ec:6b:24:77:6f:f3:e4:41:1f:61:be:2a:7f: 10:6b:e8:2e:99:a6:40:61:1b:28:c5:7c:bb:c5:07: e3:33:c1:81:47:37:03:8f:29:20:e9:aa:1c:10:df: df:76:8b:40:4b:42:f5:f9:35:f3:fb:c3:8c:f0:3b: e9:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:09:A9:AE:A7:90:59:C3:F4:FE:59:85:3B:E5:29:9F:0D:43:79:4A X509v3 Authority Key Identifier: keyid:8E:26:7A:31:5D:F9:0E:99:5F:F4:CD:4B:2C:F8:FC:4C:33:24:B2:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B35DF/1EA0199CD89E11EFB4212C56C4F9AE02/jiZ6MV35Dplf9M1LLPj8TDMksts.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jiZ6MV35Dplf9M1LLPj8TDMksts.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B35DF/1EA0199CD89E11EFB4212C56C4F9AE02/jiZ6MV35Dplf9M1LLPj8TDMksts.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:39:70:63:f4:5a:53:00:64:2a:2f:7f:48:51:d1:f3:c2:03: bd:fd:a3:a7:6e:0a:bf:de:7b:ac:01:e6:16:48:34:a1:91:5b: 30:fa:47:d9:eb:98:4e:32:fd:73:a6:fa:56:fa:08:31:d1:39: 2a:a9:b6:fa:d0:65:64:82:cd:a6:b0:b8:ae:c8:57:53:24:67: dd:b0:0e:6b:e0:93:af:9e:03:7f:13:f4:df:f0:e7:03:e6:db: 6c:6b:c5:7f:95:dc:b9:0a:a1:e0:81:64:39:52:de:27:70:dc: 21:c3:a4:73:ed:ca:5e:70:f7:d8:28:e6:4a:d3:cf:b5:ac:a5: 5b:80:20:ec:33:e9:b1:36:a4:6f:83:fc:b5:cf:bc:a2:46:16: 43:99:35:0c:b3:66:eb:43:08:e2:06:bc:0b:e3:4d:2a:e8:c1: 7b:b0:fd:29:bb:51:ef:96:e3:b0:fb:98:a1:52:23:68:44:55: be:80:71:f1:8d:36:66:6d:20:4f:79:a8:07:b8:cb:f7:18:1f: ce:24:72:24:26:75:71:ee:ad:93:6a:6b:db:f7:f3:f0:91:df: 9a:fa:f0:fa:6e:d2:fd:82:22:70:ba:95:13:2c:8b:ef:ca:06: fe:51:b6:da:ca:69:dc:d5:a0:09:57:47:90:82:2e:dc:eb:dd: 8e:c2:47:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjM1REYxMTAvBgNVBAUTKDhFMjY3QTMxNURGOTBFOTk1RkY0Q0Q0QjJDRjhGQzRD MzMyNEIyREIwHhcNMjUxMjA1MDQxNjM4WhcNMjUxMjEyMDQxNjM4WjAYMRYwFAYD VQQDEw02OTMyNWNhNi0yNGI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtu0Wl9QoDvKnMa4G+W/xXjuAjna950K9gg7foUD6a+JIxomN1xfl7Vvfujih m4M4MAToOQqSmQa2LDxoA8/cTtLYi0/d7ETwOWylwP36C/vOB4vuNRg62voxT4AX Ax2YnBi/TmSY4+6ShNsOJ0idHQwtgmfHDeketT0/s3muxUoHz9NdKwrS9CZfiqQz H4oHCgAjGCsWGeHzR5q07OlwjAryzwKbQIgtWxXqJccgc3swGxq+xOkONyAptW9t w9u1k+FXDuxrJHdv8+RBH2G+Kn8Qa+gumaZAYRsoxXy7xQfjM8GBRzcDjykg6aoc EN/fdotAS0L1+TXz+8OM8DvpBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBIJqa6n kFnD9P5ZhTvlKZ8NQ3lKMB8GA1UdIwQYMBaAFI4mejFd+Q6ZX/TNSyz4/EwzJLLb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMzVERi8xRUEwMTk5Q0Q4 OUUxMUVGQjQyMTJDNTZDNEY5QUUwMi9qaVo2TVYzNURwbGY5TTFMTFBqOFRETWtz dHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ppWjZNVjM1RHBsZjlNMUxMUGo4VERNa3N0cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MzVERi8xRUEwMTk5Q0Q4OUUxMUVGQjQyMTJDNTZDNEY5QUUwMi9qaVo2TVYzNURw bGY5TTFMTFBqOFRETWtzdHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBNOXBj9FpTAGQqL39IUdHzwgO9/aOnbgq/3nusAeYWSDShkVsw+kfZ 65hOMv1zpvpW+ggx0Tkqqbb60GVkgs2msLiuyFdTJGfdsA5r4JOvngN/E/Tf8OcD 5ttsa8V/ldy5CqHggWQ5Ut4ncNwhw6Rz7cpecPfYKOZK08+1rKVbgCDsM+mxNqRv g/y1z7yiRhZDmTUMs2brQwjiBrwL400q6MF7sP0pu1HvluOw+5ihUiNoRFW+gHHx jTZmbSBPeagHuMv3GB/OJHIkJnVx7q2Tamvb9/Pwkd+a+vD6btL9giJwupUTLIvv ygb+Ubbaymnc1aAJV0eQgi7c692Owkei -----END CERTIFICATE-----Generated at Sat Dec 6 12:21:19 2025 by rpki-client