This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B777C/62D03E8CB2DA11EB8B384A60C4F9AE02/sJELB8hrD_owClKsfDH8tSwFMtc.mft File: sJELB8hrD_owClKsfDH8tSwFMtc.mft (raw, json) Hash identifier: /8qgA7/v8o0IWawXtmWPmjpSSpKnTK6S+twq7eZFfWg= Subject key identifier: 8E:2B:39:CD:BF:8D:5C:80:A8:69:AB:E1:6E:A6:7D:8A:20:E4:78:DF Authority key identifier: B0:91:0B:07:C8:6B:0F:FA:30:0A:52:AC:7C:31:FC:B5:2C:05:32:D7 Certificate issuer: /CN=A91B777C/serialNumber=B0910B07C86B0FFA300A52AC7C31FCB52C0532D7 Certificate serial: 064F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sJELB8hrD_owClKsfDH8tSwFMtc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B777C/62D03E8CB2DA11EB8B384A60C4F9AE02/sJELB8hrD_owClKsfDH8tSwFMtc.mft Manifest number: 0649 Signing time: Thu 04 Dec 2025 21:25:53 +0000 Manifest this update: Thu 04 Dec 2025 21:25:53 +0000 Manifest next update: Thu 11 Dec 2025 21:25:53 +0000 Files and hashes: 1: sJELB8hrD_owClKsfDH8tSwFMtc.crl (hash: jTGyMhs6EF1114Ikukap7HdZ++tIJJgU9PWlFIYJz74=) 2: 9095FC2CB2E811EBADBB3753C4F9AE02.roa (hash: h5dvfa3FRBYPtcjjdPkOqAVQA/qeLJ42SQi+kECAh1M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B777C/62D03E8CB2DA11EB8B384A60C4F9AE02/sJELB8hrD_owClKsfDH8tSwFMtc.crl rsync://rpki.apnic.net/member_repository/A91B777C/62D03E8CB2DA11EB8B384A60C4F9AE02/sJELB8hrD_owClKsfDH8tSwFMtc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sJELB8hrD_owClKsfDH8tSwFMtc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 21:25:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1615 (0x64f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B777C, serialNumber=B0910B07C86B0FFA300A52AC7C31FCB52C0532D7 Validity Not Before: Dec 4 21:25:53 2025 GMT Not After : Dec 11 21:25:53 2025 GMT Subject: CN=6931fc61-1cd2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:a9:51:86:3f:c4:fa:14:8c:8e:19:f1:95:d7: c4:ee:45:b1:1e:03:9c:21:ee:f5:61:0b:dc:34:c5: 7c:91:a5:71:aa:91:54:e2:7a:b4:54:00:03:e9:65: 6d:39:11:d8:94:fb:6a:1e:ee:6e:79:28:bc:9f:9c: 45:63:ef:d3:17:fd:55:a6:b2:65:7e:00:00:5a:ad: 35:45:25:19:0e:83:6f:11:6d:23:a1:95:5a:e0:cd: 83:d0:c0:ef:58:cd:1b:8c:4d:df:cd:2e:ad:cd:dd: c3:77:7a:9c:4b:29:47:15:b1:2b:ca:fa:03:d5:f8: 6e:a7:63:a5:95:ab:e3:fb:02:0b:50:26:b1:17:79: ac:0a:18:71:27:2b:a1:15:bf:5b:36:83:61:56:b4: 2f:56:b9:58:81:42:ad:df:07:75:97:06:ad:3d:b1: 32:78:f0:a1:22:8c:c4:86:40:2c:78:a3:09:95:c3: 68:1c:e2:27:2e:35:99:e4:61:5b:e7:3c:d7:0e:be: 6e:a4:ae:02:b0:fc:44:95:57:51:d6:c2:10:1f:65: 67:1d:52:f6:13:27:06:86:9c:ee:bd:b3:7a:93:85: e9:f5:bd:15:cc:1f:87:6d:02:57:7e:ad:83:81:04: 83:95:e3:c6:50:63:e1:50:ed:3a:f1:3c:4b:a4:6e: 39:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:2B:39:CD:BF:8D:5C:80:A8:69:AB:E1:6E:A6:7D:8A:20:E4:78:DF X509v3 Authority Key Identifier: keyid:B0:91:0B:07:C8:6B:0F:FA:30:0A:52:AC:7C:31:FC:B5:2C:05:32:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B777C/62D03E8CB2DA11EB8B384A60C4F9AE02/sJELB8hrD_owClKsfDH8tSwFMtc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sJELB8hrD_owClKsfDH8tSwFMtc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B777C/62D03E8CB2DA11EB8B384A60C4F9AE02/sJELB8hrD_owClKsfDH8tSwFMtc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:9e:e3:12:c0:80:17:b0:98:48:fd:b6:ca:70:cc:21:cb:9c: 14:6a:b0:a1:19:91:e8:43:89:91:7f:d6:93:8a:86:5f:d2:48: 31:c3:8b:4e:c2:43:3a:df:21:83:61:6d:ac:4e:23:4b:08:56: bc:37:96:bf:31:92:97:e9:e4:14:d1:e5:c3:7a:1a:3f:da:0b: ee:c9:ba:96:05:b5:6b:96:b2:fa:21:f3:ae:6f:19:2e:26:17: 75:2e:e7:6c:21:ad:92:98:3d:b0:50:eb:ac:5e:9a:cc:bf:e5: 26:24:1a:31:f0:b1:6c:76:24:84:33:10:5c:29:29:05:98:66: 68:2d:f8:88:d7:bb:28:e2:c0:75:d6:45:d7:48:96:ba:55:ef: 87:7b:16:01:32:d0:73:fa:50:e5:3c:95:cf:d5:fc:f5:3a:6b: 19:f0:ab:71:00:19:93:6b:f6:18:f9:e9:c1:2e:4c:08:4e:96: 39:ae:60:f8:42:0b:9d:17:35:9e:db:46:10:3e:dd:ff:bb:62: b3:37:dd:10:aa:30:67:e2:52:c7:08:10:de:f6:43:04:6c:87: 2a:78:33:63:4f:1d:89:a3:da:11:f4:34:21:c2:99:68:b7:ca: 45:b6:22:5d:41:1a:fa:14:09:3e:e0:84:ca:39:ef:88:f4:8f: dd:ad:93:f0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBk8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjc3N0MxMTAvBgNVBAUTKEIwOTEwQjA3Qzg2QjBGRkEzMDBBNTJBQzdDMzFGQ0I1 MkMwNTMyRDcwHhcNMjUxMjA0MjEyNTUzWhcNMjUxMjExMjEyNTUzWjAYMRYwFAYD VQQDEw02OTMxZmM2MS0xY2QyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAualRhj/E+hSMjhnxldfE7kWxHgOcIe71YQvcNMV8kaVxqpFU4nq0VAAD6WVt ORHYlPtqHu5ueSi8n5xFY+/TF/1VprJlfgAAWq01RSUZDoNvEW0joZVa4M2D0MDv WM0bjE3fzS6tzd3Dd3qcSylHFbEryvoD1fhup2Ollavj+wILUCaxF3msChhxJyuh Fb9bNoNhVrQvVrlYgUKt3wd1lwatPbEyePChIozEhkAseKMJlcNoHOInLjWZ5GFb 5zzXDr5upK4CsPxElVdR1sIQH2VnHVL2EycGhpzuvbN6k4Xp9b0VzB+HbQJXfq2D gQSDlePGUGPhUO068TxLpG45jQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI4rOc2/ jVyAqGmr4W6mfYog5HjfMB8GA1UdIwQYMBaAFLCRCwfIaw/6MApSrHwx/LUsBTLX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzc3Qy82MkQwM0U4Q0Iy REExMUVCOEIzODRBNjBDNEY5QUUwMi9zSkVMQjhockRfb3dDbEtzZkRIOHRTd0ZN dGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3NKRUxCOGhyRF9vd0NsS3NmREg4dFN3Rk10Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC Nzc3Qy82MkQwM0U4Q0IyREExMUVCOEIzODRBNjBDNEY5QUUwMi9zSkVMQjhockRf b3dDbEtzZkRIOHRTd0ZNdGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHnuMSwIAXsJhI/bbKcMwhy5wUarChGZHoQ4mRf9aTioZf0kgxw4tO wkM63yGDYW2sTiNLCFa8N5a/MZKX6eQU0eXDeho/2gvuybqWBbVrlrL6IfOubxku Jhd1LudsIa2SmD2wUOusXprMv+UmJBox8LFsdiSEMxBcKSkFmGZoLfiI17so4sB1 1kXXSJa6Ve+HexYBMtBz+lDlPJXP1fz1OmsZ8KtxABmTa/YY+enBLkwITpY5rmD4 QgudFzWe20YQPt3/u2KzN90QqjBn4lLHCBDe9kMEbIcqeDNjTx2Jo9oR9DQhwplo t8pFtiJdQRr6FAk+4ITKOe+I9I/drZPw -----END CERTIFICATE-----Generated at Sat Dec 6 21:04:10 2025 by rpki-client