This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8A86/B63F31AE4B1511F0AC3AA248C4F9AE02/JF_0XChlK_cVZYWj_Zp5dOU3XQM.mft File: JF_0XChlK_cVZYWj_Zp5dOU3XQM.mft (raw, json) Hash identifier: rJrMSDIEFg173OhsVnVpFQUQmL1OBfuukHe7t8V+kOI= Subject key identifier: 22:49:A4:9D:22:A8:1C:19:A4:B8:F4:4C:79:C9:FE:88:0C:5C:1F:4A Authority key identifier: 24:5F:F4:5C:28:65:2B:F7:15:65:85:A3:FD:9A:79:74:E5:37:5D:03 Certificate issuer: /CN=A91B8A86/serialNumber=245FF45C28652BF7156585A3FD9A7974E5375D03 Certificate serial: 5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JF_0XChlK_cVZYWj_Zp5dOU3XQM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8A86/B63F31AE4B1511F0AC3AA248C4F9AE02/JF_0XChlK_cVZYWj_Zp5dOU3XQM.mft Manifest number: 59 Signing time: Sun 07 Dec 2025 05:12:36 +0000 Manifest this update: Sun 07 Dec 2025 05:12:36 +0000 Manifest next update: Sun 14 Dec 2025 05:12:36 +0000 Files and hashes: 1: JF_0XChlK_cVZYWj_Zp5dOU3XQM.crl (hash: UUFp+xXyFXOZHV2YXliiP/fQtQfTFAeiqvI/G/H6jOs=) 2: E879D5BC4B1911F08F30867AC4F9AE02.roa (hash: OZHK+au5UwVImKpl7QVZcEGwIUNhlUMC18l25bqrmZQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8A86/B63F31AE4B1511F0AC3AA248C4F9AE02/JF_0XChlK_cVZYWj_Zp5dOU3XQM.crl rsync://rpki.apnic.net/member_repository/A91B8A86/B63F31AE4B1511F0AC3AA248C4F9AE02/JF_0XChlK_cVZYWj_Zp5dOU3XQM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JF_0XChlK_cVZYWj_Zp5dOU3XQM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 05:12:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 90 (0x5a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8A86, serialNumber=245FF45C28652BF7156585A3FD9A7974E5375D03 Validity Not Before: Dec 7 05:12:36 2025 GMT Not After : Dec 14 05:12:36 2025 GMT Subject: CN=69350cc4-d83b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:e2:be:74:57:a2:47:77:22:bb:d6:ce:03:f8: 3b:77:ed:18:c4:d8:d6:d8:32:85:72:d8:24:9c:9f: 2e:76:b0:20:85:30:c8:3d:75:c5:c0:86:0d:3f:cf: b7:e5:5d:21:44:69:c1:69:a1:cd:9b:b7:55:19:f5: 39:60:c7:0a:5f:5a:28:d7:7b:85:e2:1d:bf:0f:07: 5d:cc:a5:b2:89:bf:1d:ff:3b:b9:4d:c0:f0:b7:ac: 9a:c8:85:0a:69:02:15:80:41:38:a3:65:e1:c1:9e: 87:c8:3d:a5:6a:16:62:4d:55:48:29:97:83:94:86: e3:c6:24:30:e0:95:43:61:78:25:5c:37:8d:44:8f: 6d:65:25:50:15:cf:ef:14:fa:f4:e0:c4:d7:83:7d: db:10:49:68:92:8e:36:45:fd:1f:77:f3:a4:42:e1: 38:36:82:e4:d9:a3:67:fd:10:28:2b:64:d6:54:63: e3:da:0e:63:dc:e7:8b:a3:c2:25:83:7d:38:e3:cd: c0:6e:42:15:98:f4:d0:66:de:2a:63:e9:37:9a:a7: bc:ad:e5:22:3b:c8:fc:9d:a5:2d:82:48:5d:fb:cf: ba:f2:2b:11:a3:dc:5a:b1:03:15:e4:47:13:17:05: 52:de:0f:4b:f2:a7:5f:17:d9:64:78:f5:b2:4d:c6: 63:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:49:A4:9D:22:A8:1C:19:A4:B8:F4:4C:79:C9:FE:88:0C:5C:1F:4A X509v3 Authority Key Identifier: keyid:24:5F:F4:5C:28:65:2B:F7:15:65:85:A3:FD:9A:79:74:E5:37:5D:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8A86/B63F31AE4B1511F0AC3AA248C4F9AE02/JF_0XChlK_cVZYWj_Zp5dOU3XQM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JF_0XChlK_cVZYWj_Zp5dOU3XQM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8A86/B63F31AE4B1511F0AC3AA248C4F9AE02/JF_0XChlK_cVZYWj_Zp5dOU3XQM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:80:71:0b:2b:e3:8d:f0:51:e2:9f:71:6f:ab:0b:10:eb:bd: 7b:9b:ae:85:b0:6c:ea:5f:0a:6b:9a:8b:b7:18:d9:33:ca:06: 79:49:53:8d:9a:7d:22:43:9e:9a:9d:ee:b4:35:86:ab:ad:dd: e9:f0:83:c5:c0:eb:ec:8d:98:6f:28:12:c1:c5:f6:04:61:ab: 1b:9a:ac:60:b8:8e:a0:a7:33:c1:e1:9e:93:ee:17:e7:8b:d4: 94:ab:1c:6a:1e:1c:5d:8b:5c:8b:06:c5:8a:69:7b:83:15:b8: 91:49:de:ab:84:45:10:23:da:54:75:24:3c:82:88:ee:23:6a: 0d:d6:da:fc:ad:39:78:da:1a:13:f7:96:ba:f8:15:4f:eb:52: 2c:0f:8a:a2:94:6f:41:c6:94:23:c0:96:88:78:7d:2e:72:d7: 61:aa:65:fb:a2:97:0c:31:61:8d:9f:a2:4f:e7:c3:ad:f2:74: 18:80:0a:09:66:4e:a0:63:c2:ac:7f:ba:9d:ac:91:17:d3:a5: 82:5e:cf:eb:4f:fc:59:34:89:7c:e9:7b:c4:90:28:ad:35:2e: 58:1d:66:80:15:d5:49:c7:60:7e:47:82:c3:1c:6a:30:e3:c2: c4:3d:49:e2:47:5c:f0:c8:d4:c7:c2:ea:6c:16:9d:72:74:80: 4d:6f:f3:01 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC OEE4NjExMC8GA1UEBRMoMjQ1RkY0NUMyODY1MkJGNzE1NjU4NUEzRkQ5QTc5NzRF NTM3NUQwMzAeFw0yNTEyMDcwNTEyMzZaFw0yNTEyMTQwNTEyMzZaMBgxFjAUBgNV BAMTDTY5MzUwY2M0LWQ4M2IwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD14r50V6JHdyK71s4D+Dt37RjE2NbYMoVy2CScny52sCCFMMg9dcXAhg0/z7fl XSFEacFpoc2bt1UZ9TlgxwpfWijXe4XiHb8PB13MpbKJvx3/O7lNwPC3rJrIhQpp AhWAQTijZeHBnofIPaVqFmJNVUgpl4OUhuPGJDDglUNheCVcN41Ej21lJVAVz+8U +vTgxNeDfdsQSWiSjjZF/R9386RC4Tg2guTZo2f9ECgrZNZUY+PaDmPc54ujwiWD fTjjzcBuQhWY9NBm3ipj6Teap7yt5SI7yPydpS2CSF37z7ryKxGj3FqxAxXkRxMX BVLeD0vyp18X2WR49bJNxmMBAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUIkmknSKo HBmkuPRMecn+iAxcH0owHwYDVR0jBBgwFoAUJF/0XChlK/cVZYWj/Zp5dOU3XQMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI4QTg2L0I2M0YzMUFFNEIx NTExRjBBQzNBQTI0OEM0RjlBRTAyL0pGXzBYQ2hsS19jVlpZV2pfWnA1ZE9VM1hR TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSkZfMFhDaGxLX2NWWllXal9acDVkT1UzWFFNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI4 QTg2L0I2M0YzMUFFNEIxNTExRjBBQzNBQTI0OEM0RjlBRTAyL0pGXzBYQ2hsS19j VlpZV2pfWnA1ZE9VM1hRTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABuAcQsr443wUeKfcW+rCxDrvXubroWwbOpfCmuai7cY2TPKBnlJU42a fSJDnpqd7rQ1hqut3enwg8XA6+yNmG8oEsHF9gRhqxuarGC4jqCnM8HhnpPuF+eL 1JSrHGoeHF2LXIsGxYppe4MVuJFJ3quERRAj2lR1JDyCiO4jag3W2vytOXjaGhP3 lrr4FU/rUiwPiqKUb0HGlCPAloh4fS5y12GqZfuilwwxYY2fok/nw63ydBiACglm TqBjwqx/up2skRfTpYJez+tP/Fk0iXzpe8SQKK01LlgdZoAV1UnHYH5HgsMcajDj wsQ9SeJHXPDI1MfC6mwWnXJ0gE1v8wE= -----END CERTIFICATE-----Generated at Sun Dec 7 22:14:02 2025 by rpki-client