This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB5F2/4AEED91C43B711ED98FF455EC4F9AE02/CJx_ANge3WTbq20DcSKyoh8NO-Y.mft File: CJx_ANge3WTbq20DcSKyoh8NO-Y.mft (raw, json) Hash identifier: 16Xvg8gduW1HXfs+77FsL0Q6qVL2wjXzwC1p9alx4Io= Subject key identifier: FF:74:F7:FC:72:7F:68:50:B1:7B:EF:92:D5:D2:67:2A:0F:C7:BF:AF Authority key identifier: 08:9C:7F:00:D8:1E:DD:64:DB:AB:6D:03:71:22:B2:A2:1F:0D:3B:E6 Certificate issuer: /CN=A91BB5F2/serialNumber=089C7F00D81EDD64DBAB6D037122B2A21F0D3BE6 Certificate serial: 025A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CJx_ANge3WTbq20DcSKyoh8NO-Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB5F2/4AEED91C43B711ED98FF455EC4F9AE02/CJx_ANge3WTbq20DcSKyoh8NO-Y.mft Manifest number: 0252 Signing time: Sun 07 Dec 2025 00:12:57 +0000 Manifest this update: Sun 07 Dec 2025 00:12:56 +0000 Manifest next update: Sun 14 Dec 2025 00:12:56 +0000 Files and hashes: 1: CJx_ANge3WTbq20DcSKyoh8NO-Y.crl (hash: xHUhsGruRjrgFFZ4iBSGap+fxpebt1S2TTjHS6GC66I=) 2: D1FD204C43B911EDB6AA2D5FC4F9AE02.roa (hash: BP/glgq2z1dVEQeJ08W20vuLvcBOY54eQXp8HeomvRk=) 3: D173DA3043B911EDB6AA2D5FC4F9AE02.roa (hash: FNYorUcrDZxaoz80iDO589JZkm4kbfGRGurVB7ty8DM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB5F2/4AEED91C43B711ED98FF455EC4F9AE02/CJx_ANge3WTbq20DcSKyoh8NO-Y.crl rsync://rpki.apnic.net/member_repository/A91BB5F2/4AEED91C43B711ED98FF455EC4F9AE02/CJx_ANge3WTbq20DcSKyoh8NO-Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CJx_ANge3WTbq20DcSKyoh8NO-Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 00:12:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 602 (0x25a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB5F2, serialNumber=089C7F00D81EDD64DBAB6D037122B2A21F0D3BE6 Validity Not Before: Dec 7 00:12:56 2025 GMT Not After : Dec 14 00:12:56 2025 GMT Subject: CN=6934c688-efb4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:16:5e:4c:f2:a8:ba:c7:a2:03:5f:57:be:ce: 82:54:ec:f5:56:74:0e:78:5a:1f:33:01:7d:2d:45: 68:d6:0a:1c:a0:27:54:1a:bc:32:74:0f:a8:f1:69: 39:98:2b:63:b5:e1:8e:d1:e1:25:b0:1c:6f:b4:87: 1d:69:d7:22:9f:a1:85:21:ef:47:a1:e3:08:61:fc: 90:e8:75:cd:9b:ff:81:89:0c:51:6e:34:38:6b:74: a3:76:e7:c2:b2:e7:4c:9f:25:1d:0f:3a:84:51:3b: 70:1f:c9:e7:12:87:b2:6b:b1:6a:3b:a5:b0:12:3b: 7f:10:d5:9f:ee:13:07:b4:72:c8:b8:52:cf:1f:90: 0d:6c:e1:ae:b3:35:fc:15:2d:29:30:0e:a1:f1:9f: 0a:1c:3d:a8:15:83:1f:d2:1e:84:29:44:d1:f5:ca: 52:37:3b:da:f7:45:e4:fa:a9:98:5c:1f:b5:9b:0d: 14:bf:24:2e:b6:19:d2:3f:4e:ee:cb:68:a9:84:3b: 5e:4a:a2:14:2e:b7:c2:97:bc:25:ea:e9:58:fe:52: 1d:62:53:56:e9:a4:81:db:ec:27:76:e7:62:fd:fd: f3:ae:18:9b:d2:a8:c9:96:da:56:d7:90:43:ce:aa: 09:01:96:24:fe:f6:dd:e0:6b:42:86:57:dc:9f:45: 65:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:74:F7:FC:72:7F:68:50:B1:7B:EF:92:D5:D2:67:2A:0F:C7:BF:AF X509v3 Authority Key Identifier: keyid:08:9C:7F:00:D8:1E:DD:64:DB:AB:6D:03:71:22:B2:A2:1F:0D:3B:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB5F2/4AEED91C43B711ED98FF455EC4F9AE02/CJx_ANge3WTbq20DcSKyoh8NO-Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CJx_ANge3WTbq20DcSKyoh8NO-Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB5F2/4AEED91C43B711ED98FF455EC4F9AE02/CJx_ANge3WTbq20DcSKyoh8NO-Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:89:db:28:ce:d3:e3:3d:80:a4:24:8b:93:56:e3:66:d5:fe: 79:62:53:06:db:5a:ff:25:98:6e:03:0e:6d:3f:6f:8b:ac:5b: 0d:9b:46:c0:25:79:3a:5c:2e:95:05:da:f5:f1:01:83:5c:b9: a9:62:fa:70:96:77:73:43:04:5d:b6:fb:97:64:4a:4b:22:90: d2:ea:c3:5e:45:a9:a2:33:38:dc:7f:03:5a:09:98:95:2a:99: bd:a4:b8:fa:f1:e6:9f:eb:49:67:b1:c7:03:67:d7:fb:ec:d6: 63:09:b0:b0:e8:d9:88:18:59:42:a8:af:1a:5e:13:0c:b4:c3: 85:3c:56:11:20:0c:73:ea:15:8e:dd:4d:6f:45:86:18:ca:b9: 53:1b:d7:89:44:ff:e0:42:3e:d4:89:58:3a:90:36:2b:db:82: db:dc:66:6f:5b:3c:b5:01:46:42:3d:4f:89:4b:65:90:3c:96: 57:e2:e2:dd:be:38:79:5e:2f:f8:9c:74:e8:86:87:fc:46:47: b4:4d:a9:b4:b0:a0:ea:d2:b8:63:ee:b3:8c:07:fe:f1:f4:65: cb:94:2e:0e:72:04:97:39:4e:26:b0:a6:35:f8:d4:b0:f4:35: 54:92:99:c3:d0:40:1e:2d:0f:49:df:bc:65:75:59:57:f6:fc: 0d:10:cd:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI1RjIxMTAvBgNVBAUTKDA4OUM3RjAwRDgxRURENjREQkFCNkQwMzcxMjJCMkEy MUYwRDNCRTYwHhcNMjUxMjA3MDAxMjU2WhcNMjUxMjE0MDAxMjU2WjAYMRYwFAYD VQQDEw02OTM0YzY4OC1lZmI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAthZeTPKouseiA19Xvs6CVOz1VnQOeFofMwF9LUVo1gocoCdUGrwydA+o8Wk5 mCtjteGO0eElsBxvtIcdadcin6GFIe9HoeMIYfyQ6HXNm/+BiQxRbjQ4a3SjdufC sudMnyUdDzqEUTtwH8nnEoeya7FqO6WwEjt/ENWf7hMHtHLIuFLPH5ANbOGuszX8 FS0pMA6h8Z8KHD2oFYMf0h6EKUTR9cpSNzva90Xk+qmYXB+1mw0UvyQuthnSP07u y2iphDteSqIULrfCl7wl6ulY/lIdYlNW6aSB2+wndudi/f3zrhib0qjJltpW15BD zqoJAZYk/vbd4GtChlfcn0Vl2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP909/xy f2hQsXvvktXSZyoPx7+vMB8GA1UdIwQYMBaAFAicfwDYHt1k26ttA3EisqIfDTvm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjVGMi80QUVFRDkxQzQz QjcxMUVEOThGRjQ1NUVDNEY5QUUwMi9DSnhfQU5nZTNXVGJxMjBEY1NLeW9oOE5P LVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NKeF9BTmdlM1dUYnEyMERjU0t5b2g4Tk8tWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjVGMi80QUVFRDkxQzQzQjcxMUVEOThGRjQ1NUVDNEY5QUUwMi9DSnhfQU5nZTNX VGJxMjBEY1NLeW9oOE5PLVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLidsoztPjPYCkJIuTVuNm1f55YlMG21r/JZhuAw5tP2+LrFsNm0bA JXk6XC6VBdr18QGDXLmpYvpwlndzQwRdtvuXZEpLIpDS6sNeRamiMzjcfwNaCZiV Kpm9pLj68eaf60lnsccDZ9f77NZjCbCw6NmIGFlCqK8aXhMMtMOFPFYRIAxz6hWO 3U1vRYYYyrlTG9eJRP/gQj7UiVg6kDYr24Lb3GZvWzy1AUZCPU+JS2WQPJZX4uLd vjh5Xi/4nHTohof8Rke0Tam0sKDq0rhj7rOMB/7x9GXLlC4OcgSXOU4msKY1+NSw 9DVUkpnD0EAeLQ9J37xldVlX9vwNEM2h -----END CERTIFICATE-----Generated at Sun Dec 7 05:41:38 2025 by rpki-client