This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB5F2/4AEED91C43B711ED98FF455EC4F9AE02/CJx_ANge3WTbq20DcSKyoh8NO-Y.mft File: CJx_ANge3WTbq20DcSKyoh8NO-Y.mft (raw, json) Hash identifier: Jzd6bIc8tjE10Im4F9JTPfRcOqKCbN2DNWxMbzGfhfI= Subject key identifier: 0B:93:CE:E6:D9:76:6D:2F:E5:87:69:56:98:D6:9C:68:45:3F:CA:15 Authority key identifier: 08:9C:7F:00:D8:1E:DD:64:DB:AB:6D:03:71:22:B2:A2:1F:0D:3B:E6 Certificate issuer: /CN=A91BB5F2/serialNumber=089C7F00D81EDD64DBAB6D037122B2A21F0D3BE6 Certificate serial: 0259 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CJx_ANge3WTbq20DcSKyoh8NO-Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB5F2/4AEED91C43B711ED98FF455EC4F9AE02/CJx_ANge3WTbq20DcSKyoh8NO-Y.mft Manifest number: 0251 Signing time: Fri 05 Dec 2025 00:02:00 +0000 Manifest this update: Fri 05 Dec 2025 00:02:00 +0000 Manifest next update: Fri 12 Dec 2025 00:02:00 +0000 Files and hashes: 1: CJx_ANge3WTbq20DcSKyoh8NO-Y.crl (hash: pM31tN6PY3RW4WgdF5/KdmaNJkUmOsdxORS2KPZlLeQ=) 2: D1FD204C43B911EDB6AA2D5FC4F9AE02.roa (hash: BP/glgq2z1dVEQeJ08W20vuLvcBOY54eQXp8HeomvRk=) 3: D173DA3043B911EDB6AA2D5FC4F9AE02.roa (hash: FNYorUcrDZxaoz80iDO589JZkm4kbfGRGurVB7ty8DM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB5F2/4AEED91C43B711ED98FF455EC4F9AE02/CJx_ANge3WTbq20DcSKyoh8NO-Y.crl rsync://rpki.apnic.net/member_repository/A91BB5F2/4AEED91C43B711ED98FF455EC4F9AE02/CJx_ANge3WTbq20DcSKyoh8NO-Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CJx_ANge3WTbq20DcSKyoh8NO-Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 00:01:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 601 (0x259) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB5F2, serialNumber=089C7F00D81EDD64DBAB6D037122B2A21F0D3BE6 Validity Not Before: Dec 5 00:02:00 2025 GMT Not After : Dec 12 00:02:00 2025 GMT Subject: CN=693220f8-b469 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:0f:43:a5:81:66:3e:dd:79:17:4f:13:4e:af: ab:fc:01:45:78:ef:41:f6:fd:d1:c6:88:91:c1:b0: 3a:2e:25:f7:d2:58:4f:35:63:14:c0:ef:72:fd:d8: a3:ae:87:ae:23:5e:3d:73:88:1a:30:10:62:85:09: 49:48:92:77:24:ca:55:a6:f3:3a:94:cd:34:cf:3d: 15:12:91:01:ca:2b:6d:6d:c0:34:10:5e:70:ca:30: c1:05:67:71:fb:cc:f5:de:e7:37:66:0e:35:7e:81: 82:ac:af:32:e3:28:82:1d:a0:dc:41:98:65:cd:65: 8e:d5:91:86:ea:04:7c:99:c7:c7:46:ff:ac:01:20: fe:f8:d5:20:58:f7:e2:20:75:01:7b:50:12:65:1d: 07:a2:18:2b:fb:a1:1f:d6:64:53:18:02:47:9c:a5: b7:e3:c6:fc:a9:90:18:5b:cd:3f:6b:18:78:a2:72: 0f:70:54:6f:84:ca:5a:13:9e:7a:c1:94:42:c0:7c: 8c:1e:1a:e1:6d:59:2e:05:25:45:dd:46:47:8e:43: 3f:fe:9b:63:4c:fd:80:64:72:62:7f:e3:e2:3e:8b: 85:fb:02:9c:86:48:48:6b:4b:a6:04:ee:fe:17:68: 10:39:7b:dc:b8:a7:c6:db:b5:82:32:9c:5d:5b:0f: ba:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:93:CE:E6:D9:76:6D:2F:E5:87:69:56:98:D6:9C:68:45:3F:CA:15 X509v3 Authority Key Identifier: keyid:08:9C:7F:00:D8:1E:DD:64:DB:AB:6D:03:71:22:B2:A2:1F:0D:3B:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB5F2/4AEED91C43B711ED98FF455EC4F9AE02/CJx_ANge3WTbq20DcSKyoh8NO-Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CJx_ANge3WTbq20DcSKyoh8NO-Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB5F2/4AEED91C43B711ED98FF455EC4F9AE02/CJx_ANge3WTbq20DcSKyoh8NO-Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:ff:64:23:9b:78:8b:da:d7:b2:4b:65:e8:1f:53:ea:3a:99: 38:4a:fb:ac:5c:03:65:ae:05:28:f6:09:9f:86:f1:27:29:94: bd:5c:dc:d4:18:47:e3:4f:e9:08:d2:45:46:1b:e8:c4:08:0b: 74:d2:24:41:17:c1:5a:32:9c:f4:ea:09:6f:58:96:89:35:7a: 01:a8:6a:e6:c4:a9:8d:91:e2:5d:85:a7:38:f7:84:6c:59:36: 57:74:d3:b8:f2:7e:28:fb:e8:00:f3:2d:ef:09:dc:d2:b4:3f: d2:9a:1c:95:f7:62:17:ff:8d:f9:af:73:43:80:9b:b6:fb:0a: e7:06:5e:dd:bc:f5:01:ff:3d:ef:e0:24:57:9d:d1:ec:a8:3c: d3:7e:9d:43:42:1e:c8:44:d8:59:6c:f9:25:eb:a8:bc:e0:bb: cb:41:77:b5:96:7f:f0:af:ed:24:07:a0:6a:70:2b:b3:48:48: d5:f6:79:d7:5b:1a:36:07:30:f6:6d:72:0b:42:76:d3:1a:d2: c9:4c:3b:dd:79:d3:6e:e4:6b:c3:28:b2:4d:75:11:29:7a:ee: 9a:9b:b3:90:94:34:2f:a2:a6:4f:25:f6:73:6c:e9:e3:1a:a2: 55:51:8c:3a:5f:00:37:a4:b9:e5:66:5b:7c:fb:29:82:b3:d7: c3:ec:f8:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI1RjIxMTAvBgNVBAUTKDA4OUM3RjAwRDgxRURENjREQkFCNkQwMzcxMjJCMkEy MUYwRDNCRTYwHhcNMjUxMjA1MDAwMjAwWhcNMjUxMjEyMDAwMjAwWjAYMRYwFAYD VQQDEw02OTMyMjBmOC1iNDY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7Q9DpYFmPt15F08TTq+r/AFFeO9B9v3RxoiRwbA6LiX30lhPNWMUwO9y/dij roeuI149c4gaMBBihQlJSJJ3JMpVpvM6lM00zz0VEpEByittbcA0EF5wyjDBBWdx +8z13uc3Zg41foGCrK8y4yiCHaDcQZhlzWWO1ZGG6gR8mcfHRv+sASD++NUgWPfi IHUBe1ASZR0Hohgr+6Ef1mRTGAJHnKW348b8qZAYW80/axh4onIPcFRvhMpaE556 wZRCwHyMHhrhbVkuBSVF3UZHjkM//ptjTP2AZHJif+PiPouF+wKchkhIa0umBO7+ F2gQOXvcuKfG27WCMpxdWw+6PwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAuTzubZ dm0v5YdpVpjWnGhFP8oVMB8GA1UdIwQYMBaAFAicfwDYHt1k26ttA3EisqIfDTvm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjVGMi80QUVFRDkxQzQz QjcxMUVEOThGRjQ1NUVDNEY5QUUwMi9DSnhfQU5nZTNXVGJxMjBEY1NLeW9oOE5P LVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NKeF9BTmdlM1dUYnEyMERjU0t5b2g4Tk8tWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjVGMi80QUVFRDkxQzQzQjcxMUVEOThGRjQ1NUVDNEY5QUUwMi9DSnhfQU5nZTNX VGJxMjBEY1NLeW9oOE5PLVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBj/2Qjm3iL2teyS2XoH1PqOpk4SvusXANlrgUo9gmfhvEnKZS9XNzU GEfjT+kI0kVGG+jECAt00iRBF8FaMpz06glvWJaJNXoBqGrmxKmNkeJdhac494Rs WTZXdNO48n4o++gA8y3vCdzStD/SmhyV92IX/435r3NDgJu2+wrnBl7dvPUB/z3v 4CRXndHsqDzTfp1DQh7IRNhZbPkl66i84LvLQXe1ln/wr+0kB6BqcCuzSEjV9nnX Wxo2BzD2bXILQnbTGtLJTDvdedNu5GvDKLJNdREpeu6am7OQlDQvoqZPJfZzbOnj GqJVUYw6XwA3pLnlZlt8+ymCs9fD7PhQ -----END CERTIFICATE-----Generated at Sat Dec 6 22:04:48 2025 by rpki-client