This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BDF2B/6C2B7B1C41BB11F0B456D857C4F9AE02/jNGQoUOqLh5IcwOxPcBT7Re86x4.mft File: jNGQoUOqLh5IcwOxPcBT7Re86x4.mft (raw, json) Hash identifier: K7YNTmHVQx1Jb3v4eXneua8ZH0S5ivbQIwck9M23HoI= Subject key identifier: 5B:3D:27:7A:38:AE:A6:4E:08:32:C5:F8:F5:9F:5D:EF:CA:6C:A6:88 Authority key identifier: 8C:D1:90:A1:43:AA:2E:1E:48:73:03:B1:3D:C0:53:ED:17:BC:EB:1E Certificate issuer: /CN=A91BDF2B/serialNumber=8CD190A143AA2E1E487303B13DC053ED17BCEB1E Certificate serial: 62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jNGQoUOqLh5IcwOxPcBT7Re86x4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BDF2B/6C2B7B1C41BB11F0B456D857C4F9AE02/jNGQoUOqLh5IcwOxPcBT7Re86x4.mft Manifest number: 60 Signing time: Fri 05 Dec 2025 04:58:24 +0000 Manifest this update: Fri 05 Dec 2025 04:58:24 +0000 Manifest next update: Fri 12 Dec 2025 04:58:24 +0000 Files and hashes: 1: jNGQoUOqLh5IcwOxPcBT7Re86x4.crl (hash: jqfWSBe6m1is44ZPtTkRqy/t8nxJ1GVmtjEZmCsbbo8=) 2: 653C22F441C311F0999A9935C4F9AE02.roa (hash: Lf3alCeyUDstgnP7x5+oblCm0tv/uJ2YmuuNF6Xn0z0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BDF2B/6C2B7B1C41BB11F0B456D857C4F9AE02/jNGQoUOqLh5IcwOxPcBT7Re86x4.crl rsync://rpki.apnic.net/member_repository/A91BDF2B/6C2B7B1C41BB11F0B456D857C4F9AE02/jNGQoUOqLh5IcwOxPcBT7Re86x4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jNGQoUOqLh5IcwOxPcBT7Re86x4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:58:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 98 (0x62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDF2B, serialNumber=8CD190A143AA2E1E487303B13DC053ED17BCEB1E Validity Not Before: Dec 5 04:58:24 2025 GMT Not After : Dec 12 04:58:24 2025 GMT Subject: CN=69326670-1b90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:c4:77:9e:1b:7d:d8:bf:01:bb:c6:48:2a:f6: cd:fe:4d:09:fd:be:5f:2c:23:ff:21:1b:81:9f:c1: d9:b6:43:37:a0:08:20:5e:56:5f:dc:4e:cb:6b:20: e5:02:fe:55:c7:95:1d:06:28:98:5c:3a:f5:ae:af: 43:4a:31:e5:48:e3:7b:f4:8e:42:e3:1d:37:21:a7: 3a:ba:36:7d:89:6f:69:ef:27:ea:ed:6b:b4:23:f7: 7a:c3:65:15:74:01:3f:3d:07:cd:01:67:bb:4c:d4: 49:d4:1b:44:52:23:8a:8e:ee:d3:fb:42:88:5b:32: 4d:9d:8c:f3:59:2f:04:da:03:4a:4d:d4:3d:13:d0: 0f:49:12:d7:cc:14:33:ea:41:c3:6a:c6:4d:12:de: 54:85:f0:9f:4c:8a:df:53:07:0d:a0:1d:58:71:1e: 38:b1:45:37:72:2b:16:ab:40:05:ea:1f:61:7b:6d: cc:3e:38:60:de:26:a1:36:54:33:d1:7f:8b:51:bd: f8:0f:e5:5a:61:59:63:11:b5:e5:fa:bd:f0:e7:8a: eb:e0:6c:c0:1f:6d:5c:65:73:26:35:26:d4:f3:40: 78:f0:03:6d:97:3a:d8:60:5a:5c:2c:ec:ee:90:59: b9:cc:1f:19:56:3e:5a:31:c1:05:6a:1e:eb:9b:7a: 6d:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:3D:27:7A:38:AE:A6:4E:08:32:C5:F8:F5:9F:5D:EF:CA:6C:A6:88 X509v3 Authority Key Identifier: keyid:8C:D1:90:A1:43:AA:2E:1E:48:73:03:B1:3D:C0:53:ED:17:BC:EB:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BDF2B/6C2B7B1C41BB11F0B456D857C4F9AE02/jNGQoUOqLh5IcwOxPcBT7Re86x4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jNGQoUOqLh5IcwOxPcBT7Re86x4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BDF2B/6C2B7B1C41BB11F0B456D857C4F9AE02/jNGQoUOqLh5IcwOxPcBT7Re86x4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:bf:91:54:59:a0:4e:15:f8:17:d8:4b:40:96:d5:be:e5:ca: 3d:45:26:6a:a7:d8:16:ad:dd:1d:3b:21:b6:58:95:13:74:0d: 17:d3:d3:51:9f:27:38:ae:d2:99:51:0b:23:60:1f:33:46:ce: fd:99:32:68:d1:de:65:bc:bb:20:90:9b:e6:c0:d5:5f:67:8a: 69:1f:8e:5d:80:56:70:5b:e8:f5:8e:5e:ad:c6:1d:14:11:d6: 0c:11:c0:e0:ad:68:50:0a:f6:d3:d0:b0:09:c4:f4:c2:ba:c2: 42:47:86:d9:4f:7f:d2:88:04:2e:6b:82:0b:29:d6:0d:c7:a9: e7:2e:11:84:4b:c9:d4:38:04:d8:5e:92:52:36:98:0a:49:68: 44:4e:7b:ef:05:8d:66:56:ca:de:69:bd:a3:d0:30:bd:fe:8f: 00:4b:70:0d:1b:56:6d:06:da:36:46:c1:0a:fc:bd:36:96:16: 05:88:ac:c0:5a:27:59:83:bb:d6:f5:bf:72:70:74:30:c8:30: 02:de:8b:97:82:94:6c:a2:f5:df:90:eb:cc:87:da:b5:71:9d: 5e:ee:d1:26:11:38:27:f3:e8:7a:66:38:e7:0a:97:4e:4a:9d: 2f:b9:f3:13:a0:b9:c9:04:7a:49:5e:eb:9b:3d:cc:d1:3b:99: 74:53:65:ca -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC REYyQjExMC8GA1UEBRMoOENEMTkwQTE0M0FBMkUxRTQ4NzMwM0IxM0RDMDUzRUQx N0JDRUIxRTAeFw0yNTEyMDUwNDU4MjRaFw0yNTEyMTIwNDU4MjRaMBgxFjAUBgNV BAMTDTY5MzI2NjcwLTFiOTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDOxHeeG33YvwG7xkgq9s3+TQn9vl8sI/8hG4Gfwdm2QzegCCBeVl/cTstrIOUC /lXHlR0GKJhcOvWur0NKMeVI43v0jkLjHTchpzq6Nn2Jb2nvJ+rta7Qj93rDZRV0 AT89B80BZ7tM1EnUG0RSI4qO7tP7QohbMk2djPNZLwTaA0pN1D0T0A9JEtfMFDPq QcNqxk0S3lSF8J9Mit9TBw2gHVhxHjixRTdyKxarQAXqH2F7bcw+OGDeJqE2VDPR f4tRvfgP5VphWWMRteX6vfDniuvgbMAfbVxlcyY1JtTzQHjwA22XOthgWlws7O6Q WbnMHxlWPloxwQVqHuubem2pAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUWz0nejiu pk4IMsX49Z9d78pspogwHwYDVR0jBBgwFoAUjNGQoUOqLh5IcwOxPcBT7Re86x4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJERjJCLzZDMkI3QjFDNDFC QjExRjBCNDU2RDg1N0M0RjlBRTAyL2pOR1FvVU9xTGg1SWN3T3hQY0JUN1JlODZ4 NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvak5HUW9VT3FMaDVJY3dPeFBjQlQ3UmU4Nng0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJE RjJCLzZDMkI3QjFDNDFCQjExRjBCNDU2RDg1N0M0RjlBRTAyL2pOR1FvVU9xTGg1 SWN3T3hQY0JUN1JlODZ4NC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAu/kVRZoE4V+BfYS0CW1b7lyj1FJmqn2Bat3R07IbZYlRN0DRfT01Gf Jziu0plRCyNgHzNGzv2ZMmjR3mW8uyCQm+bA1V9nimkfjl2AVnBb6PWOXq3GHRQR 1gwRwOCtaFAK9tPQsAnE9MK6wkJHhtlPf9KIBC5rggsp1g3HqecuEYRLydQ4BNhe klI2mApJaEROe+8FjWZWyt5pvaPQML3+jwBLcA0bVm0G2jZGwQr8vTaWFgWIrMBa J1mDu9b1v3JwdDDIMALei5eClGyi9d+Q68yH2rVxnV7u0SYROCfz6HpmOOcKl05K nS+58xOguckEekle65s9zNE7mXRTZco= -----END CERTIFICATE-----Generated at Sun Dec 7 03:51:02 2025 by rpki-client