This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.mft File: JzQEfW6XjVCbqKUabxBkh49Hddo.mft (raw, json) Hash identifier: sPsTAgJ3KsJANk50ioqMwiyphX1EtyeZP2EnVlrQ1iY= Subject key identifier: 8B:40:CA:59:45:29:7C:60:2F:AF:9A:B2:FD:B3:87:7F:CD:C2:0B:70 Authority key identifier: 27:34:04:7D:6E:97:8D:50:9B:A8:A5:1A:6F:10:64:87:8F:47:75:DA Certificate issuer: /CN=A91C23C5/serialNumber=2734047D6E978D509BA8A51A6F1064878F4775DA Certificate serial: 1D94 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzQEfW6XjVCbqKUabxBkh49Hddo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.mft Manifest number: 1D85 Signing time: Sat 06 Dec 2025 15:48:35 +0000 Manifest this update: Sat 06 Dec 2025 15:48:34 +0000 Manifest next update: Sat 13 Dec 2025 15:48:34 +0000 Files and hashes: 1: JzQEfW6XjVCbqKUabxBkh49Hddo.crl (hash: In/32wun0N8ixEe70b4LTWEzv2lfXIdjGGqSIMLiAMQ=) 2: AC34FBD61C0111EC8ADBF80CC4F9AE02.roa (hash: ptNgrWHvzJHQ4AbkataHwe2RnXoFWeh5k6roCCdUJ6s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.crl rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzQEfW6XjVCbqKUabxBkh49Hddo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7572 (0x1d94) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C23C5, serialNumber=2734047D6E978D509BA8A51A6F1064878F4775DA Validity Not Before: Dec 6 15:48:34 2025 GMT Not After : Dec 13 15:48:34 2025 GMT Subject: CN=69345053-d3b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:d5:68:16:0e:2c:f4:75:f7:a6:db:32:cb:2e: 6d:2d:13:03:ab:7b:bd:03:fe:23:2c:8d:ba:c3:38: 49:cc:e6:ba:97:cc:c7:eb:a3:bc:df:e6:6f:55:30: f8:40:46:0a:93:e9:13:8f:66:0c:ce:16:9a:fa:cf: aa:c6:bb:ac:86:bb:da:45:cf:b5:cf:5b:9b:d1:33: af:23:df:01:f0:18:ac:af:b2:ad:91:0d:b9:ea:d3: 5e:39:66:f1:2b:f2:a1:72:42:43:2c:f2:e0:28:85: 25:a4:0c:db:ec:e5:ec:e8:a6:c0:3e:1e:3e:af:90: aa:a4:79:24:3e:52:9c:0f:19:de:82:b0:bd:cb:7c: a2:c4:45:d9:fb:4c:cd:fe:e9:ea:43:70:fb:c4:68: 2f:cc:08:ad:83:38:bb:cd:ee:41:74:9c:8e:ab:9b: f4:49:f1:36:f0:e4:fb:b3:92:b7:43:c3:8d:29:9d: 7c:5c:50:87:2b:08:5f:9c:fe:21:d8:b9:f4:dd:6f: cf:98:69:b1:88:36:eb:5c:21:ff:bb:7c:3a:6c:1e: f4:d3:be:eb:6d:07:46:2c:30:f6:5e:44:7d:7e:a2: a2:bf:5d:1e:7e:ce:a7:a6:a8:0f:7d:47:28:2a:5a: 8c:b5:d0:a3:6e:b7:96:06:b7:b5:c9:5d:8d:1f:d9: 62:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:40:CA:59:45:29:7C:60:2F:AF:9A:B2:FD:B3:87:7F:CD:C2:0B:70 X509v3 Authority Key Identifier: keyid:27:34:04:7D:6E:97:8D:50:9B:A8:A5:1A:6F:10:64:87:8F:47:75:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzQEfW6XjVCbqKUabxBkh49Hddo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e0:97:2c:2c:69:1d:80:14:44:4d:d2:ca:ef:86:76:e8:f9:b6: 54:b6:1d:be:c0:67:d3:39:87:76:1e:36:b2:5b:f1:e5:09:60: d6:e4:9a:4e:0d:4d:f7:5c:45:6a:84:c2:d6:35:68:3e:a2:29: e1:6f:cd:d1:5c:73:ee:0e:ad:96:57:2a:7b:76:ca:dc:35:0f: 8f:b8:ad:c7:30:ca:ef:e1:74:1b:3a:5a:92:78:4e:ac:d8:aa: c8:a1:b0:de:5a:6b:f8:14:eb:47:78:0a:79:5f:ad:67:f9:ea: 21:6a:11:4c:3f:da:cd:6e:e5:08:5b:bb:18:39:fc:be:f6:1f: 45:e2:1c:05:22:b7:04:b0:64:a8:1a:36:29:59:0e:71:36:2c: e5:6e:d4:ad:c3:29:4c:7f:87:b2:e8:9e:48:9c:d9:35:8e:36: 1a:b6:17:83:c4:af:e7:74:f6:f3:d9:14:ff:09:84:89:e1:b6: a7:6c:5f:16:15:98:1c:df:82:2a:ee:8e:41:ce:2f:8e:1e:f1: 09:eb:fa:4b:9a:52:1f:ec:28:77:f6:55:2f:57:60:30:85:28: 77:3b:5a:34:86:47:68:09:b3:ea:c4:e9:1c:ad:9e:4c:7d:f0: 41:0f:69:bd:5a:b3:24:8a:54:fa:71:4a:57:ff:aa:a8:bf:26: da:d8:76:3a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHZQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzIzQzUxMTAvBgNVBAUTKDI3MzQwNDdENkU5NzhENTA5QkE4QTUxQTZGMTA2NDg3 OEY0Nzc1REEwHhcNMjUxMjA2MTU0ODM0WhcNMjUxMjEzMTU0ODM0WjAYMRYwFAYD VQQDEw02OTM0NTA1My1kM2IxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA79VoFg4s9HX3ptsyyy5tLRMDq3u9A/4jLI26wzhJzOa6l8zH66O83+ZvVTD4 QEYKk+kTj2YMzhaa+s+qxrushrvaRc+1z1ub0TOvI98B8Bisr7KtkQ256tNeOWbx K/KhckJDLPLgKIUlpAzb7OXs6KbAPh4+r5CqpHkkPlKcDxnegrC9y3yixEXZ+0zN /unqQ3D7xGgvzAitgzi7ze5BdJyOq5v0SfE28OT7s5K3Q8ONKZ18XFCHKwhfnP4h 2Ln03W/PmGmxiDbrXCH/u3w6bB70077rbQdGLDD2XkR9fqKiv10efs6npqgPfUco KlqMtdCjbreWBre1yV2NH9liKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFItAyllF KXxgL6+asv2zh3/NwgtwMB8GA1UdIwQYMBaAFCc0BH1ul41Qm6ilGm8QZIePR3Xa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjNDNS84MzFBMjBGRUI1 QzMxMUU2QjUxNDNBMkFDNEY5QUUwMi9KelFFZlc2WGpWQ2JxS1VhYnhCa2g0OUhk ZG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0p6UUVmVzZYalZDYnFLVWFieEJraDQ5SGRkby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MjNDNS84MzFBMjBGRUI1QzMxMUU2QjUxNDNBMkFDNEY5QUUwMi9KelFFZlc2WGpW Q2JxS1VhYnhCa2g0OUhkZG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDglywsaR2AFERN0srvhnbo+bZUth2+wGfTOYd2HjayW/HlCWDW5JpO DU33XEVqhMLWNWg+oinhb83RXHPuDq2WVyp7dsrcNQ+PuK3HMMrv4XQbOlqSeE6s 2KrIobDeWmv4FOtHeAp5X61n+eohahFMP9rNbuUIW7sYOfy+9h9F4hwFIrcEsGSo GjYpWQ5xNizlbtStwylMf4ey6J5InNk1jjYatheDxK/ndPbz2RT/CYSJ4banbF8W FZgc34Iq7o5Bzi+OHvEJ6/pLmlIf7Ch39lUvV2AwhSh3O1o0hkdoCbPqxOkcrZ5M ffBBD2m9WrMkilT6cUpX/6qovyba2HY6 -----END CERTIFICATE-----Generated at Sat Dec 6 20:40:41 2025 by rpki-client