This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8EDF/F46ADDE67C5711EDBF213767C4F9AE02/Cjz8fzlaNLq-MbjKRiPTHHao2fo.mft File: Cjz8fzlaNLq-MbjKRiPTHHao2fo.mft (raw, json) Hash identifier: 65yMPpUBwa7n/ly/F/eGdKfriUjM3HPhQBCk9pqSZbA= Subject key identifier: 71:6F:42:D4:E2:43:79:90:F5:7E:6A:C8:8D:DB:1C:96:E9:82:F0:24 Authority key identifier: 0A:3C:FC:7F:39:5A:34:BA:BE:31:B8:CA:46:23:D3:1C:76:A8:D9:FA Certificate issuer: /CN=A91C8EDF/serialNumber=0A3CFC7F395A34BABE31B8CA4623D31C76A8D9FA Certificate serial: 023C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cjz8fzlaNLq-MbjKRiPTHHao2fo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8EDF/F46ADDE67C5711EDBF213767C4F9AE02/Cjz8fzlaNLq-MbjKRiPTHHao2fo.mft Manifest number: 0238 Signing time: Fri 05 Dec 2025 00:21:45 +0000 Manifest this update: Fri 05 Dec 2025 00:21:45 +0000 Manifest next update: Fri 12 Dec 2025 00:21:45 +0000 Files and hashes: 1: Cjz8fzlaNLq-MbjKRiPTHHao2fo.crl (hash: MjMpXa4qYAP0gBfBpoX+989lGd1Bybg6VxvjIKRkl0c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8EDF/F46ADDE67C5711EDBF213767C4F9AE02/Cjz8fzlaNLq-MbjKRiPTHHao2fo.crl rsync://rpki.apnic.net/member_repository/A91C8EDF/F46ADDE67C5711EDBF213767C4F9AE02/Cjz8fzlaNLq-MbjKRiPTHHao2fo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cjz8fzlaNLq-MbjKRiPTHHao2fo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 00:21:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 572 (0x23c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8EDF, serialNumber=0A3CFC7F395A34BABE31B8CA4623D31C76A8D9FA Validity Not Before: Dec 5 00:21:45 2025 GMT Not After : Dec 12 00:21:45 2025 GMT Subject: CN=69322599-ff5e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:04:a8:93:6a:60:39:05:8c:e8:75:e4:8b:fe: 14:10:55:ec:fb:4a:36:8e:10:a7:f7:20:39:d6:62: 02:08:71:31:86:b7:c6:b9:fc:e0:40:d4:20:be:9c: 55:fd:0b:77:38:29:f7:5b:23:4d:47:ed:60:31:aa: 1b:6a:ba:22:0f:ce:57:6e:28:9e:a0:74:6c:8e:77: ac:ec:4a:70:90:89:a4:5c:53:66:65:fd:c8:35:7f: 17:70:08:47:b4:84:1a:94:3c:f7:83:01:75:04:d0: b3:19:bc:d8:bd:ce:cf:cf:4a:24:dd:c8:d8:75:c5: a2:fe:4d:a3:64:b2:e6:61:39:d2:7e:fb:fb:db:cd: ab:c4:92:06:80:c7:e3:66:1d:23:58:5e:21:fb:de: 9e:ff:f8:e3:c7:8c:8c:f3:5a:7b:6b:06:83:9f:b2: 58:7a:68:88:67:14:d6:18:30:aa:a9:74:8d:ca:4b: 17:d5:bb:d6:f2:62:c6:05:aa:21:9b:8a:54:89:6c: 7d:8d:75:7f:22:06:cb:ac:b5:8c:27:8e:6e:ed:0e: 10:6c:4f:80:a8:00:31:42:b7:3f:ff:26:87:91:fe: 32:2f:08:e4:3c:7c:82:81:08:f9:1f:94:b0:ab:fb: 26:bf:1c:10:11:c1:09:13:2e:2d:13:e6:b4:8f:43: d4:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:6F:42:D4:E2:43:79:90:F5:7E:6A:C8:8D:DB:1C:96:E9:82:F0:24 X509v3 Authority Key Identifier: keyid:0A:3C:FC:7F:39:5A:34:BA:BE:31:B8:CA:46:23:D3:1C:76:A8:D9:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8EDF/F46ADDE67C5711EDBF213767C4F9AE02/Cjz8fzlaNLq-MbjKRiPTHHao2fo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cjz8fzlaNLq-MbjKRiPTHHao2fo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8EDF/F46ADDE67C5711EDBF213767C4F9AE02/Cjz8fzlaNLq-MbjKRiPTHHao2fo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:48:f1:a4:a0:7c:08:62:65:6e:81:8b:61:41:85:93:ab:fa: 24:7f:86:33:55:e2:0b:10:bb:17:4b:c3:1c:b0:b6:68:06:3f: 58:ae:e2:15:8e:46:ae:a8:12:a2:e4:a4:f0:6a:c6:71:d2:71: b6:c0:e1:3c:5d:bf:e4:39:28:2e:fd:2c:a9:4c:17:a0:9b:31: f7:71:50:b8:62:d0:2f:ca:23:e6:f2:89:99:da:51:c7:7e:53: 00:0c:6a:41:02:4c:66:38:42:36:89:ef:5b:df:13:29:d2:42: a7:04:66:1e:38:57:33:75:8e:de:15:0c:46:c2:09:df:42:46: ab:a1:be:a7:fc:cb:f2:2b:5e:e5:6a:77:4e:a1:71:d6:9d:bd: bf:c2:3b:3e:5e:3b:55:be:38:b4:0a:50:dd:3f:ed:02:47:00: e4:39:e5:9f:b8:fe:97:cf:a5:35:54:7a:f9:74:8b:77:46:7c: c7:50:89:1a:d2:cd:76:ea:41:36:89:a0:fe:74:04:6c:ca:cf: 17:dd:4f:b5:71:49:fe:94:03:83:f9:70:fa:a1:d7:f6:1f:73: 7a:7b:f8:34:73:ea:4e:94:5a:d2:f6:87:65:51:79:7e:5b:99: 63:b2:de:95:30:83:dd:34:17:cf:94:fe:0a:41:2a:a8:13:90: 5f:26:04:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhFREYxMTAvBgNVBAUTKDBBM0NGQzdGMzk1QTM0QkFCRTMxQjhDQTQ2MjNEMzFD NzZBOEQ5RkEwHhcNMjUxMjA1MDAyMTQ1WhcNMjUxMjEyMDAyMTQ1WjAYMRYwFAYD VQQDEw02OTMyMjU5OS1mZjVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnwSok2pgOQWM6HXki/4UEFXs+0o2jhCn9yA51mICCHExhrfGufzgQNQgvpxV /Qt3OCn3WyNNR+1gMaobaroiD85XbiieoHRsjnes7EpwkImkXFNmZf3INX8XcAhH tIQalDz3gwF1BNCzGbzYvc7Pz0ok3cjYdcWi/k2jZLLmYTnSfvv7282rxJIGgMfj Zh0jWF4h+96e//jjx4yM81p7awaDn7JYemiIZxTWGDCqqXSNyksX1bvW8mLGBaoh m4pUiWx9jXV/IgbLrLWMJ45u7Q4QbE+AqAAxQrc//yaHkf4yLwjkPHyCgQj5H5Sw q/smvxwQEcEJEy4tE+a0j0PUgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHFvQtTi Q3mQ9X5qyI3bHJbpgvAkMB8GA1UdIwQYMBaAFAo8/H85WjS6vjG4ykYj0xx2qNn6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEVERi9GNDZBRERFNjdD NTcxMUVEQkYyMTM3NjdDNEY5QUUwMi9Dano4ZnpsYU5McS1NYmpLUmlQVEhIYW8y Zm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NqejhmemxhTkxxLU1iaktSaVBUSEhhbzJmby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OEVERi9GNDZBRERFNjdDNTcxMUVEQkYyMTM3NjdDNEY5QUUwMi9Dano4ZnpsYU5M cS1NYmpLUmlQVEhIYW8yZm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2SPGkoHwIYmVugYthQYWTq/okf4YzVeILELsXS8McsLZoBj9YruIV jkauqBKi5KTwasZx0nG2wOE8Xb/kOSgu/SypTBegmzH3cVC4YtAvyiPm8omZ2lHH flMADGpBAkxmOEI2ie9b3xMp0kKnBGYeOFczdY7eFQxGwgnfQkarob6n/MvyK17l andOoXHWnb2/wjs+XjtVvji0ClDdP+0CRwDkOeWfuP6Xz6U1VHr5dIt3RnzHUIka 0s126kE2iaD+dARsys8X3U+1cUn+lAOD+XD6odf2H3N6e/g0c+pOlFrS9odlUXl+ W5ljst6VMIPdNBfPlP4KQSqoE5BfJgTX -----END CERTIFICATE-----Generated at Sun Dec 7 00:01:04 2025 by rpki-client