This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8EDF/F46ADDE67C5711EDBF213767C4F9AE02/Cjz8fzlaNLq-MbjKRiPTHHao2fo.mft File: Cjz8fzlaNLq-MbjKRiPTHHao2fo.mft (raw, json) Hash identifier: ho6w7r2q/KoO5cDcORFgRmQYT8NkbBLy312c8G62xTs= Subject key identifier: 31:28:B7:7C:96:2D:64:BA:0F:F7:DB:7E:47:3E:27:4C:1F:0A:35:A0 Authority key identifier: 0A:3C:FC:7F:39:5A:34:BA:BE:31:B8:CA:46:23:D3:1C:76:A8:D9:FA Certificate issuer: /CN=A91C8EDF/serialNumber=0A3CFC7F395A34BABE31B8CA4623D31C76A8D9FA Certificate serial: 0243 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cjz8fzlaNLq-MbjKRiPTHHao2fo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8EDF/F46ADDE67C5711EDBF213767C4F9AE02/Cjz8fzlaNLq-MbjKRiPTHHao2fo.mft Manifest number: 023F Signing time: Fri 19 Dec 2025 01:12:44 +0000 Manifest this update: Fri 19 Dec 2025 01:12:44 +0000 Manifest next update: Fri 26 Dec 2025 01:12:44 +0000 Files and hashes: 1: Cjz8fzlaNLq-MbjKRiPTHHao2fo.crl (hash: nTvgmaHas3fnFnnMTH5aUY9neJHc8CDkwd7Rch3C0Zs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8EDF/F46ADDE67C5711EDBF213767C4F9AE02/Cjz8fzlaNLq-MbjKRiPTHHao2fo.crl rsync://rpki.apnic.net/member_repository/A91C8EDF/F46ADDE67C5711EDBF213767C4F9AE02/Cjz8fzlaNLq-MbjKRiPTHHao2fo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cjz8fzlaNLq-MbjKRiPTHHao2fo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 01:12:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 579 (0x243) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8EDF, serialNumber=0A3CFC7F395A34BABE31B8CA4623D31C76A8D9FA Validity Not Before: Dec 19 01:12:44 2025 GMT Not After : Dec 26 01:12:44 2025 GMT Subject: CN=6944a68c-7595 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:2d:8c:80:6d:2b:41:d5:f9:a1:85:41:39:1d: b1:f0:a0:ca:38:b0:04:2d:71:f5:36:14:7a:3d:35: 31:ac:a1:0c:ff:26:40:d1:86:21:85:d1:40:97:14: d8:65:20:09:d8:cb:b1:08:2f:51:6a:86:0c:fc:b9: 24:a8:71:7d:b2:2d:40:d0:b9:a1:f3:92:92:0a:b4: 3c:61:0b:e6:40:83:18:07:41:cd:ee:43:4e:ae:bb: 44:22:96:f7:d2:27:3c:5f:c8:46:24:dc:12:b3:c1: 50:6b:74:74:ee:ad:ef:b5:7a:76:b1:0e:b6:97:e0: 54:9f:55:55:ac:96:37:95:2d:7e:3d:44:89:fd:39: 56:d9:55:b0:97:0a:e3:16:0a:61:87:fd:6b:f4:c6: cd:49:02:c6:40:bb:81:82:73:c3:4b:d8:fc:8c:f8: 51:a1:12:62:d6:c0:48:ca:84:7a:50:80:51:10:3f: fb:02:ad:0f:43:5c:8b:35:26:35:84:43:25:3b:f2: 71:32:f1:d6:ca:2d:29:15:23:d6:48:d9:6e:57:48: c3:46:5b:79:03:db:73:06:1f:0c:ab:62:de:be:57: 89:29:17:52:8e:8c:96:32:5c:0e:b8:e2:b9:d7:c0: f1:20:d0:d6:e5:ec:75:62:83:0d:83:85:ab:81:e1: 13:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:28:B7:7C:96:2D:64:BA:0F:F7:DB:7E:47:3E:27:4C:1F:0A:35:A0 X509v3 Authority Key Identifier: keyid:0A:3C:FC:7F:39:5A:34:BA:BE:31:B8:CA:46:23:D3:1C:76:A8:D9:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8EDF/F46ADDE67C5711EDBF213767C4F9AE02/Cjz8fzlaNLq-MbjKRiPTHHao2fo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cjz8fzlaNLq-MbjKRiPTHHao2fo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8EDF/F46ADDE67C5711EDBF213767C4F9AE02/Cjz8fzlaNLq-MbjKRiPTHHao2fo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:03:80:a6:df:d4:89:02:b7:a8:2a:47:55:0d:4b:ea:8d:f7: 3d:d5:6f:3d:26:ef:71:99:78:d1:f2:dd:4e:14:ed:66:0d:c6: 69:3a:d6:a5:25:c6:04:cf:bd:b7:98:2d:49:54:8d:49:b1:b9: 17:5c:90:d4:2b:27:ec:3e:59:60:37:ea:8e:0e:dd:e8:0b:5b: b4:30:21:d8:3f:32:67:f3:21:eb:e9:af:c3:2c:0f:eb:f7:b8: c8:0e:fc:c5:e5:ca:29:0e:e0:0d:e4:63:e3:74:3c:ee:d0:6d: b2:73:49:0d:b0:ef:c2:1c:96:b4:0f:03:4e:21:50:58:9d:9d: 53:b1:2b:1f:e8:8b:a8:45:7c:cf:dc:7f:e4:5a:d8:d6:89:2c: f1:78:df:53:51:9e:cc:6d:b5:4e:31:12:1b:af:97:d2:51:80: 75:78:ca:00:db:8e:cf:e5:88:a3:ab:7a:d4:02:91:77:d9:31: 5e:e6:e7:19:c5:f1:b6:41:0d:81:81:64:43:dd:c3:cb:9e:00: 0a:e9:1d:c1:83:3c:99:76:4b:91:f6:1c:bd:b1:cd:cc:6b:ec: 95:aa:97:e3:ee:aa:52:f1:98:8d:b8:d9:48:a1:6f:c7:f0:d2: 26:ee:31:ea:51:8b:1b:0b:f0:0b:29:0d:63:ca:61:3b:08:c8: 0c:ea:1d:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhFREYxMTAvBgNVBAUTKDBBM0NGQzdGMzk1QTM0QkFCRTMxQjhDQTQ2MjNEMzFD NzZBOEQ5RkEwHhcNMjUxMjE5MDExMjQ0WhcNMjUxMjI2MDExMjQ0WjAYMRYwFAYD VQQDDA02OTQ0YTY4Yy03NTk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArC2MgG0rQdX5oYVBOR2x8KDKOLAELXH1NhR6PTUxrKEM/yZA0YYhhdFAlxTY ZSAJ2MuxCC9RaoYM/LkkqHF9si1A0Lmh85KSCrQ8YQvmQIMYB0HN7kNOrrtEIpb3 0ic8X8hGJNwSs8FQa3R07q3vtXp2sQ62l+BUn1VVrJY3lS1+PUSJ/TlW2VWwlwrj Fgphh/1r9MbNSQLGQLuBgnPDS9j8jPhRoRJi1sBIyoR6UIBRED/7Aq0PQ1yLNSY1 hEMlO/JxMvHWyi0pFSPWSNluV0jDRlt5A9tzBh8Mq2LevleJKRdSjoyWMlwOuOK5 18DxINDW5ex1YoMNg4WrgeET8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDEot3yW LWS6D/fbfkc+J0wfCjWgMB8GA1UdIwQYMBaAFAo8/H85WjS6vjG4ykYj0xx2qNn6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEVERi9GNDZBRERFNjdD NTcxMUVEQkYyMTM3NjdDNEY5QUUwMi9Dano4ZnpsYU5McS1NYmpLUmlQVEhIYW8y Zm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NqejhmemxhTkxxLU1iaktSaVBUSEhhbzJmby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OEVERi9GNDZBRERFNjdDNTcxMUVEQkYyMTM3NjdDNEY5QUUwMi9Dano4ZnpsYU5M cS1NYmpLUmlQVEhIYW8yZm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJA4Cm39SJAreoKkdVDUvqjfc91W89Ju9xmXjR8t1OFO1mDcZpOtal JcYEz723mC1JVI1JsbkXXJDUKyfsPllgN+qODt3oC1u0MCHYPzJn8yHr6a/DLA/r 97jIDvzF5copDuAN5GPjdDzu0G2yc0kNsO/CHJa0DwNOIVBYnZ1TsSsf6IuoRXzP 3H/kWtjWiSzxeN9TUZ7MbbVOMRIbr5fSUYB1eMoA247P5Yijq3rUApF32TFe5ucZ xfG2QQ2BgWRD3cPLngAK6R3BgzyZdkuR9hy9sc3Ma+yVqpfj7qpS8ZiNuNlIoW/H 8NIm7jHqUYsbC/ALKQ1jymE7CMgM6h01 -----END CERTIFICATE-----Generated at Fri Dec 19 06:26:37 2025 by rpki-client