This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.mft File: CJy1orM7eG11SgfWgKnElBQmGeE.mft (raw, json) Hash identifier: ta93OEf7WKq5OL4XwVoW9NQGljWx0eswsCi80LOo8ns= Subject key identifier: 50:E1:C2:BC:79:F2:B0:3C:FA:18:17:B1:F3:80:48:99:D2:98:64:02 Authority key identifier: 08:9C:B5:A2:B3:3B:78:6D:75:4A:07:D6:80:A9:C4:94:14:26:19:E1 Certificate issuer: /CN=A91D0C18/serialNumber=089CB5A2B33B786D754A07D680A9C494142619E1 Certificate serial: F1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CJy1orM7eG11SgfWgKnElBQmGeE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.mft Manifest number: EF Signing time: Fri 05 Dec 2025 03:21:35 +0000 Manifest this update: Fri 05 Dec 2025 03:21:34 +0000 Manifest next update: Fri 12 Dec 2025 03:21:34 +0000 Files and hashes: 1: CJy1orM7eG11SgfWgKnElBQmGeE.crl (hash: WWM2wromdsGPZ6/GewxEexWn3eQtbhsI2nDLLIlxli8=) 2: EEE0092A646611EFA25D167EC4F9AE02.roa (hash: 2I1s5RbX9mRnDSwDS9XqFVY3yT7dmC+Kb1B8YfP6Dhk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.crl rsync://rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CJy1orM7eG11SgfWgKnElBQmGeE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 03:21:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 241 (0xf1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0C18, serialNumber=089CB5A2B33B786D754A07D680A9C494142619E1 Validity Not Before: Dec 5 03:21:34 2025 GMT Not After : Dec 12 03:21:34 2025 GMT Subject: CN=69324fbf-a2c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:0c:3e:e8:15:19:0c:67:1e:56:ca:c1:7b:c4: 0f:34:04:76:7d:d4:03:98:e2:23:20:8e:c4:3d:f3: ef:08:42:fd:ed:a5:91:ca:5c:c3:67:e7:4c:e6:18: 70:d9:e6:a8:e2:6b:48:ae:b3:bc:26:7f:bf:bd:0a: 44:aa:bc:31:ca:1e:4d:22:e0:3e:c0:99:34:56:d8: df:0e:1d:07:b7:2d:6b:6b:49:17:61:bf:a5:6e:3b: d9:53:0c:ae:90:b0:7d:42:1d:d2:e6:04:10:1c:00: 11:a3:2a:6d:df:84:5d:10:51:6e:47:5b:67:27:92: 6e:1c:9e:b2:75:50:d8:f0:6d:35:7e:c0:59:14:c8: 74:bf:52:32:be:22:ff:ef:29:f8:ae:2e:c0:ac:03: 9e:03:c3:67:e2:0f:5b:35:50:61:bb:e3:68:af:22: f9:58:fa:5a:72:ef:d3:47:fe:4d:e5:b1:0a:45:2a: 25:d4:c9:e1:40:b0:1e:d4:c6:cb:0d:6f:cb:ce:6b: ce:e1:23:80:a0:06:bf:64:1c:49:9b:a4:81:4d:0d: f9:bf:55:9a:a5:d8:0e:9f:53:46:5b:8e:4c:7f:71: b9:86:bd:25:ff:b5:36:a7:bd:12:9d:af:a9:f3:9f: 30:c4:c7:77:ea:97:4b:1d:94:2e:e9:46:f5:f9:5f: 59:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:E1:C2:BC:79:F2:B0:3C:FA:18:17:B1:F3:80:48:99:D2:98:64:02 X509v3 Authority Key Identifier: keyid:08:9C:B5:A2:B3:3B:78:6D:75:4A:07:D6:80:A9:C4:94:14:26:19:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CJy1orM7eG11SgfWgKnElBQmGeE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:9c:ca:86:70:2b:a8:72:51:13:3e:1c:a7:6b:8c:83:e7:75: d1:65:fb:db:30:0c:ff:eb:ba:8e:90:e2:27:fb:a2:5c:ba:7c: 1b:0b:7d:cf:e9:4e:78:2e:b2:ac:b7:d3:91:f9:1a:ae:ae:08: 31:3f:4b:35:bf:a1:68:f3:2d:44:a7:fa:5d:03:2c:6f:99:5c: b4:df:30:82:ea:d8:b0:69:a6:85:39:09:c8:e8:01:a6:f4:2a: b6:1b:92:75:06:b4:d2:f6:7f:3a:07:b1:5d:d9:f9:71:0d:68: 16:27:e9:b1:2e:53:9c:02:ee:77:c1:ab:f9:4a:8c:c5:39:20: db:4f:f6:8b:80:29:e4:23:a2:c7:31:fa:fe:e5:2f:7b:f5:9d: 45:c5:17:39:ba:9d:dd:7c:ae:58:01:83:1a:79:15:32:0d:7c: b0:f9:fc:e4:f3:e0:80:b7:86:dc:20:e4:08:f6:dd:39:bc:cf: 99:8a:bf:2c:99:8f:2e:78:a0:b7:d5:87:5e:16:43:07:be:eb: 40:52:24:aa:53:9b:34:f9:cf:a3:0c:ae:00:0b:64:f4:00:c8: 21:37:51:9d:91:e7:b6:c5:26:33:db:c2:4f:b7:4b:58:0f:23: 7f:40:49:0c:c1:ce:37:cd:28:30:4b:76:b3:f3:2e:51:90:1f: ab:2e:cb:66 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDBDMTgxMTAvBgNVBAUTKDA4OUNCNUEyQjMzQjc4NkQ3NTRBMDdENjgwQTlDNDk0 MTQyNjE5RTEwHhcNMjUxMjA1MDMyMTM0WhcNMjUxMjEyMDMyMTM0WjAYMRYwFAYD VQQDEw02OTMyNGZiZi1hMmMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2gw+6BUZDGceVsrBe8QPNAR2fdQDmOIjII7EPfPvCEL97aWRylzDZ+dM5hhw 2eao4mtIrrO8Jn+/vQpEqrwxyh5NIuA+wJk0VtjfDh0Hty1ra0kXYb+lbjvZUwyu kLB9Qh3S5gQQHAARoypt34RdEFFuR1tnJ5JuHJ6ydVDY8G01fsBZFMh0v1IyviL/ 7yn4ri7ArAOeA8Nn4g9bNVBhu+NoryL5WPpacu/TR/5N5bEKRSol1MnhQLAe1MbL DW/LzmvO4SOAoAa/ZBxJm6SBTQ35v1WapdgOn1NGW45Mf3G5hr0l/7U2p70Sna+p 858wxMd36pdLHZQu6Ub1+V9ZHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFDhwrx5 8rA8+hgXsfOASJnSmGQCMB8GA1UdIwQYMBaAFAictaKzO3htdUoH1oCpxJQUJhnh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMEMxOC82ODNCQTA5NjY0 NjYxMUVGOEUxOEY4N0FDNEY5QUUwMi9DSnkxb3JNN2VHMTFTZ2ZXZ0tuRWxCUW1H ZUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0NKeTFvck03ZUcxMVNnZldnS25FbEJRbUdlRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MEMxOC82ODNCQTA5NjY0NjYxMUVGOEUxOEY4N0FDNEY5QUUwMi9DSnkxb3JNN2VH MTFTZ2ZXZ0tuRWxCUW1HZUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUnMqGcCuoclETPhyna4yD53XRZfvbMAz/67qOkOIn+6JcunwbC33P 6U54LrKst9OR+RqurggxP0s1v6Fo8y1Ep/pdAyxvmVy03zCC6tiwaaaFOQnI6AGm 9Cq2G5J1BrTS9n86B7Fd2flxDWgWJ+mxLlOcAu53wav5SozFOSDbT/aLgCnkI6LH Mfr+5S979Z1FxRc5up3dfK5YAYMaeRUyDXyw+fzk8+CAt4bcIOQI9t05vM+Zir8s mY8ueKC31YdeFkMHvutAUiSqU5s0+c+jDK4AC2T0AMghN1Gdkee2xSYz28JPt0tY DyN/QEkMwc43zSgwS3az8y5RkB+rLstm -----END CERTIFICATE-----Generated at Sat Dec 6 12:19:30 2025 by rpki-client