This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911B7EB/791F4E7673E311EABA7A886EC4F9AE02/jPbyYoPglD4X1BKxnKKvLNYNRYc.mft File: jPbyYoPglD4X1BKxnKKvLNYNRYc.mft (raw, json) Hash identifier: BJioW/5tZQ6ZfnV/JmxKDh/vXmtDs+ZVq9D+0nzcujo= Subject key identifier: D8:FB:69:AE:4B:65:CC:C5:7F:9A:61:D4:DE:3A:7F:EB:57:E3:8C:E4 Authority key identifier: 8C:F6:F2:62:83:E0:94:3E:17:D4:12:B1:9C:A2:AF:2C:D6:0D:45:87 Certificate issuer: /CN=A911B7EB/serialNumber=8CF6F26283E0943E17D412B19CA2AF2CD60D4587 Certificate serial: 0A94 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jPbyYoPglD4X1BKxnKKvLNYNRYc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B7EB/791F4E7673E311EABA7A886EC4F9AE02/jPbyYoPglD4X1BKxnKKvLNYNRYc.mft Manifest number: 0A86 Signing time: Mon 22 Dec 2025 19:02:53 +0000 Manifest this update: Mon 22 Dec 2025 19:02:52 +0000 Manifest next update: Mon 29 Dec 2025 19:02:52 +0000 Files and hashes: 1: jPbyYoPglD4X1BKxnKKvLNYNRYc.crl (hash: o3ke+Q34xG6BxShHMb0GilLrK0Leo6Apa9ld8ITV5xw=) 2: 4A074A90E19511EC8AD57C6CC4F9AE02.roa (hash: NYdc2f4yDizOBPmg8EBE/rQVPUKcax5Hh13GoWVtgRo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B7EB/791F4E7673E311EABA7A886EC4F9AE02/jPbyYoPglD4X1BKxnKKvLNYNRYc.crl rsync://rpki.apnic.net/member_repository/A911B7EB/791F4E7673E311EABA7A886EC4F9AE02/jPbyYoPglD4X1BKxnKKvLNYNRYc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jPbyYoPglD4X1BKxnKKvLNYNRYc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 19:02:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2708 (0xa94) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B7EB, serialNumber=8CF6F26283E0943E17D412B19CA2AF2CD60D4587 Validity Not Before: Dec 22 19:02:52 2025 GMT Not After : Dec 29 19:02:52 2025 GMT Subject: CN=694995dd-8533 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:1d:63:82:45:eb:ae:64:d5:a1:a7:3b:4d:ec: 3f:58:70:b0:73:a1:eb:61:fc:5a:4d:28:f4:67:fc: 95:84:b1:1e:2a:93:0e:ba:ec:85:ec:cb:eb:ad:79: 1b:f7:32:97:b1:22:e1:33:0d:b3:5c:d8:7a:7f:c9: 73:d4:fb:33:55:cb:f9:fc:97:f5:ac:41:ee:32:86: 72:c8:0c:1c:bc:b7:8a:75:a5:92:28:ad:d8:db:3a: 3a:5e:15:13:36:fa:54:2d:f8:c0:07:7b:9a:65:36: 3b:92:e7:a3:18:92:74:47:61:0e:11:4c:24:4a:83: e2:7a:7e:93:2e:c2:18:30:c7:b7:2c:96:94:ba:bc: 8a:8f:a2:a9:2d:39:93:51:16:48:99:04:c2:a7:99: 95:ed:92:e1:78:df:cb:64:06:60:0d:af:7d:7b:ea: 49:6d:ad:4e:1f:10:57:02:42:57:4b:cb:3e:11:7c: ea:1f:f8:68:9f:44:5b:c5:3e:49:6b:57:1c:7b:ad: c8:24:ea:37:c4:95:a7:6b:fb:57:88:16:84:f2:4a: 22:fe:fb:bb:de:85:9c:e5:0f:7c:aa:87:5e:27:f0: a0:70:f6:f7:04:3c:cb:42:e5:f5:d8:4e:93:34:fd: 4b:22:fd:4a:29:39:a8:30:69:13:dd:db:b2:56:93: cf:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:FB:69:AE:4B:65:CC:C5:7F:9A:61:D4:DE:3A:7F:EB:57:E3:8C:E4 X509v3 Authority Key Identifier: keyid:8C:F6:F2:62:83:E0:94:3E:17:D4:12:B1:9C:A2:AF:2C:D6:0D:45:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B7EB/791F4E7673E311EABA7A886EC4F9AE02/jPbyYoPglD4X1BKxnKKvLNYNRYc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jPbyYoPglD4X1BKxnKKvLNYNRYc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B7EB/791F4E7673E311EABA7A886EC4F9AE02/jPbyYoPglD4X1BKxnKKvLNYNRYc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:38:bf:ce:c9:57:24:2a:00:44:6b:65:83:de:f3:da:15:60: e0:d3:d2:25:4f:18:24:a4:5e:c3:4f:c9:4f:b3:a2:f7:21:fc: 86:b3:08:57:66:dd:bc:a0:79:3c:c0:0b:0e:bc:fa:7c:4d:46: dc:4c:37:61:08:66:c8:a8:47:e1:8e:2c:31:89:69:9c:96:79: 81:78:44:cc:cb:e3:f8:01:a5:c6:a8:63:93:3d:3f:c3:79:d8: 47:90:60:c9:ff:19:f7:7d:f8:1e:2c:57:31:10:03:e8:05:02: e3:87:6c:67:5b:90:40:9d:01:c7:72:0a:6a:20:41:ca:4e:dd: d1:ad:3e:d5:53:57:b5:bb:55:3e:1f:c2:a5:46:37:b0:de:25: 57:02:0f:1b:cf:68:ba:b4:d0:34:3a:35:4c:20:91:3c:79:b9: 52:6d:ac:4b:46:eb:f9:1e:1e:80:fa:a6:9f:cb:2a:e8:e1:0a: cf:39:06:1f:4b:fb:53:25:fc:bb:4a:f3:81:f6:a7:f0:de:2a: ce:63:a6:50:db:c4:95:44:73:f0:5f:2f:2f:86:fe:e1:f3:40: 41:18:d5:2d:c1:a5:26:4d:ee:f7:c7:1d:ab:33:4a:41:b2:b1: 6a:27:11:3c:21:81:15:b9:ba:b1:84:46:59:d4:00:bc:12:b8: f8:57:46:8d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCpQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI3RUIxMTAvBgNVBAUTKDhDRjZGMjYyODNFMDk0M0UxN0Q0MTJCMTlDQTJBRjJD RDYwRDQ1ODcwHhcNMjUxMjIyMTkwMjUyWhcNMjUxMjI5MTkwMjUyWjAYMRYwFAYD VQQDDA02OTQ5OTVkZC04NTMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxR1jgkXrrmTVoac7Tew/WHCwc6HrYfxaTSj0Z/yVhLEeKpMOuuyF7MvrrXkb 9zKXsSLhMw2zXNh6f8lz1PszVcv5/Jf1rEHuMoZyyAwcvLeKdaWSKK3Y2zo6XhUT NvpULfjAB3uaZTY7kuejGJJ0R2EOEUwkSoPien6TLsIYMMe3LJaUuryKj6KpLTmT URZImQTCp5mV7ZLheN/LZAZgDa99e+pJba1OHxBXAkJXS8s+EXzqH/hon0RbxT5J a1cce63IJOo3xJWna/tXiBaE8koi/vu73oWc5Q98qodeJ/CgcPb3BDzLQuX12E6T NP1LIv1KKTmoMGkT3duyVpPPaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNj7aa5L ZczFf5ph1N46f+tX44zkMB8GA1UdIwQYMBaAFIz28mKD4JQ+F9QSsZyiryzWDUWH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjdFQi83OTFGNEU3Njcz RTMxMUVBQkE3QTg4NkVDNEY5QUUwMi9qUGJ5WW9QZ2xENFgxQkt4bktLdkxOWU5S WWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pQYnlZb1BnbEQ0WDFCS3huS0t2TE5ZTlJZYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjdFQi83OTFGNEU3NjczRTMxMUVBQkE3QTg4NkVDNEY5QUUwMi9qUGJ5WW9QZ2xE NFgxQkt4bktLdkxOWU5SWWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAzOL/OyVckKgBEa2WD3vPaFWDg09IlTxgkpF7DT8lPs6L3IfyGswhX Zt28oHk8wAsOvPp8TUbcTDdhCGbIqEfhjiwxiWmclnmBeETMy+P4AaXGqGOTPT/D edhHkGDJ/xn3ffgeLFcxEAPoBQLjh2xnW5BAnQHHcgpqIEHKTt3RrT7VU1e1u1U+ H8KlRjew3iVXAg8bz2i6tNA0OjVMIJE8eblSbaxLRuv5Hh6A+qafyyro4QrPOQYf S/tTJfy7SvOB9qfw3irOY6ZQ28SVRHPwXy8vhv7h80BBGNUtwaUmTe73xx2rM0pB srFqJxE8IYEVubqxhEZZ1AC8Erj4V0aN -----END CERTIFICATE-----Generated at Wed Dec 24 14:14:36 2025 by rpki-client