This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91770B7/A5264EE00BDD11ED9AB9EC2BC4F9AE02/J3d5rGk2otMhSl8XQCE_25JWxqM.mft File: J3d5rGk2otMhSl8XQCE_25JWxqM.mft (raw, json) Hash identifier: cHmW1vYKSz3PFVmfidGTSer/JuuYLoeGzup60LlA2qE= Subject key identifier: 60:66:3E:AC:5A:2C:48:D9:39:CD:8F:CA:5D:75:58:B2:E3:16:1D:F5 Authority key identifier: 27:77:79:AC:69:36:A2:D3:21:4A:5F:17:40:21:3F:DB:92:56:C6:A3 Certificate issuer: /CN=A91770B7/serialNumber=277779AC6936A2D3214A5F1740213FDB9256C6A3 Certificate serial: 02EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J3d5rGk2otMhSl8XQCE_25JWxqM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91770B7/A5264EE00BDD11ED9AB9EC2BC4F9AE02/J3d5rGk2otMhSl8XQCE_25JWxqM.mft Manifest number: 02E5 Signing time: Fri 19 Dec 2025 00:31:10 +0000 Manifest this update: Fri 19 Dec 2025 00:31:10 +0000 Manifest next update: Fri 26 Dec 2025 00:31:10 +0000 Files and hashes: 1: J3d5rGk2otMhSl8XQCE_25JWxqM.crl (hash: xHiVN7YsZrSGMaYqh0Tv81h4aVgofwuKK+mFEBe0XA8=) 2: 2841A0CE0BE111ED9E3AA135C4F9AE02.roa (hash: hJkxXQfC6FPhKQvUl8F7nqWwJZPrWQsil7QshGWSWw0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91770B7/A5264EE00BDD11ED9AB9EC2BC4F9AE02/J3d5rGk2otMhSl8XQCE_25JWxqM.crl rsync://rpki.apnic.net/member_repository/A91770B7/A5264EE00BDD11ED9AB9EC2BC4F9AE02/J3d5rGk2otMhSl8XQCE_25JWxqM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J3d5rGk2otMhSl8XQCE_25JWxqM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 00:31:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 746 (0x2ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91770B7, serialNumber=277779AC6936A2D3214A5F1740213FDB9256C6A3 Validity Not Before: Dec 19 00:31:10 2025 GMT Not After : Dec 26 00:31:10 2025 GMT Subject: CN=69449cce-310c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:b6:e5:76:9c:43:ba:ac:78:db:d1:2b:77:a8: 52:b0:30:fb:81:b0:29:df:0b:17:d1:02:14:da:fd: 59:7d:0a:7a:95:1b:12:04:31:30:4d:f3:76:ca:2f: b0:73:78:9a:ea:61:1c:7a:e2:2e:e4:66:57:11:e2: 21:b8:2a:bc:d9:b4:51:35:74:c7:40:1a:93:7a:e9: 5c:9b:3d:d1:11:b8:01:28:d0:4e:1a:36:6c:48:a0: fa:2b:dc:e4:aa:69:8e:96:ae:04:fd:b2:2b:06:4c: b4:68:d9:2d:bb:4e:c3:ae:4b:96:da:6f:19:86:3c: 57:c0:ac:f5:ae:1c:3d:c8:4d:13:7f:19:4f:d5:b9: 62:fd:84:02:ba:8e:96:f4:dc:d1:04:0a:5e:6f:1b: 31:5b:f2:e9:48:1c:0d:85:1e:5a:b6:12:c9:90:eb: d1:25:5c:6e:78:a3:51:33:96:7c:84:6b:7e:45:3b: 62:25:74:77:76:2b:50:e0:0c:8f:93:73:83:4d:95: 71:ea:c7:2c:ea:be:37:da:f3:ea:47:da:3b:30:db: 88:10:2b:42:d7:c7:36:47:ee:6b:24:b8:38:85:0f: 93:c6:d8:b0:9b:ad:3a:db:42:07:e5:61:cf:c0:86: 03:35:c5:5b:38:17:74:c6:fc:8e:f3:79:62:00:af: 67:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:66:3E:AC:5A:2C:48:D9:39:CD:8F:CA:5D:75:58:B2:E3:16:1D:F5 X509v3 Authority Key Identifier: keyid:27:77:79:AC:69:36:A2:D3:21:4A:5F:17:40:21:3F:DB:92:56:C6:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91770B7/A5264EE00BDD11ED9AB9EC2BC4F9AE02/J3d5rGk2otMhSl8XQCE_25JWxqM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J3d5rGk2otMhSl8XQCE_25JWxqM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91770B7/A5264EE00BDD11ED9AB9EC2BC4F9AE02/J3d5rGk2otMhSl8XQCE_25JWxqM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:5d:c9:3e:06:0a:94:b1:2d:90:0f:ea:88:73:b4:d8:b3:73: ad:e6:84:e5:2a:72:43:95:5d:39:b3:b8:b6:5a:e5:4e:ae:34: 75:d5:e2:6a:1d:4f:90:80:0b:7a:e1:06:62:9e:2d:20:f9:4f: b8:b7:2f:b5:9b:3f:1a:b9:c2:e3:0d:e0:fd:91:b0:7a:e2:80: f0:c3:db:2e:4e:a5:2e:07:1a:f0:20:b2:53:3c:16:b0:76:bc: e5:a0:47:bb:b3:f3:55:8f:37:38:4c:4c:8b:f1:ac:6f:fe:d3: af:69:4f:26:ce:4b:8d:fe:4c:c2:fb:79:fa:07:1f:54:c0:0d: dc:1a:0f:82:37:f6:13:43:7b:3b:88:13:05:af:6f:40:30:36: ef:59:88:77:c4:62:07:e2:0e:8a:fb:c7:6b:cf:ba:29:de:a1: 3d:53:41:98:c7:54:ea:6d:3a:fa:0c:1b:5f:36:f4:8e:76:7b: 41:02:73:e5:2a:6c:85:2e:48:f4:71:be:4c:e8:f7:97:6a:b6: 05:6b:db:85:25:84:bd:37:48:87:99:8d:db:9f:0e:80:3d:a7: 3f:5b:d5:40:05:5b:fc:83:34:2f:24:69:2c:00:ec:24:ce:19: 51:71:9e:8c:34:8b:5e:e8:a6:0e:d2:5c:7b:60:ec:78:fd:39: 6e:0a:6d:ac -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAuowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzcwQjcxMTAvBgNVBAUTKDI3Nzc3OUFDNjkzNkEyRDMyMTRBNUYxNzQwMjEzRkRC OTI1NkM2QTMwHhcNMjUxMjE5MDAzMTEwWhcNMjUxMjI2MDAzMTEwWjAYMRYwFAYD VQQDDA02OTQ0OWNjZS0zMTBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1bbldpxDuqx429Erd6hSsDD7gbAp3wsX0QIU2v1ZfQp6lRsSBDEwTfN2yi+w c3ia6mEceuIu5GZXEeIhuCq82bRRNXTHQBqTeulcmz3REbgBKNBOGjZsSKD6K9zk qmmOlq4E/bIrBky0aNktu07DrkuW2m8ZhjxXwKz1rhw9yE0TfxlP1bli/YQCuo6W 9NzRBApebxsxW/LpSBwNhR5athLJkOvRJVxueKNRM5Z8hGt+RTtiJXR3ditQ4AyP k3ODTZVx6scs6r432vPqR9o7MNuIECtC18c2R+5rJLg4hQ+Txtiwm60620IH5WHP wIYDNcVbOBd0xvyO83liAK9nvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGBmPqxa LEjZOc2Pyl11WLLjFh31MB8GA1UdIwQYMBaAFCd3eaxpNqLTIUpfF0AhP9uSVsaj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzBCNy9BNTI2NEVFMDBC REQxMUVEOUFCOUVDMkJDNEY5QUUwMi9KM2Q1ckdrMm90TWhTbDhYUUNFXzI1Sld4 cU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ozZDVyR2syb3RNaFNsOFhRQ0VfMjVKV3hxTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NzBCNy9BNTI2NEVFMDBCREQxMUVEOUFCOUVDMkJDNEY5QUUwMi9KM2Q1ckdrMm90 TWhTbDhYUUNFXzI1Sld4cU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0Xck+BgqUsS2QD+qIc7TYs3Ot5oTlKnJDlV05s7i2WuVOrjR11eJq HU+QgAt64QZini0g+U+4ty+1mz8aucLjDeD9kbB64oDww9suTqUuBxrwILJTPBaw drzloEe7s/NVjzc4TEyL8axv/tOvaU8mzkuN/kzC+3n6Bx9UwA3cGg+CN/YTQ3s7 iBMFr29AMDbvWYh3xGIH4g6K+8drz7op3qE9U0GYx1TqbTr6DBtfNvSOdntBAnPl KmyFLkj0cb5M6PeXarYFa9uFJYS9N0iHmY3bnw6APac/W9VABVv8gzQvJGksAOwk zhlRcZ6MNIte6KYO0lx7YOx4/TluCm2s -----END CERTIFICATE-----Generated at Sat Dec 20 11:40:43 2025 by rpki-client