This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft File: JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft (raw, json) Hash identifier: qyKliXMg3Xo1OaVi46SCoLm7VVIKHhuWSrR8/M0aD/k= Subject key identifier: D0:A9:22:5E:B4:3A:30:BD:59:F2:04:02:1A:2D:0C:9D:F3:59:BA:7D Authority key identifier: 24:53:CE:7C:42:53:DB:B2:C7:AC:3D:29:01:3E:90:D5:F5:3C:5D:09 Certificate issuer: /CN=A91820CC/serialNumber=2453CE7C4253DBB2C7AC3D29013E90D5F53C5D09 Certificate serial: 8C Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/JFPOfEJT27LHrD0pAT6Q1fU8XQk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft Manifest number: 8A Signing time: Mon 15 Dec 2025 06:02:16 +0000 Manifest this update: Mon 15 Dec 2025 06:02:16 +0000 Manifest next update: Mon 22 Dec 2025 06:02:16 +0000 Files and hashes: 1: JFPOfEJT27LHrD0pAT6Q1fU8XQk.crl (hash: yGl4DPa6GK2NfcAMNR+uPqSwlqSmjxAm3Vl+RMYsHWQ=) 2: D9D9E8C0191511F092B86383C4F9AE02.roa (hash: gLLXVBbnqOuYpmPZP1sg2HQN+ZDT78K787nO1Ano868=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.crl rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/JFPOfEJT27LHrD0pAT6Q1fU8XQk.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Dec 2025 06:02:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 140 (0x8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91820CC, serialNumber=2453CE7C4253DBB2C7AC3D29013E90D5F53C5D09 Validity Not Before: Dec 15 06:02:16 2025 GMT Not After : Dec 22 06:02:16 2025 GMT Subject: CN=693fa468-a425 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:dd:23:50:78:2d:ce:b7:bb:94:b2:97:73:95: 3e:13:1e:6c:f0:27:40:0c:d9:16:ec:b8:bc:3d:90: ec:40:9a:9f:81:f5:a1:e9:44:45:47:bd:91:bc:07: 11:75:35:a6:4c:e8:2e:8c:91:de:1f:b2:5a:c3:e5: 75:b2:ac:6d:b4:3c:4b:5f:71:8f:19:d9:da:3c:ed: 4a:16:41:43:d3:40:7a:eb:23:cf:1e:ea:0f:7a:74: 81:c4:0c:53:a4:39:98:23:e2:3c:14:77:f2:8f:33: d3:bd:e7:6e:51:d0:4b:a8:1b:f7:b5:af:57:b6:3d: fb:e9:6e:bb:ec:9b:4f:d0:32:36:67:96:25:bb:19: 42:0c:b7:e2:80:68:a6:84:76:da:27:e1:6b:4b:fb: 8d:24:ab:f7:95:c4:8c:fc:0d:61:ea:46:2c:c0:f0: 24:8b:b5:a5:78:64:e2:48:e1:f8:03:c0:ea:a1:72: af:79:de:8f:d7:93:ad:1f:f0:3f:38:ed:9b:c1:ca: 05:ff:94:ea:f7:72:4e:7c:79:fd:10:0c:df:09:73: ff:1e:fd:9a:65:9e:01:a6:28:89:06:85:00:df:b4: 89:69:d6:b9:8a:a8:72:65:12:fe:a5:91:5f:04:d6: 2f:53:f5:a2:ac:8f:10:1e:dc:51:25:ec:20:e7:86: 29:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:A9:22:5E:B4:3A:30:BD:59:F2:04:02:1A:2D:0C:9D:F3:59:BA:7D X509v3 Authority Key Identifier: keyid:24:53:CE:7C:42:53:DB:B2:C7:AC:3D:29:01:3E:90:D5:F5:3C:5D:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/JFPOfEJT27LHrD0pAT6Q1fU8XQk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:8c:ad:5d:f2:ac:96:ef:ec:47:1d:87:49:5f:a7:8f:d9:67: 7d:f2:57:8d:86:79:9a:0c:b5:fc:80:54:01:06:1f:cb:1a:ca: 01:6f:c8:a3:50:4b:78:59:a3:86:09:af:f6:35:87:62:1e:3e: 86:cf:80:f1:95:cc:12:80:be:d1:26:c2:5a:2c:00:7d:38:87: 45:a5:92:3b:c5:46:e9:17:75:49:94:ee:f4:85:e9:e9:23:2b: 34:8c:3b:3b:3d:09:f1:cf:82:fd:46:a0:cd:2b:77:46:b7:80: d2:f7:3e:9b:32:31:b3:2b:2a:ac:24:ae:b5:ec:24:fe:ae:28: b2:e2:75:61:3f:e9:7f:57:38:c4:0d:4d:05:60:69:ed:a0:a1: ad:41:82:e3:20:55:b5:45:93:00:3f:26:2c:f4:4a:5d:5c:b8: 4e:c9:a2:94:53:3a:a1:e1:9d:33:12:a9:75:ec:f2:d9:e3:60: d2:d0:ac:f2:e4:5e:42:e0:63:12:0f:b9:13:14:02:7a:3d:61: 55:35:13:b5:df:0f:88:6a:7b:ed:25:86:df:4c:6f:ca:e6:48: 9d:49:90:6a:e4:6d:d5:55:48:a2:42:66:6f:20:42:1b:1b:5f: 18:4c:01:ee:64:99:6e:44:88:45:26:3a:3e:d6:b1:eb:34:ca: 93:15:55:86 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODIwQ0MxMTAvBgNVBAUTKDI0NTNDRTdDNDI1M0RCQjJDN0FDM0QyOTAxM0U5MEQ1 RjUzQzVEMDkwHhcNMjUxMjE1MDYwMjE2WhcNMjUxMjIyMDYwMjE2WjAYMRYwFAYD VQQDDA02OTNmYTQ2OC1hNDI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmN0jUHgtzre7lLKXc5U+Ex5s8CdADNkW7Li8PZDsQJqfgfWh6URFR72RvAcR dTWmTOgujJHeH7Jaw+V1sqxttDxLX3GPGdnaPO1KFkFD00B66yPPHuoPenSBxAxT pDmYI+I8FHfyjzPTveduUdBLqBv3ta9Xtj376W677JtP0DI2Z5YluxlCDLfigGim hHbaJ+FrS/uNJKv3lcSM/A1h6kYswPAki7WleGTiSOH4A8DqoXKved6P15OtH/A/ OO2bwcoF/5Tq93JOfHn9EAzfCXP/Hv2aZZ4BpiiJBoUA37SJada5iqhyZRL+pZFf BNYvU/WirI8QHtxRJewg54YpCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNCpIl60 OjC9WfIEAhotDJ3zWbp9MB8GA1UdIwQYMBaAFCRTznxCU9uyx6w9KQE+kNX1PF0J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MjBDQy9CREQ0QUYzQzBC RDkxMUYwOEM2MDdGODdDNEY5QUUwMi9KRlBPZkVKVDI3TEhyRDBwQVQ2UTFmVThY UWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0pGUE9mRUpUMjdMSHJEMHBBVDZRMWZVOFhRay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MjBDQy9CREQ0QUYzQzBCRDkxMUYwOEM2MDdGODdDNEY5QUUwMi9KRlBPZkVKVDI3 TEhyRDBwQVQ2UTFmVThYUWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAjK1d8qyW7+xHHYdJX6eP2Wd98leNhnmaDLX8gFQBBh/LGsoBb8ij UEt4WaOGCa/2NYdiHj6Gz4DxlcwSgL7RJsJaLAB9OIdFpZI7xUbpF3VJlO70henp Iys0jDs7PQnxz4L9RqDNK3dGt4DS9z6bMjGzKyqsJK617CT+riiy4nVhP+l/VzjE DU0FYGntoKGtQYLjIFW1RZMAPyYs9EpdXLhOyaKUUzqh4Z0zEql17PLZ42DS0Kzy 5F5C4GMSD7kTFAJ6PWFVNRO13w+IanvtJYbfTG/K5kidSZBq5G3VVUiiQmZvIEIb G18YTAHuZJluRIhFJjo+1rHrNMqTFVWG -----END CERTIFICATE-----Generated at Tue Dec 16 12:14:57 2025 by rpki-client