This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91836D8/32DAB29207AF11F09606E534C4F9AE02/1RCJONILodf7ySo7qZ8tafyPSog.mft File: 1RCJONILodf7ySo7qZ8tafyPSog.mft (raw, json) Hash identifier: DPKHmd8dTjYZZ03b3kHgu6KPCqH7+t3/vRm/fJpbR9c= Subject key identifier: BB:75:A6:CA:6D:B3:DF:C2:2B:C4:C2:EE:6F:C1:34:7C:AF:CF:FA:7E Authority key identifier: D5:10:89:38:D2:0B:A1:D7:FB:C9:2A:3B:A9:9F:2D:69:FC:8F:4A:88 Certificate issuer: /CN=A91836D8/serialNumber=D5108938D20BA1D7FBC92A3BA99F2D69FC8F4A88 Certificate serial: 93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1RCJONILodf7ySo7qZ8tafyPSog.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91836D8/32DAB29207AF11F09606E534C4F9AE02/1RCJONILodf7ySo7qZ8tafyPSog.mft Manifest number: 90 Signing time: Tue 23 Dec 2025 05:28:50 +0000 Manifest this update: Tue 23 Dec 2025 05:28:50 +0000 Manifest next update: Tue 30 Dec 2025 05:28:50 +0000 Files and hashes: 1: 1RCJONILodf7ySo7qZ8tafyPSog.crl (hash: 01yIb2m78WGIowitUDFT6VfPg5wIPVKseYznmG3IOYg=) 2: 2A0F594C07B911F0B93D3034C4F9AE02.roa (hash: GVWIdnLcZRWR+tzLNPpcN/HSXmru8qLQTVAk9bkN9LQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91836D8/32DAB29207AF11F09606E534C4F9AE02/1RCJONILodf7ySo7qZ8tafyPSog.crl rsync://rpki.apnic.net/member_repository/A91836D8/32DAB29207AF11F09606E534C4F9AE02/1RCJONILodf7ySo7qZ8tafyPSog.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1RCJONILodf7ySo7qZ8tafyPSog.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 05:28:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 147 (0x93) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91836D8, serialNumber=D5108938D20BA1D7FBC92A3BA99F2D69FC8F4A88 Validity Not Before: Dec 23 05:28:50 2025 GMT Not After : Dec 30 05:28:50 2025 GMT Subject: CN=694a2892-1794 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:e8:f7:61:1d:8d:ab:f9:fa:36:64:3f:40:b3: 37:36:12:d6:ad:56:d7:22:1b:e3:37:99:90:c7:1b: 19:80:83:23:03:78:c3:f1:57:38:f1:99:aa:33:9b: 2f:6a:57:6d:99:21:a6:56:74:50:68:23:2b:b1:a0: ac:b9:69:1b:b2:d4:73:ed:da:3e:19:b3:e2:22:83: 87:b4:13:35:d9:80:4d:04:17:2a:b6:4d:28:99:66: e4:46:4e:4e:64:68:c1:a1:05:b9:e3:74:cc:d8:22: 15:a0:98:1b:7b:d4:5a:06:e9:4e:2d:95:4a:05:2c: 6c:33:f3:7b:fb:72:31:7c:19:f6:2d:69:28:32:74: 6c:98:1a:0e:b0:32:2d:1e:7c:0f:78:7a:3f:22:4a: 5a:1c:0e:cd:25:6f:63:d9:6c:fa:3d:da:0e:45:fe: b8:6d:a4:8d:9f:9b:9e:8b:1b:ce:6f:95:ad:ea:cb: cf:72:54:f1:15:9a:38:1a:4b:aa:e6:02:3d:28:39: 47:07:87:a3:bf:a4:b3:bd:9a:2d:4f:c5:8d:68:1d: eb:c8:58:0c:fb:09:cb:0d:a8:a8:dd:30:b2:66:56: 3e:de:08:c0:be:76:1a:ad:6e:a3:48:a3:5c:5b:14: 55:3e:21:b3:a9:9c:35:9d:6e:30:e8:65:ce:2a:dd: f1:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:75:A6:CA:6D:B3:DF:C2:2B:C4:C2:EE:6F:C1:34:7C:AF:CF:FA:7E X509v3 Authority Key Identifier: keyid:D5:10:89:38:D2:0B:A1:D7:FB:C9:2A:3B:A9:9F:2D:69:FC:8F:4A:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91836D8/32DAB29207AF11F09606E534C4F9AE02/1RCJONILodf7ySo7qZ8tafyPSog.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1RCJONILodf7ySo7qZ8tafyPSog.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91836D8/32DAB29207AF11F09606E534C4F9AE02/1RCJONILodf7ySo7qZ8tafyPSog.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:73:3d:83:f7:65:4b:d6:64:da:50:60:68:bb:9a:48:9b:5b: 44:c4:36:48:61:05:3e:b9:da:c7:d1:2c:0d:20:4c:28:88:1a: f4:2c:8f:4a:14:55:03:ab:50:1f:60:60:3f:af:b7:6e:f9:e5: 00:24:fd:c3:81:ad:9e:12:69:25:4b:01:f1:f2:08:3f:e4:73: 9d:7e:76:3d:96:88:e9:04:1e:21:93:01:f5:fe:e8:84:09:4c: a4:fc:df:fb:99:c7:8b:e3:8f:11:45:4c:51:24:16:12:25:bf: 52:f0:5d:65:bf:7d:d4:c9:22:1a:08:7d:97:5f:ce:0b:73:62: 02:f6:30:00:87:0b:2d:5a:67:e6:d8:72:8b:8c:42:09:93:5d: b9:62:2a:de:34:8e:62:77:20:a4:2d:a6:d2:a4:1f:d3:22:ab: 61:fd:f1:fd:85:b9:d9:94:7f:77:b8:3f:67:3d:a1:28:88:4d: f4:3d:df:d4:da:1f:0a:f6:dd:84:46:05:dd:b1:80:08:3b:3f: 34:07:d2:76:00:cb:e0:97:4e:9a:c6:d5:98:7b:5a:ba:b6:8c: 62:c0:20:c7:16:5c:48:84:84:55:20:a6:67:e6:e9:8b:5f:eb: 20:86:b2:14:57:0d:1f:b4:60:ca:bb:3d:6b:12:1b:48:64:be: 7f:c4:a1:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODM2RDgxMTAvBgNVBAUTKEQ1MTA4OTM4RDIwQkExRDdGQkM5MkEzQkE5OUYyRDY5 RkM4RjRBODgwHhcNMjUxMjIzMDUyODUwWhcNMjUxMjMwMDUyODUwWjAYMRYwFAYD VQQDDA02OTRhMjg5Mi0xNzk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl+j3YR2Nq/n6NmQ/QLM3NhLWrVbXIhvjN5mQxxsZgIMjA3jD8Vc48ZmqM5sv aldtmSGmVnRQaCMrsaCsuWkbstRz7do+GbPiIoOHtBM12YBNBBcqtk0omWbkRk5O ZGjBoQW543TM2CIVoJgbe9RaBulOLZVKBSxsM/N7+3IxfBn2LWkoMnRsmBoOsDIt HnwPeHo/IkpaHA7NJW9j2Wz6PdoORf64baSNn5ueixvOb5Wt6svPclTxFZo4Gkuq 5gI9KDlHB4ejv6SzvZotT8WNaB3ryFgM+wnLDaio3TCyZlY+3gjAvnYarW6jSKNc WxRVPiGzqZw1nW4w6GXOKt3xEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLt1pspt s9/CK8TC7m/BNHyvz/p+MB8GA1UdIwQYMBaAFNUQiTjSC6HX+8kqO6mfLWn8j0qI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MzZEOC8zMkRBQjI5MjA3 QUYxMUYwOTYwNkU1MzRDNEY5QUUwMi8xUkNKT05JTG9kZjd5U283cVo4dGFmeVBT b2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFSQ0pPTklMb2RmN3lTbzdxWjh0YWZ5UFNvZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MzZEOC8zMkRBQjI5MjA3QUYxMUYwOTYwNkU1MzRDNEY5QUUwMi8xUkNKT05JTG9k Zjd5U283cVo4dGFmeVBTb2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCacz2D92VL1mTaUGBou5pIm1tExDZIYQU+udrH0SwNIEwoiBr0LI9K FFUDq1AfYGA/r7du+eUAJP3Dga2eEmklSwHx8gg/5HOdfnY9lojpBB4hkwH1/uiE CUyk/N/7mceL448RRUxRJBYSJb9S8F1lv33UySIaCH2XX84Lc2IC9jAAhwstWmfm 2HKLjEIJk125YireNI5idyCkLabSpB/TIqth/fH9hbnZlH93uD9nPaEoiE30Pd/U 2h8K9t2ERgXdsYAIOz80B9J2AMvgl06axtWYe1q6toxiwCDHFlxIhIRVIKZn5umL X+sghrIUVw0ftGDKuz1rEhtIZL5/xKFJ -----END CERTIFICATE-----Generated at Tue Dec 23 11:20:17 2025 by rpki-client