This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3FFF/82AD377A4DAB11EC9214F521C4F9AE02/2j9P_11GRonTiYj1-yL2VVCz7_g.mft File: 2j9P_11GRonTiYj1-yL2VVCz7_g.mft (raw, json) Hash identifier: zxAcJK0herrGx42FEhWSxexl1N9J7uQ0hv/O//ELLFI= Subject key identifier: 75:FA:78:C7:6B:58:FC:5B:0D:B2:B6:DD:F4:E6:27:7E:2A:14:A2:13 Authority key identifier: DA:3F:4F:FF:5D:46:46:89:D3:89:88:F5:FB:22:F6:55:50:B3:EF:F8 Certificate issuer: /CN=A91A3FFF/serialNumber=DA3F4FFF5D464689D38988F5FB22F65550B3EFF8 Certificate serial: 04DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2j9P_11GRonTiYj1-yL2VVCz7_g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3FFF/82AD377A4DAB11EC9214F521C4F9AE02/2j9P_11GRonTiYj1-yL2VVCz7_g.mft Manifest number: 04CD Signing time: Thu 18 Dec 2025 23:10:18 +0000 Manifest this update: Thu 18 Dec 2025 23:10:18 +0000 Manifest next update: Thu 25 Dec 2025 23:10:18 +0000 Files and hashes: 1: 2j9P_11GRonTiYj1-yL2VVCz7_g.crl (hash: kRQbgzh6Un0UFIpzWJntH9oZQnk3HY/4bc2uAP+5e0M=) 2: 75426BC6A8C511EC8F560C42C4F9AE02.roa (hash: Cgk1td49WwT1khDdvURu+IhFlLE5qwMRGXtWMjdRcM4=) 3: 952AA4424DAF11EC86ED5273C4F9AE02.roa (hash: fmx4saivVaXmJUd4gXwiDyRFQMYRCvCqBBRUJpcv/Fk=) 4: AC63C4A4A62E11ECBDD6843FC4F9AE02.roa (hash: P1PBDp8Fe8uxDGasJiZSyCCWpfZTEWdvREcVTBxnWew=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3FFF/82AD377A4DAB11EC9214F521C4F9AE02/2j9P_11GRonTiYj1-yL2VVCz7_g.crl rsync://rpki.apnic.net/member_repository/A91A3FFF/82AD377A4DAB11EC9214F521C4F9AE02/2j9P_11GRonTiYj1-yL2VVCz7_g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2j9P_11GRonTiYj1-yL2VVCz7_g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 23:10:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1244 (0x4dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3FFF, serialNumber=DA3F4FFF5D464689D38988F5FB22F65550B3EFF8 Validity Not Before: Dec 18 23:10:18 2025 GMT Not After : Dec 25 23:10:18 2025 GMT Subject: CN=694489da-f4d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:ed:4d:a1:9a:d8:b5:a4:78:aa:f0:be:df:9f: bc:61:d5:cf:8e:b2:d2:b8:24:a7:9a:0b:16:fd:ff: 83:02:2d:09:d4:5e:16:7d:d9:77:97:30:07:2c:d4: 17:3c:4b:5e:1b:03:ce:96:8e:6f:11:5d:b0:53:13: a8:e5:66:81:bd:55:ae:5a:9c:ff:f2:8a:fb:94:e9: f9:e0:4f:1e:c0:3b:5c:c2:a5:05:a7:f4:18:28:ce: 88:92:26:72:c0:05:2c:8f:6c:0e:d2:aa:9f:9d:fd: c6:fe:4d:92:f6:72:8f:05:ae:61:31:41:7e:b2:3c: 37:85:76:a7:b5:0e:d1:d1:16:b0:c4:02:f6:e8:ae: b2:c1:35:ab:63:d0:6c:d5:d7:f0:f1:47:f0:75:fd: 67:36:83:1c:5a:69:e2:15:2a:f0:61:14:fb:29:83: b3:7e:3d:34:6f:ba:3a:d8:44:54:27:a2:91:60:00: db:b6:8b:0a:3d:f7:4f:f1:6d:d3:86:d1:a7:25:84: db:26:65:27:67:68:82:c4:a1:88:39:fc:92:1a:1e: b8:c4:ab:08:84:eb:ee:ea:e6:90:28:8b:77:65:51: 20:e5:be:87:5d:c2:90:41:b3:b4:30:31:76:28:e8: 7d:53:17:02:94:e5:04:2f:00:20:12:3f:27:2a:c4: 49:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:FA:78:C7:6B:58:FC:5B:0D:B2:B6:DD:F4:E6:27:7E:2A:14:A2:13 X509v3 Authority Key Identifier: keyid:DA:3F:4F:FF:5D:46:46:89:D3:89:88:F5:FB:22:F6:55:50:B3:EF:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3FFF/82AD377A4DAB11EC9214F521C4F9AE02/2j9P_11GRonTiYj1-yL2VVCz7_g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2j9P_11GRonTiYj1-yL2VVCz7_g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3FFF/82AD377A4DAB11EC9214F521C4F9AE02/2j9P_11GRonTiYj1-yL2VVCz7_g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:c1:e5:05:94:dd:ee:42:61:da:52:33:40:9a:ea:e0:94:a6: 84:d0:89:fe:1d:df:16:42:65:76:54:eb:1d:1b:c0:a4:6d:02: 33:26:76:6f:be:73:96:7a:3e:2f:f6:77:9f:b1:62:f5:7d:01: 88:54:39:60:49:54:60:21:d0:31:92:54:3f:a7:32:be:aa:93: bc:c2:56:44:f6:73:2a:2d:1b:44:05:01:6b:c5:ab:99:4d:3a: 2b:d1:46:9b:d9:c0:e4:e5:1d:39:94:2a:e4:a1:7a:fe:e7:7d: 70:10:1f:1f:7f:4f:16:9b:36:dc:da:ce:77:f2:1c:9d:30:08: 3d:80:85:56:8f:83:0c:ed:55:39:7f:5a:8d:b4:1a:38:00:0c: 2b:67:79:14:d3:b0:95:1a:60:d8:53:1a:92:f7:e6:7d:30:af: 5e:86:18:84:bd:79:fa:99:2c:e9:88:63:30:1e:35:f1:34:a7: 98:49:6d:79:82:32:3c:2e:ca:41:76:ae:86:b7:61:5e:1a:49: 4e:5e:92:47:ae:76:0e:1f:98:19:af:c0:e6:2e:59:20:d2:b1: e1:a4:01:cf:2b:54:67:43:24:2d:14:78:7c:be:ed:20:05:a2: 9a:22:df:64:ad:53:cd:c9:68:38:5b:6c:ad:d2:60:72:3a:72: 44:a6:aa:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBNwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTNGRkYxMTAvBgNVBAUTKERBM0Y0RkZGNUQ0NjQ2ODlEMzg5ODhGNUZCMjJGNjU1 NTBCM0VGRjgwHhcNMjUxMjE4MjMxMDE4WhcNMjUxMjI1MjMxMDE4WjAYMRYwFAYD VQQDDA02OTQ0ODlkYS1mNGQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4O1NoZrYtaR4qvC+35+8YdXPjrLSuCSnmgsW/f+DAi0J1F4Wfdl3lzAHLNQX PEteGwPOlo5vEV2wUxOo5WaBvVWuWpz/8or7lOn54E8ewDtcwqUFp/QYKM6IkiZy wAUsj2wO0qqfnf3G/k2S9nKPBa5hMUF+sjw3hXantQ7R0RawxAL26K6ywTWrY9Bs 1dfw8Ufwdf1nNoMcWmniFSrwYRT7KYOzfj00b7o62ERUJ6KRYADbtosKPfdP8W3T htGnJYTbJmUnZ2iCxKGIOfySGh64xKsIhOvu6uaQKIt3ZVEg5b6HXcKQQbO0MDF2 KOh9UxcClOUELwAgEj8nKsRJkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHX6eMdr WPxbDbK23fTmJ34qFKITMB8GA1UdIwQYMBaAFNo/T/9dRkaJ04mI9fsi9lVQs+/4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBM0ZGRi84MkFEMzc3QTRE QUIxMUVDOTIxNEY1MjFDNEY5QUUwMi8yajlQXzExR1JvblRpWWoxLXlMMlZWQ3o3 X2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJqOVBfMTFHUm9uVGlZajEteUwyVlZDejdfZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB M0ZGRi84MkFEMzc3QTREQUIxMUVDOTIxNEY1MjFDNEY5QUUwMi8yajlQXzExR1Jv blRpWWoxLXlMMlZWQ3o3X2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCRweUFlN3uQmHaUjNAmurglKaE0In+Hd8WQmV2VOsdG8CkbQIzJnZv vnOWej4v9nefsWL1fQGIVDlgSVRgIdAxklQ/pzK+qpO8wlZE9nMqLRtEBQFrxauZ TTor0Uab2cDk5R05lCrkoXr+531wEB8ff08Wmzbc2s538hydMAg9gIVWj4MM7VU5 f1qNtBo4AAwrZ3kU07CVGmDYUxqS9+Z9MK9ehhiEvXn6mSzpiGMwHjXxNKeYSW15 gjI8LspBdq6Gt2FeGklOXpJHrnYOH5gZr8DmLlkg0rHhpAHPK1RnQyQtFHh8vu0g BaKaIt9krVPNyWg4W2yt0mByOnJEpqpc -----END CERTIFICATE-----Generated at Sat Dec 20 01:32:22 2025 by rpki-client