This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A43EE/01E4E69623CB11EDA8E3583EC4F9AE02/jsMzdX42OhcRsAJzJQRG_htJONs.mft File: jsMzdX42OhcRsAJzJQRG_htJONs.mft (raw, json) Hash identifier: 2qd7qtZREwvnt4alYmylupCrHLhUWKtfLJBstzYQGu4= Subject key identifier: 64:65:3C:FA:73:BB:CE:6B:D8:D7:0D:BE:00:1E:23:BE:A6:FD:4A:3E Authority key identifier: 8E:C3:33:75:7E:36:3A:17:11:B0:02:73:25:04:46:FE:1B:49:38:DB Certificate issuer: /CN=A91A43EE/serialNumber=8EC333757E363A1711B00273250446FE1B4938DB Certificate serial: 02D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jsMzdX42OhcRsAJzJQRG_htJONs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A43EE/01E4E69623CB11EDA8E3583EC4F9AE02/jsMzdX42OhcRsAJzJQRG_htJONs.mft Manifest number: 02B8 Signing time: Mon 15 Dec 2025 00:46:30 +0000 Manifest this update: Mon 15 Dec 2025 00:46:30 +0000 Manifest next update: Mon 22 Dec 2025 00:46:30 +0000 Files and hashes: 1: jsMzdX42OhcRsAJzJQRG_htJONs.crl (hash: xlfK9n62bQ00ZBZDxgCg2GVlID/68EijRqIMF87G/zQ=) 2: E1870478616C11F0A254E10BC4F9AE02.roa (hash: PUky37fAI8Ys1qLflElYkqRy1kwJKllU0o6ewDp0S2M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A43EE/01E4E69623CB11EDA8E3583EC4F9AE02/jsMzdX42OhcRsAJzJQRG_htJONs.crl rsync://rpki.apnic.net/member_repository/A91A43EE/01E4E69623CB11EDA8E3583EC4F9AE02/jsMzdX42OhcRsAJzJQRG_htJONs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jsMzdX42OhcRsAJzJQRG_htJONs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Dec 2025 00:46:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 722 (0x2d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A43EE, serialNumber=8EC333757E363A1711B00273250446FE1B4938DB Validity Not Before: Dec 15 00:46:30 2025 GMT Not After : Dec 22 00:46:30 2025 GMT Subject: CN=693f5a66-cd4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:2f:62:41:e3:9b:ae:d4:7e:81:a9:19:82:6f: f4:d5:55:69:fb:dc:60:ac:59:47:b4:71:78:89:fd: 84:ee:4e:04:3f:e0:46:1b:4d:29:bb:01:8d:40:34: b4:0a:52:80:30:6e:46:3c:ac:8f:f7:59:15:6b:bb: a6:92:64:95:b2:06:b6:fc:0b:58:f2:9a:95:6e:4e: 46:5e:3f:1a:dc:df:3d:43:92:27:29:a4:be:54:0d: 0a:1e:d8:65:a8:4b:b2:bd:d0:a6:c8:96:66:16:cc: 54:a1:ef:82:df:80:27:37:c1:3c:da:a7:86:04:47: 93:44:83:69:eb:83:f8:42:37:78:07:19:73:a7:89: 85:4f:b6:6a:b8:1f:57:9b:04:8e:31:0a:34:18:0e: 8a:ea:b5:a9:9a:49:bb:3d:ed:01:49:7b:5a:eb:09: 82:79:5b:45:57:d1:d6:ed:26:a6:4f:27:a6:bd:4d: f6:b8:64:ca:fc:8b:de:da:64:24:24:5c:e9:97:bc: 29:0a:27:fa:8a:87:25:50:83:f3:81:5a:54:98:ad: 8e:67:6c:16:99:74:58:2f:3d:a2:0a:8f:d2:fb:c4: c7:56:ca:bc:ab:65:80:e6:58:d5:d3:42:8c:36:e4: 2d:af:ab:59:00:56:50:59:f4:f0:c3:46:12:1a:7a: 1e:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:65:3C:FA:73:BB:CE:6B:D8:D7:0D:BE:00:1E:23:BE:A6:FD:4A:3E X509v3 Authority Key Identifier: keyid:8E:C3:33:75:7E:36:3A:17:11:B0:02:73:25:04:46:FE:1B:49:38:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A43EE/01E4E69623CB11EDA8E3583EC4F9AE02/jsMzdX42OhcRsAJzJQRG_htJONs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jsMzdX42OhcRsAJzJQRG_htJONs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A43EE/01E4E69623CB11EDA8E3583EC4F9AE02/jsMzdX42OhcRsAJzJQRG_htJONs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:70:7c:6f:67:f4:22:e9:3d:cc:e3:d2:20:51:4a:c6:9e:b8: 96:db:7a:43:af:21:00:8c:26:0e:3e:eb:02:a9:57:6b:2b:21: ab:58:ee:12:08:92:d7:4a:a1:25:b7:e4:0d:34:6a:da:fc:26: 60:c0:b6:71:bd:96:60:ab:5a:65:31:81:96:6d:3d:b0:32:3d: 37:9a:3b:5b:18:11:48:6d:d3:e0:47:aa:0c:0b:67:5a:f9:01: 79:90:65:72:31:87:7f:48:8f:f5:b2:ac:f1:3a:47:9b:3a:37: df:78:56:6a:84:1d:ca:51:c0:46:26:4e:ec:a1:d5:86:29:a7: 7b:d9:a5:97:06:84:0a:7c:85:5a:0e:78:c8:31:e1:e1:2d:90: 44:6a:fb:ed:e4:21:d0:0d:74:e1:34:44:d9:99:9e:ca:e9:09: 2e:a8:e3:63:75:83:77:07:e9:ed:7b:f9:9f:72:17:8c:6a:73: ac:61:2f:e6:2f:14:dc:97:ce:36:ef:6d:dd:e7:a2:61:47:43: ee:4b:09:32:eb:7d:72:cc:76:42:21:4a:5b:06:d1:2f:41:fb: 85:b2:12:bd:95:bc:d5:0d:1f:10:8c:d0:a9:a0:d6:20:5b:37: 3c:80:ea:47:ca:70:ff:6a:68:af:72:e6:ab:4f:3d:82:01:e5: 6d:12:00:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAtIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQzRUUxMTAvBgNVBAUTKDhFQzMzMzc1N0UzNjNBMTcxMUIwMDI3MzI1MDQ0NkZF MUI0OTM4REIwHhcNMjUxMjE1MDA0NjMwWhcNMjUxMjIyMDA0NjMwWjAYMRYwFAYD VQQDDA02OTNmNWE2Ni1jZDRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxi9iQeObrtR+gakZgm/01VVp+9xgrFlHtHF4if2E7k4EP+BGG00puwGNQDS0 ClKAMG5GPKyP91kVa7umkmSVsga2/AtY8pqVbk5GXj8a3N89Q5InKaS+VA0KHthl qEuyvdCmyJZmFsxUoe+C34AnN8E82qeGBEeTRINp64P4Qjd4Bxlzp4mFT7ZquB9X mwSOMQo0GA6K6rWpmkm7Pe0BSXta6wmCeVtFV9HW7SamTyemvU32uGTK/Ive2mQk JFzpl7wpCif6ioclUIPzgVpUmK2OZ2wWmXRYLz2iCo/S+8THVsq8q2WA5ljV00KM NuQtr6tZAFZQWfTww0YSGnoexwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGRlPPpz u85r2NcNvgAeI76m/Uo+MB8GA1UdIwQYMBaAFI7DM3V+NjoXEbACcyUERv4bSTjb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDNFRS8wMUU0RTY5NjIz Q0IxMUVEQThFMzU4M0VDNEY5QUUwMi9qc016ZFg0Mk9oY1JzQUp6SlFSR19odEpP TnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pzTXpkWDQyT2hjUnNBSnpKUVJHX2h0Sk9Ocy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDNFRS8wMUU0RTY5NjIzQ0IxMUVEQThFMzU4M0VDNEY5QUUwMi9qc016ZFg0Mk9o Y1JzQUp6SlFSR19odEpPTnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAscHxvZ/Qi6T3M49IgUUrGnriW23pDryEAjCYOPusCqVdrKyGrWO4S CJLXSqElt+QNNGra/CZgwLZxvZZgq1plMYGWbT2wMj03mjtbGBFIbdPgR6oMC2da +QF5kGVyMYd/SI/1sqzxOkebOjffeFZqhB3KUcBGJk7sodWGKad72aWXBoQKfIVa DnjIMeHhLZBEavvt5CHQDXThNETZmZ7K6QkuqONjdYN3B+nte/mfcheManOsYS/m LxTcl842723d56JhR0PuSwky631yzHZCIUpbBtEvQfuFshK9lbzVDR8QjNCpoNYg Wzc8gOpHynD/amivcuarTz2CAeVtEgB3 -----END CERTIFICATE-----Generated at Wed Dec 17 01:23:05 2025 by rpki-client