This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1A23/AC533DEE289611EBBAAD5721C4F9AE02/J8OQD7137iLLcempDoFXTN5GRK0.mft File: J8OQD7137iLLcempDoFXTN5GRK0.mft (raw, json) Hash identifier: hXcgBYASTlisbNm4L2RGcFxC7OHGMpX/oFBuGVdWerw= Subject key identifier: 7D:96:A5:E4:8C:87:49:49:89:59:5C:38:68:B9:20:3F:46:47:01:F0 Authority key identifier: 27:C3:90:0F:BD:77:EE:22:CB:71:E9:A9:0E:81:57:4C:DE:46:44:AD Certificate issuer: /CN=A91B1A23/serialNumber=27C3900FBD77EE22CB71E9A90E81574CDE4644AD Certificate serial: 07B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J8OQD7137iLLcempDoFXTN5GRK0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1A23/AC533DEE289611EBBAAD5721C4F9AE02/J8OQD7137iLLcempDoFXTN5GRK0.mft Manifest number: 07B1 Signing time: Mon 22 Dec 2025 20:40:57 +0000 Manifest this update: Mon 22 Dec 2025 20:40:56 +0000 Manifest next update: Mon 29 Dec 2025 20:40:56 +0000 Files and hashes: 1: J8OQD7137iLLcempDoFXTN5GRK0.crl (hash: iAhmloXo9krLmmc7A7cTqH0a/+kBETdHexB2yQHLnPw=) 2: 594EEA2CAEA711EE961B0558C4F9AE02.roa (hash: USU8pNkMAdz6WSNLBXiulBGQVhWKRWb5vA71xaDbimA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1A23/AC533DEE289611EBBAAD5721C4F9AE02/J8OQD7137iLLcempDoFXTN5GRK0.crl rsync://rpki.apnic.net/member_repository/A91B1A23/AC533DEE289611EBBAAD5721C4F9AE02/J8OQD7137iLLcempDoFXTN5GRK0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J8OQD7137iLLcempDoFXTN5GRK0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 20:40:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1976 (0x7b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1A23, serialNumber=27C3900FBD77EE22CB71E9A90E81574CDE4644AD Validity Not Before: Dec 22 20:40:56 2025 GMT Not After : Dec 29 20:40:56 2025 GMT Subject: CN=6949acd8-d37c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:61:51:ba:88:b1:8a:bb:00:5e:bc:0b:09:5a: 85:28:c3:aa:4a:5b:e9:00:4b:6a:70:8d:b5:8d:37: 91:fe:76:d8:ad:2a:f2:38:95:37:b1:18:0a:f7:13: 0a:8a:9c:90:db:81:10:f1:ac:ab:52:41:e8:18:cc: 28:fd:ee:fd:12:02:52:5f:28:49:d4:60:37:42:e7: cd:13:ea:c8:24:66:3d:0d:c5:cb:46:49:2a:40:8c: 5d:e8:87:2f:48:fa:67:9d:e1:bd:c9:a7:c6:b3:68: 90:e4:08:0b:89:e0:34:3c:2f:17:d0:9b:eb:07:a4: 3b:e1:fb:f3:26:3c:a4:31:cf:0c:54:79:34:f8:79: b9:3c:bb:1b:ba:67:df:e1:1f:21:33:ed:13:99:06: 5f:24:38:9b:40:ee:fa:e3:52:12:c1:46:31:7e:40: 76:25:1e:e9:68:d1:b0:a8:bb:0e:27:83:2f:4d:36: ca:3d:5c:0b:03:dc:b5:55:e0:26:64:ab:93:a0:2a: db:51:61:a7:60:fc:b8:83:44:92:f3:76:7d:8d:e6: fc:14:d1:73:aa:3f:ee:2f:5b:01:80:b6:ec:40:02: 50:a7:73:1f:a4:b9:34:1f:be:8a:a5:0c:9a:e2:c0: 4e:21:cc:8e:6a:9a:e7:fb:cf:a4:d5:b3:df:9c:5e: 61:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:96:A5:E4:8C:87:49:49:89:59:5C:38:68:B9:20:3F:46:47:01:F0 X509v3 Authority Key Identifier: keyid:27:C3:90:0F:BD:77:EE:22:CB:71:E9:A9:0E:81:57:4C:DE:46:44:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1A23/AC533DEE289611EBBAAD5721C4F9AE02/J8OQD7137iLLcempDoFXTN5GRK0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J8OQD7137iLLcempDoFXTN5GRK0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1A23/AC533DEE289611EBBAAD5721C4F9AE02/J8OQD7137iLLcempDoFXTN5GRK0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:13:f4:89:4a:4d:ee:07:c4:8f:18:dc:d1:0f:cb:9b:26:30: 12:00:d1:3f:51:d4:5c:38:31:01:a3:8b:13:bd:46:64:b7:2e: 60:33:b0:ca:0c:70:ff:67:ba:c6:41:1f:4f:06:ed:a1:20:12: a9:b6:98:ea:78:26:82:97:78:18:d5:1d:f1:7e:dd:78:ab:8c: 6c:56:de:89:58:ac:27:91:02:a5:e8:8c:e0:12:3c:8b:8b:a9: df:f6:71:2b:8d:dd:3a:e2:49:61:e2:8a:75:bc:b8:d3:b3:0e: ce:cc:a9:b2:cb:f7:21:92:ca:b9:64:9c:c9:d4:57:56:dd:00: 5a:91:24:1e:33:cb:06:67:87:d6:0b:e0:f3:d1:b0:ac:e3:1f: f1:55:97:c4:81:96:4c:51:02:d3:d1:da:99:de:66:63:5a:f4: df:15:88:bf:88:6a:0e:f6:36:a9:36:bd:d0:97:09:18:05:5b: f7:f4:64:60:cc:a4:a7:70:a3:23:ad:a6:53:79:bd:c4:8e:cd: bc:89:49:bf:ec:3a:05:6e:a8:ec:4d:23:5c:43:ea:df:1d:a0: 7d:3d:1a:04:5d:df:6f:0d:16:6c:e3:1f:2c:dc:b5:d5:68:75: 12:e7:ea:d6:87:15:fe:01:e2:31:fa:83:13:de:a1:40:a5:62: 2c:b3:83:fd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB7gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjFBMjMxMTAvBgNVBAUTKDI3QzM5MDBGQkQ3N0VFMjJDQjcxRTlBOTBFODE1NzRD REU0NjQ0QUQwHhcNMjUxMjIyMjA0MDU2WhcNMjUxMjI5MjA0MDU2WjAYMRYwFAYD VQQDDA02OTQ5YWNkOC1kMzdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt2FRuoixirsAXrwLCVqFKMOqSlvpAEtqcI21jTeR/nbYrSryOJU3sRgK9xMK ipyQ24EQ8ayrUkHoGMwo/e79EgJSXyhJ1GA3QufNE+rIJGY9DcXLRkkqQIxd6Icv SPpnneG9yafGs2iQ5AgLieA0PC8X0JvrB6Q74fvzJjykMc8MVHk0+Hm5PLsbumff 4R8hM+0TmQZfJDibQO7641ISwUYxfkB2JR7paNGwqLsOJ4MvTTbKPVwLA9y1VeAm ZKuToCrbUWGnYPy4g0SS83Z9jeb8FNFzqj/uL1sBgLbsQAJQp3MfpLk0H76KpQya 4sBOIcyOaprn+8+k1bPfnF5hKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH2WpeSM h0lJiVlcOGi5ID9GRwHwMB8GA1UdIwQYMBaAFCfDkA+9d+4iy3HpqQ6BV0zeRkSt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMUEyMy9BQzUzM0RFRTI4 OTYxMUVCQkFBRDU3MjFDNEY5QUUwMi9KOE9RRDcxMzdpTExjZW1wRG9GWFRONUdS SzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0o4T1FENzEzN2lMTGNlbXBEb0ZYVE41R1JLMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MUEyMy9BQzUzM0RFRTI4OTYxMUVCQkFBRDU3MjFDNEY5QUUwMi9KOE9RRDcxMzdp TExjZW1wRG9GWFRONUdSSzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhE/SJSk3uB8SPGNzRD8ubJjASANE/UdRcODEBo4sTvUZkty5gM7DK DHD/Z7rGQR9PBu2hIBKptpjqeCaCl3gY1R3xft14q4xsVt6JWKwnkQKl6IzgEjyL i6nf9nErjd064klh4op1vLjTsw7OzKmyy/chksq5ZJzJ1FdW3QBakSQeM8sGZ4fW C+Dz0bCs4x/xVZfEgZZMUQLT0dqZ3mZjWvTfFYi/iGoO9japNr3QlwkYBVv39GRg zKSncKMjraZTeb3Ejs28iUm/7DoFbqjsTSNcQ+rfHaB9PRoEXd9vDRZs4x8s3LXV aHUS5+rWhxX+AeIx+oMT3qFApWIss4P9 -----END CERTIFICATE-----Generated at Wed Dec 24 14:08:03 2025 by rpki-client