This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B777C/62D03E8CB2DA11EB8B384A60C4F9AE02/sJELB8hrD_owClKsfDH8tSwFMtc.mft File: sJELB8hrD_owClKsfDH8tSwFMtc.mft (raw, json) Hash identifier: Z1szq0lScVQ7gToFrzTqeH2WsTMGV4RFaCmsh75MpRM= Subject key identifier: 56:C8:C3:02:D9:58:2E:83:FB:EE:44:3B:7E:57:81:6E:1D:DC:22:BF Authority key identifier: B0:91:0B:07:C8:6B:0F:FA:30:0A:52:AC:7C:31:FC:B5:2C:05:32:D7 Certificate issuer: /CN=A91B777C/serialNumber=B0910B07C86B0FFA300A52AC7C31FCB52C0532D7 Certificate serial: 065C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sJELB8hrD_owClKsfDH8tSwFMtc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B777C/62D03E8CB2DA11EB8B384A60C4F9AE02/sJELB8hrD_owClKsfDH8tSwFMtc.mft Manifest number: 0655 Signing time: Wed 24 Dec 2025 21:54:38 +0000 Manifest this update: Wed 24 Dec 2025 21:54:37 +0000 Manifest next update: Wed 31 Dec 2025 21:54:37 +0000 Files and hashes: 1: sJELB8hrD_owClKsfDH8tSwFMtc.crl (hash: h31cgNt3CDD1M3VPvyaRMmSb7c84IpcH8h9o7FY7xyI=) 2: 9095FC2CB2E811EBADBB3753C4F9AE02.roa (hash: e56G23jx5aYuNxu9h7TKwrgOQjg7ik+mUEMW85KPWtE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B777C/62D03E8CB2DA11EB8B384A60C4F9AE02/sJELB8hrD_owClKsfDH8tSwFMtc.crl rsync://rpki.apnic.net/member_repository/A91B777C/62D03E8CB2DA11EB8B384A60C4F9AE02/sJELB8hrD_owClKsfDH8tSwFMtc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sJELB8hrD_owClKsfDH8tSwFMtc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Dec 2025 21:54:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1628 (0x65c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B777C, serialNumber=B0910B07C86B0FFA300A52AC7C31FCB52C0532D7 Validity Not Before: Dec 24 21:54:37 2025 GMT Not After : Dec 31 21:54:37 2025 GMT Subject: CN=694c611e-7758 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:36:61:cd:c1:a5:81:98:13:12:46:72:b5:73: b7:a9:d7:65:20:e1:8d:5b:e8:b2:2f:20:2c:a2:8f: 2a:83:96:5e:a0:63:2e:54:22:71:a0:d0:6b:b7:1f: 0d:6b:fb:58:90:02:d2:34:a8:88:74:45:b8:d4:99: 03:b3:79:88:c2:9a:b3:a1:0b:74:78:99:1a:39:aa: 41:19:da:ae:85:b0:f4:27:30:10:bc:a5:b4:7e:12: 99:f6:84:0e:42:e7:e2:30:8c:c2:74:e4:3d:18:ae: ab:c1:6b:5d:32:c8:e2:6e:4a:b9:c1:b6:36:c5:19: 72:63:fd:6c:c5:c2:e6:45:c8:da:35:2f:95:1e:a7: 7b:bf:22:5f:ee:cc:07:ea:1c:b0:ec:98:8d:a4:1c: 8f:44:ad:d7:3c:cf:5a:85:ef:82:a7:9c:a7:bc:ff: 0e:66:8f:4e:73:30:fe:b4:5b:c0:84:08:59:aa:b0: 4b:38:58:d9:5e:67:87:f5:71:f7:54:22:2f:a1:95: a1:9a:43:66:22:c6:13:f6:d8:54:43:68:fe:05:05: c8:94:b4:f2:f9:ac:8c:5b:79:4d:9d:3c:08:63:ed: 92:9b:53:fc:91:75:83:bf:af:e8:bc:36:30:94:13: 39:e3:cf:89:37:93:4a:80:2e:12:c1:c4:ad:2c:3a: 5e:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:C8:C3:02:D9:58:2E:83:FB:EE:44:3B:7E:57:81:6E:1D:DC:22:BF X509v3 Authority Key Identifier: keyid:B0:91:0B:07:C8:6B:0F:FA:30:0A:52:AC:7C:31:FC:B5:2C:05:32:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B777C/62D03E8CB2DA11EB8B384A60C4F9AE02/sJELB8hrD_owClKsfDH8tSwFMtc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sJELB8hrD_owClKsfDH8tSwFMtc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B777C/62D03E8CB2DA11EB8B384A60C4F9AE02/sJELB8hrD_owClKsfDH8tSwFMtc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:dc:20:ac:7d:3e:ef:5b:dd:33:28:d4:48:d5:77:29:b9:0f: d5:30:48:bf:57:3c:0a:ae:91:78:38:34:75:0e:45:66:55:1d: 56:80:bc:67:82:41:67:c5:7f:1b:d4:9d:22:7b:f0:3a:b5:0e: e7:8b:5c:1a:98:eb:5d:4f:36:00:8d:30:1c:67:d9:d8:48:d1: ff:a1:6f:88:4a:64:ee:9c:5e:a6:28:3e:f1:43:18:86:4f:a5: 9b:96:74:63:3a:3b:d4:fe:3e:1f:7f:1f:86:35:84:e1:a0:90: dd:34:40:12:b7:17:db:65:74:87:4d:55:5e:c1:e0:d5:ee:fa: 88:30:df:27:53:40:54:bd:a7:0d:1b:df:ef:7b:ee:49:9b:dd: 48:d3:4f:65:ec:5b:d6:0d:13:15:bd:86:13:8c:5f:2a:40:ca: 17:38:dd:bf:54:2f:7f:ad:54:96:4f:e9:fa:28:3b:cb:55:41: 3f:21:58:f8:7c:9e:f8:90:e4:1f:76:7c:6a:78:2b:a1:76:df: d8:a6:b1:dd:aa:95:14:29:4e:52:a0:4e:07:65:b0:9c:ba:29: 95:73:e6:a8:75:89:78:76:d2:c8:4a:0e:31:97:6e:d7:ff:83: 4b:38:49:55:f8:f6:71:ec:6c:0d:24:f5:47:7c:aa:7f:fe:68: 58:eb:05:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjc3N0MxMTAvBgNVBAUTKEIwOTEwQjA3Qzg2QjBGRkEzMDBBNTJBQzdDMzFGQ0I1 MkMwNTMyRDcwHhcNMjUxMjI0MjE1NDM3WhcNMjUxMjMxMjE1NDM3WjAYMRYwFAYD VQQDDA02OTRjNjExZS03NzU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnzZhzcGlgZgTEkZytXO3qddlIOGNW+iyLyAsoo8qg5ZeoGMuVCJxoNBrtx8N a/tYkALSNKiIdEW41JkDs3mIwpqzoQt0eJkaOapBGdquhbD0JzAQvKW0fhKZ9oQO QufiMIzCdOQ9GK6rwWtdMsjibkq5wbY2xRlyY/1sxcLmRcjaNS+VHqd7vyJf7swH 6hyw7JiNpByPRK3XPM9ahe+Cp5ynvP8OZo9OczD+tFvAhAhZqrBLOFjZXmeH9XH3 VCIvoZWhmkNmIsYT9thUQ2j+BQXIlLTy+ayMW3lNnTwIY+2Sm1P8kXWDv6/ovDYw lBM548+JN5NKgC4SwcStLDpedQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFbIwwLZ WC6D++5EO35XgW4d3CK/MB8GA1UdIwQYMBaAFLCRCwfIaw/6MApSrHwx/LUsBTLX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzc3Qy82MkQwM0U4Q0Iy REExMUVCOEIzODRBNjBDNEY5QUUwMi9zSkVMQjhockRfb3dDbEtzZkRIOHRTd0ZN dGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3NKRUxCOGhyRF9vd0NsS3NmREg4dFN3Rk10Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC Nzc3Qy82MkQwM0U4Q0IyREExMUVCOEIzODRBNjBDNEY5QUUwMi9zSkVMQjhockRf b3dDbEtzZkRIOHRTd0ZNdGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJ3CCsfT7vW90zKNRI1XcpuQ/VMEi/VzwKrpF4ODR1DkVmVR1WgLxn gkFnxX8b1J0ie/A6tQ7ni1wamOtdTzYAjTAcZ9nYSNH/oW+ISmTunF6mKD7xQxiG T6WblnRjOjvU/j4ffx+GNYThoJDdNEAStxfbZXSHTVVeweDV7vqIMN8nU0BUvacN G9/ve+5Jm91I009l7FvWDRMVvYYTjF8qQMoXON2/VC9/rVSWT+n6KDvLVUE/IVj4 fJ74kOQfdnxqeCuhdt/YprHdqpUUKU5SoE4HZbCcuimVc+aodYl4dtLISg4xl27X /4NLOElV+PZx7GwNJPVHfKp//mhY6wWJ -----END CERTIFICATE-----Generated at Thu Dec 25 03:00:17 2025 by rpki-client