This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8265/4CD5FE0E7DC411ECA9C4431DC4F9AE02/jxHEfi_qGZwnJ8hrSZDzv66CAWI.mft File: jxHEfi_qGZwnJ8hrSZDzv66CAWI.mft (raw, json) Hash identifier: MrDsG+ztfC2VwTPAYQNWpLDuuWXgStYpExnsH/iQtTw= Subject key identifier: A5:3D:90:70:7D:EB:46:A5:AA:58:90:9C:97:68:0E:FB:31:35:DB:E4 Authority key identifier: 8F:11:C4:7E:2F:EA:19:9C:27:27:C8:6B:49:90:F3:BF:AE:82:01:62 Certificate issuer: /CN=A91B8265/serialNumber=8F11C47E2FEA199C2727C86B4990F3BFAE820162 Certificate serial: 045D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jxHEfi_qGZwnJ8hrSZDzv66CAWI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8265/4CD5FE0E7DC411ECA9C4431DC4F9AE02/jxHEfi_qGZwnJ8hrSZDzv66CAWI.mft Manifest number: 0452 Signing time: Mon 22 Dec 2025 23:15:01 +0000 Manifest this update: Mon 22 Dec 2025 23:15:01 +0000 Manifest next update: Mon 29 Dec 2025 23:15:01 +0000 Files and hashes: 1: jxHEfi_qGZwnJ8hrSZDzv66CAWI.crl (hash: gbZh6OyAdK/XvIkWQxxNtp8YCNy+kkrTtuXhnXVxw9w=) 2: 84F58DCA7DCB11EC99806E25C4F9AE02.roa (hash: Gd7JCr1281wWWtBPVf/kwPfiC4gERpM54Kx0s/D+laI=) 3: D9470BFE7DC811ECB84BD174C4F9AE02.roa (hash: wmK7x3Sk5UopVQwNMRtsiduu1nPhJgBS/7n4gUWasIc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8265/4CD5FE0E7DC411ECA9C4431DC4F9AE02/jxHEfi_qGZwnJ8hrSZDzv66CAWI.crl rsync://rpki.apnic.net/member_repository/A91B8265/4CD5FE0E7DC411ECA9C4431DC4F9AE02/jxHEfi_qGZwnJ8hrSZDzv66CAWI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jxHEfi_qGZwnJ8hrSZDzv66CAWI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 23:15:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1117 (0x45d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8265, serialNumber=8F11C47E2FEA199C2727C86B4990F3BFAE820162 Validity Not Before: Dec 22 23:15:01 2025 GMT Not After : Dec 29 23:15:01 2025 GMT Subject: CN=6949d0f5-73ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:5a:42:c7:af:b3:d5:de:f5:51:57:bc:e6:82: 3b:20:62:ca:74:c1:f7:a9:3d:e7:a9:8e:f7:e3:6e: 1f:e6:28:57:d8:24:a7:88:63:1c:b7:88:82:83:36: 85:b7:ac:ff:97:8b:a0:98:99:74:85:67:8d:a2:0a: 0e:a2:0c:85:f0:e5:cb:0d:22:87:3e:71:16:22:39: da:ec:48:76:6e:07:f4:c0:0a:f7:55:cc:e0:ef:d9: 2e:ca:ed:c7:fe:df:93:58:93:a9:d8:7b:7c:96:13: 3a:10:cc:db:94:ab:d1:7c:7c:65:fe:51:34:1e:fb: 41:e2:29:93:c2:1b:a5:56:0a:ba:25:a0:14:b6:24: ce:d3:eb:38:7d:3b:ab:33:87:b0:85:01:6c:96:c0: be:1f:31:8e:2e:4f:f3:0c:f8:21:44:89:43:aa:b4: e6:8a:ec:4b:ae:12:d6:75:42:7b:13:c7:be:5c:64: e1:83:8c:c1:c2:9b:9f:79:3a:a6:f7:fa:9c:16:67: 35:cd:ce:e0:3a:23:48:64:10:a4:77:3d:c0:6f:79: 8c:83:8a:9d:31:58:4d:8c:a6:14:2f:b6:b9:23:e4: bf:57:3e:4a:19:c5:60:3c:2a:7f:7d:4e:21:3f:a5: dc:d6:23:e4:e5:ea:c6:d5:f0:8b:ec:6f:fe:cc:e6: 04:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:3D:90:70:7D:EB:46:A5:AA:58:90:9C:97:68:0E:FB:31:35:DB:E4 X509v3 Authority Key Identifier: keyid:8F:11:C4:7E:2F:EA:19:9C:27:27:C8:6B:49:90:F3:BF:AE:82:01:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8265/4CD5FE0E7DC411ECA9C4431DC4F9AE02/jxHEfi_qGZwnJ8hrSZDzv66CAWI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jxHEfi_qGZwnJ8hrSZDzv66CAWI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8265/4CD5FE0E7DC411ECA9C4431DC4F9AE02/jxHEfi_qGZwnJ8hrSZDzv66CAWI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:c8:9c:ea:70:27:90:02:9f:c4:5d:29:17:56:42:ec:8c:fd: af:12:ca:88:08:a1:76:ef:73:72:0c:9c:ac:ca:41:a7:2a:44: 97:9b:5e:64:6a:e6:b6:4b:93:ee:b0:bd:42:40:e5:d7:f1:bc: a8:21:3a:25:62:c4:81:95:73:e3:a0:51:cf:14:5b:a8:47:81: a5:97:0f:a2:5a:61:a3:7a:0b:3a:a6:5b:fa:a6:5b:28:e9:fd: 41:37:aa:19:8c:53:41:93:cc:91:07:ff:33:d7:78:75:9c:b4: 03:58:6c:24:4b:c4:ca:2b:9a:3f:e5:3b:21:48:9a:f3:9e:e8: d4:3d:42:9d:c3:f9:91:e8:3f:76:eb:26:e7:47:ab:f7:62:b9: 76:b3:42:a1:32:8e:ca:28:41:e5:ce:e4:b8:5f:70:25:95:8d: d7:35:4e:04:85:d2:d2:09:97:f7:f8:f5:e3:d2:a2:d2:4b:9a: d4:94:49:6b:69:d3:8e:f0:39:08:f0:53:24:e1:5c:9a:8f:ca: 2e:ec:1f:4f:b1:ae:64:56:50:a6:42:9b:54:3c:6e:85:0c:b1: 50:d9:b1:d8:e6:4c:45:c2:93:28:49:f8:9a:de:03:36:6f:ca: 82:48:31:55:03:df:28:c4:d5:a7:4b:1d:fc:75:9b:21:3c:15: 3e:1b:0a:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBF0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjgyNjUxMTAvBgNVBAUTKDhGMTFDNDdFMkZFQTE5OUMyNzI3Qzg2QjQ5OTBGM0JG QUU4MjAxNjIwHhcNMjUxMjIyMjMxNTAxWhcNMjUxMjI5MjMxNTAxWjAYMRYwFAYD VQQDDA02OTQ5ZDBmNS03M2ZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuVpCx6+z1d71UVe85oI7IGLKdMH3qT3nqY73424f5ihX2CSniGMct4iCgzaF t6z/l4ugmJl0hWeNogoOogyF8OXLDSKHPnEWIjna7Eh2bgf0wAr3Vczg79kuyu3H /t+TWJOp2Ht8lhM6EMzblKvRfHxl/lE0HvtB4imTwhulVgq6JaAUtiTO0+s4fTur M4ewhQFslsC+HzGOLk/zDPghRIlDqrTmiuxLrhLWdUJ7E8e+XGThg4zBwpufeTqm 9/qcFmc1zc7gOiNIZBCkdz3Ab3mMg4qdMVhNjKYUL7a5I+S/Vz5KGcVgPCp/fU4h P6Xc1iPk5erG1fCL7G/+zOYE0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKU9kHB9 60alqliQnJdoDvsxNdvkMB8GA1UdIwQYMBaAFI8RxH4v6hmcJyfIa0mQ87+uggFi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODI2NS80Q0Q1RkUwRTdE QzQxMUVDQTlDNDQzMURDNEY5QUUwMi9qeEhFZmlfcUdad25KOGhyU1pEenY2NkNB V0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2p4SEVmaV9xR1p3bko4aHJTWkR6djY2Q0FXSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC ODI2NS80Q0Q1RkUwRTdEQzQxMUVDQTlDNDQzMURDNEY5QUUwMi9qeEhFZmlfcUda d25KOGhyU1pEenY2NkNBV0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACyJzqcCeQAp/EXSkXVkLsjP2vEsqICKF273NyDJysykGnKkSXm15k aua2S5PusL1CQOXX8byoITolYsSBlXPjoFHPFFuoR4Gllw+iWmGjegs6plv6plso 6f1BN6oZjFNBk8yRB/8z13h1nLQDWGwkS8TKK5o/5TshSJrznujUPUKdw/mR6D92 6ybnR6v3Yrl2s0KhMo7KKEHlzuS4X3AllY3XNU4EhdLSCZf3+PXj0qLSS5rUlElr adOO8DkI8FMk4Vyaj8ou7B9Psa5kVlCmQptUPG6FDLFQ2bHY5kxFwpMoSfia3gM2 b8qCSDFVA98oxNWnSx38dZshPBU+GwqO -----END CERTIFICATE-----Generated at Wed Dec 24 17:37:36 2025 by rpki-client