This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C3A74/753D71EE3AB511E7B8609F1CC4F9AE02/jhH8tOi9Y9J7hOstUmcMoXT5xDw.mft File: jhH8tOi9Y9J7hOstUmcMoXT5xDw.mft (raw, json) Hash identifier: NNQk5heGuavsnPXFY0qCZc3P7F3cvaaxERhsNxMXO7Y= Subject key identifier: 67:A8:D2:6F:17:8D:8B:70:9D:2C:5D:36:DE:31:8B:15:67:72:64:23 Authority key identifier: 8E:11:FC:B4:E8:BD:63:D2:7B:84:EB:2D:52:67:0C:A1:74:F9:C4:3C Certificate issuer: /CN=A91C3A74/serialNumber=8E11FCB4E8BD63D27B84EB2D52670CA174F9C43C Certificate serial: 1AE7 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/jhH8tOi9Y9J7hOstUmcMoXT5xDw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C3A74/753D71EE3AB511E7B8609F1CC4F9AE02/jhH8tOi9Y9J7hOstUmcMoXT5xDw.mft Manifest number: 1AE0 Signing time: Mon 08 Dec 2025 15:34:35 +0000 Manifest this update: Mon 08 Dec 2025 15:34:34 +0000 Manifest next update: Mon 15 Dec 2025 15:34:34 +0000 Files and hashes: 1: jhH8tOi9Y9J7hOstUmcMoXT5xDw.crl (hash: qi+Sj1dyOlJJ9PmIKbvCudE/ZIAY3N/CebPtRv8hszU=) 2: AFA37450139811EA807F1A26C4F9AE02.roa (hash: EvR5gfpmDfAVmSaNBVyf31LRk9wTqTU6OTSsCqxA5UQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C3A74/753D71EE3AB511E7B8609F1CC4F9AE02/jhH8tOi9Y9J7hOstUmcMoXT5xDw.crl rsync://rpki.apnic.net/member_repository/A91C3A74/753D71EE3AB511E7B8609F1CC4F9AE02/jhH8tOi9Y9J7hOstUmcMoXT5xDw.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/jhH8tOi9Y9J7hOstUmcMoXT5xDw.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Dec 2025 15:34:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6887 (0x1ae7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C3A74, serialNumber=8E11FCB4E8BD63D27B84EB2D52670CA174F9C43C Validity Not Before: Dec 8 15:34:34 2025 GMT Not After : Dec 15 15:34:34 2025 GMT Subject: CN=6936f00b-e8ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:39:fd:d7:8b:ec:c0:bb:a5:07:90:b5:c8:a8: 5b:ec:23:43:64:06:9e:23:82:ce:2f:b2:00:1d:3b: d9:29:6f:45:25:cc:83:9e:c1:7f:ea:fd:09:1a:14: 16:c9:15:08:23:51:15:3e:3c:e7:54:1d:34:d6:e9: e8:e0:2b:00:7f:0c:01:f6:fc:4d:75:37:34:36:a7: cc:44:1c:30:5b:90:49:f8:b9:ec:0b:a6:30:ae:43: 75:5d:40:53:01:3c:7a:4e:6c:86:ee:86:0c:8f:ce: 6d:b7:55:28:74:3b:77:cc:c0:5c:4b:20:36:79:a9: 37:4f:15:eb:8d:37:b2:17:b1:60:06:89:19:17:f0: 54:a8:e1:ca:de:f9:9e:72:59:74:09:93:3c:78:46: 6c:6c:95:fa:6d:23:15:34:17:c4:ab:76:36:0e:8f: 77:4f:2c:b7:a5:3c:d7:41:b7:10:4f:56:4e:d2:d2: 1a:20:fe:5c:0f:f6:ef:df:54:77:44:bc:fd:87:04: f5:dd:55:1f:98:6f:cf:31:5e:f2:e9:42:6e:3a:03: a4:bb:e1:80:68:4e:54:29:f3:56:6c:1e:7a:3b:e3: 72:24:92:9a:08:7a:19:bb:36:e8:2f:35:b9:b4:c5: 93:8e:1a:02:c4:57:22:6a:34:fa:fb:ed:59:7a:f3: cc:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:A8:D2:6F:17:8D:8B:70:9D:2C:5D:36:DE:31:8B:15:67:72:64:23 X509v3 Authority Key Identifier: keyid:8E:11:FC:B4:E8:BD:63:D2:7B:84:EB:2D:52:67:0C:A1:74:F9:C4:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C3A74/753D71EE3AB511E7B8609F1CC4F9AE02/jhH8tOi9Y9J7hOstUmcMoXT5xDw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/jhH8tOi9Y9J7hOstUmcMoXT5xDw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C3A74/753D71EE3AB511E7B8609F1CC4F9AE02/jhH8tOi9Y9J7hOstUmcMoXT5xDw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:25:07:d4:40:a4:2c:8a:e2:7a:32:68:62:06:b7:39:6d:e0: 59:f8:e6:43:16:bf:50:f6:f1:ed:40:41:2e:26:e7:74:73:bd: cc:0c:27:08:58:c3:77:aa:ab:ba:6a:84:6b:37:0f:e2:1b:d9: d7:9d:28:05:70:cf:1c:8c:30:ca:42:5f:6d:5b:64:02:bb:60: da:7c:e0:7d:f5:a9:b0:6c:ae:28:13:ca:87:dc:81:3b:1e:82: 9d:5f:47:63:a7:24:aa:9d:58:27:84:76:87:2a:a8:1a:e4:94: 41:1d:69:91:b5:52:a6:86:8f:0c:ef:41:b8:b4:e9:bd:92:e8: 2d:3c:96:74:00:a3:38:9f:d9:15:a8:8a:e8:3c:21:24:f6:df: 9e:e0:83:d7:2f:be:70:40:e1:6f:ba:0a:91:c6:2d:58:47:5b: 14:a1:3d:c1:a2:34:b4:69:3e:5c:57:59:39:68:02:c8:00:96: 7d:52:02:1c:e8:f2:1c:4c:c6:96:b3:fe:9e:db:46:04:2e:15: 46:d8:0b:23:a7:a9:d2:d7:70:75:a1:41:3d:7f:a5:13:e3:4f: cd:6a:55:c7:fc:be:7e:e5:2f:9e:e4:2a:b0:7c:98:85:29:30: 93:9a:62:13:09:62:e5:c6:44:8e:c6:82:ef:d8:26:86:61:9d: 97:c9:c9:57 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGucwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzNBNzQxMTAvBgNVBAUTKDhFMTFGQ0I0RThCRDYzRDI3Qjg0RUIyRDUyNjcwQ0Ex NzRGOUM0M0MwHhcNMjUxMjA4MTUzNDM0WhcNMjUxMjE1MTUzNDM0WjAYMRYwFAYD VQQDEw02OTM2ZjAwYi1lOGFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4Dn914vswLulB5C1yKhb7CNDZAaeI4LOL7IAHTvZKW9FJcyDnsF/6v0JGhQW yRUII1EVPjznVB001uno4CsAfwwB9vxNdTc0NqfMRBwwW5BJ+LnsC6YwrkN1XUBT ATx6TmyG7oYMj85tt1UodDt3zMBcSyA2eak3TxXrjTeyF7FgBokZF/BUqOHK3vme cll0CZM8eEZsbJX6bSMVNBfEq3Y2Do93Tyy3pTzXQbcQT1ZO0tIaIP5cD/bv31R3 RLz9hwT13VUfmG/PMV7y6UJuOgOku+GAaE5UKfNWbB56O+NyJJKaCHoZuzboLzW5 tMWTjhoCxFciajT6++1ZevPM+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGeo0m8X jYtwnSxdNt4xixVncmQjMB8GA1UdIwQYMBaAFI4R/LTovWPSe4TrLVJnDKF0+cQ8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDM0E3NC83NTNENzFFRTNB QjUxMUU3Qjg2MDlGMUNDNEY5QUUwMi9qaEg4dE9pOVk5SjdoT3N0VW1jTW9YVDV4 RHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2poSDh0T2k5WTlKN2hPc3RVbWNNb1hUNXhEdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD M0E3NC83NTNENzFFRTNBQjUxMUU3Qjg2MDlGMUNDNEY5QUUwMi9qaEg4dE9pOVk5 SjdoT3N0VW1jTW9YVDV4RHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC6JQfUQKQsiuJ6MmhiBrc5beBZ+OZDFr9Q9vHtQEEuJud0c73MDCcI WMN3qqu6aoRrNw/iG9nXnSgFcM8cjDDKQl9tW2QCu2DafOB99amwbK4oE8qH3IE7 HoKdX0djpySqnVgnhHaHKqga5JRBHWmRtVKmho8M70G4tOm9kugtPJZ0AKM4n9kV qIroPCEk9t+e4IPXL75wQOFvugqRxi1YR1sUoT3BojS0aT5cV1k5aALIAJZ9UgIc 6PIcTMaWs/6e20YELhVG2Asjp6nS13B1oUE9f6UT40/NalXH/L5+5S+e5CqwfJiF KTCTmmITCWLlxkSOxoLv2CaGYZ2XyclX -----END CERTIFICATE-----Generated at Tue Dec 9 20:20:02 2025 by rpki-client