This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C40D6/CA8E7F7EA54411EA94DA3683C4F9AE02/jnhDSe8t33hXX9VMx47YxFyXbL8.mft File: jnhDSe8t33hXX9VMx47YxFyXbL8.mft (raw, json) Hash identifier: CxCkHcHFqk+uIEsmi9JSo0+xnCg9vRfw0nbPMBdsXfw= Subject key identifier: 1E:96:61:37:FF:69:05:7D:D9:FF:8C:52:CD:CF:1D:2C:FE:84:5F:F4 Authority key identifier: 8E:78:43:49:EF:2D:DF:78:57:5F:D5:4C:C7:8E:D8:C4:5C:97:6C:BF Certificate issuer: /CN=A91C40D6/serialNumber=8E784349EF2DDF78575FD54CC78ED8C45C976CBF Certificate serial: 099A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jnhDSe8t33hXX9VMx47YxFyXbL8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C40D6/CA8E7F7EA54411EA94DA3683C4F9AE02/jnhDSe8t33hXX9VMx47YxFyXbL8.mft Manifest number: 0986 Signing time: Mon 22 Dec 2025 19:27:59 +0000 Manifest this update: Mon 22 Dec 2025 19:27:59 +0000 Manifest next update: Mon 29 Dec 2025 19:27:59 +0000 Files and hashes: 1: jnhDSe8t33hXX9VMx47YxFyXbL8.crl (hash: rziiumzqtFgMP31LpiqDUWFwx8uKtPDDIiS7UwZsvTc=) 2: A84D830AA54511EAA942C683C4F9AE02.roa (hash: g9TzHiZxRp9gVg5tuis5YayxUjGI5eJ759+d36dPNIU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C40D6/CA8E7F7EA54411EA94DA3683C4F9AE02/jnhDSe8t33hXX9VMx47YxFyXbL8.crl rsync://rpki.apnic.net/member_repository/A91C40D6/CA8E7F7EA54411EA94DA3683C4F9AE02/jnhDSe8t33hXX9VMx47YxFyXbL8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jnhDSe8t33hXX9VMx47YxFyXbL8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 19:27:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2458 (0x99a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C40D6, serialNumber=8E784349EF2DDF78575FD54CC78ED8C45C976CBF Validity Not Before: Dec 22 19:27:59 2025 GMT Not After : Dec 29 19:27:59 2025 GMT Subject: CN=69499bbf-3f35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:7f:1a:5b:6f:fd:24:02:68:af:b9:88:16:ce: a4:4b:b3:32:0f:06:0b:90:bd:c5:1c:25:cb:e9:3b: aa:c4:fa:2c:29:e5:d1:bf:f1:6b:76:a9:45:64:00: 24:b9:06:b5:e9:68:a1:f4:cb:7d:48:69:d0:eb:f8: 8b:34:37:6b:1a:14:1f:ad:56:f7:e3:de:e5:44:e9: da:d1:74:99:48:a8:2e:40:21:28:c9:29:0f:69:0b: e2:29:db:af:e4:22:20:d7:5b:49:b4:34:60:b6:76: 62:68:58:85:c2:a3:fb:9d:b1:da:74:f6:c8:37:17: 01:95:12:c3:07:d5:3f:b3:88:f2:e7:6f:be:95:ef: 95:22:39:c1:46:97:50:89:df:fe:02:ad:dc:25:fa: e3:d0:48:f1:98:69:a0:90:b8:a9:42:2d:26:c1:70: 44:0d:db:ec:5e:51:fd:55:70:4b:0e:bb:6e:b9:c4: 04:37:ba:2a:52:f0:6b:45:85:c7:4a:8a:df:06:cd: f6:1e:c4:3b:a9:e5:07:6e:85:14:b0:30:32:e1:1a: 6b:f5:ee:18:18:76:5c:13:c5:c6:f8:eb:81:62:ea: 00:55:f3:7a:cb:55:d1:90:a9:27:2d:5e:d2:58:29: a9:bf:25:2e:73:16:48:a8:ca:4b:d9:75:3e:33:78: 73:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:96:61:37:FF:69:05:7D:D9:FF:8C:52:CD:CF:1D:2C:FE:84:5F:F4 X509v3 Authority Key Identifier: keyid:8E:78:43:49:EF:2D:DF:78:57:5F:D5:4C:C7:8E:D8:C4:5C:97:6C:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C40D6/CA8E7F7EA54411EA94DA3683C4F9AE02/jnhDSe8t33hXX9VMx47YxFyXbL8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jnhDSe8t33hXX9VMx47YxFyXbL8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C40D6/CA8E7F7EA54411EA94DA3683C4F9AE02/jnhDSe8t33hXX9VMx47YxFyXbL8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:41:66:ce:72:80:46:4c:f8:be:77:57:89:9d:7c:45:b5:b4: 64:8f:31:5c:90:15:61:93:f9:8e:00:03:2f:0a:18:dd:d6:95: a1:cb:ea:e7:97:73:31:62:c5:c0:a2:c2:36:85:4f:92:56:63: 0c:06:dc:92:6a:9b:4d:23:56:1f:f1:1b:c8:c8:a0:22:f3:7e: 56:e6:48:a8:45:0e:0e:15:97:3d:31:66:76:d5:e6:de:05:9d: 2d:55:38:7a:ee:fc:07:d9:7b:99:da:2c:4b:3c:b4:66:14:05: 84:d9:34:a1:87:5d:15:3a:d4:bd:1b:bf:b3:d4:0e:63:7f:81: eb:fa:00:19:0a:ab:1b:49:87:61:4e:3c:bc:1c:57:74:14:06: 59:5a:5f:6f:94:5d:8d:6a:c3:22:db:b8:eb:c7:cb:55:e3:cb: 84:84:db:06:ed:c4:99:40:15:80:17:ca:51:bb:73:7d:2e:0d: e8:1d:ac:94:49:43:d8:97:c6:df:61:5e:31:2c:28:03:57:99: 88:f2:bf:6d:4e:a0:fd:58:fe:40:a0:0c:99:0f:bc:12:32:cd: 08:89:4b:e5:62:0e:af:95:17:95:c7:c7:1a:e3:ba:15:29:b1: 3a:8f:a0:cf:ab:23:4b:c7:3d:9d:26:8e:72:b1:89:f1:e9:11: 76:0f:5d:e0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCZowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzQwRDYxMTAvBgNVBAUTKDhFNzg0MzQ5RUYyRERGNzg1NzVGRDU0Q0M3OEVEOEM0 NUM5NzZDQkYwHhcNMjUxMjIyMTkyNzU5WhcNMjUxMjI5MTkyNzU5WjAYMRYwFAYD VQQDDA02OTQ5OWJiZi0zZjM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxH8aW2/9JAJor7mIFs6kS7MyDwYLkL3FHCXL6TuqxPosKeXRv/FrdqlFZAAk uQa16Wih9Mt9SGnQ6/iLNDdrGhQfrVb3497lROna0XSZSKguQCEoySkPaQviKduv 5CIg11tJtDRgtnZiaFiFwqP7nbHadPbINxcBlRLDB9U/s4jy52++le+VIjnBRpdQ id/+Aq3cJfrj0EjxmGmgkLipQi0mwXBEDdvsXlH9VXBLDrtuucQEN7oqUvBrRYXH SorfBs32HsQ7qeUHboUUsDAy4Rpr9e4YGHZcE8XG+OuBYuoAVfN6y1XRkKknLV7S WCmpvyUucxZIqMpL2XU+M3hzxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB6WYTf/ aQV92f+MUs3PHSz+hF/0MB8GA1UdIwQYMBaAFI54Q0nvLd94V1/VTMeO2MRcl2y/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNDBENi9DQThFN0Y3RUE1 NDQxMUVBOTREQTM2ODNDNEY5QUUwMi9qbmhEU2U4dDMzaFhYOVZNeDQ3WXhGeVhi TDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2puaERTZTh0MzNoWFg5Vk14NDdZeEZ5WGJMOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NDBENi9DQThFN0Y3RUE1NDQxMUVBOTREQTM2ODNDNEY5QUUwMi9qbmhEU2U4dDMz aFhYOVZNeDQ3WXhGeVhiTDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsQWbOcoBGTPi+d1eJnXxFtbRkjzFckBVhk/mOAAMvChjd1pWhy+rn l3MxYsXAosI2hU+SVmMMBtySaptNI1Yf8RvIyKAi835W5kioRQ4OFZc9MWZ21ebe BZ0tVTh67vwH2XuZ2ixLPLRmFAWE2TShh10VOtS9G7+z1A5jf4Hr+gAZCqsbSYdh Tjy8HFd0FAZZWl9vlF2NasMi27jrx8tV48uEhNsG7cSZQBWAF8pRu3N9Lg3oHayU SUPYl8bfYV4xLCgDV5mI8r9tTqD9WP5AoAyZD7wSMs0IiUvlYg6vlReVx8ca47oV KbE6j6DPqyNLxz2dJo5ysYnx6RF2D13g -----END CERTIFICATE-----Generated at Wed Dec 24 15:46:53 2025 by rpki-client