This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.mft File: JWtdF5DSTE1slyBk6Rxq8AvWjjI.mft (raw, json) Hash identifier: 8cqkxi/x1L8UY/+8T7O53mZQ9MmgnEYxNfKx+TnVFS4= Subject key identifier: D1:29:90:A8:D3:1C:BD:7D:C4:1D:4D:38:FD:25:3A:D7:61:7E:DF:6E Authority key identifier: 25:6B:5D:17:90:D2:4C:4D:6C:97:20:64:E9:1C:6A:F0:0B:D6:8E:32 Certificate issuer: /CN=A91CB86D/serialNumber=256B5D1790D24C4D6C972064E91C6AF00BD68E32 Certificate serial: 0155 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWtdF5DSTE1slyBk6Rxq8AvWjjI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.mft Manifest number: 0150 Signing time: Tue 23 Dec 2025 03:17:24 +0000 Manifest this update: Tue 23 Dec 2025 03:17:24 +0000 Manifest next update: Tue 30 Dec 2025 03:17:24 +0000 Files and hashes: 1: JWtdF5DSTE1slyBk6Rxq8AvWjjI.crl (hash: 716QNcj23idymjB/jqvyCizC4xP8IpEw0rAdS36k3lA=) 2: DC23F5180E1611EF91DF311EC4F9AE02.roa (hash: PDtdUX6JrHo4d5GjgXXthgA5sLxtJKv9u0i8nv/vqsk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.crl rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWtdF5DSTE1slyBk6Rxq8AvWjjI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 03:17:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 341 (0x155) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB86D, serialNumber=256B5D1790D24C4D6C972064E91C6AF00BD68E32 Validity Not Before: Dec 23 03:17:24 2025 GMT Not After : Dec 30 03:17:24 2025 GMT Subject: CN=694a09c4-a410 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:6b:0b:52:10:90:5f:b5:5a:01:30:ee:53:5c: 9f:e7:0d:ab:2f:d1:06:b4:36:d5:5b:0c:88:94:31: 12:d0:9f:37:b8:3f:64:54:99:56:27:38:f5:09:0d: 5c:0d:e5:e1:88:23:ed:cb:e9:78:60:39:4a:20:d3: 11:fc:9b:f4:2a:09:4d:ac:b6:82:16:d6:d6:b8:77: b8:96:6f:be:71:29:a6:43:a4:53:d9:f7:b7:f9:e7: 27:34:f1:43:24:7a:29:fc:17:57:f5:f2:ac:08:6c: 16:f9:73:67:b9:3e:98:fd:c1:31:6b:f8:42:70:85: e0:31:2c:8e:a0:6f:b5:b7:00:36:94:10:db:97:96: ba:6e:d4:d0:df:72:47:25:5b:2b:8a:0b:c7:12:2d: 32:cb:16:a8:73:b4:cf:a0:07:c4:63:f4:58:86:b0: 78:10:c7:e1:22:3e:82:3b:43:3f:c3:3d:42:92:d3: e5:41:db:da:37:17:bd:0b:17:2b:a0:b6:2f:10:7f: 95:64:2f:24:b8:b7:84:11:33:72:ef:2d:7e:7d:2b: 96:3f:3d:5d:f6:aa:6f:10:20:d5:ac:4a:40:fb:00: 73:0a:3c:b8:c1:c2:6f:d4:47:15:26:22:85:e6:90: 5c:4a:ff:33:3a:b2:65:07:6b:52:51:aa:a8:e2:86: 29:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:29:90:A8:D3:1C:BD:7D:C4:1D:4D:38:FD:25:3A:D7:61:7E:DF:6E X509v3 Authority Key Identifier: keyid:25:6B:5D:17:90:D2:4C:4D:6C:97:20:64:E9:1C:6A:F0:0B:D6:8E:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWtdF5DSTE1slyBk6Rxq8AvWjjI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e4:3e:ee:7b:42:25:c4:d7:ac:f0:f9:7d:3e:db:3b:96:5b:e7: ff:f4:e0:08:f2:17:d2:dc:84:04:70:50:82:98:8a:a1:77:08: 77:33:06:c9:27:84:ce:14:9a:56:ac:ca:2e:93:e4:2d:c0:71: dc:20:15:44:62:c7:7e:e2:22:ce:45:ae:51:12:ac:0c:ef:a9: ad:1a:5a:b8:b4:b0:8e:02:ef:db:97:86:58:1b:ea:d0:cc:e4: 48:43:4e:75:3c:9b:f3:7f:ea:1c:44:b8:cf:79:9e:a2:47:ca: d2:25:ff:eb:83:87:cc:f2:f9:68:af:6a:e8:7d:5d:69:5a:c2: 9b:3a:9c:8d:d7:75:68:d0:27:bb:60:92:2f:c6:87:00:5b:80: 8b:dd:06:3b:83:91:05:bb:4c:5e:7f:42:8d:c0:fa:38:22:36: 6d:b8:79:91:9c:dd:70:17:2a:22:41:c4:a8:40:9c:e5:9e:ac: 16:ed:ad:3c:d3:cc:0d:69:52:6f:d0:07:28:76:ea:f9:7c:a5: 7c:94:75:64:11:d9:2b:5d:ae:95:d4:a4:a3:7a:de:a6:70:dc: 91:84:a0:3b:fe:8d:82:44:f7:2a:16:b6:10:f8:74:7c:c9:e2: 56:0e:5e:4c:64:98:d3:d0:5c:be:d3:7e:9a:29:8a:62:79:b5: ac:b6:c4:88 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0I4NkQxMTAvBgNVBAUTKDI1NkI1RDE3OTBEMjRDNEQ2Qzk3MjA2NEU5MUM2QUYw MEJENjhFMzIwHhcNMjUxMjIzMDMxNzI0WhcNMjUxMjMwMDMxNzI0WjAYMRYwFAYD VQQDDA02OTRhMDljNC1hNDEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA22sLUhCQX7VaATDuU1yf5w2rL9EGtDbVWwyIlDES0J83uD9kVJlWJzj1CQ1c DeXhiCPty+l4YDlKINMR/Jv0KglNrLaCFtbWuHe4lm++cSmmQ6RT2fe3+ecnNPFD JHop/BdX9fKsCGwW+XNnuT6Y/cExa/hCcIXgMSyOoG+1twA2lBDbl5a6btTQ33JH JVsrigvHEi0yyxaoc7TPoAfEY/RYhrB4EMfhIj6CO0M/wz1CktPlQdvaNxe9Cxcr oLYvEH+VZC8kuLeEETNy7y1+fSuWPz1d9qpvECDVrEpA+wBzCjy4wcJv1EcVJiKF 5pBcSv8zOrJlB2tSUaqo4oYpywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNEpkKjT HL19xB1NOP0lOtdhft9uMB8GA1UdIwQYMBaAFCVrXReQ0kxNbJcgZOkcavAL1o4y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjg2RC82RjA1ODIwRUU1 M0UxMUVFQTM4RjA4NzdDNEY5QUUwMi9KV3RkRjVEU1RFMXNseUJrNlJ4cThBdldq akkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pXdGRGNURTVEUxc2x5Qms2UnhxOEF2V2pqSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Qjg2RC82RjA1ODIwRUU1M0UxMUVFQTM4RjA4NzdDNEY5QUUwMi9KV3RkRjVEU1RF MXNseUJrNlJ4cThBdldqakkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDkPu57QiXE16zw+X0+2zuWW+f/9OAI8hfS3IQEcFCCmIqhdwh3MwbJ J4TOFJpWrMouk+QtwHHcIBVEYsd+4iLORa5REqwM76mtGlq4tLCOAu/bl4ZYG+rQ zORIQ051PJvzf+ocRLjPeZ6iR8rSJf/rg4fM8vlor2rofV1pWsKbOpyN13Vo0Ce7 YJIvxocAW4CL3QY7g5EFu0xef0KNwPo4IjZtuHmRnN1wFyoiQcSoQJzlnqwW7a08 08wNaVJv0Acodur5fKV8lHVkEdkrXa6V1KSjet6mcNyRhKA7/o2CRPcqFrYQ+HR8 yeJWDl5MZJjT0Fy+036aKYpiebWstsSI -----END CERTIFICATE-----Generated at Wed Dec 24 19:29:39 2025 by rpki-client