This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.mft File: CJy1orM7eG11SgfWgKnElBQmGeE.mft (raw, json) Hash identifier: uSfas0Lh/yGaGxSw0XXtm97E4nF4Wvq2lbHcYMBKDTM= Subject key identifier: 20:E1:7C:80:98:9E:9C:40:73:BB:1F:EA:72:55:E1:97:16:68:56:7B Authority key identifier: 08:9C:B5:A2:B3:3B:78:6D:75:4A:07:D6:80:A9:C4:94:14:26:19:E1 Certificate issuer: /CN=A91D0C18/serialNumber=089CB5A2B33B786D754A07D680A9C494142619E1 Certificate serial: F0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CJy1orM7eG11SgfWgKnElBQmGeE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.mft Manifest number: EE Signing time: Wed 03 Dec 2025 03:44:27 +0000 Manifest this update: Wed 03 Dec 2025 03:44:27 +0000 Manifest next update: Wed 10 Dec 2025 03:44:27 +0000 Files and hashes: 1: CJy1orM7eG11SgfWgKnElBQmGeE.crl (hash: v1HOlUt3PLB54wFBpMjLS4PMOCenoEGArvvYIX6+5FY=) 2: EEE0092A646611EFA25D167EC4F9AE02.roa (hash: 2I1s5RbX9mRnDSwDS9XqFVY3yT7dmC+Kb1B8YfP6Dhk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.crl rsync://rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CJy1orM7eG11SgfWgKnElBQmGeE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 03:44:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 240 (0xf0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0C18, serialNumber=089CB5A2B33B786D754A07D680A9C494142619E1 Validity Not Before: Dec 3 03:44:27 2025 GMT Not After : Dec 10 03:44:27 2025 GMT Subject: CN=692fb21b-40bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:68:58:7d:02:da:ae:55:74:a6:ff:5b:26:17: 0d:9e:2b:17:4a:13:fb:8a:5f:95:46:64:a0:83:97: 96:7f:21:1e:e2:7b:3d:e7:f4:7c:aa:fe:73:a3:80: 70:69:f8:52:98:b1:35:60:4b:8c:2f:24:1d:66:60: 4f:70:53:89:0b:fc:b0:94:9b:9b:37:4e:a0:f2:88: 70:e6:22:a3:4d:7d:d7:dd:6a:54:83:5a:90:87:4f: 1f:f5:08:00:d3:7e:b2:94:15:fd:a1:dc:b8:a5:12: 59:56:5d:d2:29:df:fe:43:f1:c0:8c:89:22:2b:95: e4:64:04:8d:d1:03:16:56:e3:b5:54:4e:f2:54:97: 20:24:f3:6b:fe:ee:0e:f4:93:3e:5c:02:ff:2a:ee: ef:05:48:3a:65:31:f2:c4:ce:10:96:c3:75:25:73: 98:e5:96:1f:ce:1c:bf:3a:fa:c0:df:e6:32:3b:3d: 7f:dd:05:1c:77:d5:69:53:70:64:94:67:c3:1d:f5: 92:dc:86:b6:dd:eb:06:dc:f7:ec:e9:92:e9:b3:9d: 62:e1:78:8a:64:36:02:45:3c:c8:9e:e7:10:87:53: 87:c2:f5:23:b2:b2:db:b4:6f:97:3e:90:74:54:71: fe:8c:1d:4a:b7:9d:bd:bd:75:b6:95:54:b8:20:47: 5b:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:E1:7C:80:98:9E:9C:40:73:BB:1F:EA:72:55:E1:97:16:68:56:7B X509v3 Authority Key Identifier: keyid:08:9C:B5:A2:B3:3B:78:6D:75:4A:07:D6:80:A9:C4:94:14:26:19:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CJy1orM7eG11SgfWgKnElBQmGeE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:4d:22:01:5e:54:12:26:b7:0f:05:bf:cb:a3:f2:37:19:e8: 81:1a:c4:c4:02:cc:90:fe:f1:42:ac:15:97:96:24:9d:e7:65: 4d:4d:4e:31:86:3b:ba:1e:4d:8f:53:01:20:8e:78:f2:69:52: 69:61:6c:02:5d:dc:03:9a:e0:1c:d9:8a:a2:e0:f7:7c:ca:65: 8f:ca:99:20:cb:e4:90:ab:bf:88:9b:c8:ec:25:fd:cb:4a:61: c3:f6:10:15:80:ba:12:4c:1f:44:a4:88:5f:a4:1a:80:81:a4: 66:b3:0f:43:81:88:ee:26:77:0f:c4:0f:d8:43:a4:0e:08:b5: 25:a6:51:08:64:b4:d1:ae:d7:2e:0c:e7:df:2d:7b:e6:2e:0c: c2:8e:8a:19:02:9e:31:b2:a4:1d:5b:b2:54:75:d6:70:11:c0: 82:f7:c0:c6:e6:ab:fd:73:52:25:7c:7e:fc:d4:11:eb:8e:02: 38:78:d7:11:5a:b9:be:5e:9e:dd:20:d4:94:c3:3a:98:9c:10: 05:62:ec:50:6f:e3:70:ab:03:c7:a1:9c:30:d1:08:6b:3e:43: de:67:44:ad:5d:45:ce:62:0b:22:34:79:bb:25:35:ab:07:e0: 7c:a1:4a:7a:f5:2c:39:56:07:8b:c2:d4:4d:e4:3c:95:7d:d6: 77:80:a4:c7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDBDMTgxMTAvBgNVBAUTKDA4OUNCNUEyQjMzQjc4NkQ3NTRBMDdENjgwQTlDNDk0 MTQyNjE5RTEwHhcNMjUxMjAzMDM0NDI3WhcNMjUxMjEwMDM0NDI3WjAYMRYwFAYD VQQDEw02OTJmYjIxYi00MGJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0WhYfQLarlV0pv9bJhcNnisXShP7il+VRmSgg5eWfyEe4ns95/R8qv5zo4Bw afhSmLE1YEuMLyQdZmBPcFOJC/ywlJubN06g8ohw5iKjTX3X3WpUg1qQh08f9QgA 036ylBX9ody4pRJZVl3SKd/+Q/HAjIkiK5XkZASN0QMWVuO1VE7yVJcgJPNr/u4O 9JM+XAL/Ku7vBUg6ZTHyxM4QlsN1JXOY5ZYfzhy/OvrA3+YyOz1/3QUcd9VpU3Bk lGfDHfWS3Ia23esG3Pfs6ZLps51i4XiKZDYCRTzInucQh1OHwvUjsrLbtG+XPpB0 VHH+jB1Kt529vXW2lVS4IEdbVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCDhfICY npxAc7sf6nJV4ZcWaFZ7MB8GA1UdIwQYMBaAFAictaKzO3htdUoH1oCpxJQUJhnh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMEMxOC82ODNCQTA5NjY0 NjYxMUVGOEUxOEY4N0FDNEY5QUUwMi9DSnkxb3JNN2VHMTFTZ2ZXZ0tuRWxCUW1H ZUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0NKeTFvck03ZUcxMVNnZldnS25FbEJRbUdlRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MEMxOC82ODNCQTA5NjY0NjYxMUVGOEUxOEY4N0FDNEY5QUUwMi9DSnkxb3JNN2VH MTFTZ2ZXZ0tuRWxCUW1HZUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3TSIBXlQSJrcPBb/Lo/I3GeiBGsTEAsyQ/vFCrBWXliSd52VNTU4x hju6Hk2PUwEgjnjyaVJpYWwCXdwDmuAc2Yqi4Pd8ymWPypkgy+SQq7+Im8jsJf3L SmHD9hAVgLoSTB9EpIhfpBqAgaRmsw9DgYjuJncPxA/YQ6QOCLUlplEIZLTRrtcu DOffLXvmLgzCjooZAp4xsqQdW7JUddZwEcCC98DG5qv9c1IlfH781BHrjgI4eNcR Wrm+Xp7dINSUwzqYnBAFYuxQb+NwqwPHoZww0QhrPkPeZ0StXUXOYgsiNHm7JTWr B+B8oUp69Sw5VgeLwtRN5DyVfdZ3gKTH -----END CERTIFICATE-----Generated at Wed Dec 3 16:40:57 2025 by rpki-client