This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE96E/23D2F16EEC2111EFA355605FC4F9AE02/JCmj7lCI89RTcqjjs2g0x16ubSk.mft File: JCmj7lCI89RTcqjjs2g0x16ubSk.mft (raw, json) Hash identifier: lck9Ms5Gdvc+BiJ2tX+3SfX1RcVXvCshV3uJhYu0kq8= Subject key identifier: A6:E5:40:70:9C:E2:BD:09:EB:25:33:CE:10:8F:8A:98:E9:AB:8C:A5 Authority key identifier: 24:29:A3:EE:50:88:F3:D4:53:72:A8:E3:B3:68:34:C7:5E:AE:6D:29 Certificate issuer: /CN=A91EE96E/serialNumber=2429A3EE5088F3D45372A8E3B36834C75EAE6D29 Certificate serial: A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JCmj7lCI89RTcqjjs2g0x16ubSk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE96E/23D2F16EEC2111EFA355605FC4F9AE02/JCmj7lCI89RTcqjjs2g0x16ubSk.mft Manifest number: A2 Signing time: Fri 19 Dec 2025 05:25:42 +0000 Manifest this update: Fri 19 Dec 2025 05:25:41 +0000 Manifest next update: Fri 26 Dec 2025 05:25:41 +0000 Files and hashes: 1: JCmj7lCI89RTcqjjs2g0x16ubSk.crl (hash: vTSGlAiIYorsv+yLjrv5+jBtXvqcggbeQbaVeOxaqV8=) 2: 7F639A182CB011F08B722116C4F9AE02.roa (hash: 8SOJ6SdOtJ/q3NwLkWGRY6LjHM44wHGZjzKG2cwDOuk=) 3: 92B377C82CB011F0A2E86B16C4F9AE02.roa (hash: FoDHZvXeH5e/XFJzf3AymBW0SIuGnIL2DXJhgfsRixg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE96E/23D2F16EEC2111EFA355605FC4F9AE02/JCmj7lCI89RTcqjjs2g0x16ubSk.crl rsync://rpki.apnic.net/member_repository/A91EE96E/23D2F16EEC2111EFA355605FC4F9AE02/JCmj7lCI89RTcqjjs2g0x16ubSk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JCmj7lCI89RTcqjjs2g0x16ubSk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 05:25:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 168 (0xa8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE96E, serialNumber=2429A3EE5088F3D45372A8E3B36834C75EAE6D29 Validity Not Before: Dec 19 05:25:41 2025 GMT Not After : Dec 26 05:25:41 2025 GMT Subject: CN=6944e1d5-a8dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:bc:d1:0e:4c:cd:bd:c5:d8:11:d4:e0:5b:fe: 7b:db:57:72:1c:89:3d:2f:b9:81:67:54:eb:42:1f: ae:bc:8e:ef:aa:9d:e3:b1:11:ff:0e:fb:1f:f5:a5: 92:8a:51:64:3e:b2:73:0b:91:9c:6d:1e:d9:28:3b: 39:eb:f2:a4:2d:52:8e:c5:1b:91:27:00:f3:54:ce: c4:e5:ec:1d:1a:80:b8:95:be:81:83:27:9a:5f:25: d9:2e:0a:10:87:2f:88:c2:aa:70:a6:8d:c0:cc:20: ee:8c:94:75:7b:76:1b:5e:1b:7e:03:59:52:10:62: 71:57:fd:48:4f:24:2c:0a:ef:0d:c6:ce:10:33:e9: 98:77:95:64:ec:1c:0a:79:fa:2b:af:1c:4e:76:27: ec:7a:e7:26:6d:61:57:b6:7a:4d:08:12:44:6c:fb: dc:ea:bf:dd:d1:f7:01:20:ca:0c:22:de:84:fa:d1: b6:e5:d8:38:fc:4d:2e:53:d2:8d:6f:2c:2c:12:b3: 75:fe:86:27:d7:58:89:b9:87:38:06:1c:84:8b:ae: ba:2c:1c:4a:37:ef:c9:bf:87:e8:14:57:91:90:c6: 71:38:28:cf:38:7b:ca:07:7f:49:3d:bd:8c:05:b9: 42:74:54:e7:5e:30:c1:cd:4d:b5:db:39:e1:1c:a8: fd:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:E5:40:70:9C:E2:BD:09:EB:25:33:CE:10:8F:8A:98:E9:AB:8C:A5 X509v3 Authority Key Identifier: keyid:24:29:A3:EE:50:88:F3:D4:53:72:A8:E3:B3:68:34:C7:5E:AE:6D:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE96E/23D2F16EEC2111EFA355605FC4F9AE02/JCmj7lCI89RTcqjjs2g0x16ubSk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JCmj7lCI89RTcqjjs2g0x16ubSk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE96E/23D2F16EEC2111EFA355605FC4F9AE02/JCmj7lCI89RTcqjjs2g0x16ubSk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:77:62:b3:7b:13:d6:c8:06:b6:83:b5:f1:f0:98:66:e1:73: 49:f1:73:17:f3:58:cc:b0:8f:54:df:94:42:dc:7f:59:c3:14: a7:39:fa:46:23:12:5d:ee:77:a7:9e:ed:de:57:19:9e:1f:71: 58:c6:3e:95:8f:e1:02:46:58:bc:03:b3:e9:69:1a:9c:65:ee: b4:77:f8:5e:33:1a:e0:5b:c3:43:a4:50:db:c4:e2:2a:48:27: 34:45:92:de:c7:ff:ec:58:e8:e7:1b:88:28:b1:3d:58:36:3e: 09:1c:49:a9:4e:33:8f:c0:a4:a6:68:ca:d4:9a:67:d3:01:cc: d9:52:77:9c:03:90:c2:9d:e7:a4:66:04:2f:ce:21:6b:2b:b4: 4d:14:4f:5a:07:f5:70:16:71:55:a1:2f:17:6a:06:93:12:5a: e4:12:a2:03:25:e7:e7:21:12:71:d1:88:4b:7d:30:0e:0d:c8: cc:ed:5a:89:84:00:ee:03:a8:a3:a5:0c:3b:72:d6:a6:37:a8: fa:33:bd:4f:ac:58:a2:01:d3:25:f5:fc:d0:63:4a:3c:18:31: 97:c2:07:40:5c:d7:22:55:d6:72:94:22:8d:b5:00:81:6d:35: d6:00:5e:6a:39:e0:d6:15:25:fb:0a:09:7a:6e:6c:88:9c:6c: 8c:09:d4:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUU5NkUxMTAvBgNVBAUTKDI0MjlBM0VFNTA4OEYzRDQ1MzcyQThFM0IzNjgzNEM3 NUVBRTZEMjkwHhcNMjUxMjE5MDUyNTQxWhcNMjUxMjI2MDUyNTQxWjAYMRYwFAYD VQQDDA02OTQ0ZTFkNS1hOGRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxbzRDkzNvcXYEdTgW/5721dyHIk9L7mBZ1TrQh+uvI7vqp3jsRH/Dvsf9aWS ilFkPrJzC5GcbR7ZKDs56/KkLVKOxRuRJwDzVM7E5ewdGoC4lb6BgyeaXyXZLgoQ hy+Iwqpwpo3AzCDujJR1e3YbXht+A1lSEGJxV/1ITyQsCu8Nxs4QM+mYd5Vk7BwK eforrxxOdifseucmbWFXtnpNCBJEbPvc6r/d0fcBIMoMIt6E+tG25dg4/E0uU9KN bywsErN1/oYn11iJuYc4BhyEi666LBxKN+/Jv4foFFeRkMZxOCjPOHvKB39JPb2M BblCdFTnXjDBzU212znhHKj93QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKblQHCc 4r0J6yUzzhCPipjpq4ylMB8GA1UdIwQYMBaAFCQpo+5QiPPUU3Ko47NoNMderm0p MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTk2RS8yM0QyRjE2RUVD MjExMUVGQTM1NTYwNUZDNEY5QUUwMi9KQ21qN2xDSTg5UlRjcWpqczJnMHgxNnVi U2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pDbWo3bENJODlSVGNxampzMmcweDE2dWJTay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RTk2RS8yM0QyRjE2RUVDMjExMUVGQTM1NTYwNUZDNEY5QUUwMi9KQ21qN2xDSTg5 UlRjcWpqczJnMHgxNnViU2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7d2KzexPWyAa2g7Xx8Jhm4XNJ8XMX81jMsI9U35RC3H9ZwxSnOfpG IxJd7nennu3eVxmeH3FYxj6Vj+ECRli8A7PpaRqcZe60d/heMxrgW8NDpFDbxOIq SCc0RZLex//sWOjnG4gosT1YNj4JHEmpTjOPwKSmaMrUmmfTAczZUnecA5DCneek ZgQvziFrK7RNFE9aB/VwFnFVoS8XagaTElrkEqIDJefnIRJx0YhLfTAODcjM7VqJ hADuA6ijpQw7ctamN6j6M71PrFiiAdMl9fzQY0o8GDGXwgdAXNciVdZylCKNtQCB bTXWAF5qOeDWFSX7Cgl6bmyInGyMCdSm -----END CERTIFICATE-----Generated at Fri Dec 19 21:27:58 2025 by rpki-client