This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB8C9/2197B092583F11ED8181E57BC4F9AE02/JTgA7RbtD_M39wQNDj3xFBwWFhw.mft File: JTgA7RbtD_M39wQNDj3xFBwWFhw.mft (raw, json) Hash identifier: VTH/r40KRJBOYiJBEiKYdZZ0cYL7JeGTZPDsbhcVp1w= Subject key identifier: 8B:24:48:11:DD:FE:F0:56:3F:5C:FE:A0:21:BD:AE:93:E9:B0:BF:58 Authority key identifier: 25:38:00:ED:16:ED:0F:F3:37:F7:04:0D:0E:3D:F1:14:1C:16:16:1C Certificate issuer: /CN=A91FB8C9/serialNumber=253800ED16ED0FF337F7040D0E3DF1141C16161C Certificate serial: 0269 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JTgA7RbtD_M39wQNDj3xFBwWFhw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FB8C9/2197B092583F11ED8181E57BC4F9AE02/JTgA7RbtD_M39wQNDj3xFBwWFhw.mft Manifest number: 025A Signing time: Tue 23 Dec 2025 00:45:47 +0000 Manifest this update: Tue 23 Dec 2025 00:45:46 +0000 Manifest next update: Tue 30 Dec 2025 00:45:46 +0000 Files and hashes: 1: JTgA7RbtD_M39wQNDj3xFBwWFhw.crl (hash: EDnJxHFUx3M2xdUaE4Ig6KQOxt5PVnHpf02DDtC5O6o=) 2: 2D215B32584111EDBE50107CC4F9AE02.roa (hash: L2qGwoUMYn6rd/ufU42ohM+hjJVs2JbRIKZiZfIpRkg=) 3: ED685B8CDFA511EF8CC2890BC4F9AE02.roa (hash: tncX3ObBof6VoDSeaB8Fjk49Rp9ygYf48FJTO12hWKM=) 4: D45117DEEBF311EEAECC405FC4F9AE02.roa (hash: zbF8hS1Y+qpQjbINRhWnXcqAqRtMIJLJkeIfLjgdh4M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FB8C9/2197B092583F11ED8181E57BC4F9AE02/JTgA7RbtD_M39wQNDj3xFBwWFhw.crl rsync://rpki.apnic.net/member_repository/A91FB8C9/2197B092583F11ED8181E57BC4F9AE02/JTgA7RbtD_M39wQNDj3xFBwWFhw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JTgA7RbtD_M39wQNDj3xFBwWFhw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 00:45:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 617 (0x269) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FB8C9, serialNumber=253800ED16ED0FF337F7040D0E3DF1141C16161C Validity Not Before: Dec 23 00:45:46 2025 GMT Not After : Dec 30 00:45:46 2025 GMT Subject: CN=6949e63a-032c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:73:a2:01:0c:ed:39:81:e8:3e:b1:02:f4:7e: 36:5b:c7:51:e9:ea:92:ce:ef:52:1b:0d:0f:60:ad: e6:41:fd:9a:aa:3a:a9:90:7e:21:c7:7f:2f:7b:24: b6:ed:4f:7e:6f:df:53:68:76:b6:5a:2b:e2:1a:23: 8e:13:27:c9:b6:b5:a9:32:74:51:cf:fe:ae:17:b5: 22:e7:18:7d:77:8c:50:84:79:ff:c7:e7:ad:df:8f: 31:ba:0b:11:15:b7:43:6c:b6:c4:9d:5c:02:67:8e: 7f:08:c6:05:69:de:d6:57:d0:ca:23:7a:48:b9:4e: 5d:1c:40:be:40:ec:1e:76:ef:89:71:16:c6:8c:5a: 12:0d:80:53:f1:5c:0b:86:17:67:61:db:03:be:f5: 58:ee:85:90:ed:ad:27:b6:f0:58:cf:81:60:ff:16: 80:46:83:3d:0d:29:5c:7e:0e:6e:74:83:e7:d2:c5: 18:fb:71:d8:bc:38:4f:2d:9d:0c:ed:8a:39:b5:76: 27:1d:ab:f8:57:47:06:11:e3:bc:12:ec:b5:13:74: c9:76:0e:76:23:bd:d4:88:3e:76:05:b0:a8:5b:da: d1:56:79:f4:de:c7:75:40:84:46:20:ba:ba:89:93: 26:e5:29:0e:98:21:cd:8d:87:c3:a7:39:54:bb:24: b6:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:24:48:11:DD:FE:F0:56:3F:5C:FE:A0:21:BD:AE:93:E9:B0:BF:58 X509v3 Authority Key Identifier: keyid:25:38:00:ED:16:ED:0F:F3:37:F7:04:0D:0E:3D:F1:14:1C:16:16:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FB8C9/2197B092583F11ED8181E57BC4F9AE02/JTgA7RbtD_M39wQNDj3xFBwWFhw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JTgA7RbtD_M39wQNDj3xFBwWFhw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB8C9/2197B092583F11ED8181E57BC4F9AE02/JTgA7RbtD_M39wQNDj3xFBwWFhw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:ae:92:12:ee:3c:e0:4d:6a:bc:b1:1d:84:63:0b:2c:b5:e7: 76:75:41:67:79:84:0c:a6:52:1c:24:f3:68:66:87:ec:e4:99: 56:9b:c4:bc:ae:8d:a9:aa:36:e1:3b:51:f1:e0:0a:a6:9b:0b: 37:31:d2:74:77:55:e6:5c:62:bc:b8:f3:c3:59:4d:af:2c:15: bf:1c:58:33:97:fc:ec:54:e0:1d:79:69:de:60:86:44:42:8b: fb:3f:76:39:14:f2:70:d6:20:33:68:b6:89:b3:a8:a1:58:94: 36:ec:e4:91:7e:00:9f:46:f5:f8:31:dc:f1:a2:73:37:c8:d3: 17:f9:2a:68:d8:11:1b:bd:62:b9:a2:74:81:90:ae:56:30:75: f7:5a:3e:33:c0:c4:01:ad:5a:23:b0:9c:e0:ca:4c:d4:4b:ec: 1a:51:0a:28:79:7d:40:f6:88:ab:b9:5c:13:96:4b:d7:f0:6c: 63:f2:e6:45:6e:92:e2:fc:e1:cc:4b:49:a4:22:09:f4:31:c6: 77:3d:ae:8b:24:33:3d:db:f0:f8:e6:66:ac:cb:90:59:ed:53: 77:bf:51:1b:56:aa:f8:ef:94:29:52:77:bd:a9:6b:bb:5e:87: 93:55:59:cc:8c:81:21:f0:4b:84:20:e5:d9:c8:26:10:d1:7b: cb:9e:85:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAmkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkI4QzkxMTAvBgNVBAUTKDI1MzgwMEVEMTZFRDBGRjMzN0Y3MDQwRDBFM0RGMTE0 MUMxNjE2MUMwHhcNMjUxMjIzMDA0NTQ2WhcNMjUxMjMwMDA0NTQ2WjAYMRYwFAYD VQQDDA02OTQ5ZTYzYS0wMzJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmnOiAQztOYHoPrEC9H42W8dR6eqSzu9SGw0PYK3mQf2aqjqpkH4hx38veyS2 7U9+b99TaHa2WiviGiOOEyfJtrWpMnRRz/6uF7Ui5xh9d4xQhHn/x+et348xugsR FbdDbLbEnVwCZ45/CMYFad7WV9DKI3pIuU5dHEC+QOwedu+JcRbGjFoSDYBT8VwL hhdnYdsDvvVY7oWQ7a0ntvBYz4Fg/xaARoM9DSlcfg5udIPn0sUY+3HYvDhPLZ0M 7Yo5tXYnHav4V0cGEeO8Euy1E3TJdg52I73UiD52BbCoW9rRVnn03sd1QIRGILq6 iZMm5SkOmCHNjYfDpzlUuyS2RQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIskSBHd /vBWP1z+oCG9rpPpsL9YMB8GA1UdIwQYMBaAFCU4AO0W7Q/zN/cEDQ498RQcFhYc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQjhDOS8yMTk3QjA5MjU4 M0YxMUVEODE4MUU1N0JDNEY5QUUwMi9KVGdBN1JidERfTTM5d1FORGozeEZCd1dG aHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pUZ0E3UmJ0RF9NMzl3UU5EajN4RkJ3V0Zody5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QjhDOS8yMTk3QjA5MjU4M0YxMUVEODE4MUU1N0JDNEY5QUUwMi9KVGdBN1JidERf TTM5d1FORGozeEZCd1dGaHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPrpIS7jzgTWq8sR2EYwssted2dUFneYQMplIcJPNoZofs5JlWm8S8 ro2pqjbhO1Hx4Aqmmws3MdJ0d1XmXGK8uPPDWU2vLBW/HFgzl/zsVOAdeWneYIZE Qov7P3Y5FPJw1iAzaLaJs6ihWJQ27OSRfgCfRvX4MdzxonM3yNMX+Spo2BEbvWK5 onSBkK5WMHX3Wj4zwMQBrVojsJzgykzUS+waUQooeX1A9oiruVwTlkvX8Gxj8uZF bpLi/OHMS0mkIgn0McZ3Pa6LJDM92/D45masy5BZ7VN3v1EbVqr475QpUne9qWu7 XoeTVVnMjIEh8EuEIOXZyCYQ0XvLnoXa -----END CERTIFICATE-----Generated at Wed Dec 24 15:47:03 2025 by rpki-client