This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91570C9/0227B9AEFA2511EDA7027010C4F9AE02/jhRqR_5i0JoyZs4IOlecrROlgGY.mft File: jhRqR_5i0JoyZs4IOlecrROlgGY.mft (raw, json) Hash identifier: /Uit+1A903nSYQSkxYORIZUfdHt5VV0IaxDY8QiODOo= Subject key identifier: 5C:5A:D5:98:4F:50:AF:C4:A8:5B:D0:6B:DF:A5:BE:41:AD:6C:8B:4F Authority key identifier: 8E:14:6A:47:FE:62:D0:9A:32:66:CE:08:3A:57:9C:AD:13:A5:80:66 Certificate issuer: /CN=A91570C9/serialNumber=8E146A47FE62D09A3266CE083A579CAD13A58066 Certificate serial: 01E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jhRqR_5i0JoyZs4IOlecrROlgGY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91570C9/0227B9AEFA2511EDA7027010C4F9AE02/jhRqR_5i0JoyZs4IOlecrROlgGY.mft Manifest number: 01E2 Signing time: Sun 21 Dec 2025 01:55:22 +0000 Manifest this update: Sun 21 Dec 2025 01:55:22 +0000 Manifest next update: Sun 28 Dec 2025 01:55:22 +0000 Files and hashes: 1: jhRqR_5i0JoyZs4IOlecrROlgGY.crl (hash: zY+U6/jR7n+Wm5QANTd/Ml0mBLhzVWHTebnds6aAOM0=) 2: DFFEC4ECFA2B11ED89B90A2FC4F9AE02.roa (hash: yNzSo18Zr+VZZ8+QcBD6VKrhKtuzioN93vYAY/qtNGg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91570C9/0227B9AEFA2511EDA7027010C4F9AE02/jhRqR_5i0JoyZs4IOlecrROlgGY.crl rsync://rpki.apnic.net/member_repository/A91570C9/0227B9AEFA2511EDA7027010C4F9AE02/jhRqR_5i0JoyZs4IOlecrROlgGY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jhRqR_5i0JoyZs4IOlecrROlgGY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 01:55:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 485 (0x1e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91570C9, serialNumber=8E146A47FE62D09A3266CE083A579CAD13A58066 Validity Not Before: Dec 21 01:55:22 2025 GMT Not After : Dec 28 01:55:22 2025 GMT Subject: CN=6947538a-b8db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:66:d6:dd:a9:ba:82:a7:20:cd:7f:ab:4b:6e: 0f:53:ea:6e:67:b7:92:c5:24:2f:15:0b:49:6a:6a: c3:fb:7d:ac:3e:11:5e:7a:e8:c1:58:70:02:73:7f: eb:2b:dc:9a:26:a0:b1:d9:8a:02:ca:63:97:ce:c1: 0d:32:40:64:ff:de:06:96:b8:a5:a8:ef:4c:96:e7: da:73:ec:5f:e0:16:66:5c:91:72:c5:d8:ed:57:3b: c6:79:05:c8:81:97:3e:66:71:e7:85:a9:c0:e1:68: 19:ab:c3:dc:7f:f6:57:37:aa:12:ca:bc:19:d9:67: c8:ba:28:5f:a3:25:f3:c3:d0:7b:8b:c4:0d:24:ce: 58:70:91:11:4f:84:ef:33:89:22:30:61:ad:c1:79: 6e:d6:12:89:1a:c1:aa:a2:31:60:60:64:b2:c7:76: 1c:43:6e:f7:ee:c7:24:0c:f3:cc:39:41:36:a2:3e: 41:ae:26:53:ef:f7:96:ea:cb:0b:ad:97:25:ae:3f: fd:f9:ea:36:a6:20:2a:22:9c:2f:40:98:18:b3:0a: 91:b9:87:ff:6d:c1:8a:45:39:36:ac:96:8d:db:66: 98:76:72:34:43:82:7b:41:6b:5a:c0:16:35:3b:91: 63:30:cc:5a:40:5f:b1:c2:3c:0b:96:e5:d8:cb:ad: 7f:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:5A:D5:98:4F:50:AF:C4:A8:5B:D0:6B:DF:A5:BE:41:AD:6C:8B:4F X509v3 Authority Key Identifier: keyid:8E:14:6A:47:FE:62:D0:9A:32:66:CE:08:3A:57:9C:AD:13:A5:80:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91570C9/0227B9AEFA2511EDA7027010C4F9AE02/jhRqR_5i0JoyZs4IOlecrROlgGY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jhRqR_5i0JoyZs4IOlecrROlgGY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91570C9/0227B9AEFA2511EDA7027010C4F9AE02/jhRqR_5i0JoyZs4IOlecrROlgGY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:ff:17:ff:11:1a:c3:9c:d3:41:2b:43:eb:54:36:58:e3:f4: 02:d7:f4:56:0d:7c:c9:20:8a:02:17:6a:4e:e8:ec:d4:5f:99: 43:71:32:dc:5f:33:92:ad:2c:2a:07:8f:61:db:02:02:2b:1c: b5:a3:09:0d:43:da:c4:2b:21:2c:ba:39:35:a8:70:bf:7f:50: 7e:36:2b:21:50:85:75:48:2c:e2:41:7c:34:a5:de:b3:40:ed: 9a:47:26:4c:1c:4f:c4:18:b5:c0:93:fb:64:3a:b1:21:9a:6f: 9e:c4:9b:53:30:d1:2a:4f:d2:b1:38:a7:b3:cb:db:0e:07:df: 12:a8:c2:f2:d6:d1:d2:1a:e6:b7:bd:e1:05:8d:bb:ca:76:58: 74:46:3f:e2:62:fe:0b:86:d3:29:0e:27:4e:6d:bd:82:78:a9: a5:dd:42:59:c3:42:33:50:06:d7:65:db:05:88:40:86:e8:c7: a1:3f:e8:9f:27:80:0c:5c:5d:e0:8b:d0:07:f2:89:63:1e:c3: 10:70:5e:71:c3:84:ca:95:bf:1f:45:09:92:93:9f:72:9d:af: d8:95:5c:c9:c2:40:96:eb:3e:c2:73:6b:5e:af:4f:37:30:bd: f3:fb:1e:41:97:30:e2:81:e6:b6:dc:24:9e:a9:16:27:98:fd: c9:12:31:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTcwQzkxMTAvBgNVBAUTKDhFMTQ2QTQ3RkU2MkQwOUEzMjY2Q0UwODNBNTc5Q0FE MTNBNTgwNjYwHhcNMjUxMjIxMDE1NTIyWhcNMjUxMjI4MDE1NTIyWjAYMRYwFAYD VQQDDA02OTQ3NTM4YS1iOGRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvmbW3am6gqcgzX+rS24PU+puZ7eSxSQvFQtJamrD+32sPhFeeujBWHACc3/r K9yaJqCx2YoCymOXzsENMkBk/94GlrilqO9Mlufac+xf4BZmXJFyxdjtVzvGeQXI gZc+ZnHnhanA4WgZq8Pcf/ZXN6oSyrwZ2WfIuihfoyXzw9B7i8QNJM5YcJERT4Tv M4kiMGGtwXlu1hKJGsGqojFgYGSyx3YcQ2737sckDPPMOUE2oj5BriZT7/eW6ssL rZclrj/9+eo2piAqIpwvQJgYswqRuYf/bcGKRTk2rJaN22aYdnI0Q4J7QWtawBY1 O5FjMMxaQF+xwjwLluXYy61/5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFxa1ZhP UK/EqFvQa9+lvkGtbItPMB8GA1UdIwQYMBaAFI4Uakf+YtCaMmbOCDpXnK0TpYBm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NzBDOS8wMjI3QjlBRUZB MjUxMUVEQTcwMjcwMTBDNEY5QUUwMi9qaFJxUl81aTBKb3laczRJT2xlY3JST2xn R1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2poUnFSXzVpMEpveVpzNElPbGVjclJPbGdHWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NzBDOS8wMjI3QjlBRUZBMjUxMUVEQTcwMjcwMTBDNEY5QUUwMi9qaFJxUl81aTBK b3laczRJT2xlY3JST2xnR1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAD/xf/ERrDnNNBK0PrVDZY4/QC1/RWDXzJIIoCF2pO6OzUX5lDcTLc XzOSrSwqB49h2wICKxy1owkNQ9rEKyEsujk1qHC/f1B+NishUIV1SCziQXw0pd6z QO2aRyZMHE/EGLXAk/tkOrEhmm+exJtTMNEqT9KxOKezy9sOB98SqMLy1tHSGua3 veEFjbvKdlh0Rj/iYv4LhtMpDidObb2CeKml3UJZw0IzUAbXZdsFiECG6MehP+if J4AMXF3gi9AH8oljHsMQcF5xw4TKlb8fRQmSk59yna/YlVzJwkCW6z7Cc2ter083 ML3z+x5BlzDigea23CSeqRYnmP3JEjHL -----END CERTIFICATE-----Generated at Mon Dec 22 14:00:36 2025 by rpki-client