This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft File: JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft (raw, json) Hash identifier: 14sKDonB6kZ3Pg0XgR0f0ntk8Swb4PXQJpxlU2PsJbo= Subject key identifier: CB:15:F7:BB:D2:2F:D4:FC:4D:B4:EF:12:B9:50:EA:8D:38:23:01:59 Authority key identifier: 24:53:CE:7C:42:53:DB:B2:C7:AC:3D:29:01:3E:90:D5:F5:3C:5D:09 Certificate issuer: /CN=A91820CC/serialNumber=2453CE7C4253DBB2C7AC3D29013E90D5F53C5D09 Certificate serial: 8E Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/JFPOfEJT27LHrD0pAT6Q1fU8XQk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft Manifest number: 8C Signing time: Fri 19 Dec 2025 05:40:02 +0000 Manifest this update: Fri 19 Dec 2025 05:40:02 +0000 Manifest next update: Fri 26 Dec 2025 05:40:02 +0000 Files and hashes: 1: JFPOfEJT27LHrD0pAT6Q1fU8XQk.crl (hash: UW7M7mRlFPnFFlTqGVpFAO5LKzCFwG5hn2OevsgdCxU=) 2: D9D9E8C0191511F092B86383C4F9AE02.roa (hash: gLLXVBbnqOuYpmPZP1sg2HQN+ZDT78K787nO1Ano868=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.crl rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/JFPOfEJT27LHrD0pAT6Q1fU8XQk.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 05:40:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 142 (0x8e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91820CC, serialNumber=2453CE7C4253DBB2C7AC3D29013E90D5F53C5D09 Validity Not Before: Dec 19 05:40:02 2025 GMT Not After : Dec 26 05:40:02 2025 GMT Subject: CN=6944e532-8e79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:62:07:4b:72:7a:fd:38:d4:ae:74:df:a7:99: 40:98:42:d2:87:44:91:fe:65:a6:1f:79:77:99:12: 4c:82:98:b0:34:97:4e:bd:02:2d:aa:f5:36:94:aa: 4f:19:7b:95:42:e2:a6:dd:0d:3a:18:5f:b8:31:82: c1:3b:c7:4b:98:c9:46:fc:e6:14:4b:1e:20:52:0f: fa:c5:7d:97:6a:93:b5:0a:fa:b8:f7:7c:45:96:7b: 25:0d:a6:90:a0:08:e8:c6:17:28:35:ce:9e:86:34: 3c:1e:90:f3:f1:9e:0f:80:76:a9:f3:0f:1b:f0:30: 2d:85:c0:75:1c:4d:65:71:72:bd:2f:fb:11:dc:53: 74:3c:b5:56:c7:0d:f2:3b:92:18:df:42:ff:a1:d8: 2f:82:53:2c:b0:27:ec:8f:ea:47:e5:b2:a1:ab:5e: cd:06:6c:6e:05:b7:db:c8:00:af:49:16:94:5f:b9: 7a:8e:7f:76:92:d9:1b:b4:bc:d5:a9:66:93:55:eb: 46:8b:1a:d4:18:55:f1:e4:d0:f4:02:b1:01:8c:9b: 88:28:e8:5d:bd:e6:c8:f6:cc:3e:88:61:0a:db:9d: 97:c8:3b:cf:bb:27:4a:01:c6:32:3c:ab:28:b2:77: 0e:68:a6:c2:3e:af:5d:58:50:b7:93:c7:df:ed:52: 16:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:15:F7:BB:D2:2F:D4:FC:4D:B4:EF:12:B9:50:EA:8D:38:23:01:59 X509v3 Authority Key Identifier: keyid:24:53:CE:7C:42:53:DB:B2:C7:AC:3D:29:01:3E:90:D5:F5:3C:5D:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/JFPOfEJT27LHrD0pAT6Q1fU8XQk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:1c:08:e1:1e:dd:a0:76:13:3a:4a:3c:79:f3:53:6f:8c:62: 4d:c3:3f:8d:26:e9:a0:91:88:a8:a2:be:4b:a3:81:ca:5e:62: da:25:66:2b:72:47:8c:7a:53:b0:92:b6:d4:d5:12:2c:ed:df: d5:bf:85:9b:23:e2:ba:3f:58:0a:f3:82:2d:66:60:bf:a4:a9: 3e:cd:11:58:b2:32:6e:e0:af:bf:1f:62:3e:e5:84:6a:49:e0: b9:83:7d:11:ac:3e:6a:70:dd:53:15:01:60:17:18:fe:62:af: 56:5f:00:c6:79:40:d0:77:af:47:f0:bd:d6:f8:2c:22:ec:c0: 0e:01:1c:08:fd:91:0c:ad:2e:f0:05:69:21:3a:06:5a:c9:c8: 59:9e:65:37:ce:19:b7:32:e5:94:e5:7b:53:d6:8e:ae:d9:b2: f9:00:77:58:bb:64:4f:d0:c0:e0:8e:3c:0d:83:0d:47:5d:d9: d3:dc:80:df:2f:9b:06:73:34:e8:4d:5e:45:7e:60:59:49:ba: 68:e5:6e:4e:29:6f:7d:99:23:38:47:2a:34:23:eb:b2:63:44: 82:3f:01:11:7a:6e:14:c9:49:cc:98:0f:fc:05:d3:56:1c:b6: c4:b3:00:d4:07:18:3a:0d:85:07:4f:e5:b8:4c:3b:1c:af:40: 06:fb:60:ac -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAI4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODIwQ0MxMTAvBgNVBAUTKDI0NTNDRTdDNDI1M0RCQjJDN0FDM0QyOTAxM0U5MEQ1 RjUzQzVEMDkwHhcNMjUxMjE5MDU0MDAyWhcNMjUxMjI2MDU0MDAyWjAYMRYwFAYD VQQDDA02OTQ0ZTUzMi04ZTc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmGIHS3J6/TjUrnTfp5lAmELSh0SR/mWmH3l3mRJMgpiwNJdOvQItqvU2lKpP GXuVQuKm3Q06GF+4MYLBO8dLmMlG/OYUSx4gUg/6xX2XapO1Cvq493xFlnslDaaQ oAjoxhcoNc6ehjQ8HpDz8Z4PgHap8w8b8DAthcB1HE1lcXK9L/sR3FN0PLVWxw3y O5IY30L/odgvglMssCfsj+pH5bKhq17NBmxuBbfbyACvSRaUX7l6jn92ktkbtLzV qWaTVetGixrUGFXx5ND0ArEBjJuIKOhdvebI9sw+iGEK252XyDvPuydKAcYyPKso sncOaKbCPq9dWFC3k8ff7VIW9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMsV97vS L9T8TbTvErlQ6o04IwFZMB8GA1UdIwQYMBaAFCRTznxCU9uyx6w9KQE+kNX1PF0J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MjBDQy9CREQ0QUYzQzBC RDkxMUYwOEM2MDdGODdDNEY5QUUwMi9KRlBPZkVKVDI3TEhyRDBwQVQ2UTFmVThY UWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0pGUE9mRUpUMjdMSHJEMHBBVDZRMWZVOFhRay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MjBDQy9CREQ0QUYzQzBCRDkxMUYwOEM2MDdGODdDNEY5QUUwMi9KRlBPZkVKVDI3 TEhyRDBwQVQ2UTFmVThYUWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQChHAjhHt2gdhM6Sjx581NvjGJNwz+NJumgkYioor5Lo4HKXmLaJWYr ckeMelOwkrbU1RIs7d/Vv4WbI+K6P1gK84ItZmC/pKk+zRFYsjJu4K+/H2I+5YRq SeC5g30RrD5qcN1TFQFgFxj+Yq9WXwDGeUDQd69H8L3W+Cwi7MAOARwI/ZEMrS7w BWkhOgZaychZnmU3zhm3MuWU5XtT1o6u2bL5AHdYu2RP0MDgjjwNgw1HXdnT3IDf L5sGczToTV5FfmBZSbpo5W5OKW99mSM4Ryo0I+uyY0SCPwERem4UyUnMmA/8BdNW HLbEswDUBxg6DYUHT+W4TDscr0AG+2Cs -----END CERTIFICATE-----Generated at Sat Dec 20 21:09:00 2025 by rpki-client