This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A97F0/A66319F012D911EAA16A4B61C4F9AE02/jGb5wOZorJCB33ENYELfR0kLCrk.mft File: jGb5wOZorJCB33ENYELfR0kLCrk.mft (raw, json) Hash identifier: NBZgM+qSYS6Jlo5pF6BO5RqENp0f2jzjP5skymKDeDU= Subject key identifier: 33:3A:17:F4:84:B8:1B:17:25:B2:CE:B2:AD:45:42:32:C9:99:E0:83 Authority key identifier: 8C:66:F9:C0:E6:68:AC:90:81:DF:71:0D:60:42:DF:47:49:0B:0A:B9 Certificate issuer: /CN=A91A97F0/serialNumber=8C66F9C0E668AC9081DF710D6042DF47490B0AB9 Certificate serial: 0C9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jGb5wOZorJCB33ENYELfR0kLCrk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A97F0/A66319F012D911EAA16A4B61C4F9AE02/jGb5wOZorJCB33ENYELfR0kLCrk.mft Manifest number: 0C85 Signing time: Thu 18 Dec 2025 18:18:45 +0000 Manifest this update: Thu 18 Dec 2025 18:18:45 +0000 Manifest next update: Thu 25 Dec 2025 18:18:45 +0000 Files and hashes: 1: jGb5wOZorJCB33ENYELfR0kLCrk.crl (hash: mbOtZJgK++ttuY1hHDJzsCkzhkeU49WVW96e16jluEo=) 2: 90576660E19711EFA11C2227C4F9AE02.roa (hash: 4znOjftmOLUP9F0sqZtn3shUbp4rIvm9xbYnsSSpuqA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A97F0/A66319F012D911EAA16A4B61C4F9AE02/jGb5wOZorJCB33ENYELfR0kLCrk.crl rsync://rpki.apnic.net/member_repository/A91A97F0/A66319F012D911EAA16A4B61C4F9AE02/jGb5wOZorJCB33ENYELfR0kLCrk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jGb5wOZorJCB33ENYELfR0kLCrk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 18:18:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3226 (0xc9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A97F0, serialNumber=8C66F9C0E668AC9081DF710D6042DF47490B0AB9 Validity Not Before: Dec 18 18:18:45 2025 GMT Not After : Dec 25 18:18:45 2025 GMT Subject: CN=69444585-10e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:10:b7:00:62:04:29:67:5d:a8:9b:f5:29:b4: 53:d2:a3:53:ed:d2:72:9e:c7:64:8f:b8:f2:25:cb: df:82:2d:f8:89:4e:d9:97:eb:a3:66:80:8f:02:c2: cd:a1:4b:19:54:1e:02:2f:74:ea:35:2d:b1:89:10: 7f:15:db:af:85:bd:c4:8d:ae:70:38:1f:9c:b8:74: 24:60:19:13:91:fc:fd:34:28:05:16:2f:96:56:a7: da:79:df:4b:e4:4b:a0:89:0a:b1:c0:de:19:4d:38: 3f:e0:22:5d:82:e5:aa:67:8e:f4:93:75:4a:3a:13: 5e:08:02:3f:da:f8:23:e5:9d:39:7f:aa:f8:e0:3c: e3:59:fd:e3:d0:c0:f7:99:df:6e:9c:c7:cd:e7:bf: bd:57:02:64:3e:c0:ff:4e:cc:49:cf:aa:85:d7:e1: 75:50:1f:33:f0:ff:29:3c:ce:1e:1c:12:c6:af:f0: 7d:ff:7a:8a:7a:53:3b:05:72:3c:11:ee:b4:46:e0: 3d:ad:2e:eb:3d:f1:1b:2a:64:66:8f:66:98:7f:ac: 8a:fe:a4:15:34:b9:e3:d9:0c:41:e1:fa:9a:7d:b8: da:3d:2a:10:a6:5e:dd:63:5a:8b:d2:61:55:28:2d: 33:ef:73:ad:d7:82:58:d9:77:2f:26:30:e4:b7:64: c8:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:3A:17:F4:84:B8:1B:17:25:B2:CE:B2:AD:45:42:32:C9:99:E0:83 X509v3 Authority Key Identifier: keyid:8C:66:F9:C0:E6:68:AC:90:81:DF:71:0D:60:42:DF:47:49:0B:0A:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A97F0/A66319F012D911EAA16A4B61C4F9AE02/jGb5wOZorJCB33ENYELfR0kLCrk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jGb5wOZorJCB33ENYELfR0kLCrk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A97F0/A66319F012D911EAA16A4B61C4F9AE02/jGb5wOZorJCB33ENYELfR0kLCrk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:fa:60:48:4d:85:42:2b:60:ef:ed:b5:9c:0d:af:5b:64:63: 10:cd:57:ca:85:65:95:9b:04:ab:f3:9d:d5:1b:32:20:de:d3: de:58:54:44:74:4f:d9:2d:58:36:77:11:b0:c0:71:58:a4:cf: f3:0f:95:ff:f8:9c:95:16:37:e8:dc:d5:c9:ea:22:44:7e:68: 64:1d:af:ab:70:72:8f:d4:da:65:03:62:66:47:6a:f9:39:08: f1:22:90:76:8a:29:4c:30:31:6c:df:62:82:62:48:ad:44:99: 03:cb:86:4b:17:1b:6c:f6:ac:e9:33:8c:b1:ac:d6:89:05:b0: df:95:dd:27:06:c2:6b:57:ee:ae:f5:c8:67:85:c6:55:b9:d1: 54:5d:b7:b1:9c:20:63:19:d7:bc:42:43:32:e9:1e:0e:29:b1: 8c:1e:91:17:bd:0c:a2:44:f1:cf:b0:59:63:0f:12:d3:ee:bf: d9:6d:57:d8:a4:d9:29:e3:b5:78:34:60:ff:74:c9:93:b1:3f: 82:ec:7f:76:f0:de:60:96:f4:10:9a:98:dc:43:6f:50:88:d8: 4c:17:06:61:86:ae:6c:44:f2:ca:30:30:2d:0e:5b:55:18:e8: f2:41:52:a9:72:1e:87:45:97:48:47:3d:86:ca:5a:1e:80:5b: a9:93:31:4c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDJowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTk3RjAxMTAvBgNVBAUTKDhDNjZGOUMwRTY2OEFDOTA4MURGNzEwRDYwNDJERjQ3 NDkwQjBBQjkwHhcNMjUxMjE4MTgxODQ1WhcNMjUxMjI1MTgxODQ1WjAYMRYwFAYD VQQDDA02OTQ0NDU4NS0xMGU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoRC3AGIEKWddqJv1KbRT0qNT7dJynsdkj7jyJcvfgi34iU7Zl+ujZoCPAsLN oUsZVB4CL3TqNS2xiRB/Fduvhb3Eja5wOB+cuHQkYBkTkfz9NCgFFi+WVqfaed9L 5EugiQqxwN4ZTTg/4CJdguWqZ470k3VKOhNeCAI/2vgj5Z05f6r44DzjWf3j0MD3 md9unMfN57+9VwJkPsD/TsxJz6qF1+F1UB8z8P8pPM4eHBLGr/B9/3qKelM7BXI8 Ee60RuA9rS7rPfEbKmRmj2aYf6yK/qQVNLnj2QxB4fqafbjaPSoQpl7dY1qL0mFV KC0z73Ot14JY2XcvJjDkt2TIKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDM6F/SE uBsXJbLOsq1FQjLJmeCDMB8GA1UdIwQYMBaAFIxm+cDmaKyQgd9xDWBC30dJCwq5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTdGMC9BNjYzMTlGMDEy RDkxMUVBQTE2QTRCNjFDNEY5QUUwMi9qR2I1d09ab3JKQ0IzM0VOWUVMZlIwa0xD cmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pHYjV3T1pvckpDQjMzRU5ZRUxmUjBrTENyay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OTdGMC9BNjYzMTlGMDEyRDkxMUVBQTE2QTRCNjFDNEY5QUUwMi9qR2I1d09ab3JK Q0IzM0VOWUVMZlIwa0xDcmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBR+mBITYVCK2Dv7bWcDa9bZGMQzVfKhWWVmwSr853VGzIg3tPeWFRE dE/ZLVg2dxGwwHFYpM/zD5X/+JyVFjfo3NXJ6iJEfmhkHa+rcHKP1NplA2JmR2r5 OQjxIpB2iilMMDFs32KCYkitRJkDy4ZLFxts9qzpM4yxrNaJBbDfld0nBsJrV+6u 9chnhcZVudFUXbexnCBjGde8QkMy6R4OKbGMHpEXvQyiRPHPsFljDxLT7r/ZbVfY pNkp47V4NGD/dMmTsT+C7H928N5glvQQmpjcQ29QiNhMFwZhhq5sRPLKMDAtDltV GOjyQVKpch6HRZdIRz2GyloegFupkzFM -----END CERTIFICATE-----Generated at Fri Dec 19 20:31:17 2025 by rpki-client