This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2A6F/CADFF2FE6E3611EAA10EFF76C4F9AE02/jFqJl_ylvwJw6vhu6MDLZVGrl9E.mft File: jFqJl_ylvwJw6vhu6MDLZVGrl9E.mft (raw, json) Hash identifier: LkFhe8mWlLpd8gVpnkLw+Y6OH1iUe0+ZmDPE1M1kgCc= Subject key identifier: C3:38:40:07:C5:E9:8E:5A:4E:F7:44:C1:F9:D9:F6:FF:76:8D:FF:55 Authority key identifier: 8C:5A:89:97:FC:A5:BF:02:70:EA:F8:6E:E8:C0:CB:65:51:AB:97:D1 Certificate issuer: /CN=A91B2A6F/serialNumber=8C5A8997FCA5BF0270EAF86EE8C0CB6551AB97D1 Certificate serial: 0AA2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jFqJl_ylvwJw6vhu6MDLZVGrl9E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B2A6F/CADFF2FE6E3611EAA10EFF76C4F9AE02/jFqJl_ylvwJw6vhu6MDLZVGrl9E.mft Manifest number: 0A97 Signing time: Sat 20 Dec 2025 19:03:34 +0000 Manifest this update: Sat 20 Dec 2025 19:03:33 +0000 Manifest next update: Sat 27 Dec 2025 19:03:33 +0000 Files and hashes: 1: jFqJl_ylvwJw6vhu6MDLZVGrl9E.crl (hash: P8QMmP9fvIDtS02zS8ipc44I0zr1hcjbfZyOZOgGjn8=) 2: A59E2538BA0211F0892F7E0BC4F9AE02.roa (hash: OtbmYjd+mWe6biEFLJDUdTXgoAn8SFa04cxMhMepJCc=) 3: BDC0899A1FF511ECAE74F266C4F9AE02.roa (hash: r0RKRgF0/rDGEDAesBgC29Z43qYpMBwutyEjFMfF0YY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B2A6F/CADFF2FE6E3611EAA10EFF76C4F9AE02/jFqJl_ylvwJw6vhu6MDLZVGrl9E.crl rsync://rpki.apnic.net/member_repository/A91B2A6F/CADFF2FE6E3611EAA10EFF76C4F9AE02/jFqJl_ylvwJw6vhu6MDLZVGrl9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jFqJl_ylvwJw6vhu6MDLZVGrl9E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 19:03:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2722 (0xaa2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B2A6F, serialNumber=8C5A8997FCA5BF0270EAF86EE8C0CB6551AB97D1 Validity Not Before: Dec 20 19:03:33 2025 GMT Not After : Dec 27 19:03:33 2025 GMT Subject: CN=6946f306-f169 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:41:90:98:e1:81:51:81:26:f0:ac:cb:e6:9b: 4a:9c:b7:ac:1a:b0:9e:4f:f5:77:14:2e:34:46:af: 66:81:2c:08:56:5a:f2:73:66:27:07:5c:9a:de:60: eb:53:7f:9f:fc:92:5f:85:f4:a2:90:3e:c1:11:4d: ef:47:15:4f:2e:1d:52:78:48:54:6d:47:7a:25:b4: 83:6a:2a:84:28:16:5b:74:08:02:05:b1:72:f2:0a: c5:93:55:82:72:b9:33:2f:61:44:4e:57:7c:31:ef: ac:61:89:9a:88:c2:d1:fa:8a:46:d6:b8:4b:50:ad: 78:3d:ae:1d:11:f9:3f:0a:d1:1b:05:0d:15:c6:72: 9a:16:59:5f:42:3b:19:e8:f2:89:db:41:af:b7:6e: e4:ed:2e:8b:0e:cf:33:c6:89:32:15:db:de:91:8b: 75:a2:f2:32:a4:1d:0e:55:cb:8f:04:4a:be:ab:34: 70:ab:c7:86:51:04:f3:bd:28:87:33:82:df:89:2e: 89:76:7f:6f:78:45:9a:0f:32:8f:27:69:62:a0:a4: 3a:51:9e:d8:a4:8d:57:cf:5a:6b:4b:0d:64:1b:5d: 21:7c:7d:0e:75:54:4d:e3:dd:16:ca:99:32:08:a5: 41:11:c1:d1:4d:ab:e1:62:11:e8:97:89:15:6b:eb: 07:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:38:40:07:C5:E9:8E:5A:4E:F7:44:C1:F9:D9:F6:FF:76:8D:FF:55 X509v3 Authority Key Identifier: keyid:8C:5A:89:97:FC:A5:BF:02:70:EA:F8:6E:E8:C0:CB:65:51:AB:97:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B2A6F/CADFF2FE6E3611EAA10EFF76C4F9AE02/jFqJl_ylvwJw6vhu6MDLZVGrl9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jFqJl_ylvwJw6vhu6MDLZVGrl9E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2A6F/CADFF2FE6E3611EAA10EFF76C4F9AE02/jFqJl_ylvwJw6vhu6MDLZVGrl9E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:38:f1:60:8f:9d:ba:86:5a:51:30:8e:9e:21:71:dc:68:66: 1e:f9:5e:89:56:de:59:fa:20:a3:8d:28:69:9d:67:8f:66:7c: 8a:ef:6f:eb:08:8f:26:59:6a:79:30:88:a8:53:2d:d0:a3:95: 85:7e:bf:98:28:be:83:84:1d:f2:eb:48:18:d6:9b:e5:f4:b4: 2f:ac:7b:13:5b:5e:02:af:32:c5:fa:1f:81:0e:4a:14:39:41: bf:37:0c:e0:46:9c:23:10:ba:0b:94:ec:e2:7e:40:f3:94:bf: 5b:d5:97:26:b7:60:e9:ef:f3:7b:36:2d:af:f2:35:26:11:4e: 89:8c:cf:b4:7d:63:eb:f6:0e:c0:89:4a:fc:ef:f7:f8:57:99: eb:37:d4:94:32:f5:2b:3b:ac:5b:b8:90:50:d3:29:29:2c:13: dc:d2:70:0d:3d:44:aa:99:f2:a8:d4:aa:03:e5:3e:9e:1e:26: ca:6b:b4:d2:6e:73:17:11:d4:9c:02:c8:b6:d7:77:5f:1b:93: 38:4d:8b:82:78:cb:d5:ea:ce:54:78:d0:21:95:2e:1e:95:28: 82:f5:2c:32:a7:10:e1:85:2b:bc:9a:2f:4d:69:4e:de:9a:63: 5d:0e:33:03:58:5c:fa:d3:3e:fe:e3:a4:7e:ea:0f:e8:bd:f8: f1:dd:86:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCqIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjJBNkYxMTAvBgNVBAUTKDhDNUE4OTk3RkNBNUJGMDI3MEVBRjg2RUU4QzBDQjY1 NTFBQjk3RDEwHhcNMjUxMjIwMTkwMzMzWhcNMjUxMjI3MTkwMzMzWjAYMRYwFAYD VQQDDA02OTQ2ZjMwNi1mMTY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs0GQmOGBUYEm8KzL5ptKnLesGrCeT/V3FC40Rq9mgSwIVlryc2YnB1ya3mDr U3+f/JJfhfSikD7BEU3vRxVPLh1SeEhUbUd6JbSDaiqEKBZbdAgCBbFy8grFk1WC crkzL2FETld8Me+sYYmaiMLR+opG1rhLUK14Pa4dEfk/CtEbBQ0VxnKaFllfQjsZ 6PKJ20Gvt27k7S6LDs8zxokyFdvekYt1ovIypB0OVcuPBEq+qzRwq8eGUQTzvSiH M4LfiS6Jdn9veEWaDzKPJ2lioKQ6UZ7YpI1Xz1prSw1kG10hfH0OdVRN490Wypky CKVBEcHRTavhYhHol4kVa+sHbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMM4QAfF 6Y5aTvdEwfnZ9v92jf9VMB8GA1UdIwQYMBaAFIxaiZf8pb8CcOr4bujAy2VRq5fR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMkE2Ri9DQURGRjJGRTZF MzYxMUVBQTEwRUZGNzZDNEY5QUUwMi9qRnFKbF95bHZ3Snc2dmh1Nk1ETFpWR3Js OUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pGcUpsX3lsdndKdzZ2aHU2TURMWlZHcmw5RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MkE2Ri9DQURGRjJGRTZFMzYxMUVBQTEwRUZGNzZDNEY5QUUwMi9qRnFKbF95bHZ3 Snc2dmh1Nk1ETFpWR3JsOUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCROPFgj526hlpRMI6eIXHcaGYe+V6JVt5Z+iCjjShpnWePZnyK72/r CI8mWWp5MIioUy3Qo5WFfr+YKL6DhB3y60gY1pvl9LQvrHsTW14CrzLF+h+BDkoU OUG/NwzgRpwjELoLlOzifkDzlL9b1Zcmt2Dp7/N7Ni2v8jUmEU6JjM+0fWPr9g7A iUr87/f4V5nrN9SUMvUrO6xbuJBQ0ykpLBPc0nANPUSqmfKo1KoD5T6eHibKa7TS bnMXEdScAsi213dfG5M4TYuCeMvV6s5UeNAhlS4elSiC9SwypxDhhSu8mi9NaU7e mmNdDjMDWFz60z7+46R+6g/ovfjx3YaR -----END CERTIFICATE-----Generated at Sun Dec 21 14:15:11 2025 by rpki-client