This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4460/04986476148711F0A79EAB26C4F9AE02/iJGVOO7eyDINXq9rHzKymCOreBA.mft File: iJGVOO7eyDINXq9rHzKymCOreBA.mft (raw, json) Hash identifier: wCsn6AfAeJXB5FK8eA/2SqtDCJCoWcptr4t0a53IegM= Subject key identifier: A1:21:03:3D:7C:EF:D9:B8:44:53:3B:74:AF:91:34:3B:AF:28:6D:11 Authority key identifier: 88:91:95:38:EE:DE:C8:32:0D:5E:AF:6B:1F:32:B2:98:23:AB:78:10 Certificate issuer: /CN=A91B4460/serialNumber=88919538EEDEC8320D5EAF6B1F32B29823AB7810 Certificate serial: 82 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iJGVOO7eyDINXq9rHzKymCOreBA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4460/04986476148711F0A79EAB26C4F9AE02/iJGVOO7eyDINXq9rHzKymCOreBA.mft Manifest number: 81 Signing time: Sun 21 Dec 2025 05:44:47 +0000 Manifest this update: Sun 21 Dec 2025 05:44:47 +0000 Manifest next update: Sun 28 Dec 2025 05:44:47 +0000 Files and hashes: 1: iJGVOO7eyDINXq9rHzKymCOreBA.crl (hash: GsS0yZMn4aPLwpi1ILFql/wnsywINht7zn7Kkb5Xx7o=) 2: 7A85F9D2148711F0AF960528C4F9AE02.roa (hash: v93VVwAanSucSOqj9EwS1pD5Lqih1cuGiSwwM282Dpg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4460/04986476148711F0A79EAB26C4F9AE02/iJGVOO7eyDINXq9rHzKymCOreBA.crl rsync://rpki.apnic.net/member_repository/A91B4460/04986476148711F0A79EAB26C4F9AE02/iJGVOO7eyDINXq9rHzKymCOreBA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iJGVOO7eyDINXq9rHzKymCOreBA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 05:44:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 130 (0x82) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4460, serialNumber=88919538EEDEC8320D5EAF6B1F32B29823AB7810 Validity Not Before: Dec 21 05:44:47 2025 GMT Not After : Dec 28 05:44:47 2025 GMT Subject: CN=6947894f-787a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:cb:c4:46:01:69:5f:cd:79:91:b9:4c:b9:d3: a4:37:24:78:6f:d4:2e:1f:b5:6d:4e:47:ad:ee:21: e2:b3:89:da:53:33:9f:ce:22:f3:1c:08:2b:52:d4: 3b:62:68:ea:da:e6:61:2e:fc:7a:8d:7f:ff:45:46: d9:55:3b:bc:df:1e:c9:f0:15:55:d9:b2:f8:92:30: 1d:c8:ee:d6:47:46:b0:43:63:57:e5:58:fb:5c:be: 67:7d:35:3e:ff:31:2a:f9:ea:32:c0:45:ae:2b:ab: a4:5f:53:6b:a3:46:49:fd:9d:34:d7:53:22:5c:07: fd:b1:82:a4:a2:41:5b:f7:e6:ef:11:6b:cc:cd:b5: d0:92:1c:e3:43:77:6e:5f:ec:da:39:29:24:4b:f4: 05:90:3b:d1:a0:50:93:fd:a0:f2:36:9a:aa:e3:a1: 78:c3:7d:d8:1d:52:00:53:84:59:d0:ed:63:f5:f1: c8:53:bd:72:0a:91:c4:2c:f6:c5:37:bb:47:b2:53: 83:c1:44:e5:78:81:8a:70:41:08:3e:ed:64:80:64: f7:e3:8f:92:57:5f:87:ff:b1:bf:de:b6:36:d4:98: 6c:0e:1f:e1:ec:22:e2:dc:4b:7b:e1:e2:fe:db:f0: f8:99:fa:1a:e7:38:8a:23:61:e7:73:74:ca:8f:cb: f8:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:21:03:3D:7C:EF:D9:B8:44:53:3B:74:AF:91:34:3B:AF:28:6D:11 X509v3 Authority Key Identifier: keyid:88:91:95:38:EE:DE:C8:32:0D:5E:AF:6B:1F:32:B2:98:23:AB:78:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4460/04986476148711F0A79EAB26C4F9AE02/iJGVOO7eyDINXq9rHzKymCOreBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iJGVOO7eyDINXq9rHzKymCOreBA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4460/04986476148711F0A79EAB26C4F9AE02/iJGVOO7eyDINXq9rHzKymCOreBA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:6f:a2:03:dd:88:8f:e2:ac:d7:af:a9:6f:df:a5:9b:06:7f: 8e:bb:c5:dc:8a:a9:4f:d9:b6:66:95:57:47:5a:2e:e2:8e:98: a8:0e:70:56:52:9c:34:f4:e1:e8:9c:64:b2:15:3e:05:cc:b8: 30:bd:23:89:93:13:f3:b6:40:7b:af:76:dc:5f:fb:34:5a:9c: dc:5a:98:7f:5f:fd:a8:27:48:1e:0a:5e:e1:3a:46:03:8b:ba: 52:d1:f9:b8:0f:1b:d6:4d:8b:a9:92:5f:de:f3:d0:82:84:e7: 6d:bf:f9:8a:72:6a:f5:6b:de:92:39:50:dc:22:69:98:f8:72: bb:77:84:52:e7:5d:ca:84:47:2e:27:bd:8a:23:41:89:5d:0f: a9:53:ef:e4:0f:3c:3d:44:87:cd:b4:65:48:1a:8a:09:83:4a: 1f:27:c1:c7:46:0e:a9:6b:00:62:4b:4b:82:58:76:5b:d9:83: 88:db:00:41:98:17:e7:2d:96:c2:2f:c0:f1:3a:80:e0:5b:ef: ac:b1:94:e8:e7:a8:ea:2d:92:2e:e5:ce:c0:e5:e1:49:aa:51: 6f:16:73:1a:05:8c:ad:13:3a:0d:9c:30:fe:97:f7:5e:9c:fa: 67:3d:46:b9:cc:4d:c9:f3:71:e6:a9:2e:a9:fe:ed:11:f0:fd: 7e:11:40:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQ0NjAxMTAvBgNVBAUTKDg4OTE5NTM4RUVERUM4MzIwRDVFQUY2QjFGMzJCMjk4 MjNBQjc4MTAwHhcNMjUxMjIxMDU0NDQ3WhcNMjUxMjI4MDU0NDQ3WjAYMRYwFAYD VQQDDA02OTQ3ODk0Zi03ODdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoMvERgFpX815kblMudOkNyR4b9QuH7VtTket7iHis4naUzOfziLzHAgrUtQ7 Ymjq2uZhLvx6jX//RUbZVTu83x7J8BVV2bL4kjAdyO7WR0awQ2NX5Vj7XL5nfTU+ /zEq+eoywEWuK6ukX1Nro0ZJ/Z0011MiXAf9sYKkokFb9+bvEWvMzbXQkhzjQ3du X+zaOSkkS/QFkDvRoFCT/aDyNpqq46F4w33YHVIAU4RZ0O1j9fHIU71yCpHELPbF N7tHslODwUTleIGKcEEIPu1kgGT344+SV1+H/7G/3rY21JhsDh/h7CLi3Et74eL+ 2/D4mfoa5ziKI2Hnc3TKj8v4+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKEhAz18 79m4RFM7dK+RNDuvKG0RMB8GA1UdIwQYMBaAFIiRlTju3sgyDV6vax8yspgjq3gQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDQ2MC8wNDk4NjQ3NjE0 ODcxMUYwQTc5RUFCMjZDNEY5QUUwMi9pSkdWT083ZXlESU5YcTlySHpLeW1DT3Jl QkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lKR1ZPTzdleURJTlhxOXJIekt5bUNPcmVCQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDQ2MC8wNDk4NjQ3NjE0ODcxMUYwQTc5RUFCMjZDNEY5QUUwMi9pSkdWT083ZXlE SU5YcTlySHpLeW1DT3JlQkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQb6ID3YiP4qzXr6lv36WbBn+Ou8XciqlP2bZmlVdHWi7ijpioDnBW Upw09OHonGSyFT4FzLgwvSOJkxPztkB7r3bcX/s0WpzcWph/X/2oJ0geCl7hOkYD i7pS0fm4DxvWTYupkl/e89CChOdtv/mKcmr1a96SOVDcImmY+HK7d4RS513KhEcu J72KI0GJXQ+pU+/kDzw9RIfNtGVIGooJg0ofJ8HHRg6pawBiS0uCWHZb2YOI2wBB mBfnLZbCL8DxOoDgW++ssZTo56jqLZIu5c7A5eFJqlFvFnMaBYytEzoNnDD+l/de nPpnPUa5zE3J83HmqS6p/u0R8P1+EUA0 -----END CERTIFICATE-----Generated at Sun Dec 21 15:02:31 2025 by rpki-client