This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C3A74/753D71EE3AB511E7B8609F1CC4F9AE02/jhH8tOi9Y9J7hOstUmcMoXT5xDw.mft File: jhH8tOi9Y9J7hOstUmcMoXT5xDw.mft (raw, json) Hash identifier: wn5PUc2cIFymBtOcxQ6DohG38sK9e2wpSZ0Knql0F+U= Subject key identifier: 82:7F:BD:3D:52:E0:F7:0E:F7:35:DF:08:69:BB:A0:4F:81:C0:3A:04 Authority key identifier: 8E:11:FC:B4:E8:BD:63:D2:7B:84:EB:2D:52:67:0C:A1:74:F9:C4:3C Certificate issuer: /CN=A91C3A74/serialNumber=8E11FCB4E8BD63D27B84EB2D52670CA174F9C43C Certificate serial: 1AED Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/jhH8tOi9Y9J7hOstUmcMoXT5xDw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C3A74/753D71EE3AB511E7B8609F1CC4F9AE02/jhH8tOi9Y9J7hOstUmcMoXT5xDw.mft Manifest number: 1AE6 Signing time: Sat 20 Dec 2025 15:34:02 +0000 Manifest this update: Sat 20 Dec 2025 15:34:01 +0000 Manifest next update: Sat 27 Dec 2025 15:34:01 +0000 Files and hashes: 1: jhH8tOi9Y9J7hOstUmcMoXT5xDw.crl (hash: 1UGnyD2ivh/ZmP9PveKqge3dP5+Lhiiv/1+NCpG1Iec=) 2: AFA37450139811EA807F1A26C4F9AE02.roa (hash: EvR5gfpmDfAVmSaNBVyf31LRk9wTqTU6OTSsCqxA5UQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C3A74/753D71EE3AB511E7B8609F1CC4F9AE02/jhH8tOi9Y9J7hOstUmcMoXT5xDw.crl rsync://rpki.apnic.net/member_repository/A91C3A74/753D71EE3AB511E7B8609F1CC4F9AE02/jhH8tOi9Y9J7hOstUmcMoXT5xDw.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/jhH8tOi9Y9J7hOstUmcMoXT5xDw.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 14:50:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6893 (0x1aed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C3A74, serialNumber=8E11FCB4E8BD63D27B84EB2D52670CA174F9C43C Validity Not Before: Dec 20 15:34:01 2025 GMT Not After : Dec 27 15:34:01 2025 GMT Subject: CN=6946c1ea-8843 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:04:67:72:9e:1e:c5:a8:d0:5d:1b:10:32:b1: 3c:2f:04:90:e7:af:f2:4b:57:de:27:2b:4a:d8:77: e9:f9:2c:a8:6e:d2:1d:c4:7c:d3:a8:a1:38:b4:7a: 22:30:51:a6:f8:19:2e:65:4a:fd:3a:ef:7c:70:0e: 4d:2a:22:11:fd:1e:2d:a2:8c:9b:f1:63:93:23:7f: a3:93:ea:52:71:95:da:26:b1:7e:40:3d:50:91:c6: 2e:78:df:f5:db:9a:be:d4:c1:9b:05:74:5b:fa:17: 2d:8e:9c:68:e7:12:d4:3a:5a:c9:f0:a5:2f:6b:bc: 3d:3e:e4:bc:95:26:43:18:62:a1:40:bd:cb:ca:ba: 98:97:af:d1:44:aa:aa:f0:01:60:50:ce:64:65:3a: 41:51:25:62:fc:80:7a:85:af:e0:98:26:59:a2:36: 6e:09:71:3b:76:3c:4f:c3:43:2d:88:ae:58:2c:81: 34:a8:a8:6d:f2:56:19:44:8f:27:52:24:f5:d8:e6: ec:e5:b3:fa:66:04:6d:9c:73:2b:ca:74:9e:a4:a0: 7e:6a:01:87:41:03:c8:97:ff:c2:1f:71:13:b3:ba: ca:99:3a:6e:b4:48:31:72:b6:7e:a7:80:45:e4:b9: 27:02:0e:0a:a8:78:6f:ee:fe:e1:f3:70:13:49:6b: 2a:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:7F:BD:3D:52:E0:F7:0E:F7:35:DF:08:69:BB:A0:4F:81:C0:3A:04 X509v3 Authority Key Identifier: keyid:8E:11:FC:B4:E8:BD:63:D2:7B:84:EB:2D:52:67:0C:A1:74:F9:C4:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C3A74/753D71EE3AB511E7B8609F1CC4F9AE02/jhH8tOi9Y9J7hOstUmcMoXT5xDw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/jhH8tOi9Y9J7hOstUmcMoXT5xDw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C3A74/753D71EE3AB511E7B8609F1CC4F9AE02/jhH8tOi9Y9J7hOstUmcMoXT5xDw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:46:8a:46:10:a8:01:38:8d:07:35:01:e7:43:1a:cf:de:81: a0:91:1e:ee:ec:d4:32:5f:c7:b9:a6:d3:0e:93:75:37:67:91: 66:73:de:38:81:cd:87:86:7c:0b:be:f1:88:8a:f8:e9:ed:60: a5:31:57:21:f2:17:8d:e6:7f:1b:65:af:2c:24:6e:eb:83:64: 95:22:2f:c8:c8:7c:10:a6:37:ad:1d:9e:f5:90:51:17:69:c0: 3d:a8:46:d3:76:cc:4b:24:89:6b:6d:09:f6:0b:1a:30:00:ad: 47:65:cd:71:36:8b:63:57:49:80:85:44:8e:d4:ff:53:24:5d: 58:44:71:ab:03:15:06:89:f3:d8:0b:ae:50:b8:47:32:37:a9: f6:2d:5d:75:b6:03:cd:55:d2:f7:e8:8a:d8:49:90:45:4f:e4: 5b:93:ac:26:e0:e1:cc:0e:ed:82:83:18:99:a4:bf:11:ff:fe: e5:83:81:9f:de:70:58:d8:8f:3e:59:b0:2d:c5:fe:c6:14:3b: 5d:32:b6:e8:a6:0e:ba:aa:af:7c:ef:22:bc:64:da:38:ec:c4: c4:5c:5e:bc:34:d6:d4:7a:9c:6c:06:3e:d6:b6:45:97:e1:5f: 5c:fc:67:9b:04:d8:c3:0f:74:34:b2:2a:5d:ca:f9:34:08:1e: 96:9d:9b:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGu0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzNBNzQxMTAvBgNVBAUTKDhFMTFGQ0I0RThCRDYzRDI3Qjg0RUIyRDUyNjcwQ0Ex NzRGOUM0M0MwHhcNMjUxMjIwMTUzNDAxWhcNMjUxMjI3MTUzNDAxWjAYMRYwFAYD VQQDDA02OTQ2YzFlYS04ODQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxQRncp4exajQXRsQMrE8LwSQ56/yS1feJytK2Hfp+SyobtIdxHzTqKE4tHoi MFGm+BkuZUr9Ou98cA5NKiIR/R4tooyb8WOTI3+jk+pScZXaJrF+QD1QkcYueN/1 25q+1MGbBXRb+hctjpxo5xLUOlrJ8KUva7w9PuS8lSZDGGKhQL3LyrqYl6/RRKqq 8AFgUM5kZTpBUSVi/IB6ha/gmCZZojZuCXE7djxPw0MtiK5YLIE0qKht8lYZRI8n UiT12Obs5bP6ZgRtnHMrynSepKB+agGHQQPIl//CH3ETs7rKmTputEgxcrZ+p4BF 5LknAg4KqHhv7v7h83ATSWsquQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIJ/vT1S 4PcO9zXfCGm7oE+BwDoEMB8GA1UdIwQYMBaAFI4R/LTovWPSe4TrLVJnDKF0+cQ8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDM0E3NC83NTNENzFFRTNB QjUxMUU3Qjg2MDlGMUNDNEY5QUUwMi9qaEg4dE9pOVk5SjdoT3N0VW1jTW9YVDV4 RHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2poSDh0T2k5WTlKN2hPc3RVbWNNb1hUNXhEdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD M0E3NC83NTNENzFFRTNBQjUxMUU3Qjg2MDlGMUNDNEY5QUUwMi9qaEg4dE9pOVk5 SjdoT3N0VW1jTW9YVDV4RHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWRopGEKgBOI0HNQHnQxrP3oGgkR7u7NQyX8e5ptMOk3U3Z5Fmc944 gc2HhnwLvvGIivjp7WClMVch8heN5n8bZa8sJG7rg2SVIi/IyHwQpjetHZ71kFEX acA9qEbTdsxLJIlrbQn2CxowAK1HZc1xNotjV0mAhUSO1P9TJF1YRHGrAxUGifPY C65QuEcyN6n2LV11tgPNVdL36IrYSZBFT+Rbk6wm4OHMDu2CgxiZpL8R//7lg4Gf 3nBY2I8+WbAtxf7GFDtdMrbopg66qq987yK8ZNo47MTEXF68NNbUepxsBj7WtkWX 4V9c/GebBNjDD3Q0sipdyvk0CB6WnZsR -----END CERTIFICATE-----Generated at Sat Dec 20 21:09:59 2025 by rpki-client