This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4696/D6A11C4A90BF11ED8CC1E783C4F9AE02/J7hyLIWcpPbwPsHgYf3Uw7m0l-U.mft File: J7hyLIWcpPbwPsHgYf3Uw7m0l-U.mft (raw, json) Hash identifier: jzWcpN2tz1npnl4jlMIAtyaHSndJfjm6N+qXy9u0Eus= Subject key identifier: 40:B7:A4:62:F3:8A:92:52:82:03:4E:CB:26:EE:D3:2F:DE:3D:35:77 Authority key identifier: 27:B8:72:2C:85:9C:A4:F6:F0:3E:C1:E0:61:FD:D4:C3:B9:B4:97:E5 Certificate issuer: /CN=A91E4696/serialNumber=27B8722C859CA4F6F03EC1E061FDD4C3B9B497E5 Certificate serial: 0237 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J7hyLIWcpPbwPsHgYf3Uw7m0l-U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4696/D6A11C4A90BF11ED8CC1E783C4F9AE02/J7hyLIWcpPbwPsHgYf3Uw7m0l-U.mft Manifest number: 022D Signing time: Sun 21 Dec 2025 01:20:45 +0000 Manifest this update: Sun 21 Dec 2025 01:20:44 +0000 Manifest next update: Sun 28 Dec 2025 01:20:44 +0000 Files and hashes: 1: J7hyLIWcpPbwPsHgYf3Uw7m0l-U.crl (hash: yg9TXwCixU5q+wtiJFTn+v23iNmZj6UOptnRsc54Yw4=) 2: 63CC2AA80FEE11EEBCC6AE50C4F9AE02.roa (hash: cOb2KOzEfKEZcsNXW8uSYWT5P5sqT/oMWjbiB66z740=) 3: F04A74EC90C511EDA07C3025C4F9AE02.roa (hash: S5aqnIp8wBDzzuC/I2D/TZu1GPCH8szm3/gxMup7cPA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4696/D6A11C4A90BF11ED8CC1E783C4F9AE02/J7hyLIWcpPbwPsHgYf3Uw7m0l-U.crl rsync://rpki.apnic.net/member_repository/A91E4696/D6A11C4A90BF11ED8CC1E783C4F9AE02/J7hyLIWcpPbwPsHgYf3Uw7m0l-U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J7hyLIWcpPbwPsHgYf3Uw7m0l-U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 01:20:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 567 (0x237) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4696, serialNumber=27B8722C859CA4F6F03EC1E061FDD4C3B9B497E5 Validity Not Before: Dec 21 01:20:44 2025 GMT Not After : Dec 28 01:20:44 2025 GMT Subject: CN=69474b6d-767a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:1c:c8:5f:d6:19:e3:7e:3c:59:b1:4e:78:ea: 78:19:ad:86:25:62:45:ec:6f:a5:bf:8b:85:1d:e1: 46:d1:f2:71:db:65:30:ed:09:37:46:e9:39:c9:57: 3c:30:58:43:43:5d:59:1f:45:cb:14:79:16:91:28: 6c:9e:a5:8e:d1:5e:e8:4d:e6:d5:05:49:91:78:e6: cc:21:dc:76:51:fc:ed:48:8d:73:c4:a2:c3:2c:52: 60:68:5b:db:9e:e2:c2:a4:d3:83:b9:bf:df:c5:7f: c5:8e:4d:8c:06:84:5d:81:0e:c9:e9:1e:3f:49:d3: 47:20:04:52:4b:89:9e:4f:20:70:72:e3:f6:2e:98: ec:75:bc:1f:cb:fa:6f:f9:6d:be:33:ba:ea:7e:e9: 96:b0:39:52:f3:12:99:73:32:df:35:19:ee:50:ab: 31:65:1a:4a:fb:01:3b:57:2f:01:85:0d:94:1b:1c: 68:bf:3a:22:0a:db:bd:f6:f3:34:ac:1d:39:97:fb: 38:be:75:e3:6a:69:4c:73:a0:a5:45:a9:70:60:85: 34:f8:71:e7:fa:f8:aa:2b:f7:ac:38:34:d9:ec:f6: 46:64:91:05:40:97:01:a5:ed:b8:dc:ad:8b:ee:7a: 82:cd:4f:db:05:b8:6f:87:eb:dd:eb:7c:af:90:11: d0:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:B7:A4:62:F3:8A:92:52:82:03:4E:CB:26:EE:D3:2F:DE:3D:35:77 X509v3 Authority Key Identifier: keyid:27:B8:72:2C:85:9C:A4:F6:F0:3E:C1:E0:61:FD:D4:C3:B9:B4:97:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4696/D6A11C4A90BF11ED8CC1E783C4F9AE02/J7hyLIWcpPbwPsHgYf3Uw7m0l-U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J7hyLIWcpPbwPsHgYf3Uw7m0l-U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4696/D6A11C4A90BF11ED8CC1E783C4F9AE02/J7hyLIWcpPbwPsHgYf3Uw7m0l-U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:53:28:1e:fe:e2:df:1c:a9:ac:d3:5a:74:b5:08:14:f2:a2: 02:44:54:36:d8:1c:1d:30:48:99:b5:34:48:4e:0e:ed:a9:2c: 96:f3:ca:3d:ae:b6:06:b9:87:68:21:31:c4:f8:eb:a2:72:91: a2:db:3b:e5:3b:29:e9:1a:bb:f8:f3:05:40:58:ef:ef:31:9b: d4:48:b5:a6:03:c0:5b:be:26:b6:b3:d1:14:7c:c0:7a:15:0f: 18:ca:77:01:12:3e:4f:65:76:37:01:92:e2:3f:40:83:dd:59: 30:76:52:9a:3b:a3:bb:8c:42:5a:9f:74:6c:a4:aa:e6:8c:56: 16:68:4c:8b:17:49:76:67:d0:7d:7c:78:29:1c:22:1f:73:c5: 87:03:63:d0:53:05:d6:6e:07:47:94:77:50:dc:c1:7c:32:6d: ef:fc:1d:e5:01:79:1f:6d:f4:1a:a0:21:e0:5e:23:53:3e:e1: 79:6c:b6:77:2d:02:08:74:d3:f0:ce:e3:2b:2c:22:30:fa:1d: 43:57:aa:a0:a0:07:7c:38:0e:bc:23:0a:b2:2f:cc:f1:9c:28: 16:47:38:3f:39:e6:d1:4a:0b:e2:26:2e:2c:49:e5:73:f1:61: d9:d6:63:b1:28:fa:ca:63:fa:5c:8c:94:29:9d:ea:50:ab:fe: ec:d8:d6:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQ2OTYxMTAvBgNVBAUTKDI3Qjg3MjJDODU5Q0E0RjZGMDNFQzFFMDYxRkRENEMz QjlCNDk3RTUwHhcNMjUxMjIxMDEyMDQ0WhcNMjUxMjI4MDEyMDQ0WjAYMRYwFAYD VQQDDA02OTQ3NGI2ZC03NjdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApBzIX9YZ4348WbFOeOp4Ga2GJWJF7G+lv4uFHeFG0fJx22Uw7Qk3Ruk5yVc8 MFhDQ11ZH0XLFHkWkShsnqWO0V7oTebVBUmReObMIdx2UfztSI1zxKLDLFJgaFvb nuLCpNODub/fxX/Fjk2MBoRdgQ7J6R4/SdNHIARSS4meTyBwcuP2Lpjsdbwfy/pv +W2+M7rqfumWsDlS8xKZczLfNRnuUKsxZRpK+wE7Vy8BhQ2UGxxovzoiCtu99vM0 rB05l/s4vnXjamlMc6ClRalwYIU0+HHn+viqK/esODTZ7PZGZJEFQJcBpe243K2L 7nqCzU/bBbhvh+vd63yvkBHQ4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEC3pGLz ipJSggNOyybu0y/ePTV3MB8GA1UdIwQYMBaAFCe4ciyFnKT28D7B4GH91MO5tJfl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDY5Ni9ENkExMUM0QTkw QkYxMUVEOENDMUU3ODNDNEY5QUUwMi9KN2h5TElXY3BQYndQc0hnWWYzVXc3bTBs LVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0o3aHlMSVdjcFBid1BzSGdZZjNVdzdtMGwtVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NDY5Ni9ENkExMUM0QTkwQkYxMUVEOENDMUU3ODNDNEY5QUUwMi9KN2h5TElXY3BQ YndQc0hnWWYzVXc3bTBsLVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBIUyge/uLfHKms01p0tQgU8qICRFQ22BwdMEiZtTRITg7tqSyW88o9 rrYGuYdoITHE+OuicpGi2zvlOynpGrv48wVAWO/vMZvUSLWmA8Bbvia2s9EUfMB6 FQ8YyncBEj5PZXY3AZLiP0CD3VkwdlKaO6O7jEJan3RspKrmjFYWaEyLF0l2Z9B9 fHgpHCIfc8WHA2PQUwXWbgdHlHdQ3MF8Mm3v/B3lAXkfbfQaoCHgXiNTPuF5bLZ3 LQIIdNPwzuMrLCIw+h1DV6qgoAd8OA68IwqyL8zxnCgWRzg/OebRSgviJi4sSeVz 8WHZ1mOxKPrKY/pcjJQpnepQq/7s2Nb3 -----END CERTIFICATE-----Generated at Sun Dec 21 08:18:49 2025 by rpki-client