This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911AE24/F2F675FEF3FF11ED952D741CC4F9AE02/JCI9DH0QHbetfjy43bFwYpNlyu4.mft File: JCI9DH0QHbetfjy43bFwYpNlyu4.mft (raw, json) Hash identifier: Z92JawRKqtYeTGBvLInXCJpW2WrB96A/0025BmndNe8= Subject key identifier: 50:85:B9:BD:7B:BC:A7:EA:87:6E:3E:2E:F6:A1:3F:99:DE:AE:07:14 Authority key identifier: 24:22:3D:0C:7D:10:1D:B7:AD:7E:3C:B8:DD:B1:70:62:93:65:CA:EE Certificate issuer: /CN=A911AE24/serialNumber=24223D0C7D101DB7AD7E3CB8DDB170629365CAEE Certificate serial: 01FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JCI9DH0QHbetfjy43bFwYpNlyu4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911AE24/F2F675FEF3FF11ED952D741CC4F9AE02/JCI9DH0QHbetfjy43bFwYpNlyu4.mft Manifest number: 01F4 Signing time: Tue 23 Dec 2025 01:39:12 +0000 Manifest this update: Tue 23 Dec 2025 01:39:11 +0000 Manifest next update: Tue 30 Dec 2025 01:39:11 +0000 Files and hashes: 1: JCI9DH0QHbetfjy43bFwYpNlyu4.crl (hash: UfDIYyQwznKLc/bei/tZqE+cp7i5QKEKJolNoC5z+2w=) 2: EDDDD55C252E11EEB91A8941C4F9AE02.roa (hash: y2CRuE70MquHCIr0B6b6CP/AdGdh0+ETsyjf8zknJdU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911AE24/F2F675FEF3FF11ED952D741CC4F9AE02/JCI9DH0QHbetfjy43bFwYpNlyu4.crl rsync://rpki.apnic.net/member_repository/A911AE24/F2F675FEF3FF11ED952D741CC4F9AE02/JCI9DH0QHbetfjy43bFwYpNlyu4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JCI9DH0QHbetfjy43bFwYpNlyu4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 01:39:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 511 (0x1ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911AE24, serialNumber=24223D0C7D101DB7AD7E3CB8DDB170629365CAEE Validity Not Before: Dec 23 01:39:11 2025 GMT Not After : Dec 30 01:39:11 2025 GMT Subject: CN=6949f2c0-1a92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:3f:bc:de:2a:17:9a:e0:3f:f2:af:97:e2:c1: b1:fd:24:70:29:81:d3:09:fb:b0:eb:a5:9a:63:66: 58:b0:fd:d6:59:30:ad:0d:16:b7:91:b7:45:0b:97: 10:55:01:3a:1f:b8:a5:83:d4:ae:5e:23:61:25:a5: b1:27:d3:3b:05:56:13:43:15:37:ee:3f:4e:d9:6f: fd:6a:a6:9a:10:30:ef:b9:10:07:f4:55:19:fd:25: 44:73:26:99:12:40:3a:75:4b:68:86:cc:00:d4:36: 2d:0f:60:3a:9c:a0:cd:97:dd:69:0a:bc:e8:c1:73: ca:0e:22:27:54:2b:6b:a5:91:c7:f1:0c:c3:2d:e3: 73:16:c2:84:17:47:45:87:c4:34:10:5d:e8:b6:fc: 7e:90:a8:5c:8d:cc:b1:da:87:1f:dd:92:71:47:f4: 62:82:22:26:67:10:fc:31:a0:54:b0:d9:cb:37:af: 83:99:29:e7:27:64:60:97:1c:c8:80:6d:5c:4f:a4: b7:d1:c7:a9:8a:85:68:12:5f:57:8d:8b:46:65:79: db:87:85:94:c6:5a:38:da:a6:00:2d:d2:e3:3b:40: 7b:7b:8f:46:ca:a1:0f:4a:e3:b1:15:6c:c5:ba:77: 0f:2b:6b:94:eb:ae:1d:2e:c3:54:1a:3f:dc:6e:16: 19:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:85:B9:BD:7B:BC:A7:EA:87:6E:3E:2E:F6:A1:3F:99:DE:AE:07:14 X509v3 Authority Key Identifier: keyid:24:22:3D:0C:7D:10:1D:B7:AD:7E:3C:B8:DD:B1:70:62:93:65:CA:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911AE24/F2F675FEF3FF11ED952D741CC4F9AE02/JCI9DH0QHbetfjy43bFwYpNlyu4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JCI9DH0QHbetfjy43bFwYpNlyu4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911AE24/F2F675FEF3FF11ED952D741CC4F9AE02/JCI9DH0QHbetfjy43bFwYpNlyu4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:ab:39:71:da:d2:a1:a8:a2:bf:59:b9:7b:94:c1:5b:4e:a5: 4b:39:c3:93:c7:42:af:7c:9a:3f:67:35:19:5e:a6:9d:c2:73: 51:96:b6:a4:66:cf:b7:af:f9:ea:0e:2f:ab:cc:fa:30:44:ac: 5d:c5:55:1d:0b:0e:7d:e8:69:a3:b5:24:ba:01:a1:3b:9a:a1: 8a:65:bd:71:1a:03:02:53:a0:20:2e:c6:0f:94:fa:a9:e4:59: 04:0c:8f:14:5b:a4:7f:5a:7d:72:9f:11:ce:3c:4d:59:47:dc: da:7a:1c:aa:de:fb:11:37:57:ab:0d:99:8f:22:b0:bc:30:f3: 7e:cb:9f:54:9b:3d:61:bb:2f:09:6b:13:f7:fd:15:6a:c5:50: a8:f0:ca:d2:4a:d7:1e:1c:47:09:1d:cd:45:45:08:cb:c4:87: 6a:58:1e:8f:d0:cc:77:48:fb:87:1e:03:cd:ab:35:aa:e5:7c: 0d:1a:71:4b:9c:ce:58:f9:55:28:c0:24:ac:e9:2c:7e:d7:3a: 83:96:f7:1d:94:90:2c:89:fb:2d:66:eb:d0:e5:9f:75:e7:b8: 56:d6:e9:f0:e9:d3:13:0d:26:81:bf:3d:cf:6c:30:0b:b6:dc: 9b:4a:b0:44:bf:e8:6b:e7:d9:16:0c:44:48:54:32:c5:a8:d4: 40:2d:99:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAf8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUFFMjQxMTAvBgNVBAUTKDI0MjIzRDBDN0QxMDFEQjdBRDdFM0NCOEREQjE3MDYy OTM2NUNBRUUwHhcNMjUxMjIzMDEzOTExWhcNMjUxMjMwMDEzOTExWjAYMRYwFAYD VQQDDA02OTQ5ZjJjMC0xYTkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApj+83ioXmuA/8q+X4sGx/SRwKYHTCfuw66WaY2ZYsP3WWTCtDRa3kbdFC5cQ VQE6H7ilg9SuXiNhJaWxJ9M7BVYTQxU37j9O2W/9aqaaEDDvuRAH9FUZ/SVEcyaZ EkA6dUtohswA1DYtD2A6nKDNl91pCrzowXPKDiInVCtrpZHH8QzDLeNzFsKEF0dF h8Q0EF3otvx+kKhcjcyx2ocf3ZJxR/RigiImZxD8MaBUsNnLN6+DmSnnJ2RglxzI gG1cT6S30cepioVoEl9XjYtGZXnbh4WUxlo42qYALdLjO0B7e49GyqEPSuOxFWzF uncPK2uU664dLsNUGj/cbhYZRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFCFub17 vKfqh24+LvahP5nergcUMB8GA1UdIwQYMBaAFCQiPQx9EB23rX48uN2xcGKTZcru MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQUUyNC9GMkY2NzVGRUYz RkYxMUVEOTUyRDc0MUNDNEY5QUUwMi9KQ0k5REgwUUhiZXRmank0M2JGd1lwTmx5 dTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pDSTlESDBRSGJldGZqeTQzYkZ3WXBObHl1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QUUyNC9GMkY2NzVGRUYzRkYxMUVEOTUyRDc0MUNDNEY5QUUwMi9KQ0k5REgwUUhi ZXRmank0M2JGd1lwTmx5dTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0qzlx2tKhqKK/Wbl7lMFbTqVLOcOTx0KvfJo/ZzUZXqadwnNRlrak Zs+3r/nqDi+rzPowRKxdxVUdCw596GmjtSS6AaE7mqGKZb1xGgMCU6AgLsYPlPqp 5FkEDI8UW6R/Wn1ynxHOPE1ZR9zaehyq3vsRN1erDZmPIrC8MPN+y59Umz1huy8J axP3/RVqxVCo8MrSStceHEcJHc1FRQjLxIdqWB6P0Mx3SPuHHgPNqzWq5XwNGnFL nM5Y+VUowCSs6Sx+1zqDlvcdlJAsifstZuvQ5Z9157hW1unw6dMTDSaBvz3PbDAL ttybSrBEv+hr59kWDERIVDLFqNRALZnA -----END CERTIFICATE-----Generated at Tue Dec 23 05:23:23 2025 by rpki-client