This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9125F95/CE2AFC46A27511E69EB17774C4F9AE02/J_xj2GH0aU96L5UfsShH4H-qkHI.mft File: J_xj2GH0aU96L5UfsShH4H-qkHI.mft (raw, json) Hash identifier: iyLOClebz9xt7ENRQttY8PP1eCGzfNMRoLA2TmDyHJ4= Subject key identifier: 15:F7:FF:4D:23:E8:80:AC:A1:41:B1:6D:C4:B7:00:20:E1:5E:37:D4 Authority key identifier: 27:FC:63:D8:61:F4:69:4F:7A:2F:95:1F:B1:28:47:E0:7F:AA:90:72 Certificate issuer: /CN=A9125F95/serialNumber=27FC63D861F4694F7A2F951FB12847E07FAA9072 Certificate serial: 1DF0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J_xj2GH0aU96L5UfsShH4H-qkHI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125F95/CE2AFC46A27511E69EB17774C4F9AE02/J_xj2GH0aU96L5UfsShH4H-qkHI.mft Manifest number: 1DE7 Signing time: Mon 22 Dec 2025 15:54:10 +0000 Manifest this update: Mon 22 Dec 2025 15:54:09 +0000 Manifest next update: Mon 29 Dec 2025 15:54:09 +0000 Files and hashes: 1: J_xj2GH0aU96L5UfsShH4H-qkHI.crl (hash: ibSVZSZgMv48Wuf2etNJLjcoYdFX7absfcO1aGUgfvw=) 2: A17F07705FA311EAB1BB612CC4F9AE02.roa (hash: syqFyO0I3Vmcn5bJeGcao6zGLsNLne0ee+UOpu0s0a0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125F95/CE2AFC46A27511E69EB17774C4F9AE02/J_xj2GH0aU96L5UfsShH4H-qkHI.crl rsync://rpki.apnic.net/member_repository/A9125F95/CE2AFC46A27511E69EB17774C4F9AE02/J_xj2GH0aU96L5UfsShH4H-qkHI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J_xj2GH0aU96L5UfsShH4H-qkHI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 15:54:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7664 (0x1df0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125F95, serialNumber=27FC63D861F4694F7A2F951FB12847E07FAA9072 Validity Not Before: Dec 22 15:54:09 2025 GMT Not After : Dec 29 15:54:09 2025 GMT Subject: CN=694969a2-ddd7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:5c:04:c8:50:82:c0:cd:0d:e8:fe:bc:39:b7: e1:bd:2c:fe:3e:c4:85:e7:13:64:14:35:e4:70:c7: 97:94:cc:9a:45:a6:b7:f8:06:20:5b:1b:07:55:46: d2:ae:73:e8:bf:f5:01:c8:93:a8:95:65:ff:1b:e0: c3:50:6f:ae:75:56:f9:6e:64:82:c5:73:20:a8:d9: b1:0e:6d:dd:34:cb:d7:ec:f7:2b:5d:14:ae:57:1b: ce:01:b3:fb:9c:c3:51:ea:27:3f:41:40:78:a6:50: 30:e7:53:4e:11:d3:a8:f2:47:4a:71:7a:9d:c1:bd: 49:50:3d:8d:36:e1:1d:28:c1:6b:1c:62:a7:76:c5: b4:8d:00:a8:7c:76:07:ed:16:8b:75:03:74:ec:eb: 19:39:ef:c3:a8:c9:4d:aa:95:5b:96:8e:cd:64:49: a4:3e:69:d7:7a:d9:b5:f7:6b:71:a0:6c:95:27:da: 92:d8:3a:6b:6e:01:e0:ff:34:bd:ac:35:06:6c:db: 4c:a0:22:bb:da:e0:0b:87:27:6c:a0:18:99:c8:7d: 61:57:81:83:24:6c:f0:e1:25:d3:e4:0e:f5:8d:94: c6:0d:3d:6a:d1:10:2b:6d:90:08:aa:d1:4f:46:a5: 53:86:7b:f9:50:a1:9d:ea:f9:51:80:a5:d2:3f:7d: 55:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:F7:FF:4D:23:E8:80:AC:A1:41:B1:6D:C4:B7:00:20:E1:5E:37:D4 X509v3 Authority Key Identifier: keyid:27:FC:63:D8:61:F4:69:4F:7A:2F:95:1F:B1:28:47:E0:7F:AA:90:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125F95/CE2AFC46A27511E69EB17774C4F9AE02/J_xj2GH0aU96L5UfsShH4H-qkHI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J_xj2GH0aU96L5UfsShH4H-qkHI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125F95/CE2AFC46A27511E69EB17774C4F9AE02/J_xj2GH0aU96L5UfsShH4H-qkHI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:e0:8e:5b:ce:6e:29:3d:6d:d3:09:11:b0:d5:61:3d:61:c9: 3f:e5:dd:48:16:4e:34:ad:7a:67:12:97:3d:81:ee:84:2b:0d: 7a:31:c4:68:85:b5:77:cf:bd:9b:9e:0a:9d:a0:8a:94:5b:87: 06:e5:7f:a8:75:da:1a:a1:9e:55:10:67:d9:0c:c1:11:1c:ef: 18:db:1a:ec:3c:68:1b:74:bc:6d:83:96:00:43:ba:69:b5:47: 79:54:51:9f:bd:af:2b:8f:b8:ca:71:48:07:90:8e:7e:63:0f: 0b:f3:6c:ca:48:16:34:7b:05:23:b8:d7:93:a4:84:4a:9b:b3: e1:70:ae:1d:aa:b4:a1:4a:79:ed:8b:bd:a8:3a:b4:de:c6:56: 2a:07:5e:32:8b:b0:5f:29:6c:cc:0b:82:3a:4d:3e:ff:7e:c8: 5c:b4:6a:7b:ff:72:05:69:19:d2:07:21:d8:d7:e4:89:df:ec: e3:ad:4b:e8:52:1d:33:80:00:f1:2e:aa:15:bf:46:9d:15:64: 72:29:71:28:d6:c7:e9:ba:ee:4b:79:f2:83:cf:a4:e6:dd:0a: 0f:b0:19:6a:40:b4:a3:35:3d:c6:83:f1:8f:49:bb:52:92:ba: 89:c4:ff:de:02:6d:61:19:45:3e:e3:8a:5f:8c:bb:15:98:c6: b3:1b:40:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHfAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVGOTUxMTAvBgNVBAUTKDI3RkM2M0Q4NjFGNDY5NEY3QTJGOTUxRkIxMjg0N0Uw N0ZBQTkwNzIwHhcNMjUxMjIyMTU1NDA5WhcNMjUxMjI5MTU1NDA5WjAYMRYwFAYD VQQDDA02OTQ5NjlhMi1kZGQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA61wEyFCCwM0N6P68ObfhvSz+PsSF5xNkFDXkcMeXlMyaRaa3+AYgWxsHVUbS rnPov/UByJOolWX/G+DDUG+udVb5bmSCxXMgqNmxDm3dNMvX7PcrXRSuVxvOAbP7 nMNR6ic/QUB4plAw51NOEdOo8kdKcXqdwb1JUD2NNuEdKMFrHGKndsW0jQCofHYH 7RaLdQN07OsZOe/DqMlNqpVblo7NZEmkPmnXetm192txoGyVJ9qS2DprbgHg/zS9 rDUGbNtMoCK72uALhydsoBiZyH1hV4GDJGzw4SXT5A71jZTGDT1q0RArbZAIqtFP RqVThnv5UKGd6vlRgKXSP31VowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBX3/00j 6ICsoUGxbcS3ACDhXjfUMB8GA1UdIwQYMBaAFCf8Y9hh9GlPei+VH7EoR+B/qpBy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUY5NS9DRTJBRkM0NkEy NzUxMUU2OUVCMTc3NzRDNEY5QUUwMi9KX3hqMkdIMGFVOTZMNVVmc1NoSDRILXFr SEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pfeGoyR0gwYVU5Nkw1VWZzU2hINEgtcWtISS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NUY5NS9DRTJBRkM0NkEyNzUxMUU2OUVCMTc3NzRDNEY5QUUwMi9KX3hqMkdIMGFV OTZMNVVmc1NoSDRILXFrSEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA14I5bzm4pPW3TCRGw1WE9Yck/5d1IFk40rXpnEpc9ge6EKw16McRo hbV3z72bngqdoIqUW4cG5X+oddoaoZ5VEGfZDMERHO8Y2xrsPGgbdLxtg5YAQ7pp tUd5VFGfva8rj7jKcUgHkI5+Yw8L82zKSBY0ewUjuNeTpIRKm7PhcK4dqrShSnnt i72oOrTexlYqB14yi7BfKWzMC4I6TT7/fshctGp7/3IFaRnSByHY1+SJ3+zjrUvo Uh0zgADxLqoVv0adFWRyKXEo1sfpuu5LefKDz6Tm3QoPsBlqQLSjNT3Gg/GPSbtS krqJxP/eAm1hGUU+44pfjLsVmMazG0B6 -----END CERTIFICATE-----Generated at Tue Dec 23 06:51:02 2025 by rpki-client