This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft File: JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft (raw, json) Hash identifier: +4FzrnwP30jzIVwXGsHGJR6FJwkHBkg2C1D4stKX4bQ= Subject key identifier: 8D:F8:61:03:30:C2:01:44:28:4A:9C:09:38:0A:91:86:41:E6:53:02 Authority key identifier: 25:03:77:5F:AC:3A:6F:47:23:4C:B8:32:A6:37:FC:10:82:A4:7C:44 Certificate issuer: /CN=A9128918/serialNumber=2503775FAC3A6F47234CB832A637FC1082A47C44 Certificate serial: 0D1F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JQN3X6w6b0cjTLgypjf8EIKkfEQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft Manifest number: 0D07 Signing time: Thu 18 Dec 2025 17:53:04 +0000 Manifest this update: Thu 18 Dec 2025 17:53:04 +0000 Manifest next update: Thu 25 Dec 2025 17:53:04 +0000 Files and hashes: 1: JQN3X6w6b0cjTLgypjf8EIKkfEQ.crl (hash: eB5k3OYGQfkVDZ6PL0c6lRP9rCssVTxgNH/bl0A3E7E=) 2: DA0A5C9280BE11EB88ED2418C4F9AE02.roa (hash: bJm8x/jB8mtzKPQKI3Nnf1xFyPp1oMwYrBpRRhfwUbw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.crl rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JQN3X6w6b0cjTLgypjf8EIKkfEQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 17:53:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3359 (0xd1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128918, serialNumber=2503775FAC3A6F47234CB832A637FC1082A47C44 Validity Not Before: Dec 18 17:53:04 2025 GMT Not After : Dec 25 17:53:04 2025 GMT Subject: CN=69443f80-647d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:27:d0:b9:d8:05:66:32:3c:97:a7:90:d6:29: 4f:cb:68:9b:b5:2f:d3:11:48:99:80:35:8a:70:45: e4:f1:5a:c9:85:e4:b9:df:f0:f4:c7:06:44:f2:e6: 39:0a:d0:78:31:79:6c:0e:49:e6:29:af:d9:af:be: 24:89:40:98:79:ff:a8:c7:94:67:9f:7d:57:94:7b: 4b:ab:5a:0e:22:f3:72:a9:a5:3c:4b:aa:03:a0:a0: 4f:9e:55:5e:a8:1a:2f:e7:de:78:46:aa:b5:b8:7e: 94:e1:b4:e1:d0:af:f4:ee:2f:05:1f:e6:67:c2:3a: bf:ed:0d:17:5c:d4:7b:79:77:23:b0:18:f2:1d:d6: ab:14:48:eb:f8:17:b2:62:ab:74:2b:06:d6:b6:59: 87:c2:3c:b3:84:bf:cf:84:b6:ab:81:04:d6:28:81: 15:33:6f:aa:12:01:cc:ef:26:61:7c:2a:47:25:a3: 0a:6b:e1:4c:bd:cd:f1:c1:35:fe:b1:25:87:7e:1d: 20:f4:e2:74:eb:86:45:63:ea:f3:f4:a6:3f:8c:80: d9:b3:2e:9d:22:68:a3:c7:45:c0:b6:8e:86:a6:bc: 44:f0:f2:6d:4e:48:a9:8c:ab:07:ef:5a:c0:1a:25: 3e:01:00:ab:6e:9d:71:6a:cf:ba:9b:ef:c6:36:63: d6:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:F8:61:03:30:C2:01:44:28:4A:9C:09:38:0A:91:86:41:E6:53:02 X509v3 Authority Key Identifier: keyid:25:03:77:5F:AC:3A:6F:47:23:4C:B8:32:A6:37:FC:10:82:A4:7C:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JQN3X6w6b0cjTLgypjf8EIKkfEQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:1d:04:5c:80:35:ed:a4:7d:db:a7:5c:59:52:f1:d6:e0:41: e1:7b:15:93:53:46:16:86:18:6e:a9:88:8b:6a:99:35:81:19: 59:73:09:29:10:4b:b8:b4:66:2d:0e:5f:b3:d1:bf:cf:26:29: 87:82:c2:f6:6d:c4:d1:1e:77:79:e5:83:d0:69:2c:35:17:c7: dc:9d:2e:c6:e0:1c:95:28:82:62:7b:6c:97:b9:cf:f7:eb:f3: 69:e1:f8:f7:99:3f:1d:c7:04:5f:cf:2d:f6:5f:a6:8f:d7:67: 40:a9:7e:f0:19:26:46:06:c4:b7:f5:f5:a3:b7:af:1d:8e:ca: c5:89:cc:f5:cc:32:59:77:e8:6e:ee:b7:2e:cb:82:c6:d1:7e: 48:2c:98:e5:95:6c:df:5a:c4:e0:a9:e0:e1:f6:2c:7d:93:6c: e7:15:d7:53:1a:92:1c:1d:80:23:d0:62:52:c9:cc:a5:0a:11: 7e:88:9c:8a:a9:20:cd:a5:84:80:e3:8c:2d:36:3b:40:7e:c8: e4:e5:bf:64:0f:8f:15:23:25:f4:a1:8d:51:19:7f:1c:9f:33: 5c:5c:5b:02:53:a5:4e:d1:f8:e7:4f:bb:42:fc:7c:04:f5:e7: 01:43:79:b1:6b:28:b0:44:e9:ba:c5:82:ab:0a:ed:0a:6b:03: b3:d2:27:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDR8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg5MTgxMTAvBgNVBAUTKDI1MDM3NzVGQUMzQTZGNDcyMzRDQjgzMkE2MzdGQzEw ODJBNDdDNDQwHhcNMjUxMjE4MTc1MzA0WhcNMjUxMjI1MTc1MzA0WjAYMRYwFAYD VQQDDA02OTQ0M2Y4MC02NDdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsSfQudgFZjI8l6eQ1ilPy2ibtS/TEUiZgDWKcEXk8VrJheS53/D0xwZE8uY5 CtB4MXlsDknmKa/Zr74kiUCYef+ox5Rnn31XlHtLq1oOIvNyqaU8S6oDoKBPnlVe qBov5954Rqq1uH6U4bTh0K/07i8FH+Znwjq/7Q0XXNR7eXcjsBjyHdarFEjr+Bey Yqt0KwbWtlmHwjyzhL/PhLargQTWKIEVM2+qEgHM7yZhfCpHJaMKa+FMvc3xwTX+ sSWHfh0g9OJ064ZFY+rz9KY/jIDZsy6dImijx0XAto6GprxE8PJtTkipjKsH71rA GiU+AQCrbp1xas+6m+/GNmPWZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI34YQMw wgFEKEqcCTgKkYZB5lMCMB8GA1UdIwQYMBaAFCUDd1+sOm9HI0y4MqY3/BCCpHxE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODkxOC9FOThGREZENEY2 NzIxMUU5OTFFRDBCMTZDNEY5QUUwMi9KUU4zWDZ3NmIwY2pUTGd5cGpmOEVJS2tm RVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pRTjNYNnc2YjBjalRMZ3lwamY4RUlLa2ZFUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODkxOC9FOThGREZENEY2NzIxMUU5OTFFRDBCMTZDNEY5QUUwMi9KUU4zWDZ3NmIw Y2pUTGd5cGpmOEVJS2tmRVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmHQRcgDXtpH3bp1xZUvHW4EHhexWTU0YWhhhuqYiLapk1gRlZcwkp EEu4tGYtDl+z0b/PJimHgsL2bcTRHnd55YPQaSw1F8fcnS7G4ByVKIJie2yXuc/3 6/Np4fj3mT8dxwRfzy32X6aP12dAqX7wGSZGBsS39fWjt68djsrFicz1zDJZd+hu 7rcuy4LG0X5ILJjllWzfWsTgqeDh9ix9k2znFddTGpIcHYAj0GJSycylChF+iJyK qSDNpYSA44wtNjtAfsjk5b9kD48VIyX0oY1RGX8cnzNcXFsCU6VO0fjnT7tC/HwE 9ecBQ3mxayiwROm6xYKrCu0KawOz0ic+ -----END CERTIFICATE-----Generated at Fri Dec 19 05:25:37 2025 by rpki-client