This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A913F0E3/291576BE6B3411E69184B66CC4F9AE02/joN3gQz5wgS7ElhPPltfBQNoJG8.mft File: joN3gQz5wgS7ElhPPltfBQNoJG8.mft (raw, json) Hash identifier: LpIM/VH310qP4iyCk/tG5olmyeI74kgmCo6akr4KcSU= Subject key identifier: A4:12:C1:89:2F:E1:7D:3D:F0:37:48:49:3D:60:76:7C:4E:F9:EB:99 Authority key identifier: 8E:83:77:81:0C:F9:C2:04:BB:12:58:4F:3E:5B:5F:05:03:68:24:6F Certificate issuer: /CN=A913F0E3/serialNumber=8E8377810CF9C204BB12584F3E5B5F050368246F Certificate serial: 1F56 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/joN3gQz5wgS7ElhPPltfBQNoJG8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F0E3/291576BE6B3411E69184B66CC4F9AE02/joN3gQz5wgS7ElhPPltfBQNoJG8.mft Manifest number: 1F26 Signing time: Mon 22 Dec 2025 15:50:04 +0000 Manifest this update: Mon 22 Dec 2025 15:50:03 +0000 Manifest next update: Mon 29 Dec 2025 15:50:03 +0000 Files and hashes: 1: joN3gQz5wgS7ElhPPltfBQNoJG8.crl (hash: vZLqRKzCpkh3onqQmmLGcK1qdiXAxK2wOmh5Tv1Zc88=) 2: 2E2A74580DFE11F087A25C3FC4F9AE02.roa (hash: CjMWzQ4orDUG/TY7wjogSOeP/MIVCZP81sPmtBO9dvc=) 3: A63484760E7511F0B651A474C4F9AE02.roa (hash: viR4skCP/MVivW71rPCLWb/HM+520HPQpRhVM95GRJo=) 4: 48BB49E8763A11EFA077F11CC4F9AE02.roa (hash: Pst+EyYihHYvgrhmvznh/Qw7ABaO8rde6PoQvXSj1X0=) 5: 31603938763B11EF810E6D1FC4F9AE02.roa (hash: z6LWqtEj9AU1LHL6Pkyr2Ux5B41+S1GwphxwVqUtIEg=) 6: 2D70A1AE0DFE11F087A25C3FC4F9AE02.roa (hash: hzfdO/T7dLYx6x9B0cEhqN7KXAuqulTey8E65Ho7Grk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F0E3/291576BE6B3411E69184B66CC4F9AE02/joN3gQz5wgS7ElhPPltfBQNoJG8.crl rsync://rpki.apnic.net/member_repository/A913F0E3/291576BE6B3411E69184B66CC4F9AE02/joN3gQz5wgS7ElhPPltfBQNoJG8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/joN3gQz5wgS7ElhPPltfBQNoJG8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 15:50:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8022 (0x1f56) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F0E3, serialNumber=8E8377810CF9C204BB12584F3E5B5F050368246F Validity Not Before: Dec 22 15:50:03 2025 GMT Not After : Dec 29 15:50:03 2025 GMT Subject: CN=694968ac-946b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:d4:f5:d9:b2:23:fd:55:df:c7:d4:ad:56:64: cf:78:f5:7a:60:1a:bc:75:e7:e8:26:28:39:57:cd: fa:e4:e2:12:8d:dd:b1:31:89:8a:3d:13:da:02:d1: 62:4a:95:eb:60:00:86:32:ae:57:49:42:27:a6:4b: 6c:1c:df:9a:ed:0b:c4:5b:3d:c4:e5:e9:49:d2:41: b6:bc:5d:22:e6:35:37:2a:4d:3e:46:3b:9e:c2:60: 0a:90:62:0c:9f:a6:44:26:c3:f1:30:27:6a:bc:57: 51:bf:74:63:d0:78:8b:fd:75:cb:77:91:5b:52:ae: db:cd:d0:73:59:01:73:db:b9:a3:21:94:b2:6a:fb: d2:09:92:fe:12:fc:03:87:e8:55:81:78:aa:6a:be: 21:f4:dc:cc:f5:a3:4f:54:af:f4:81:98:9c:a3:6a: f4:19:1a:fa:25:7c:75:4b:9f:b3:08:80:a7:49:c7: 6e:a4:0d:97:97:88:3f:b9:bc:5d:32:6b:4e:06:fe: f0:86:bd:ec:05:2d:39:ee:02:94:77:85:75:a2:e3: 5e:03:3e:dd:8f:1f:d5:25:54:7f:16:94:d9:82:86: 4f:56:5b:d8:b4:c9:a1:70:ea:74:a7:09:ee:a9:07: de:1b:7c:98:2b:07:41:8d:1a:e1:99:a3:4d:f3:f3: 0c:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:12:C1:89:2F:E1:7D:3D:F0:37:48:49:3D:60:76:7C:4E:F9:EB:99 X509v3 Authority Key Identifier: keyid:8E:83:77:81:0C:F9:C2:04:BB:12:58:4F:3E:5B:5F:05:03:68:24:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F0E3/291576BE6B3411E69184B66CC4F9AE02/joN3gQz5wgS7ElhPPltfBQNoJG8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/joN3gQz5wgS7ElhPPltfBQNoJG8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F0E3/291576BE6B3411E69184B66CC4F9AE02/joN3gQz5wgS7ElhPPltfBQNoJG8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:79:95:9a:c4:81:bc:f0:19:9c:3e:91:cc:64:8e:27:13:ff: 19:ab:bb:86:e1:69:80:72:73:34:7a:ce:9f:58:ee:f6:86:15: 40:13:76:45:8b:d6:87:56:d8:8e:31:23:59:14:a1:78:c7:db: d2:4a:08:6b:3d:2a:26:40:c8:b0:b1:3c:58:09:0b:95:59:dd: 59:7f:56:82:09:7a:2b:de:c4:b9:e6:5b:da:ce:73:69:e7:57: 9c:c6:d8:44:f4:6a:ca:a1:8e:8d:db:83:17:0b:6d:73:a8:87: c1:f7:98:28:f0:8b:32:79:4f:bd:c0:fc:32:e0:d7:aa:51:31: 29:4a:bf:4c:3d:0d:2a:94:2f:85:23:44:86:3c:41:03:9a:f5: 7b:60:1d:b0:3d:54:68:d3:59:58:fd:4f:a2:ec:5a:7f:22:a0: db:62:e4:fd:83:48:a7:6d:85:c3:bc:77:10:fd:9c:74:99:a5: 3f:bc:d6:6f:09:cc:c9:13:07:e2:93:de:0a:0d:9d:0e:34:2a: c8:e0:7e:db:03:93:11:38:21:49:be:99:ff:de:bc:27:09:c6: 44:ec:96:e1:00:86:d2:a1:83:8d:10:ea:18:4b:48:7b:69:94: 85:fa:62:cd:5f:46:6f:03:d6:bc:8c:28:44:cc:23:38:c5:8d: 9b:9a:5c:c5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICH1YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0YwRTMxMTAvBgNVBAUTKDhFODM3NzgxMENGOUMyMDRCQjEyNTg0RjNFNUI1RjA1 MDM2ODI0NkYwHhcNMjUxMjIyMTU1MDAzWhcNMjUxMjI5MTU1MDAzWjAYMRYwFAYD VQQDDA02OTQ5NjhhYy05NDZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5NT12bIj/VXfx9StVmTPePV6YBq8defoJig5V8365OISjd2xMYmKPRPaAtFi SpXrYACGMq5XSUInpktsHN+a7QvEWz3E5elJ0kG2vF0i5jU3Kk0+RjuewmAKkGIM n6ZEJsPxMCdqvFdRv3Rj0HiL/XXLd5FbUq7bzdBzWQFz27mjIZSyavvSCZL+EvwD h+hVgXiqar4h9NzM9aNPVK/0gZico2r0GRr6JXx1S5+zCICnScdupA2Xl4g/ubxd MmtOBv7whr3sBS057gKUd4V1ouNeAz7djx/VJVR/FpTZgoZPVlvYtMmhcOp0pwnu qQfeG3yYKwdBjRrhmaNN8/MMywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKQSwYkv 4X098DdIST1gdnxO+euZMB8GA1UdIwQYMBaAFI6Dd4EM+cIEuxJYTz5bXwUDaCRv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRjBFMy8yOTE1NzZCRTZC MzQxMUU2OTE4NEI2NkNDNEY5QUUwMi9qb04zZ1F6NXdnUzdFbGhQUGx0ZkJRTm9K RzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pvTjNnUXo1d2dTN0VsaFBQbHRmQlFOb0pHOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RjBFMy8yOTE1NzZCRTZCMzQxMUU2OTE4NEI2NkNDNEY5QUUwMi9qb04zZ1F6NXdn UzdFbGhQUGx0ZkJRTm9KRzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB1eZWaxIG88BmcPpHMZI4nE/8Zq7uG4WmAcnM0es6fWO72hhVAE3ZF i9aHVtiOMSNZFKF4x9vSSghrPSomQMiwsTxYCQuVWd1Zf1aCCXor3sS55lvaznNp 51ecxthE9GrKoY6N24MXC21zqIfB95go8IsyeU+9wPwy4NeqUTEpSr9MPQ0qlC+F I0SGPEEDmvV7YB2wPVRo01lY/U+i7Fp/IqDbYuT9g0inbYXDvHcQ/Zx0maU/vNZv CczJEwfik94KDZ0ONCrI4H7bA5MROCFJvpn/3rwnCcZE7JbhAIbSoYONEOoYS0h7 aZSF+mLNX0ZvA9a8jChEzCM4xY2bmlzF -----END CERTIFICATE-----Generated at Wed Dec 24 14:12:24 2025 by rpki-client