This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9142A39/A65949B23BC411E4B5A63E3BC4F9AE02/JzKpmoY71iA82RXNcle10dmH6yg.mft File: JzKpmoY71iA82RXNcle10dmH6yg.mft (raw, json) Hash identifier: U59/9ML5Z5N0arYcrA4kZFRtScNqK5fZyI9e4WSenZM= Subject key identifier: 01:14:65:23:5C:07:07:68:CE:0E:37:95:69:D6:C3:0A:47:6F:FF:AA Authority key identifier: 27:32:A9:9A:86:3B:D6:20:3C:D9:15:CD:72:57:B5:D1:D9:87:EB:28 Certificate issuer: /CN=A9142A39/serialNumber=2732A99A863BD6203CD915CD7257B5D1D987EB28 Certificate serial: 2A3F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzKpmoY71iA82RXNcle10dmH6yg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142A39/A65949B23BC411E4B5A63E3BC4F9AE02/JzKpmoY71iA82RXNcle10dmH6yg.mft Manifest number: 2A35 Signing time: Sat 20 Dec 2025 15:27:55 +0000 Manifest this update: Sat 20 Dec 2025 15:27:54 +0000 Manifest next update: Sat 27 Dec 2025 15:27:54 +0000 Files and hashes: 1: JzKpmoY71iA82RXNcle10dmH6yg.crl (hash: p6/p9bW+4KeNx3gTcmD45PvCP/LtTUi6In0bM6wKcN0=) 2: 2FF7E9A600BB11EA895E5253C4F9AE02.roa (hash: mZM0zWOIX0nGEpyDG7PyWk/q1r9WRDMbkBj3OfFE2JA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142A39/A65949B23BC411E4B5A63E3BC4F9AE02/JzKpmoY71iA82RXNcle10dmH6yg.crl rsync://rpki.apnic.net/member_repository/A9142A39/A65949B23BC411E4B5A63E3BC4F9AE02/JzKpmoY71iA82RXNcle10dmH6yg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzKpmoY71iA82RXNcle10dmH6yg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 15:27:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10815 (0x2a3f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142A39, serialNumber=2732A99A863BD6203CD915CD7257B5D1D987EB28 Validity Not Before: Dec 20 15:27:54 2025 GMT Not After : Dec 27 15:27:54 2025 GMT Subject: CN=6946c07a-d859 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:d0:1f:0e:71:eb:d7:3a:40:82:bf:e4:cd:2a: 0e:01:7b:6d:64:1f:18:23:90:e1:be:8b:2b:38:3f: 7b:1e:34:7c:c6:a9:a3:24:92:7a:94:4a:eb:f7:e9: a8:fc:6a:ec:ac:06:d4:26:6f:14:53:e5:bc:33:b1: 76:f3:d9:1e:13:d5:a2:22:28:5e:35:a0:26:67:73: 09:d7:77:81:a0:6e:52:68:ae:c7:c5:5f:a1:53:d6: 3f:7d:0b:25:21:22:31:2e:a4:d1:4f:a2:5f:3e:86: 97:cd:c3:50:2a:81:7c:cc:17:29:22:06:80:bb:7d: 28:35:6e:1e:54:8f:30:a8:22:92:48:eb:b8:06:8b: b7:45:aa:c5:56:2b:35:84:09:58:c9:65:5b:58:ee: 5e:35:0f:99:d1:6e:cf:45:6d:f9:56:77:8e:42:aa: e5:72:40:29:9d:4c:42:be:fa:52:15:67:02:51:90: ee:60:33:49:cf:05:7c:25:0d:5a:af:fe:21:9c:2d: 4e:88:d5:1b:f0:9a:4f:aa:f9:ec:d9:2b:d1:7e:9f: cc:8e:0c:59:9f:10:ad:6d:f2:11:f1:9e:00:17:b5: 18:b4:f5:4b:66:55:10:34:24:a2:27:f0:8f:80:70: 43:57:cf:72:a7:f2:a5:0d:d0:b9:f0:c3:1a:ca:63: 30:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:14:65:23:5C:07:07:68:CE:0E:37:95:69:D6:C3:0A:47:6F:FF:AA X509v3 Authority Key Identifier: keyid:27:32:A9:9A:86:3B:D6:20:3C:D9:15:CD:72:57:B5:D1:D9:87:EB:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142A39/A65949B23BC411E4B5A63E3BC4F9AE02/JzKpmoY71iA82RXNcle10dmH6yg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzKpmoY71iA82RXNcle10dmH6yg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142A39/A65949B23BC411E4B5A63E3BC4F9AE02/JzKpmoY71iA82RXNcle10dmH6yg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:78:4b:40:69:de:3a:f2:f6:9a:b9:77:e5:94:e0:9f:2f:1e: e9:bb:b6:01:b5:20:70:c4:2f:15:93:df:72:ef:ae:bf:86:cf: b1:af:6a:a2:da:95:ec:8c:ab:6c:57:09:df:d3:27:c3:ac:9a: cc:07:18:bd:a8:20:04:5f:8c:1f:e7:f6:c4:c2:7b:e1:af:d1: 0d:68:f7:9b:bd:32:03:85:45:b4:93:b5:1e:48:9b:dc:8e:bc: 5e:fd:ab:12:46:0c:03:ce:a2:ec:62:e6:96:7d:20:b0:28:b2: 24:d6:8a:84:a1:3c:ef:16:a8:c0:a5:81:a1:97:6e:f4:b9:c9: b4:09:85:98:ab:ac:76:ec:7f:67:97:50:ae:e3:e8:c3:11:91: 3f:d9:18:12:fb:c0:c4:46:95:c6:c8:61:83:e1:5b:cb:09:39: 48:2b:19:9e:71:2e:a9:dc:66:ce:58:7e:8b:74:a4:fe:00:c7: 44:dc:dc:4d:6e:6b:6c:73:75:7e:58:a3:92:47:a8:dc:79:95: 6e:b4:ac:4f:7c:11:b8:38:33:0d:7f:dc:fe:59:34:a3:b7:85: e4:fd:25:68:5a:fb:89:f3:0a:26:e9:42:27:05:db:b1:57:0e: dd:11:a1:a9:2b:07:8c:4b:d8:b1:48:8b:ca:db:9d:fa:4e:c2: fd:46:7c:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICKj8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDJBMzkxMTAvBgNVBAUTKDI3MzJBOTlBODYzQkQ2MjAzQ0Q5MTVDRDcyNTdCNUQx RDk4N0VCMjgwHhcNMjUxMjIwMTUyNzU0WhcNMjUxMjI3MTUyNzU0WjAYMRYwFAYD VQQDDA02OTQ2YzA3YS1kODU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA69AfDnHr1zpAgr/kzSoOAXttZB8YI5DhvosrOD97HjR8xqmjJJJ6lErr9+mo /GrsrAbUJm8UU+W8M7F289keE9WiIiheNaAmZ3MJ13eBoG5SaK7HxV+hU9Y/fQsl ISIxLqTRT6JfPoaXzcNQKoF8zBcpIgaAu30oNW4eVI8wqCKSSOu4Bou3RarFVis1 hAlYyWVbWO5eNQ+Z0W7PRW35VneOQqrlckApnUxCvvpSFWcCUZDuYDNJzwV8JQ1a r/4hnC1OiNUb8JpPqvns2SvRfp/MjgxZnxCtbfIR8Z4AF7UYtPVLZlUQNCSiJ/CP gHBDV89yp/KlDdC58MMaymMwfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAEUZSNc Bwdozg43lWnWwwpHb/+qMB8GA1UdIwQYMBaAFCcyqZqGO9YgPNkVzXJXtdHZh+so MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MkEzOS9BNjU5NDlCMjNC QzQxMUU0QjVBNjNFM0JDNEY5QUUwMi9KektwbW9ZNzFpQTgyUlhOY2xlMTBkbUg2 eWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0p6S3Btb1k3MWlBODJSWE5jbGUxMGRtSDZ5Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MkEzOS9BNjU5NDlCMjNCQzQxMUU0QjVBNjNFM0JDNEY5QUUwMi9KektwbW9ZNzFp QTgyUlhOY2xlMTBkbUg2eWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBneEtAad468vaauXfllOCfLx7pu7YBtSBwxC8Vk99y766/hs+xr2qi 2pXsjKtsVwnf0yfDrJrMBxi9qCAEX4wf5/bEwnvhr9ENaPebvTIDhUW0k7UeSJvc jrxe/asSRgwDzqLsYuaWfSCwKLIk1oqEoTzvFqjApYGhl270ucm0CYWYq6x27H9n l1Cu4+jDEZE/2RgS+8DERpXGyGGD4VvLCTlIKxmecS6p3GbOWH6LdKT+AMdE3NxN bmtsc3V+WKOSR6jceZVutKxPfBG4ODMNf9z+WTSjt4Xk/SVoWvuJ8wom6UInBdux Vw7dEaGpKweMS9ixSIvK2536TsL9Rnxi -----END CERTIFICATE-----Generated at Sat Dec 20 23:12:18 2025 by rpki-client