This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9151EB5/C57E38FC7F9C11EBAFC91466C4F9AE02/JSBFeBemYmHoez5BhOhi2ka6nw0.mft File: JSBFeBemYmHoez5BhOhi2ka6nw0.mft (raw, json) Hash identifier: pP9hTehLNeqIYp9u4TaLWzwrExp5jcLmWpCvwYJXFow= Subject key identifier: 0A:81:BB:BC:EE:51:3A:21:E5:9E:6B:51:C7:F7:3F:E2:1D:09:AB:26 Authority key identifier: 25:20:45:78:17:A6:62:61:E8:7B:3E:41:84:E8:62:DA:46:BA:9F:0D Certificate issuer: /CN=A9151EB5/serialNumber=2520457817A66261E87B3E4184E862DA46BA9F0D Certificate serial: 06CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JSBFeBemYmHoez5BhOhi2ka6nw0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9151EB5/C57E38FC7F9C11EBAFC91466C4F9AE02/JSBFeBemYmHoez5BhOhi2ka6nw0.mft Manifest number: 06CB Signing time: Sat 20 Dec 2025 21:25:28 +0000 Manifest this update: Sat 20 Dec 2025 21:25:27 +0000 Manifest next update: Sat 27 Dec 2025 21:25:27 +0000 Files and hashes: 1: JSBFeBemYmHoez5BhOhi2ka6nw0.crl (hash: bR25BF0RlcgvMWOF7b+OsEiAhh7WnxNFXYzQodBq2VM=) 2: 81ACEA76E74711EFA8F61A3DC4F9AE02.roa (hash: ukg+6KCGHkrsTy11bBIK1xYhpVPUVwZenM7mxd/8rc4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9151EB5/C57E38FC7F9C11EBAFC91466C4F9AE02/JSBFeBemYmHoez5BhOhi2ka6nw0.crl rsync://rpki.apnic.net/member_repository/A9151EB5/C57E38FC7F9C11EBAFC91466C4F9AE02/JSBFeBemYmHoez5BhOhi2ka6nw0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JSBFeBemYmHoez5BhOhi2ka6nw0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 21:25:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1741 (0x6cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9151EB5, serialNumber=2520457817A66261E87B3E4184E862DA46BA9F0D Validity Not Before: Dec 20 21:25:27 2025 GMT Not After : Dec 27 21:25:27 2025 GMT Subject: CN=69471448-ad2c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:21:87:ae:c0:61:c4:89:7e:9b:76:72:22:80: c6:b4:f1:96:0a:44:8b:87:26:1f:38:ef:27:29:c4: df:76:08:89:e2:7c:29:d0:1d:14:74:80:07:96:c3: a3:fa:66:d3:72:c1:31:69:f7:02:5a:63:33:fc:f2: e7:88:45:59:76:08:78:8b:1d:48:fa:c4:36:da:3f: 3e:8e:a4:20:f7:d2:d2:f8:97:9f:bd:e8:3f:bc:f9: 59:d2:ba:12:aa:42:78:86:09:66:ec:f5:b2:a2:be: 3d:66:52:ba:12:04:d9:3c:81:3f:5d:14:be:e6:37: a2:59:70:7d:64:5d:f5:7a:63:ee:a6:0d:70:92:f9: 9a:75:4d:73:d1:9f:0d:c6:08:ea:be:e9:6f:69:29: e1:c5:28:8e:3b:f6:f8:92:d4:84:18:25:8a:3a:6e: 0a:02:ce:78:5b:2a:e4:c1:8e:4f:90:03:30:e0:ac: b0:cc:3d:0d:1e:4d:71:47:ee:6a:8c:be:2e:aa:28: b3:be:d7:e2:91:0d:85:8a:06:62:35:54:fe:5c:0a: f7:c0:29:32:25:82:ee:55:9d:25:d5:b7:6b:1d:d7: 28:fe:b1:ec:58:73:23:17:77:08:a9:cf:12:a7:d8: ff:9c:9d:07:e2:ab:52:db:f7:9e:a5:69:52:6f:5e: f7:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:81:BB:BC:EE:51:3A:21:E5:9E:6B:51:C7:F7:3F:E2:1D:09:AB:26 X509v3 Authority Key Identifier: keyid:25:20:45:78:17:A6:62:61:E8:7B:3E:41:84:E8:62:DA:46:BA:9F:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9151EB5/C57E38FC7F9C11EBAFC91466C4F9AE02/JSBFeBemYmHoez5BhOhi2ka6nw0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JSBFeBemYmHoez5BhOhi2ka6nw0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151EB5/C57E38FC7F9C11EBAFC91466C4F9AE02/JSBFeBemYmHoez5BhOhi2ka6nw0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:eb:5c:0d:ce:e7:57:6d:de:37:51:c0:d4:d3:38:71:35:f8: 29:69:89:57:09:41:f6:0d:fa:0a:bb:cf:ca:ca:02:a9:54:c6: 25:2d:ae:fd:a6:34:5a:e7:a4:a4:8d:1e:ea:80:69:7a:67:e8: 75:c3:db:ab:5a:d1:c2:86:51:53:ad:89:2c:ae:09:54:a6:ee: 9e:21:71:b2:1c:5f:e9:8d:98:0b:23:06:bb:20:8c:b4:0c:c4: b1:35:d2:13:d2:4f:b2:3c:ff:56:7a:6f:12:77:3d:50:ba:5b: 21:1a:78:54:68:ba:21:1d:7a:c5:bf:48:bd:e9:b4:d5:01:95: ee:89:23:14:c8:fc:ea:12:91:2c:49:10:c5:1e:ba:53:8b:35: 20:f7:01:ed:83:2a:18:13:59:e6:0d:28:09:23:09:a0:e4:f0: 5e:64:83:22:c9:a2:96:fc:d2:90:96:4f:da:fa:73:f7:5e:58: ab:f4:5e:f1:ba:3e:bb:c9:fe:e8:fe:22:b3:15:cf:43:ec:a7: f5:ad:8f:49:9a:ce:2b:d4:38:70:4f:85:de:36:e7:86:b1:e9: 60:69:6c:19:b6:3c:77:c0:25:9e:b3:3d:05:1b:46:5e:33:49: 20:d1:d0:f7:9f:6f:a2:c3:a0:48:92:68:0f:e5:02:e4:79:9c: af:00:eb:68 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBs0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTFFQjUxMTAvBgNVBAUTKDI1MjA0NTc4MTdBNjYyNjFFODdCM0U0MTg0RTg2MkRB NDZCQTlGMEQwHhcNMjUxMjIwMjEyNTI3WhcNMjUxMjI3MjEyNTI3WjAYMRYwFAYD VQQDDA02OTQ3MTQ0OC1hZDJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuSGHrsBhxIl+m3ZyIoDGtPGWCkSLhyYfOO8nKcTfdgiJ4nwp0B0UdIAHlsOj +mbTcsExafcCWmMz/PLniEVZdgh4ix1I+sQ22j8+jqQg99LS+Jefveg/vPlZ0roS qkJ4hglm7PWyor49ZlK6EgTZPIE/XRS+5jeiWXB9ZF31emPupg1wkvmadU1z0Z8N xgjqvulvaSnhxSiOO/b4ktSEGCWKOm4KAs54WyrkwY5PkAMw4KywzD0NHk1xR+5q jL4uqiizvtfikQ2FigZiNVT+XAr3wCkyJYLuVZ0l1bdrHdco/rHsWHMjF3cIqc8S p9j/nJ0H4qtS2/eepWlSb1733QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAqBu7zu UToh5Z5rUcf3P+IdCasmMB8GA1UdIwQYMBaAFCUgRXgXpmJh6Hs+QYToYtpGup8N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MUVCNS9DNTdFMzhGQzdG OUMxMUVCQUZDOTE0NjZDNEY5QUUwMi9KU0JGZUJlbVltSG9lejVCaE9oaTJrYTZu dzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pTQkZlQmVtWW1Ib2V6NUJoT2hpMmthNm53MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MUVCNS9DNTdFMzhGQzdGOUMxMUVCQUZDOTE0NjZDNEY5QUUwMi9KU0JGZUJlbVlt SG9lejVCaE9oaTJrYTZudzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB461wNzudXbd43UcDU0zhxNfgpaYlXCUH2DfoKu8/KygKpVMYlLa79 pjRa56SkjR7qgGl6Z+h1w9urWtHChlFTrYksrglUpu6eIXGyHF/pjZgLIwa7IIy0 DMSxNdIT0k+yPP9Wem8Sdz1QulshGnhUaLohHXrFv0i96bTVAZXuiSMUyPzqEpEs SRDFHrpTizUg9wHtgyoYE1nmDSgJIwmg5PBeZIMiyaKW/NKQlk/a+nP3Xlir9F7x uj67yf7o/iKzFc9D7Kf1rY9Jms4r1DhwT4XeNueGselgaWwZtjx3wCWesz0FG0Ze M0kg0dD3n2+iw6BIkmgP5QLkeZyvAOto -----END CERTIFICATE-----Generated at Sun Dec 21 00:45:43 2025 by rpki-client