This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91523C5/0366D7AEACE111E9BFA56423C4F9AE02/JD2SQ3ziMFA-VI79KTwqY4G1xCY.mft File: JD2SQ3ziMFA-VI79KTwqY4G1xCY.mft (raw, json) Hash identifier: CS/vfhnBWDKwDeXMQFvzJ63oNodBV7V9SzkFrlLnw6o= Subject key identifier: 03:96:11:70:98:65:0E:68:0A:AB:3A:0B:61:9C:6B:76:A1:78:86:1A Authority key identifier: 24:3D:92:43:7C:E2:30:50:3E:54:8E:FD:29:3C:2A:63:81:B5:C4:26 Certificate issuer: /CN=A91523C5/serialNumber=243D92437CE230503E548EFD293C2A6381B5C426 Certificate serial: 0E7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD2SQ3ziMFA-VI79KTwqY4G1xCY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91523C5/0366D7AEACE111E9BFA56423C4F9AE02/JD2SQ3ziMFA-VI79KTwqY4G1xCY.mft Manifest number: 0E70 Signing time: Mon 22 Dec 2025 17:23:29 +0000 Manifest this update: Mon 22 Dec 2025 17:23:29 +0000 Manifest next update: Mon 29 Dec 2025 17:23:29 +0000 Files and hashes: 1: JD2SQ3ziMFA-VI79KTwqY4G1xCY.crl (hash: ejm27HQEg7m8a8r9XugCJ76BnbFpFrgJGG0TvY1LlUE=) 2: 72D9F434AD2411E98D9E935AC4F9AE02.roa (hash: 6yiyih3iYU5SXCZve8BQVAbNfjgN61udEXmY/BbF0dY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91523C5/0366D7AEACE111E9BFA56423C4F9AE02/JD2SQ3ziMFA-VI79KTwqY4G1xCY.crl rsync://rpki.apnic.net/member_repository/A91523C5/0366D7AEACE111E9BFA56423C4F9AE02/JD2SQ3ziMFA-VI79KTwqY4G1xCY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD2SQ3ziMFA-VI79KTwqY4G1xCY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 17:23:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3707 (0xe7b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91523C5, serialNumber=243D92437CE230503E548EFD293C2A6381B5C426 Validity Not Before: Dec 22 17:23:29 2025 GMT Not After : Dec 29 17:23:29 2025 GMT Subject: CN=69497e91-20d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:93:9b:db:3a:03:64:a8:51:8a:d4:15:d1:18: 48:9b:d3:9f:d6:62:6d:84:b7:97:6f:8d:ea:54:0b: 05:9e:c2:38:ea:62:19:c5:cb:89:6a:0a:6a:89:f3: 2a:07:d9:66:9e:a8:5d:fa:e8:55:29:82:c1:0d:1c: 4f:c4:43:76:41:00:ef:ac:b9:d0:98:6f:15:45:2f: fa:ce:09:fd:b7:59:43:55:2e:89:ff:80:b0:5c:c4: 88:8a:c7:51:32:9e:5f:06:c5:24:f1:a0:89:4f:d6: dc:9b:41:e3:e3:d1:05:b6:e1:1e:d5:36:58:61:3c: 2c:be:18:60:54:83:6c:96:88:e0:4f:8d:e8:0a:b8: b1:0e:e3:e2:00:f9:f0:5e:97:f3:81:34:03:fd:b2: 66:3c:ed:d9:ad:23:f6:57:f6:95:8e:49:32:ca:aa: 0a:e5:da:1a:5b:49:3a:1e:17:8c:4b:45:f7:5a:01: d8:36:bb:ed:0e:ad:2e:6c:75:2e:5a:56:04:ad:dc: 84:58:56:a4:af:4b:8f:18:63:74:cd:5b:5c:4d:13: cf:f1:c3:1b:69:ff:f9:7e:89:46:37:4b:50:d4:4d: 3f:48:7a:ac:c4:f3:79:b4:0c:f4:60:3f:ef:61:70: 77:ae:ff:ca:f1:d5:1b:a9:06:ad:bf:b2:d0:97:d9: b6:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:96:11:70:98:65:0E:68:0A:AB:3A:0B:61:9C:6B:76:A1:78:86:1A X509v3 Authority Key Identifier: keyid:24:3D:92:43:7C:E2:30:50:3E:54:8E:FD:29:3C:2A:63:81:B5:C4:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91523C5/0366D7AEACE111E9BFA56423C4F9AE02/JD2SQ3ziMFA-VI79KTwqY4G1xCY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD2SQ3ziMFA-VI79KTwqY4G1xCY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91523C5/0366D7AEACE111E9BFA56423C4F9AE02/JD2SQ3ziMFA-VI79KTwqY4G1xCY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:58:ae:43:d1:86:11:12:aa:c8:7b:ab:cd:58:67:c8:e0:5e: 22:bc:8a:d1:f1:80:e2:64:48:0b:a7:c4:4d:00:80:51:63:56: 35:11:af:14:ff:70:d2:59:13:8f:a3:28:76:89:5d:51:24:c0: 47:61:e5:bd:6a:bf:7b:85:f0:bf:1b:0c:73:88:c5:39:45:12: 8f:73:b7:7a:44:ea:44:cd:72:47:ed:44:6d:07:7c:54:c0:8c: 38:0e:f2:6e:ee:7e:42:29:3f:63:25:59:19:42:85:a1:d0:01: 87:49:5e:7b:91:78:86:9e:cc:1c:c0:2e:09:81:bf:16:6a:fc: ef:d2:0b:64:23:8a:c2:5b:d9:73:38:f2:02:a7:e2:03:49:95: d5:7e:33:7c:53:b4:81:ab:e5:26:be:2a:8b:77:93:ac:af:c8: 7f:39:e2:ea:df:14:04:cc:4e:68:b2:e8:66:b0:92:ca:22:0c: f5:9f:d1:af:14:95:c9:10:58:5c:37:c1:da:c0:66:66:3a:05: 0b:82:e4:92:ec:76:fe:ec:54:c8:11:6c:0c:27:cb:89:50:f1: 28:dc:24:00:24:bc:10:3c:49:bd:1c:4d:33:c3:f1:9c:ff:df: 18:2d:97:4e:68:e4:3c:c8:6b:bc:52:57:81:73:7c:73:ad:22: 47:c8:8e:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDnswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTIzQzUxMTAvBgNVBAUTKDI0M0Q5MjQzN0NFMjMwNTAzRTU0OEVGRDI5M0MyQTYz ODFCNUM0MjYwHhcNMjUxMjIyMTcyMzI5WhcNMjUxMjI5MTcyMzI5WjAYMRYwFAYD VQQDDA02OTQ5N2U5MS0yMGQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0pOb2zoDZKhRitQV0RhIm9Of1mJthLeXb43qVAsFnsI46mIZxcuJagpqifMq B9lmnqhd+uhVKYLBDRxPxEN2QQDvrLnQmG8VRS/6zgn9t1lDVS6J/4CwXMSIisdR Mp5fBsUk8aCJT9bcm0Hj49EFtuEe1TZYYTwsvhhgVINslojgT43oCrixDuPiAPnw XpfzgTQD/bJmPO3ZrSP2V/aVjkkyyqoK5doaW0k6HheMS0X3WgHYNrvtDq0ubHUu WlYErdyEWFakr0uPGGN0zVtcTRPP8cMbaf/5folGN0tQ1E0/SHqsxPN5tAz0YD/v YXB3rv/K8dUbqQatv7LQl9m2JQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAOWEXCY ZQ5oCqs6C2Gca3aheIYaMB8GA1UdIwQYMBaAFCQ9kkN84jBQPlSO/Sk8KmOBtcQm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjNDNS8wMzY2RDdBRUFD RTExMUU5QkZBNTY0MjNDNEY5QUUwMi9KRDJTUTN6aU1GQS1WSTc5S1R3cVk0RzF4 Q1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pEMlNRM3ppTUZBLVZJNzlLVHdxWTRHMXhDWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjNDNS8wMzY2RDdBRUFDRTExMUU5QkZBNTY0MjNDNEY5QUUwMi9KRDJTUTN6aU1G QS1WSTc5S1R3cVk0RzF4Q1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOWK5D0YYREqrIe6vNWGfI4F4ivIrR8YDiZEgLp8RNAIBRY1Y1Ea8U /3DSWROPoyh2iV1RJMBHYeW9ar97hfC/GwxziMU5RRKPc7d6ROpEzXJH7URtB3xU wIw4DvJu7n5CKT9jJVkZQoWh0AGHSV57kXiGnswcwC4Jgb8Wavzv0gtkI4rCW9lz OPICp+IDSZXVfjN8U7SBq+UmviqLd5Osr8h/OeLq3xQEzE5osuhmsJLKIgz1n9Gv FJXJEFhcN8HawGZmOgULguSS7Hb+7FTIEWwMJ8uJUPEo3CQAJLwQPEm9HE0zw/Gc /98YLZdOaOQ8yGu8UleBc3xzrSJHyI7Y -----END CERTIFICATE-----Generated at Wed Dec 24 14:11:56 2025 by rpki-client