This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A916D6C1/DB7044E27A2611EFAF07B655C4F9AE02/JthkXujuOl0esdLfl5uFSbh2Hio.mft File: JthkXujuOl0esdLfl5uFSbh2Hio.mft (raw, json) Hash identifier: zCeCszHcEDQnk8EKpOMcXiXn+ldoeUc7YSKvoRb1dms= Subject key identifier: A1:67:87:C4:28:8F:1F:32:8D:54:F5:21:EF:E8:13:B4:06:BF:08:81 Authority key identifier: 26:D8:64:5E:E8:EE:3A:5D:1E:B1:D2:DF:97:9B:85:49:B8:76:1E:2A Certificate issuer: /CN=A916D6C1/serialNumber=26D8645EE8EE3A5D1EB1D2DF979B8549B8761E2A Certificate serial: FA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JthkXujuOl0esdLfl5uFSbh2Hio.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D6C1/DB7044E27A2611EFAF07B655C4F9AE02/JthkXujuOl0esdLfl5uFSbh2Hio.mft Manifest number: F3 Signing time: Tue 23 Dec 2025 04:21:23 +0000 Manifest this update: Tue 23 Dec 2025 04:21:22 +0000 Manifest next update: Tue 30 Dec 2025 04:21:22 +0000 Files and hashes: 1: JthkXujuOl0esdLfl5uFSbh2Hio.crl (hash: rEthsDbQ8hA8V0oSZ8g87+I6ABVui7kk3KdQcxrY18E=) 2: 00E00D025BC711F0886C5B59C4F9AE02.roa (hash: 4/6lX4NZ27z+xN3FhA2YCKR5609eVbF1fWeCrdQJGAI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D6C1/DB7044E27A2611EFAF07B655C4F9AE02/JthkXujuOl0esdLfl5uFSbh2Hio.crl rsync://rpki.apnic.net/member_repository/A916D6C1/DB7044E27A2611EFAF07B655C4F9AE02/JthkXujuOl0esdLfl5uFSbh2Hio.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JthkXujuOl0esdLfl5uFSbh2Hio.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 04:21:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 250 (0xfa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D6C1, serialNumber=26D8645EE8EE3A5D1EB1D2DF979B8549B8761E2A Validity Not Before: Dec 23 04:21:22 2025 GMT Not After : Dec 30 04:21:22 2025 GMT Subject: CN=694a18c2-49b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:e4:22:32:ed:78:7d:99:d2:59:d8:b3:dd:c0: 4f:2c:d1:84:98:da:54:01:13:dd:f6:cd:df:73:5a: 98:20:7f:5b:bc:9f:86:46:1a:53:36:99:33:e4:20: ac:7a:4b:f8:5e:3f:36:13:c1:4d:d5:f0:ec:da:79: 2d:fc:ee:e5:8c:db:05:03:10:ba:c4:c6:fa:9c:76: cb:0c:86:14:48:0b:43:ac:79:50:f7:a5:7f:0f:9d: 8e:c9:d2:d0:3b:9b:9b:54:c5:1c:d2:ca:d2:06:60: d2:db:b6:60:86:cf:f1:79:24:1b:54:12:fe:e3:aa: 43:fc:ff:38:9d:08:3f:29:36:22:18:92:18:1e:e0: 9a:6c:86:3f:dc:a9:4f:51:79:76:98:38:79:5d:d1: 64:82:f6:29:17:47:31:44:2e:9c:62:76:af:10:47: c1:2a:de:a8:26:42:a9:d4:5b:69:d0:20:56:9c:80: 05:21:dd:ac:d3:c6:4b:b5:ca:3e:b3:0c:00:1f:f0: f7:5e:18:1c:83:7b:4a:03:0c:cf:45:88:1c:7e:c5: 39:3f:dc:89:46:56:10:b1:ae:af:57:39:77:9a:01: 2c:5a:75:06:db:e7:69:91:fa:0b:e0:6d:e8:cb:a4: 2a:1e:13:00:15:be:34:cc:4e:55:d2:f7:69:1b:40: 07:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:67:87:C4:28:8F:1F:32:8D:54:F5:21:EF:E8:13:B4:06:BF:08:81 X509v3 Authority Key Identifier: keyid:26:D8:64:5E:E8:EE:3A:5D:1E:B1:D2:DF:97:9B:85:49:B8:76:1E:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D6C1/DB7044E27A2611EFAF07B655C4F9AE02/JthkXujuOl0esdLfl5uFSbh2Hio.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JthkXujuOl0esdLfl5uFSbh2Hio.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D6C1/DB7044E27A2611EFAF07B655C4F9AE02/JthkXujuOl0esdLfl5uFSbh2Hio.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:84:f6:c1:57:fe:24:63:c8:0c:d6:54:ea:f8:75:77:a7:fd: 3d:61:3e:44:80:4d:2f:bc:5a:06:59:38:c8:ea:d6:b6:1c:33: d7:1e:61:d3:88:b2:f1:98:4e:bd:96:ef:74:2f:d6:bc:4e:a1: 41:1e:b8:dc:29:de:fa:39:85:b3:42:99:04:1e:f7:31:df:64: 6b:3c:c7:91:07:23:d1:e1:1e:2d:8f:0a:30:21:d0:8f:1c:73: 04:36:60:ae:4c:c3:af:84:f2:d3:d3:34:d3:d5:40:2b:f8:48: 7b:4e:7a:f5:d8:89:66:c6:03:1d:e2:9b:8e:22:65:eb:32:89: d3:77:b1:3e:67:c1:d2:47:25:04:da:67:88:67:a6:81:cb:f3: c8:a9:95:52:1e:bc:10:00:2b:77:46:92:58:c6:dd:38:8b:e9: 7e:e1:05:b9:b6:98:eb:24:8c:dd:02:b6:de:b1:7d:65:ed:95: 4a:49:1a:e8:9f:8d:47:71:15:7b:a7:83:c3:5c:df:29:f3:f7: 51:d8:eb:36:64:b0:16:b9:72:f5:46:bc:d4:45:5f:ab:22:92: 31:a0:df:da:ba:27:a0:fd:e4:d9:75:b7:fa:c7:96:d7:c9:5a: db:5f:48:26:1c:6c:d1:57:99:94:51:e8:c6:26:dd:cb:23:c4: 61:98:77:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkQ2QzExMTAvBgNVBAUTKDI2RDg2NDVFRThFRTNBNUQxRUIxRDJERjk3OUI4NTQ5 Qjg3NjFFMkEwHhcNMjUxMjIzMDQyMTIyWhcNMjUxMjMwMDQyMTIyWjAYMRYwFAYD VQQDDA02OTRhMThjMi00OWIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3uQiMu14fZnSWdiz3cBPLNGEmNpUARPd9s3fc1qYIH9bvJ+GRhpTNpkz5CCs ekv4Xj82E8FN1fDs2nkt/O7ljNsFAxC6xMb6nHbLDIYUSAtDrHlQ96V/D52OydLQ O5ubVMUc0srSBmDS27Zghs/xeSQbVBL+46pD/P84nQg/KTYiGJIYHuCabIY/3KlP UXl2mDh5XdFkgvYpF0cxRC6cYnavEEfBKt6oJkKp1Ftp0CBWnIAFId2s08ZLtco+ swwAH/D3Xhgcg3tKAwzPRYgcfsU5P9yJRlYQsa6vVzl3mgEsWnUG2+dpkfoL4G3o y6QqHhMAFb40zE5V0vdpG0AHXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKFnh8Qo jx8yjVT1Ie/oE7QGvwiBMB8GA1UdIwQYMBaAFCbYZF7o7jpdHrHS35ebhUm4dh4q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RDZDMS9EQjcwNDRFMjdB MjYxMUVGQUYwN0I2NTVDNEY5QUUwMi9KdGhrWHVqdU9sMGVzZExmbDV1RlNiaDJI aW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0p0aGtYdWp1T2wwZXNkTGZsNXVGU2JoMkhpby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RDZDMS9EQjcwNDRFMjdBMjYxMUVGQUYwN0I2NTVDNEY5QUUwMi9KdGhrWHVqdU9s MGVzZExmbDV1RlNiaDJIaW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC0hPbBV/4kY8gM1lTq+HV3p/09YT5EgE0vvFoGWTjI6ta2HDPXHmHT iLLxmE69lu90L9a8TqFBHrjcKd76OYWzQpkEHvcx32RrPMeRByPR4R4tjwowIdCP HHMENmCuTMOvhPLT0zTT1UAr+Eh7Tnr12IlmxgMd4puOImXrMonTd7E+Z8HSRyUE 2meIZ6aBy/PIqZVSHrwQACt3RpJYxt04i+l+4QW5tpjrJIzdArbesX1l7ZVKSRro n41HcRV7p4PDXN8p8/dR2Os2ZLAWuXL1RrzURV+rIpIxoN/auieg/eTZdbf6x5bX yVrbX0gmHGzRV5mUUejGJt3LI8RhmHfY -----END CERTIFICATE-----Generated at Tue Dec 23 14:36:24 2025 by rpki-client