This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917BB1B/D9B9C88C7F3611ECA90BCA3AC4F9AE02/1jZSRQ6nVZE88xr8-popIaSK4aQ.mft File: 1jZSRQ6nVZE88xr8-popIaSK4aQ.mft (raw, json) Hash identifier: WUG85D27a1ojG2hpXdfn7BlCBT+5DiaXQzlZCkJ7HvY= Subject key identifier: 7A:B3:2E:8E:04:CB:5C:F4:5C:5A:7D:4B:2D:8D:51:0C:DC:9C:30:FA Authority key identifier: D6:36:52:45:0E:A7:55:91:3C:F3:1A:FC:FA:9A:29:21:A4:8A:E1:A4 Certificate issuer: /CN=A917BB1B/serialNumber=D63652450EA755913CF31AFCFA9A2921A48AE1A4 Certificate serial: 0456 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1jZSRQ6nVZE88xr8-popIaSK4aQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917BB1B/D9B9C88C7F3611ECA90BCA3AC4F9AE02/1jZSRQ6nVZE88xr8-popIaSK4aQ.mft Manifest number: 044F Signing time: Mon 22 Dec 2025 23:16:22 +0000 Manifest this update: Mon 22 Dec 2025 23:16:21 +0000 Manifest next update: Mon 29 Dec 2025 23:16:21 +0000 Files and hashes: 1: 1jZSRQ6nVZE88xr8-popIaSK4aQ.crl (hash: RdnKjgrcSVtINNKK7eqw1foOnmT+oDNOaz8XWzBHG2o=) 2: E69DB7E67F7911EC86DE4B56C4F9AE02.roa (hash: SCsr6a/OxC+h0TbqqqQWA1WP6sx9Kte4TE8O/kgTqE0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917BB1B/D9B9C88C7F3611ECA90BCA3AC4F9AE02/1jZSRQ6nVZE88xr8-popIaSK4aQ.crl rsync://rpki.apnic.net/member_repository/A917BB1B/D9B9C88C7F3611ECA90BCA3AC4F9AE02/1jZSRQ6nVZE88xr8-popIaSK4aQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1jZSRQ6nVZE88xr8-popIaSK4aQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 23:16:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1110 (0x456) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917BB1B, serialNumber=D63652450EA755913CF31AFCFA9A2921A48AE1A4 Validity Not Before: Dec 22 23:16:21 2025 GMT Not After : Dec 29 23:16:21 2025 GMT Subject: CN=6949d145-1932 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:03:00:13:fa:e3:5b:5f:31:0e:2b:d8:f6:3f: ac:82:18:b8:0d:d8:22:c6:3f:77:b9:f4:8d:c5:5b: 99:32:8f:63:da:25:4b:b0:87:59:45:2a:0d:62:5e: 4b:e0:8b:e1:10:2b:9d:19:86:76:f5:c8:a5:7b:9b: 64:11:29:0d:b0:39:a9:e1:ae:d9:89:58:a9:ea:59: 8c:75:3c:bb:e9:82:73:b2:e9:89:d9:43:d7:eb:2a: bb:40:f8:09:a4:fa:e5:6f:16:3b:e8:0f:0b:95:bc: 17:b6:71:6c:bf:cd:fe:e9:7d:2f:dc:bb:61:ce:f3: 02:d7:76:24:b3:b1:36:94:29:8d:bc:fd:30:e0:79: a1:eb:f8:15:41:7e:91:2a:40:d5:cd:14:3c:07:c6: 56:43:0a:00:9b:43:5f:fb:43:2b:0a:17:be:1c:c1: 51:56:0d:d5:fb:2e:4c:b6:5f:fc:61:13:0a:04:f7: dc:82:4e:1b:30:92:0e:91:6e:45:9d:9b:17:68:68: 02:5f:76:34:2c:dd:52:9d:88:7b:f2:32:d8:1d:b5: f2:25:64:a5:d6:09:f6:03:69:7a:d6:dc:41:7c:d8: 93:02:d8:79:2f:39:7b:9c:4a:b9:fd:11:09:fc:7d: 08:fa:50:76:6a:48:f9:68:7e:d0:53:61:75:bc:b4: b3:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:B3:2E:8E:04:CB:5C:F4:5C:5A:7D:4B:2D:8D:51:0C:DC:9C:30:FA X509v3 Authority Key Identifier: keyid:D6:36:52:45:0E:A7:55:91:3C:F3:1A:FC:FA:9A:29:21:A4:8A:E1:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917BB1B/D9B9C88C7F3611ECA90BCA3AC4F9AE02/1jZSRQ6nVZE88xr8-popIaSK4aQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1jZSRQ6nVZE88xr8-popIaSK4aQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BB1B/D9B9C88C7F3611ECA90BCA3AC4F9AE02/1jZSRQ6nVZE88xr8-popIaSK4aQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:da:2f:6a:c8:72:90:bc:e5:e9:3c:99:f2:7c:dd:ff:17:dc: 60:7e:96:83:8f:5b:10:35:fd:47:c3:06:bc:03:17:15:bb:ca: 28:32:e0:17:51:bd:b5:81:8c:c9:18:f3:d4:4e:33:6a:ab:1c: 00:49:c8:26:e7:be:1b:a9:f7:c9:ac:d0:46:18:bc:d0:36:aa: 4a:c0:be:d1:a6:94:93:ae:77:d7:06:c2:f5:c0:f2:e5:d6:a1: 4e:82:3c:89:2e:4a:75:b4:c8:67:e8:18:94:ae:ce:6e:4c:71: de:ce:f1:aa:93:44:2f:03:cf:e7:db:4c:84:a7:8c:38:a5:30: 31:1d:55:19:f1:b5:30:55:f9:16:14:2b:e1:f5:a3:26:2b:e0: 2c:36:01:f7:85:6b:0a:b4:1b:d6:35:05:65:cf:49:82:76:8e: 19:6c:c7:1d:11:04:47:2c:98:43:13:eb:6c:be:1a:d2:ba:0e: d0:4e:df:ba:cc:4a:80:70:0d:f1:c5:d1:03:0b:60:6a:60:dc: c0:3e:8e:42:dc:b8:68:c2:6c:1b:96:3c:07:d3:6e:bc:85:a4: 98:21:eb:97:7e:85:59:a4:53:6f:66:0d:0a:07:97:21:8b:73: a2:a7:71:7a:38:be:9f:20:ba:92:7e:b3:11:b8:f8:01:2e:00: bb:1c:1b:e9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBFYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0JCMUIxMTAvBgNVBAUTKEQ2MzY1MjQ1MEVBNzU1OTEzQ0YzMUFGQ0ZBOUEyOTIx QTQ4QUUxQTQwHhcNMjUxMjIyMjMxNjIxWhcNMjUxMjI5MjMxNjIxWjAYMRYwFAYD VQQDDA02OTQ5ZDE0NS0xOTMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnAMAE/rjW18xDivY9j+sghi4Ddgixj93ufSNxVuZMo9j2iVLsIdZRSoNYl5L 4IvhECudGYZ29cile5tkESkNsDmp4a7ZiVip6lmMdTy76YJzsumJ2UPX6yq7QPgJ pPrlbxY76A8LlbwXtnFsv83+6X0v3LthzvMC13Yks7E2lCmNvP0w4Hmh6/gVQX6R KkDVzRQ8B8ZWQwoAm0Nf+0MrChe+HMFRVg3V+y5Mtl/8YRMKBPfcgk4bMJIOkW5F nZsXaGgCX3Y0LN1SnYh78jLYHbXyJWSl1gn2A2l61txBfNiTAth5Lzl7nEq5/REJ /H0I+lB2akj5aH7QU2F1vLSzcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHqzLo4E y1z0XFp9Sy2NUQzcnDD6MB8GA1UdIwQYMBaAFNY2UkUOp1WRPPMa/PqaKSGkiuGk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QkIxQi9EOUI5Qzg4QzdG MzYxMUVDQTkwQkNBM0FDNEY5QUUwMi8xalpTUlE2blZaRTg4eHI4LXBvcElhU0s0 YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFqWlNSUTZuVlpFODh4cjgtcG9wSWFTSzRhUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QkIxQi9EOUI5Qzg4QzdGMzYxMUVDQTkwQkNBM0FDNEY5QUUwMi8xalpTUlE2blZa RTg4eHI4LXBvcElhU0s0YVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB12i9qyHKQvOXpPJnyfN3/F9xgfpaDj1sQNf1Hwwa8AxcVu8ooMuAX Ub21gYzJGPPUTjNqqxwAScgm574bqffJrNBGGLzQNqpKwL7RppSTrnfXBsL1wPLl 1qFOgjyJLkp1tMhn6BiUrs5uTHHezvGqk0QvA8/n20yEp4w4pTAxHVUZ8bUwVfkW FCvh9aMmK+AsNgH3hWsKtBvWNQVlz0mCdo4ZbMcdEQRHLJhDE+tsvhrSug7QTt+6 zEqAcA3xxdEDC2BqYNzAPo5C3LhowmwbljwH0268haSYIeuXfoVZpFNvZg0KB5ch i3Oip3F6OL6fILqSfrMRuPgBLgC7HBvp -----END CERTIFICATE-----Generated at Wed Dec 24 14:12:28 2025 by rpki-client