This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9185B6D/21522182E78E11EE9831EB7EC4F9AE02/jgK1xN61PytxL_B33gSQg3XoE9s.mft File: jgK1xN61PytxL_B33gSQg3XoE9s.mft (raw, json) Hash identifier: FmYzoJ9zeQGRq9EcuU49r4fD/PZaK25QdvEkw0yrhfA= Subject key identifier: 32:7E:85:A8:58:AE:E6:DC:CF:8B:AA:13:16:3F:3B:3A:DB:C4:D3:94 Authority key identifier: 8E:02:B5:C4:DE:B5:3F:2B:71:2F:F0:77:DE:04:90:83:75:E8:13:DB Certificate issuer: /CN=A9185B6D/serialNumber=8E02B5C4DEB53F2B712FF077DE04908375E813DB Certificate serial: 014E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jgK1xN61PytxL_B33gSQg3XoE9s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185B6D/21522182E78E11EE9831EB7EC4F9AE02/jgK1xN61PytxL_B33gSQg3XoE9s.mft Manifest number: 014A Signing time: Tue 23 Dec 2025 03:19:29 +0000 Manifest this update: Tue 23 Dec 2025 03:19:29 +0000 Manifest next update: Tue 30 Dec 2025 03:19:29 +0000 Files and hashes: 1: jgK1xN61PytxL_B33gSQg3XoE9s.crl (hash: P+2LaZtIbDmxZ9Na/+fnwb6WmfwptW9o5kq+WJ5bJF4=) 2: 6F09FF784B3111F0AED6945EC4F9AE02.roa (hash: I1sNkwrJ9A9oI4DVJU2qBgFfehpgUx5dO53gjYthp7w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185B6D/21522182E78E11EE9831EB7EC4F9AE02/jgK1xN61PytxL_B33gSQg3XoE9s.crl rsync://rpki.apnic.net/member_repository/A9185B6D/21522182E78E11EE9831EB7EC4F9AE02/jgK1xN61PytxL_B33gSQg3XoE9s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jgK1xN61PytxL_B33gSQg3XoE9s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 03:19:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 334 (0x14e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185B6D, serialNumber=8E02B5C4DEB53F2B712FF077DE04908375E813DB Validity Not Before: Dec 23 03:19:29 2025 GMT Not After : Dec 30 03:19:29 2025 GMT Subject: CN=694a0a41-3c2a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:ea:53:4f:3a:f4:7f:7c:ad:43:a5:e8:80:d2: fe:d5:97:17:cb:61:63:67:f1:87:a0:ff:6e:6b:13: 48:de:4e:06:37:7d:06:a0:f7:cd:d3:3b:e2:c7:a0: 81:3f:52:f5:46:9c:c7:a7:18:09:9f:fd:cc:df:9c: 60:78:a0:62:e2:8c:56:90:ec:74:f5:38:d2:d1:76: b3:87:de:10:5d:a9:1a:29:0b:12:6a:a4:e9:87:2e: 42:b7:01:75:77:b3:73:27:64:08:9f:ea:94:36:5a: 2f:d2:9b:1b:27:bc:bd:81:ad:e2:2f:17:f9:b9:1a: e4:71:88:49:84:8a:0d:b3:4e:6d:f2:18:78:c0:15: 0d:df:00:e0:31:6a:1c:61:93:c2:60:4c:0b:ea:1a: 35:c5:3c:39:ff:1c:e4:cf:8c:cf:b1:d9:3b:df:a7: ca:1b:eb:ba:5d:69:e6:c9:bb:0b:f0:33:5f:55:fc: f2:a4:92:6d:8e:12:0c:ef:41:68:8f:88:e8:41:2c: dd:d4:86:bb:0c:a1:50:d0:9c:ea:34:51:bb:59:14: 1f:ff:f6:3b:52:f2:67:d3:30:f4:c0:47:a3:ab:05: 5a:0c:48:8c:ac:dc:5f:16:f8:77:be:36:8b:a8:4d: 52:32:d9:16:17:21:d2:75:cc:11:23:f6:03:4a:d0: a8:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:7E:85:A8:58:AE:E6:DC:CF:8B:AA:13:16:3F:3B:3A:DB:C4:D3:94 X509v3 Authority Key Identifier: keyid:8E:02:B5:C4:DE:B5:3F:2B:71:2F:F0:77:DE:04:90:83:75:E8:13:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185B6D/21522182E78E11EE9831EB7EC4F9AE02/jgK1xN61PytxL_B33gSQg3XoE9s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jgK1xN61PytxL_B33gSQg3XoE9s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185B6D/21522182E78E11EE9831EB7EC4F9AE02/jgK1xN61PytxL_B33gSQg3XoE9s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:bf:c6:b3:53:ce:1c:b5:34:60:71:2c:4d:23:d9:7a:2a:f8: 7c:06:77:bb:5e:14:90:c0:99:8b:5c:06:f9:f5:25:0a:68:c2: 17:c9:d3:ac:46:37:63:63:69:10:0c:0e:fc:32:b4:11:5b:79: 95:aa:5e:21:f4:8e:c4:d4:b5:f3:1e:4f:90:f1:7f:51:56:7c: c2:80:bf:9f:a1:4d:0b:f0:73:43:30:7c:75:c4:a7:d0:74:3e: 23:ef:b8:41:8e:43:46:15:97:9f:12:7e:83:d2:b5:57:c6:c8: 0d:ed:50:0c:3a:b6:17:3b:56:0a:db:1a:fb:e2:bc:70:13:34: c9:cb:1b:ff:3c:66:3b:59:db:c8:b7:5a:e5:8e:cb:1e:64:ed: 06:1a:4e:e8:93:46:c1:25:d1:ef:e9:f2:83:62:5e:47:cd:cb: 8d:0b:48:67:28:83:61:5d:75:0e:ff:ce:f4:15:84:bb:85:f3: 76:40:63:47:ae:85:02:e6:a3:e7:3b:f4:e6:72:b5:e5:7c:ba: c9:a3:a6:d3:00:76:5b:77:f1:59:b4:20:59:c5:05:b9:16:1d: eb:2f:25:bb:0e:6e:28:1a:c4:99:72:3b:77:3c:7c:3d:5b:cc: 9a:c5:be:e0:8d:14:98:42:00:24:9c:ed:78:55:c5:06:76:10: 2d:80:f7:84 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAU4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVCNkQxMTAvBgNVBAUTKDhFMDJCNUM0REVCNTNGMkI3MTJGRjA3N0RFMDQ5MDgz NzVFODEzREIwHhcNMjUxMjIzMDMxOTI5WhcNMjUxMjMwMDMxOTI5WjAYMRYwFAYD VQQDDA02OTRhMGE0MS0zYzJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv+pTTzr0f3ytQ6XogNL+1ZcXy2FjZ/GHoP9uaxNI3k4GN30GoPfN0zvix6CB P1L1RpzHpxgJn/3M35xgeKBi4oxWkOx09TjS0Xazh94QXakaKQsSaqTphy5CtwF1 d7NzJ2QIn+qUNlov0psbJ7y9ga3iLxf5uRrkcYhJhIoNs05t8hh4wBUN3wDgMWoc YZPCYEwL6ho1xTw5/xzkz4zPsdk736fKG+u6XWnmybsL8DNfVfzypJJtjhIM70Fo j4joQSzd1Ia7DKFQ0JzqNFG7WRQf//Y7UvJn0zD0wEejqwVaDEiMrNxfFvh3vjaL qE1SMtkWFyHSdcwRI/YDStCoXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDJ+hahY rubcz4uqExY/OzrbxNOUMB8GA1UdIwQYMBaAFI4CtcTetT8rcS/wd94EkIN16BPb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUI2RC8yMTUyMjE4MkU3 OEUxMUVFOTgzMUVCN0VDNEY5QUUwMi9qZ0sxeE42MVB5dHhMX0IzM2dTUWczWG9F OXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pnSzF4TjYxUHl0eExfQjMzZ1NRZzNYb0U5cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUI2RC8yMTUyMjE4MkU3OEUxMUVFOTgzMUVCN0VDNEY5QUUwMi9qZ0sxeE42MVB5 dHhMX0IzM2dTUWczWG9FOXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGv8azU84ctTRgcSxNI9l6Kvh8Bne7XhSQwJmLXAb59SUKaMIXydOs RjdjY2kQDA78MrQRW3mVql4h9I7E1LXzHk+Q8X9RVnzCgL+foU0L8HNDMHx1xKfQ dD4j77hBjkNGFZefEn6D0rVXxsgN7VAMOrYXO1YK2xr74rxwEzTJyxv/PGY7WdvI t1rljsseZO0GGk7ok0bBJdHv6fKDYl5HzcuNC0hnKINhXXUO/870FYS7hfN2QGNH roUC5qPnO/TmcrXlfLrJo6bTAHZbd/FZtCBZxQW5Fh3rLyW7Dm4oGsSZcjt3PHw9 W8yaxb7gjRSYQgAknO14VcUGdhAtgPeE -----END CERTIFICATE-----Generated at Wed Dec 24 15:43:22 2025 by rpki-client