This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919A6EB/DD4C1B2A0A5A11EEBE824344C4F9AE02/jNZeQOKuy7xVttozRr8czjg1wnc.mft File: jNZeQOKuy7xVttozRr8czjg1wnc.mft (raw, json) Hash identifier: j9LlzRTfqhrdASblezSRiAYATZtRQwsYYS+etXwpbIo= Subject key identifier: 15:8E:E7:12:C4:96:9C:B0:12:FD:1B:61:22:CD:FF:B5:3A:24:FE:D6 Authority key identifier: 8C:D6:5E:40:E2:AE:CB:BC:55:B6:DA:33:46:BF:1C:CE:38:35:C2:77 Certificate issuer: /CN=A919A6EB/serialNumber=8CD65E40E2AECBBC55B6DA3346BF1CCE3835C277 Certificate serial: 01D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jNZeQOKuy7xVttozRr8czjg1wnc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A6EB/DD4C1B2A0A5A11EEBE824344C4F9AE02/jNZeQOKuy7xVttozRr8czjg1wnc.mft Manifest number: 01D6 Signing time: Sun 21 Dec 2025 02:01:27 +0000 Manifest this update: Sun 21 Dec 2025 02:01:27 +0000 Manifest next update: Sun 28 Dec 2025 02:01:27 +0000 Files and hashes: 1: jNZeQOKuy7xVttozRr8czjg1wnc.crl (hash: QoZxER+p6ZcmrVooAFPCeSIg+vxJwPf+xO/OiM1h0vI=) 2: 4CEE00EC0A8811EEA788A750C4F9AE02.roa (hash: TJboroWTjSH5MHMWjJ273LEWmOXtmootlWn74QKDiMU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A6EB/DD4C1B2A0A5A11EEBE824344C4F9AE02/jNZeQOKuy7xVttozRr8czjg1wnc.crl rsync://rpki.apnic.net/member_repository/A919A6EB/DD4C1B2A0A5A11EEBE824344C4F9AE02/jNZeQOKuy7xVttozRr8czjg1wnc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jNZeQOKuy7xVttozRr8czjg1wnc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 02:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 473 (0x1d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A6EB, serialNumber=8CD65E40E2AECBBC55B6DA3346BF1CCE3835C277 Validity Not Before: Dec 21 02:01:27 2025 GMT Not After : Dec 28 02:01:27 2025 GMT Subject: CN=694754f7-f27d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:fa:3d:46:84:48:c9:29:55:33:3a:97:e5:db: 48:83:d7:d1:3c:a7:ca:3f:49:52:7a:e1:de:73:77: 05:86:fe:a7:58:2c:df:8b:b4:8c:c1:1d:c7:49:6c: 7f:14:4f:34:ec:ef:ec:4a:fb:4e:e2:97:b4:f4:08: 9c:6a:9c:48:5c:66:45:58:46:41:b6:2f:d8:db:ca: 4b:1d:a5:fe:17:c5:df:14:ae:02:26:67:c2:70:2f: 39:6e:ed:2f:cc:8e:f6:c4:8c:ab:f0:bb:ee:0c:94: 43:58:2b:ad:de:1f:0f:80:1d:d4:22:95:05:2c:86: 0e:b4:a4:34:6e:d9:32:c6:57:eb:54:5f:bb:fb:d4: 91:d7:40:f6:83:e5:a8:c5:8d:35:76:2a:9e:3b:12: cb:6b:6d:d0:a5:e8:1e:b6:cd:3a:85:0c:93:df:81: 5d:ef:f5:66:07:9e:98:fe:d6:6d:3f:28:c6:cc:c8: 29:8b:e9:a0:20:5a:51:0d:a2:b1:11:2a:09:09:55: 74:65:8d:2e:82:00:cf:00:28:56:df:47:fc:ab:e7: 48:49:f3:60:9c:7d:21:e1:b8:a7:87:61:9a:87:8e: 67:16:dc:71:ed:91:46:0d:7a:78:3f:de:15:b6:f4: 3e:fc:ef:9e:b6:9d:64:33:a3:c5:03:bb:89:53:b6: 66:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:8E:E7:12:C4:96:9C:B0:12:FD:1B:61:22:CD:FF:B5:3A:24:FE:D6 X509v3 Authority Key Identifier: keyid:8C:D6:5E:40:E2:AE:CB:BC:55:B6:DA:33:46:BF:1C:CE:38:35:C2:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A6EB/DD4C1B2A0A5A11EEBE824344C4F9AE02/jNZeQOKuy7xVttozRr8czjg1wnc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jNZeQOKuy7xVttozRr8czjg1wnc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A6EB/DD4C1B2A0A5A11EEBE824344C4F9AE02/jNZeQOKuy7xVttozRr8czjg1wnc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:56:b5:2d:47:c5:62:90:9d:18:6b:bd:33:5c:e9:c0:ff:63: 14:42:f4:ff:4a:8a:a6:e9:e3:8d:26:a8:6e:2b:7e:49:0d:a5: 64:42:f1:7e:16:47:22:67:f1:b4:4b:58:08:c5:4d:af:76:5b: 8d:9d:c7:9b:79:b8:66:75:79:2d:5a:ed:a1:61:c7:18:3f:cf: 62:42:9e:d0:a0:a7:a4:37:47:cf:75:bf:6c:da:c9:17:7b:a2: 58:bd:ab:95:68:0c:63:cb:f9:ef:7a:20:14:af:a3:cd:0f:a1: 0e:d3:9e:7b:0f:9b:06:83:a1:c9:8c:30:dc:f2:63:ee:9f:68: 21:ed:87:6b:27:c6:4e:f4:e1:2b:90:ed:cc:25:16:25:71:b8: de:61:46:ab:23:74:94:31:59:0b:a0:74:37:41:cf:a0:48:87: ee:f0:4b:c0:fb:4e:d0:44:6e:a7:80:5a:83:21:14:66:b3:0e: ad:81:8b:35:5c:f6:c3:4a:61:aa:ca:91:5f:54:7e:08:11:22: 84:35:1d:dd:bf:98:91:e6:e3:1e:0c:99:f1:eb:fe:8c:1b:0c: d6:bc:f9:12:21:73:0c:a6:8b:9f:a8:8c:15:81:e6:83:2a:b3: a9:3b:bd:93:7c:b2:f6:bd:f6:40:33:de:b4:3c:70:e9:07:43: 0d:80:40:10 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE2RUIxMTAvBgNVBAUTKDhDRDY1RTQwRTJBRUNCQkM1NUI2REEzMzQ2QkYxQ0NF MzgzNUMyNzcwHhcNMjUxMjIxMDIwMTI3WhcNMjUxMjI4MDIwMTI3WjAYMRYwFAYD VQQDDA02OTQ3NTRmNy1mMjdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt/o9RoRIySlVMzqX5dtIg9fRPKfKP0lSeuHec3cFhv6nWCzfi7SMwR3HSWx/ FE807O/sSvtO4pe09AicapxIXGZFWEZBti/Y28pLHaX+F8XfFK4CJmfCcC85bu0v zI72xIyr8LvuDJRDWCut3h8PgB3UIpUFLIYOtKQ0btkyxlfrVF+7+9SR10D2g+Wo xY01diqeOxLLa23Qpegets06hQyT34Fd7/VmB56Y/tZtPyjGzMgpi+mgIFpRDaKx ESoJCVV0ZY0uggDPAChW30f8q+dISfNgnH0h4binh2Gah45nFtxx7ZFGDXp4P94V tvQ+/O+etp1kM6PFA7uJU7ZmdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBWO5xLE lpywEv0bYSLN/7U6JP7WMB8GA1UdIwQYMBaAFIzWXkDirsu8VbbaM0a/HM44NcJ3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTZFQi9ERDRDMUIyQTBB NUExMUVFQkU4MjQzNDRDNEY5QUUwMi9qTlplUU9LdXk3eFZ0dG96UnI4Y3pqZzF3 bmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pOWmVRT0t1eTd4VnR0b3pScjhjempnMXduYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTZFQi9ERDRDMUIyQTBBNUExMUVFQkU4MjQzNDRDNEY5QUUwMi9qTlplUU9LdXk3 eFZ0dG96UnI4Y3pqZzF3bmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZVrUtR8VikJ0Ya70zXOnA/2MUQvT/Soqm6eONJqhuK35JDaVkQvF+ FkciZ/G0S1gIxU2vdluNncebebhmdXktWu2hYccYP89iQp7QoKekN0fPdb9s2skX e6JYvauVaAxjy/nveiAUr6PND6EO0557D5sGg6HJjDDc8mPun2gh7YdrJ8ZO9OEr kO3MJRYlcbjeYUarI3SUMVkLoHQ3Qc+gSIfu8EvA+07QRG6ngFqDIRRmsw6tgYs1 XPbDSmGqypFfVH4IESKENR3dv5iR5uMeDJnx6/6MGwzWvPkSIXMMpoufqIwVgeaD KrOpO72TfLL2vfZAM960PHDpB0MNgEAQ -----END CERTIFICATE-----Generated at Mon Dec 22 16:12:31 2025 by rpki-client