This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919DD2D/9D12695CE70E11E89A963D11C4F9AE02/jPQjmA_Tp_Z-xfSlQ6IDpT485nY.mft File: jPQjmA_Tp_Z-xfSlQ6IDpT485nY.mft (raw, json) Hash identifier: MSVC1Dc99P8rO+hYZfifMV083bTd7CmyvvE7ArlpXH8= Subject key identifier: C2:81:05:D9:80:B3:98:8F:A7:DA:A8:18:5F:45:84:71:66:16:F9:5B Authority key identifier: 8C:F4:23:98:0F:D3:A7:F6:7E:C5:F4:A5:43:A2:03:A5:3E:3C:E6:76 Certificate issuer: /CN=A919DD2D/serialNumber=8CF423980FD3A7F67EC5F4A543A203A53E3CE676 Certificate serial: 1267 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jPQjmA_Tp_Z-xfSlQ6IDpT485nY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919DD2D/9D12695CE70E11E89A963D11C4F9AE02/jPQjmA_Tp_Z-xfSlQ6IDpT485nY.mft Manifest number: 125D Signing time: Mon 22 Dec 2025 16:49:07 +0000 Manifest this update: Mon 22 Dec 2025 16:49:07 +0000 Manifest next update: Mon 29 Dec 2025 16:49:07 +0000 Files and hashes: 1: jPQjmA_Tp_Z-xfSlQ6IDpT485nY.crl (hash: RxZueJUQRDj6q319s1zpDSBQK/Uss8hTIQsSSwxMNIU=) 2: A295F860E71011E8899C3917C4F9AE02.roa (hash: Zc8ZyszTYFo9A7M3BvUvEpbBkP/1ew3gmRt3lHjCQ70=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919DD2D/9D12695CE70E11E89A963D11C4F9AE02/jPQjmA_Tp_Z-xfSlQ6IDpT485nY.crl rsync://rpki.apnic.net/member_repository/A919DD2D/9D12695CE70E11E89A963D11C4F9AE02/jPQjmA_Tp_Z-xfSlQ6IDpT485nY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jPQjmA_Tp_Z-xfSlQ6IDpT485nY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 16:49:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4711 (0x1267) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919DD2D, serialNumber=8CF423980FD3A7F67EC5F4A543A203A53E3CE676 Validity Not Before: Dec 22 16:49:07 2025 GMT Not After : Dec 29 16:49:07 2025 GMT Subject: CN=69497683-0954 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:0f:5f:e8:df:11:73:d1:57:c4:3a:ee:9b:66: 59:69:57:37:e4:72:3c:24:45:11:03:43:a1:2f:4f: ee:07:6b:01:50:7c:fd:93:3a:5f:79:1b:f8:f8:bc: 99:1f:5b:b2:c9:ce:54:d5:f7:a5:86:95:11:ce:98: 3d:d9:f5:22:2f:31:3c:9c:df:3b:28:3b:a9:1a:70: 08:df:94:5a:14:23:3d:08:1e:ff:61:17:4f:63:25: c9:3a:f5:f3:72:5d:55:73:0d:05:03:12:37:8d:24: 97:01:0e:00:ce:c9:27:29:86:58:c2:4c:23:94:a7: f9:70:0a:f5:40:de:3e:30:38:c3:bd:0e:53:a2:7a: 1b:74:3e:96:8c:48:e5:0f:3a:c7:31:44:90:7e:7b: a0:f5:90:ec:d9:4f:c0:53:86:d7:77:c0:dd:91:7a: e8:f3:6b:a1:ee:64:d4:f0:0c:52:21:c0:e6:2b:ff: 73:2b:40:f8:3b:26:c1:ab:db:d4:bf:04:84:d0:fa: d1:30:4d:7a:8b:26:36:c3:0c:bd:8c:73:c8:77:5e: f1:f7:47:9c:5c:82:58:27:91:20:fe:29:a5:59:06: d9:e3:47:ba:61:56:3e:ef:5a:44:13:83:81:1d:19: 5b:53:71:33:03:53:b1:c9:9b:b3:f3:f3:69:0f:f9: ff:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:81:05:D9:80:B3:98:8F:A7:DA:A8:18:5F:45:84:71:66:16:F9:5B X509v3 Authority Key Identifier: keyid:8C:F4:23:98:0F:D3:A7:F6:7E:C5:F4:A5:43:A2:03:A5:3E:3C:E6:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919DD2D/9D12695CE70E11E89A963D11C4F9AE02/jPQjmA_Tp_Z-xfSlQ6IDpT485nY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jPQjmA_Tp_Z-xfSlQ6IDpT485nY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919DD2D/9D12695CE70E11E89A963D11C4F9AE02/jPQjmA_Tp_Z-xfSlQ6IDpT485nY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:f8:60:cc:bd:2e:89:31:98:ad:ef:36:18:18:93:35:04:5e: 63:a2:ff:30:f5:b7:42:c1:c6:e6:05:56:23:7c:de:2a:ec:c9: 4e:fb:83:d3:e5:07:00:73:b4:d7:07:d2:ad:30:36:a5:99:10: 69:ee:3f:b9:43:3b:1d:37:97:15:08:b5:bb:f6:63:fa:78:06: f9:19:e3:40:67:51:98:f0:2e:58:5d:c2:a1:e6:a9:2a:93:c0: 1b:3c:57:da:ad:52:cd:67:fc:7a:02:a9:6a:bc:fb:74:98:4c: 62:dd:50:2f:cd:c2:e4:89:b8:5a:1a:f3:70:f4:56:2f:b4:d0: 6d:c4:b3:a7:b9:36:42:77:ec:a3:70:7e:64:6c:73:26:22:74: ca:0b:63:b6:0e:d4:8b:75:16:88:7e:34:b2:ab:fa:97:a3:b2: ff:e2:b8:b7:a4:6c:84:f1:6e:5e:17:b1:f8:3d:c6:7c:43:16: 34:a2:36:e9:e8:8d:00:ec:d2:3f:4b:94:0f:73:84:c9:57:84: e2:45:aa:0e:27:d7:2d:38:5c:8b:ab:45:89:37:3f:99:68:32: b9:c3:31:fe:55:bd:39:7d:ee:0d:88:0c:f0:06:14:e8:09:44: a4:4c:38:a9:09:da:7a:cd:59:c7:82:19:ee:a5:b1:84:c6:bc: ee:1f:c7:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEmcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUREMkQxMTAvBgNVBAUTKDhDRjQyMzk4MEZEM0E3RjY3RUM1RjRBNTQzQTIwM0E1 M0UzQ0U2NzYwHhcNMjUxMjIyMTY0OTA3WhcNMjUxMjI5MTY0OTA3WjAYMRYwFAYD VQQDDA02OTQ5NzY4My0wOTU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxw9f6N8Rc9FXxDrum2ZZaVc35HI8JEURA0OhL0/uB2sBUHz9kzpfeRv4+LyZ H1uyyc5U1felhpURzpg92fUiLzE8nN87KDupGnAI35RaFCM9CB7/YRdPYyXJOvXz cl1Vcw0FAxI3jSSXAQ4AzsknKYZYwkwjlKf5cAr1QN4+MDjDvQ5TonobdD6WjEjl DzrHMUSQfnug9ZDs2U/AU4bXd8DdkXro82uh7mTU8AxSIcDmK/9zK0D4OybBq9vU vwSE0PrRME16iyY2wwy9jHPId17x90ecXIJYJ5Eg/imlWQbZ40e6YVY+71pEE4OB HRlbU3EzA1OxyZuz8/NpD/n/3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMKBBdmA s5iPp9qoGF9FhHFmFvlbMB8GA1UdIwQYMBaAFIz0I5gP06f2fsX0pUOiA6U+POZ2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5REQyRC85RDEyNjk1Q0U3 MEUxMUU4OUE5NjNEMTFDNEY5QUUwMi9qUFFqbUFfVHBfWi14ZlNsUTZJRHBUNDg1 blkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pQUWptQV9UcF9aLXhmU2xRNklEcFQ0ODVuWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 REQyRC85RDEyNjk1Q0U3MEUxMUU4OUE5NjNEMTFDNEY5QUUwMi9qUFFqbUFfVHBf Wi14ZlNsUTZJRHBUNDg1blkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4+GDMvS6JMZit7zYYGJM1BF5jov8w9bdCwcbmBVYjfN4q7MlO+4PT 5QcAc7TXB9KtMDalmRBp7j+5QzsdN5cVCLW79mP6eAb5GeNAZ1GY8C5YXcKh5qkq k8AbPFfarVLNZ/x6AqlqvPt0mExi3VAvzcLkibhaGvNw9FYvtNBtxLOnuTZCd+yj cH5kbHMmInTKC2O2DtSLdRaIfjSyq/qXo7L/4ri3pGyE8W5eF7H4PcZ8QxY0ojbp 6I0A7NI/S5QPc4TJV4TiRaoOJ9ctOFyLq0WJNz+ZaDK5wzH+Vb05fe4NiAzwBhTo CUSkTDipCdp6zVnHghnupbGExrzuH8ec -----END CERTIFICATE-----Generated at Wed Dec 24 14:10:29 2025 by rpki-client