This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.mft File: JzQEfW6XjVCbqKUabxBkh49Hddo.mft (raw, json) Hash identifier: vr/D0jABOxer7gXhKxzD2sAVkhN6PYQQal64Z2Y3c84= Subject key identifier: 10:69:0A:CF:DD:39:D7:0D:86:74:2C:18:95:A5:A9:EA:37:36:87:2B Authority key identifier: 27:34:04:7D:6E:97:8D:50:9B:A8:A5:1A:6F:10:64:87:8F:47:75:DA Certificate issuer: /CN=A91C23C5/serialNumber=2734047D6E978D509BA8A51A6F1064878F4775DA Certificate serial: 1D9C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzQEfW6XjVCbqKUabxBkh49Hddo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.mft Manifest number: 1D8D Signing time: Mon 22 Dec 2025 15:55:10 +0000 Manifest this update: Mon 22 Dec 2025 15:55:09 +0000 Manifest next update: Mon 29 Dec 2025 15:55:09 +0000 Files and hashes: 1: JzQEfW6XjVCbqKUabxBkh49Hddo.crl (hash: p9Yhw+t08v5aeW7aTgGx7eU7hsAiWrQafJ8UkF5X3Qo=) 2: AC34FBD61C0111EC8ADBF80CC4F9AE02.roa (hash: ptNgrWHvzJHQ4AbkataHwe2RnXoFWeh5k6roCCdUJ6s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.crl rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzQEfW6XjVCbqKUabxBkh49Hddo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 15:55:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7580 (0x1d9c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C23C5, serialNumber=2734047D6E978D509BA8A51A6F1064878F4775DA Validity Not Before: Dec 22 15:55:09 2025 GMT Not After : Dec 29 15:55:09 2025 GMT Subject: CN=694969dd-27d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:8d:b5:10:b0:a5:5d:6d:bd:1e:fe:34:a0:32: f6:f7:0e:7d:3c:8b:3d:6b:16:90:ec:4b:d0:88:5d: 2f:4e:c1:e0:8a:a7:a6:e8:a4:a8:10:eb:0c:43:02: 95:bf:cb:81:13:c5:27:ff:17:95:39:eb:bf:39:89: 46:5d:b2:be:6c:c7:0e:c4:9b:24:4c:3a:32:62:34: 2b:c3:56:15:25:99:d0:0e:ad:12:94:b8:2f:5a:b4: 79:a3:db:32:4a:c4:2b:37:77:90:46:fd:68:f4:58: 65:91:4b:b0:f9:51:ae:7c:35:54:ad:b7:07:4d:09: cb:21:94:78:0c:50:89:b3:99:98:14:4d:ec:65:33: aa:fb:42:4c:7f:6d:8c:fe:55:3b:be:50:16:05:7e: 90:a9:a4:a9:ed:12:0e:f3:cf:e9:9d:a0:a3:3d:0f: e2:c9:ff:ee:b3:4d:69:ba:64:94:3e:7c:e9:66:75: 7a:82:71:bb:70:83:7b:8b:e4:88:d9:ac:16:b9:4c: 87:f7:93:f7:07:ae:2e:cf:f8:da:82:9b:fc:a2:0e: a6:be:5d:4e:2b:83:0c:62:da:d3:9f:f7:74:88:80: 2b:c9:fd:a1:f1:29:e9:a4:37:23:32:03:85:b5:ee: 2a:7e:10:cc:9f:48:d1:b1:08:91:75:c0:6a:27:11: 6a:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:69:0A:CF:DD:39:D7:0D:86:74:2C:18:95:A5:A9:EA:37:36:87:2B X509v3 Authority Key Identifier: keyid:27:34:04:7D:6E:97:8D:50:9B:A8:A5:1A:6F:10:64:87:8F:47:75:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzQEfW6XjVCbqKUabxBkh49Hddo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:60:5f:cf:79:42:d5:08:17:f7:5c:d3:65:e7:cf:f4:60:3b: bf:ce:7b:a6:0d:c4:88:0e:1d:5f:a1:3f:04:28:a0:f4:de:be: 34:3c:e8:c1:eb:95:4e:74:53:e3:45:4f:44:93:7f:c5:8e:6c: cb:c7:7c:3c:84:b0:05:f1:21:69:27:50:4d:99:c8:66:8f:e8: 22:52:ea:4e:c8:cf:90:44:a9:b4:f0:a2:da:2d:37:30:7d:cf: cf:16:93:e3:25:33:ad:f7:7e:28:cd:77:03:38:df:30:ee:38: e0:6e:c5:8a:85:9b:72:11:bc:c0:ae:ed:fe:84:e4:c7:4e:7a: 9e:e2:0f:56:d3:ab:2e:b5:54:35:1c:82:a5:96:0f:ba:35:0f: af:ca:88:89:86:06:4c:03:a0:c5:57:a1:a6:04:c9:4b:61:bd: 16:72:e3:42:ce:a2:68:2e:39:0c:1c:c5:e0:fe:9f:e2:a6:12: 72:cd:9b:c1:3b:c9:8b:8d:ba:45:12:f3:8c:15:33:be:92:64: 2e:5b:c2:e3:23:71:09:cc:97:68:58:e0:9a:4c:06:50:f8:50: a5:53:2b:3d:5b:55:61:21:7c:d6:bb:2d:19:93:13:89:03:27: 1e:07:d1:95:d1:df:05:09:c4:f8:54:81:2a:cb:d8:dd:0f:f7: b9:9f:a3:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHZwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzIzQzUxMTAvBgNVBAUTKDI3MzQwNDdENkU5NzhENTA5QkE4QTUxQTZGMTA2NDg3 OEY0Nzc1REEwHhcNMjUxMjIyMTU1NTA5WhcNMjUxMjI5MTU1NTA5WjAYMRYwFAYD VQQDDA02OTQ5NjlkZC0yN2QzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnY21ELClXW29Hv40oDL29w59PIs9axaQ7EvQiF0vTsHgiqem6KSoEOsMQwKV v8uBE8Un/xeVOeu/OYlGXbK+bMcOxJskTDoyYjQrw1YVJZnQDq0SlLgvWrR5o9sy SsQrN3eQRv1o9FhlkUuw+VGufDVUrbcHTQnLIZR4DFCJs5mYFE3sZTOq+0JMf22M /lU7vlAWBX6QqaSp7RIO88/pnaCjPQ/iyf/us01pumSUPnzpZnV6gnG7cIN7i+SI 2awWuUyH95P3B64uz/jagpv8og6mvl1OK4MMYtrTn/d0iIAryf2h8SnppDcjMgOF te4qfhDMn0jRsQiRdcBqJxFqLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBBpCs/d OdcNhnQsGJWlqeo3NocrMB8GA1UdIwQYMBaAFCc0BH1ul41Qm6ilGm8QZIePR3Xa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjNDNS84MzFBMjBGRUI1 QzMxMUU2QjUxNDNBMkFDNEY5QUUwMi9KelFFZlc2WGpWQ2JxS1VhYnhCa2g0OUhk ZG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0p6UUVmVzZYalZDYnFLVWFieEJraDQ5SGRkby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MjNDNS84MzFBMjBGRUI1QzMxMUU2QjUxNDNBMkFDNEY5QUUwMi9KelFFZlc2WGpW Q2JxS1VhYnhCa2g0OUhkZG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtYF/PeULVCBf3XNNl58/0YDu/znumDcSIDh1foT8EKKD03r40POjB 65VOdFPjRU9Ek3/FjmzLx3w8hLAF8SFpJ1BNmchmj+giUupOyM+QRKm08KLaLTcw fc/PFpPjJTOt934ozXcDON8w7jjgbsWKhZtyEbzAru3+hOTHTnqe4g9W06sutVQ1 HIKllg+6NQ+vyoiJhgZMA6DFV6GmBMlLYb0WcuNCzqJoLjkMHMXg/p/iphJyzZvB O8mLjbpFEvOMFTO+kmQuW8LjI3EJzJdoWOCaTAZQ+FClUys9W1VhIXzWuy0ZkxOJ AyceB9GV0d8FCcT4VIEqy9jdD/e5n6Mg -----END CERTIFICATE-----Generated at Wed Dec 24 03:46:53 2025 by rpki-client