This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9142A39/A65949B23BC411E4B5A63E3BC4F9AE02/JzKpmoY71iA82RXNcle10dmH6yg.mft File: JzKpmoY71iA82RXNcle10dmH6yg.mft (raw, json) Hash identifier: OiZ4W9hsG4L7BMIV1NyDConmNFALXEUa1OgPKc+AduM= Subject key identifier: 18:E9:BC:EC:94:7F:AB:A3:7A:18:39:CB:57:2B:49:B1:74:D6:B3:3B Authority key identifier: 27:32:A9:9A:86:3B:D6:20:3C:D9:15:CD:72:57:B5:D1:D9:87:EB:28 Certificate issuer: /CN=A9142A39/serialNumber=2732A99A863BD6203CD915CD7257B5D1D987EB28 Certificate serial: 2A3E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzKpmoY71iA82RXNcle10dmH6yg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142A39/A65949B23BC411E4B5A63E3BC4F9AE02/JzKpmoY71iA82RXNcle10dmH6yg.mft Manifest number: 2A34 Signing time: Thu 18 Dec 2025 15:31:56 +0000 Manifest this update: Thu 18 Dec 2025 15:31:55 +0000 Manifest next update: Thu 25 Dec 2025 15:31:55 +0000 Files and hashes: 1: JzKpmoY71iA82RXNcle10dmH6yg.crl (hash: W5wVu3kbqAgXE3CV5+NPfM6HpLvoM8X9l6Xiw8iHMbE=) 2: 2FF7E9A600BB11EA895E5253C4F9AE02.roa (hash: mZM0zWOIX0nGEpyDG7PyWk/q1r9WRDMbkBj3OfFE2JA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142A39/A65949B23BC411E4B5A63E3BC4F9AE02/JzKpmoY71iA82RXNcle10dmH6yg.crl rsync://rpki.apnic.net/member_repository/A9142A39/A65949B23BC411E4B5A63E3BC4F9AE02/JzKpmoY71iA82RXNcle10dmH6yg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzKpmoY71iA82RXNcle10dmH6yg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 15:31:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10814 (0x2a3e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142A39, serialNumber=2732A99A863BD6203CD915CD7257B5D1D987EB28 Validity Not Before: Dec 18 15:31:55 2025 GMT Not After : Dec 25 15:31:55 2025 GMT Subject: CN=69441e6b-aba4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:70:54:9d:f1:d4:ec:ab:2c:45:e0:1f:08:f4: 29:ca:c2:e6:92:78:fb:e8:5d:be:82:a0:d4:38:aa: 8e:d4:01:91:bd:63:58:6a:a1:3c:17:71:95:92:d5: 9f:f5:3f:0f:07:02:86:6f:88:72:d7:c3:4d:7c:41: 24:48:6b:64:4f:1e:b7:07:4b:6e:b2:96:c6:fd:2a: 39:3d:81:06:49:20:e8:50:d9:55:51:af:36:80:4a: fe:18:e6:b0:54:03:b0:07:6a:7a:d3:d7:ae:ec:02: cc:b7:30:5c:ea:8a:87:3e:e3:68:7e:e5:e1:23:76: e3:82:cf:c8:e3:9c:4c:ad:c8:4e:44:e2:f9:45:cb: 33:f4:1e:37:24:97:3d:91:76:7e:06:c6:24:72:16: 32:57:fe:b0:19:20:53:8c:d7:50:0c:98:01:d1:84: 26:1d:8f:59:96:9f:83:4f:33:94:ff:63:87:b5:25: 2c:73:ba:f6:74:4b:f0:00:52:70:3a:5c:d2:31:2c: 53:be:f6:f1:a6:31:03:3e:ad:16:e4:f9:b4:22:6a: 0e:46:08:9d:cf:2a:a1:0b:23:34:43:2c:94:15:15: 9d:63:b3:19:4e:29:b1:61:2e:b4:7b:3e:36:2d:8a: 6e:2d:72:b2:9b:07:ed:22:0d:c3:5d:5e:5b:75:fb: c0:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:E9:BC:EC:94:7F:AB:A3:7A:18:39:CB:57:2B:49:B1:74:D6:B3:3B X509v3 Authority Key Identifier: keyid:27:32:A9:9A:86:3B:D6:20:3C:D9:15:CD:72:57:B5:D1:D9:87:EB:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142A39/A65949B23BC411E4B5A63E3BC4F9AE02/JzKpmoY71iA82RXNcle10dmH6yg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzKpmoY71iA82RXNcle10dmH6yg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142A39/A65949B23BC411E4B5A63E3BC4F9AE02/JzKpmoY71iA82RXNcle10dmH6yg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:9a:bf:15:51:9c:66:2b:0e:6a:25:39:71:ec:f2:7a:41:74: 9f:1c:fc:87:c7:48:bf:e3:2c:3e:0a:82:06:94:ef:8e:eb:92: af:fe:80:cc:fa:bf:f4:66:9d:d1:51:24:18:6b:77:1b:2e:88: 8f:70:0b:09:61:51:6d:fe:62:68:d7:90:7f:4a:fc:6d:b5:98: e0:8a:74:8d:0e:3c:1f:10:2d:c6:89:2b:51:fc:d7:62:7d:f8: f8:f0:ea:bb:d2:a0:a9:a2:b3:28:c0:28:6c:ab:ff:82:5f:c6: 7d:94:94:61:0b:31:c2:d5:fd:df:e6:0b:46:89:c5:91:3d:4a: 67:32:27:a4:c3:6f:db:d8:80:24:5a:99:16:dc:3f:9f:85:1f: c9:f9:f3:d7:fe:8f:58:aa:6a:ba:95:73:36:1d:df:73:53:99: fd:e8:08:93:10:f5:cb:56:9f:8e:bc:d7:07:a0:3c:87:22:d1: dd:15:15:a9:d7:a4:c7:c0:28:f4:38:27:9c:41:48:b1:c2:5f: d5:08:fb:9b:84:f6:2f:79:67:70:f4:d7:db:e1:31:69:06:b1: 42:3f:62:f2:9a:2e:69:14:4d:18:a1:84:89:37:45:d7:18:90: 08:67:38:5f:66:4e:1c:a2:4d:75:49:fd:59:ca:59:5b:db:71: dc:7e:a1:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICKj4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDJBMzkxMTAvBgNVBAUTKDI3MzJBOTlBODYzQkQ2MjAzQ0Q5MTVDRDcyNTdCNUQx RDk4N0VCMjgwHhcNMjUxMjE4MTUzMTU1WhcNMjUxMjI1MTUzMTU1WjAYMRYwFAYD VQQDDA02OTQ0MWU2Yi1hYmE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw3BUnfHU7KssReAfCPQpysLmknj76F2+gqDUOKqO1AGRvWNYaqE8F3GVktWf 9T8PBwKGb4hy18NNfEEkSGtkTx63B0tuspbG/So5PYEGSSDoUNlVUa82gEr+GOaw VAOwB2p609eu7ALMtzBc6oqHPuNofuXhI3bjgs/I45xMrchOROL5Rcsz9B43JJc9 kXZ+BsYkchYyV/6wGSBTjNdQDJgB0YQmHY9Zlp+DTzOU/2OHtSUsc7r2dEvwAFJw OlzSMSxTvvbxpjEDPq0W5Pm0ImoORgidzyqhCyM0QyyUFRWdY7MZTimxYS60ez42 LYpuLXKymwftIg3DXV5bdfvAqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBjpvOyU f6ujehg5y1crSbF01rM7MB8GA1UdIwQYMBaAFCcyqZqGO9YgPNkVzXJXtdHZh+so MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MkEzOS9BNjU5NDlCMjNC QzQxMUU0QjVBNjNFM0JDNEY5QUUwMi9KektwbW9ZNzFpQTgyUlhOY2xlMTBkbUg2 eWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0p6S3Btb1k3MWlBODJSWE5jbGUxMGRtSDZ5Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MkEzOS9BNjU5NDlCMjNCQzQxMUU0QjVBNjNFM0JDNEY5QUUwMi9KektwbW9ZNzFp QTgyUlhOY2xlMTBkbUg2eWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBUmr8VUZxmKw5qJTlx7PJ6QXSfHPyHx0i/4yw+CoIGlO+O65Kv/oDM +r/0Zp3RUSQYa3cbLoiPcAsJYVFt/mJo15B/SvxttZjginSNDjwfEC3GiStR/Ndi ffj48Oq70qCporMowChsq/+CX8Z9lJRhCzHC1f3f5gtGicWRPUpnMiekw2/b2IAk WpkW3D+fhR/J+fPX/o9Yqmq6lXM2Hd9zU5n96AiTEPXLVp+OvNcHoDyHItHdFRWp 16THwCj0OCecQUixwl/VCPubhPYveWdw9Nfb4TFpBrFCP2Lymi5pFE0YoYSJN0XX GJAIZzhfZk4cok11Sf1Zyllb23HcfqFQ -----END CERTIFICATE-----Generated at Fri Dec 19 19:04:07 2025 by rpki-client