This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.mft File: IPJTGnuoIS0rsJANV2Ny0z-EaSg.mft (raw, json) Hash identifier: 4AWeRepslgy542ch61KLE5bpv3nA2fuJYnilz+l3jQM= Subject key identifier: 0F:12:22:1D:FA:AE:B7:85:11:2A:0D:D6:F3:BF:34:88:18:DC:D5:41 Authority key identifier: 20:F2:53:1A:7B:A8:21:2D:2B:B0:90:0D:57:63:72:D3:3F:84:69:28 Certificate issuer: /CN=A914DC5D/serialNumber=20F2531A7BA8212D2BB0900D576372D33F846928 Certificate serial: 094F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.mft Manifest number: 0857 Signing time: Fri 26 Dec 2025 20:42:59 +0000 Manifest this update: Fri 26 Dec 2025 20:42:58 +0000 Manifest next update: Fri 02 Jan 2026 20:42:58 +0000 Files and hashes: 1: IPJTGnuoIS0rsJANV2Ny0z-EaSg.crl (hash: 74Ksn5chLW48j4R6ejmBueTUaJJJHTgs+Q8wdVZLV8w=) 2: AB656EC82A4111EBA1B1BB3DC4F9AE02.roa (hash: lktIkPl22eqSwsqChqGX/PiBITeHZ0j0XKVggRutMPM=) 3: 696CCB682A4311EBBD69BE46C4F9AE02.roa (hash: S9g/XqrkQ3EKwy6SH+loLjPtlBRwhe3c36A/g6yjOOI=) 4: B18D8C2C2A4111EBA1B1BB3DC4F9AE02.roa (hash: lBS8kvbF9qc+MDE0imJFbA2HjjKTcdMHa+qxsQV+XxU=) 5: 689E513E2A4311EBBD69BE46C4F9AE02.roa (hash: FezbKF9kO0jDnIHasf+ZGAxTpu3bLao4gPSsw3YsObk=) 6: AEF56D7C2A4111EBA1B1BB3DC4F9AE02.roa (hash: ru4CDY9kB7xpZ7Gn5BJCqXlyrSix5gXPE9YTTMWfsno=) 7: 6B40A6762A4311EBBD69BE46C4F9AE02.roa (hash: cu/hrl9QOHrjIrKvHn9h0AfjeVMiF3XF5XO5n2p3i90=) 8: 5F0436A08AAF11EE93D5E566C4F9AE02.roa (hash: eYqTvYLPgNnCsX8XZsOGNBvCb+uxIeIiPxmKdWTMhWU=) 9: AAD2DA9A2A4111EBA1B1BB3DC4F9AE02.roa (hash: o3tJcryC81c5rX1xhCkHjKVGZCjhtaRQoK8u6zdAIkI=) 10: 55493366013C11ED9864F33CC4F9AE02.roa (hash: anyPqCvlt+dub0m+upybD86mloI3z1ObTHZ5cOmKdEQ=) 11: 6A0673EE2A4311EBBD69BE46C4F9AE02.roa (hash: pljZ5ks8zWLJ41xwtC7HEEzJ6OzoY7GJ/ohRRrP+jLs=) 12: 682125602A4311EBBD69BE46C4F9AE02.roa (hash: YyMxfaGjaUTR1RTEiaJ/8xWo+/v0LKLkSrPTK2mFwLE=) 13: AE58A49C2A4111EBA1B1BB3DC4F9AE02.roa (hash: DxsPcmRyMvqxvilkvhZcPekY1GWFfShT1K4h6XO4HIU=) 14: 6D98103E938011F09B37C61AC4F9AE02.roa (hash: +cmqK92laWBeFdIJrciFQi+GRyC2GcrGz2l8HSig/fc=) 15: ADB367482A4111EBA1B1BB3DC4F9AE02.roa (hash: /NbIlZMNBHck/exxSqKy2xdIIBSuAAci2V/DM520lf4=) 16: 77439A048A3911F0AA9D4C75C4F9AE02.roa (hash: 4gOxRljY2ajSaw9L+py/l3Z65NBPVaVQD1LWDmNg++Y=) 17: CC4A3EAC0EDF11F0915E3563C4F9AE02.roa (hash: ZOEl/EUL9Kcp7Oe2ySY5gCeqAoMs/cWZLqeYM9bpOY4=) 18: 6AB096D02A4311EBBD69BE46C4F9AE02.roa (hash: ANMNSNrxUbzfsYrPHlGwfWZQPT20tqofz6iu/oLsKk4=) 19: EBDB1D16FD7A11EF9979942FC4F9AE02.roa (hash: NNAqDSA6qZkwyXwW5LJm0ax1QL7uOfCZD/otvzKqxLc=) 20: B223E3C02A4111EBA1B1BB3DC4F9AE02.roa (hash: X4XJ5Vg4GOFvVKCrXpY0V9iGok/qikvYBC+EwepyjvQ=) 21: B0177DBC2A4111EBA1B1BB3DC4F9AE02.roa (hash: GoONDGq2mntV4VCH8ruKRLPZW7gF389h40xYTQMS4WY=) 22: AD3146462A4111EBA1B1BB3DC4F9AE02.roa (hash: 5ouufnP7Ctej4xce5TMz+xAplrLrKCKTZMwQ7r/Y7pY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.crl rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 Jan 2026 20:42:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2383 (0x94f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DC5D, serialNumber=20F2531A7BA8212D2BB0900D576372D33F846928 Validity Not Before: Dec 26 20:42:58 2025 GMT Not After : Jan 2 20:42:58 2026 GMT Subject: CN=694ef353-4643 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:62:ea:c3:dc:20:08:53:71:0f:36:1d:d5:b3: 58:98:c4:e6:d8:08:96:bc:4c:ec:3c:4a:dc:37:ca: 18:92:7b:92:c0:18:0f:8d:a5:35:af:24:28:26:0d: a6:63:f0:da:af:73:70:87:7b:55:7b:06:dc:3c:d4: c0:32:df:2b:98:ae:73:52:dc:b7:4e:9c:45:d7:04: ec:a8:5a:86:6b:89:97:2f:34:22:54:c2:bf:5c:54: f1:20:fc:0c:03:cd:9c:25:00:9a:f0:e5:d0:cc:46: b5:64:27:d8:0b:ce:76:3e:1a:86:e4:e9:37:51:57: 22:ba:b8:33:c5:b2:cb:69:21:e8:d3:78:5f:fe:4f: a6:52:2f:db:f0:7d:3f:3b:2d:b1:01:66:2b:92:34: 43:88:5a:41:41:9f:1a:67:99:eb:ba:59:b0:f7:c6: 09:21:d0:d3:9c:42:e3:73:b5:2a:bd:72:61:e2:bc: aa:5e:67:98:df:da:c8:74:fc:22:60:0e:e6:e6:ec: fe:8e:02:4c:2c:b0:af:a3:16:d9:d7:d2:23:f2:24: 26:a3:76:8e:33:04:c1:8d:07:64:37:9c:13:e0:3b: f1:86:9f:83:e3:24:ff:e6:84:9b:c5:dd:17:fa:b7: 25:de:e0:d0:0b:6c:fa:c5:b6:d7:90:46:72:31:cb: 10:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:12:22:1D:FA:AE:B7:85:11:2A:0D:D6:F3:BF:34:88:18:DC:D5:41 X509v3 Authority Key Identifier: keyid:20:F2:53:1A:7B:A8:21:2D:2B:B0:90:0D:57:63:72:D3:3F:84:69:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:17:6c:84:39:3f:12:b8:2f:c0:1c:fd:a4:5f:31:8c:2e:2b: 30:2b:b7:18:80:2b:29:33:08:2a:4c:89:f1:c2:94:fb:0a:28: b6:84:2a:25:08:a0:63:ff:eb:6a:e3:88:6b:ee:fb:01:d5:3e: 14:e8:e3:d4:9f:3c:d2:c3:4b:a6:15:a5:5d:e8:7b:2b:86:b4: 67:1c:96:81:c4:93:d3:a9:25:23:7a:d9:fa:1d:b2:d6:2d:cc: 9e:7b:5a:84:e3:d1:8c:cf:63:de:3d:48:3a:5d:0f:3f:f7:cd: dc:bb:71:2b:2c:a7:e5:6f:3e:a6:4a:4c:e0:7e:0f:06:e2:c5: 62:43:87:23:dd:78:b5:43:82:f9:7b:36:7b:3a:1e:84:24:c0: a9:e6:01:01:46:ed:81:95:d3:1d:c9:f9:fa:8e:1c:35:9e:58: f7:b3:ef:09:30:6d:e8:9a:ae:9d:cf:5f:f5:bd:fb:74:3c:de: f9:6e:56:2d:85:85:a0:42:03:00:0b:db:58:c2:bc:9e:3b:5a: 59:65:f6:61:fb:5b:71:ca:b1:54:55:1d:4f:56:84:48:02:4c: a7:41:04:ae:5e:a3:57:1f:87:3c:86:e9:8b:7b:93:18:69:b4: c6:46:01:06:26:45:12:87:aa:68:3d:56:9a:78:31:01:cf:6a: 3f:7a:aa:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCU8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NERDNUQxMTAvBgNVBAUTKDIwRjI1MzFBN0JBODIxMkQyQkIwOTAwRDU3NjM3MkQz M0Y4NDY5MjgwHhcNMjUxMjI2MjA0MjU4WhcNMjYwMTAyMjA0MjU4WjAYMRYwFAYD VQQDDA02OTRlZjM1My00NjQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy2Lqw9wgCFNxDzYd1bNYmMTm2AiWvEzsPErcN8oYknuSwBgPjaU1ryQoJg2m Y/Dar3Nwh3tVewbcPNTAMt8rmK5zUty3TpxF1wTsqFqGa4mXLzQiVMK/XFTxIPwM A82cJQCa8OXQzEa1ZCfYC852PhqG5Ok3UVciurgzxbLLaSHo03hf/k+mUi/b8H0/ Oy2xAWYrkjRDiFpBQZ8aZ5nrulmw98YJIdDTnELjc7UqvXJh4ryqXmeY39rIdPwi YA7m5uz+jgJMLLCvoxbZ19Ij8iQmo3aOMwTBjQdkN5wT4Dvxhp+D4yT/5oSbxd0X +rcl3uDQC2z6xbbXkEZyMcsQywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA8SIh36 rreFESoN1vO/NIgY3NVBMB8GA1UdIwQYMBaAFCDyUxp7qCEtK7CQDVdjctM/hGko MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0REM1RC8zOUU3MTQ2QzJB MzMxMUVCOTI5REMwN0NDNEY5QUUwMi9JUEpUR251b0lTMHJzSkFOVjJOeTB6LUVh U2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lQSlRHbnVvSVMwcnNKQU5WMk55MHotRWFTZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 REM1RC8zOUU3MTQ2QzJBMzMxMUVCOTI5REMwN0NDNEY5QUUwMi9JUEpUR251b0lT MHJzSkFOVjJOeTB6LUVhU2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPF2yEOT8SuC/AHP2kXzGMLiswK7cYgCspMwgqTInxwpT7Cii2hCol CKBj/+tq44hr7vsB1T4U6OPUnzzSw0umFaVd6HsrhrRnHJaBxJPTqSUjetn6HbLW Lcyee1qE49GMz2PePUg6XQ8/983cu3ErLKflbz6mSkzgfg8G4sViQ4cj3Xi1Q4L5 ezZ7Oh6EJMCp5gEBRu2BldMdyfn6jhw1nlj3s+8JMG3omq6dz1/1vft0PN75blYt hYWgQgMAC9tYwryeO1pZZfZh+1txyrFUVR1PVoRIAkynQQSuXqNXH4c8humLe5MY abTGRgEGJkUSh6poPVaaeDEBz2o/eqqM -----END CERTIFICATE-----Generated at Sun Dec 28 18:53:08 2025 by rpki-client