This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91523C5/0366D7AEACE111E9BFA56423C4F9AE02/JD2SQ3ziMFA-VI79KTwqY4G1xCY.mft File: JD2SQ3ziMFA-VI79KTwqY4G1xCY.mft (raw, json) Hash identifier: VLC1v4wzsS4g4GFBtNsq5hzRLjwoZZOpmE0wZZ0Kb5I= Subject key identifier: DE:F9:6D:15:96:2E:DD:B0:43:C6:AB:DA:42:33:09:50:55:17:35:93 Authority key identifier: 24:3D:92:43:7C:E2:30:50:3E:54:8E:FD:29:3C:2A:63:81:B5:C4:26 Certificate issuer: /CN=A91523C5/serialNumber=243D92437CE230503E548EFD293C2A6381B5C426 Certificate serial: 0E79 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD2SQ3ziMFA-VI79KTwqY4G1xCY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91523C5/0366D7AEACE111E9BFA56423C4F9AE02/JD2SQ3ziMFA-VI79KTwqY4G1xCY.mft Manifest number: 0E6E Signing time: Thu 18 Dec 2025 17:32:36 +0000 Manifest this update: Thu 18 Dec 2025 17:32:36 +0000 Manifest next update: Thu 25 Dec 2025 17:32:36 +0000 Files and hashes: 1: JD2SQ3ziMFA-VI79KTwqY4G1xCY.crl (hash: PcbMLjEi04X2CpOW4LwajjbU3Ge2IBfHqaQWwaUzcAQ=) 2: 72D9F434AD2411E98D9E935AC4F9AE02.roa (hash: 6yiyih3iYU5SXCZve8BQVAbNfjgN61udEXmY/BbF0dY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91523C5/0366D7AEACE111E9BFA56423C4F9AE02/JD2SQ3ziMFA-VI79KTwqY4G1xCY.crl rsync://rpki.apnic.net/member_repository/A91523C5/0366D7AEACE111E9BFA56423C4F9AE02/JD2SQ3ziMFA-VI79KTwqY4G1xCY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD2SQ3ziMFA-VI79KTwqY4G1xCY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 17:32:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3705 (0xe79) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91523C5, serialNumber=243D92437CE230503E548EFD293C2A6381B5C426 Validity Not Before: Dec 18 17:32:36 2025 GMT Not After : Dec 25 17:32:36 2025 GMT Subject: CN=69443ab4-e8a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:11:88:fe:68:a1:bb:0d:f7:47:b7:72:47:cd: 20:6b:c8:3a:f0:59:03:db:83:c1:30:af:ce:48:03: 57:b1:cf:2f:b8:c9:76:97:19:64:cb:c2:36:50:63: 57:07:36:ef:aa:a6:a1:7b:13:f2:37:54:80:24:77: e8:72:fc:92:f3:38:bd:7e:f0:74:56:dd:62:5e:5e: b8:d2:05:92:6a:29:3e:09:0f:ca:4a:2b:f7:d2:59: 40:d1:e0:e0:1d:6d:4e:7d:bd:a6:74:ed:39:0f:52: f5:53:e9:f7:36:db:9c:9d:cc:ac:8a:cc:dd:29:1a: 95:77:62:ef:90:8a:cb:c0:87:5e:9d:e8:9d:27:1d: ec:e0:f7:01:2f:16:20:df:a2:ed:69:c4:00:d9:04: 25:c2:1a:6c:aa:60:22:f3:87:39:05:d0:9e:18:d0: dd:67:68:e6:0f:a0:0a:ff:75:0a:2e:dc:51:17:76: f8:1d:9b:80:ee:cb:5b:a8:83:02:bb:de:f1:c6:5e: d0:a9:4a:48:cf:6d:73:94:d5:4a:3c:df:05:03:ac: ab:38:49:89:86:92:2e:d2:7f:fb:35:71:9a:a7:c8: d2:ce:a3:f4:6c:97:13:d0:9d:2a:43:ee:f9:9f:f1: 5e:12:11:86:74:81:72:03:e8:7d:14:41:df:89:8b: 58:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:F9:6D:15:96:2E:DD:B0:43:C6:AB:DA:42:33:09:50:55:17:35:93 X509v3 Authority Key Identifier: keyid:24:3D:92:43:7C:E2:30:50:3E:54:8E:FD:29:3C:2A:63:81:B5:C4:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91523C5/0366D7AEACE111E9BFA56423C4F9AE02/JD2SQ3ziMFA-VI79KTwqY4G1xCY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD2SQ3ziMFA-VI79KTwqY4G1xCY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91523C5/0366D7AEACE111E9BFA56423C4F9AE02/JD2SQ3ziMFA-VI79KTwqY4G1xCY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:c5:ad:05:16:fd:2c:4a:66:fe:3d:a2:c3:f3:b1:de:bf:65: 01:b6:88:48:ea:4f:25:71:3e:b5:fd:9f:20:3d:73:46:22:9f: ae:30:8a:1a:c1:cd:56:01:4e:05:95:94:2b:44:ac:e7:3e:9e: 2f:a4:e3:8d:1d:cc:ea:26:fd:85:b1:f6:6e:e8:f0:01:6a:93: ec:4e:88:22:e7:e4:8e:6e:be:cf:f9:94:26:3d:2f:c6:ee:c4: 1c:6b:d4:93:ba:57:be:f3:2e:ac:b9:d4:fa:0e:1c:55:95:fc: 3a:df:b1:bd:4c:fa:32:2b:b2:1e:b2:9d:da:89:55:d0:65:ff: 87:07:4e:36:4f:d3:a6:b7:ef:47:12:20:7e:64:31:cf:00:f7: 21:65:21:a1:c3:a0:8a:38:35:cb:38:1c:81:01:bb:9d:22:94: 93:f2:1a:34:99:28:e5:dc:c3:11:2e:64:90:1c:d5:f5:05:58: 93:2c:8a:66:24:d9:15:70:f6:36:54:a3:68:58:14:74:6a:8e: 61:f6:35:d1:cc:56:d6:26:89:9a:68:1e:c4:42:39:19:12:e0: 21:1a:76:bf:e6:88:a0:b9:10:ac:a3:0a:09:f8:11:e7:1e:65: 31:51:eb:df:50:bc:5c:c0:f8:09:c8:f7:60:d7:23:81:09:f3: f8:8a:ce:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDnkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTIzQzUxMTAvBgNVBAUTKDI0M0Q5MjQzN0NFMjMwNTAzRTU0OEVGRDI5M0MyQTYz ODFCNUM0MjYwHhcNMjUxMjE4MTczMjM2WhcNMjUxMjI1MTczMjM2WjAYMRYwFAYD VQQDDA02OTQ0M2FiNC1lOGE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0BGI/mihuw33R7dyR80ga8g68FkD24PBMK/OSANXsc8vuMl2lxlky8I2UGNX BzbvqqahexPyN1SAJHfocvyS8zi9fvB0Vt1iXl640gWSaik+CQ/KSiv30llA0eDg HW1Ofb2mdO05D1L1U+n3NtucncysiszdKRqVd2LvkIrLwIdeneidJx3s4PcBLxYg 36LtacQA2QQlwhpsqmAi84c5BdCeGNDdZ2jmD6AK/3UKLtxRF3b4HZuA7stbqIMC u97xxl7QqUpIz21zlNVKPN8FA6yrOEmJhpIu0n/7NXGap8jSzqP0bJcT0J0qQ+75 n/FeEhGGdIFyA+h9FEHfiYtYnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN75bRWW Lt2wQ8ar2kIzCVBVFzWTMB8GA1UdIwQYMBaAFCQ9kkN84jBQPlSO/Sk8KmOBtcQm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjNDNS8wMzY2RDdBRUFD RTExMUU5QkZBNTY0MjNDNEY5QUUwMi9KRDJTUTN6aU1GQS1WSTc5S1R3cVk0RzF4 Q1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pEMlNRM3ppTUZBLVZJNzlLVHdxWTRHMXhDWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjNDNS8wMzY2RDdBRUFDRTExMUU5QkZBNTY0MjNDNEY5QUUwMi9KRDJTUTN6aU1G QS1WSTc5S1R3cVk0RzF4Q1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVxa0FFv0sSmb+PaLD87Hev2UBtohI6k8lcT61/Z8gPXNGIp+uMIoa wc1WAU4FlZQrRKznPp4vpOONHczqJv2FsfZu6PABapPsTogi5+SObr7P+ZQmPS/G 7sQca9STule+8y6sudT6DhxVlfw637G9TPoyK7Iesp3aiVXQZf+HB042T9Omt+9H EiB+ZDHPAPchZSGhw6CKODXLOByBAbudIpST8ho0mSjl3MMRLmSQHNX1BViTLIpm JNkVcPY2VKNoWBR0ao5h9jXRzFbWJomaaB7EQjkZEuAhGna/5oiguRCsowoJ+BHn HmUxUevfULxcwPgJyPdg1yOBCfP4is7V -----END CERTIFICATE-----Generated at Fri Dec 19 22:01:47 2025 by rpki-client