This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91777B9/D27C915C75B611EFB8E21514C4F9AE02/jdQUSFkXzUyAFnvaGdcklkawZyU.mft File: jdQUSFkXzUyAFnvaGdcklkawZyU.mft (raw, json) Hash identifier: oeeovepbPfvBZ+pqSsMCDVunZ06g38piKx48xmM+P9o= Subject key identifier: 38:A5:8C:AF:55:DC:B3:0D:C9:05:42:94:75:8C:6E:22:B2:FB:F0:30 Authority key identifier: 8D:D4:14:48:59:17:CD:4C:80:16:7B:DA:19:D7:24:96:46:B0:67:25 Certificate issuer: /CN=A91777B9/serialNumber=8DD414485917CD4C80167BDA19D7249646B06725 Certificate serial: F1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/jdQUSFkXzUyAFnvaGdcklkawZyU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91777B9/D27C915C75B611EFB8E21514C4F9AE02/jdQUSFkXzUyAFnvaGdcklkawZyU.mft Manifest number: EE Signing time: Fri 19 Dec 2025 04:30:18 +0000 Manifest this update: Fri 19 Dec 2025 04:30:18 +0000 Manifest next update: Fri 26 Dec 2025 04:30:18 +0000 Files and hashes: 1: jdQUSFkXzUyAFnvaGdcklkawZyU.crl (hash: LbP8yGYMfaG8LBjEFM8i3cmN8Ruc84mabAo5yPEaedI=) 2: FF3D553675B711EF83FAAE42C4F9AE02.roa (hash: 2GAN4cx4QTuzJoHXcS0SxuhQPJxWZFMWGY3rZM3hC3g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91777B9/D27C915C75B611EFB8E21514C4F9AE02/jdQUSFkXzUyAFnvaGdcklkawZyU.crl rsync://rpki.apnic.net/member_repository/A91777B9/D27C915C75B611EFB8E21514C4F9AE02/jdQUSFkXzUyAFnvaGdcklkawZyU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/jdQUSFkXzUyAFnvaGdcklkawZyU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 04:30:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 241 (0xf1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91777B9, serialNumber=8DD414485917CD4C80167BDA19D7249646B06725 Validity Not Before: Dec 19 04:30:18 2025 GMT Not After : Dec 26 04:30:18 2025 GMT Subject: CN=6944d4da-4d16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:1a:1d:bd:f0:7f:b7:a4:8a:8f:3d:04:ad:c5: 38:21:da:4a:8d:32:be:38:5f:f8:1a:90:bd:6b:34: 30:f7:a4:42:68:3b:2b:e0:1c:0f:e5:ba:59:93:33: 47:79:48:ff:85:ea:ba:ef:df:24:ca:5a:53:3e:8e: 04:33:9d:77:b4:62:e2:a7:ad:ba:f1:44:1c:d3:84: 01:3a:b2:3b:db:c1:9a:49:39:ba:d6:62:ea:b9:a6: a7:e5:1e:53:dd:64:8c:a9:52:db:1c:ee:e5:2c:4c: f5:70:06:20:c9:22:a2:c7:d0:87:86:dd:eb:1d:ad: e7:98:c3:4a:8b:34:3f:2d:62:ec:1e:20:66:31:3a: c1:43:35:8a:45:22:26:a7:b6:d1:7c:22:ec:40:f9: cd:77:b8:cf:7c:e2:94:77:20:46:6f:aa:b3:db:c5: c9:cc:cc:19:d0:56:9b:90:68:41:7f:c4:1f:5c:63: 07:46:44:d5:d7:3b:bf:fc:85:80:77:3c:36:81:a9: 6c:f5:26:90:0a:9a:42:45:a1:bb:49:f5:13:a1:95: a1:04:58:0f:a9:59:0b:f1:ec:6c:ad:b2:7a:4d:f3: 8b:04:be:aa:4b:49:dc:7a:1e:a4:43:68:a5:74:31: 8d:3b:ec:f6:18:dc:56:5f:bf:a1:17:1d:d3:de:f2: ca:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:A5:8C:AF:55:DC:B3:0D:C9:05:42:94:75:8C:6E:22:B2:FB:F0:30 X509v3 Authority Key Identifier: keyid:8D:D4:14:48:59:17:CD:4C:80:16:7B:DA:19:D7:24:96:46:B0:67:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91777B9/D27C915C75B611EFB8E21514C4F9AE02/jdQUSFkXzUyAFnvaGdcklkawZyU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/jdQUSFkXzUyAFnvaGdcklkawZyU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91777B9/D27C915C75B611EFB8E21514C4F9AE02/jdQUSFkXzUyAFnvaGdcklkawZyU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:c4:3f:30:0a:55:23:d3:b9:4d:92:45:23:0f:0e:ad:80:6c: b0:9b:2e:80:54:7a:8e:1c:2a:5b:8c:ae:fe:c4:be:1d:e7:79: a6:3b:37:7c:fc:82:fd:55:09:37:e7:47:de:a6:c9:d9:10:b0: f3:d8:68:f5:e2:0b:89:ff:89:65:40:94:ae:6f:00:07:47:52: 5e:f1:ea:ce:e8:e2:96:43:1a:ff:19:4c:e8:38:27:e4:d1:d7: c7:fd:54:f8:a3:f9:30:1f:1d:91:85:59:98:de:ef:eb:76:e0: b3:9b:c4:96:ec:a1:33:41:30:df:0a:26:81:06:57:d2:8b:15: cd:eb:55:60:98:e8:da:35:69:aa:38:ff:19:44:b9:c1:80:ae: 3e:78:bc:54:51:1f:91:82:44:92:bc:58:58:57:84:cf:03:c2: 77:fe:8e:ca:97:67:1b:e1:b9:85:e9:e0:44:ae:a8:9c:b0:c2: b3:99:cb:9f:5b:76:b0:fb:83:7f:56:70:ee:a8:fe:09:45:60: 21:79:1b:ca:02:c2:27:b6:af:1a:b8:20:57:ef:66:02:0e:af: 05:b9:ec:41:84:80:c4:86:0f:d3:00:79:8d:09:e8:43:f0:ca: 4b:3a:0d:19:00:f1:bb:53:f6:8d:19:d8:a8:a3:ce:83:12:b2: ad:59:95:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzc3QjkxMTAvBgNVBAUTKDhERDQxNDQ4NTkxN0NENEM4MDE2N0JEQTE5RDcyNDk2 NDZCMDY3MjUwHhcNMjUxMjE5MDQzMDE4WhcNMjUxMjI2MDQzMDE4WjAYMRYwFAYD VQQDDA02OTQ0ZDRkYS00ZDE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0BodvfB/t6SKjz0ErcU4IdpKjTK+OF/4GpC9azQw96RCaDsr4BwP5bpZkzNH eUj/heq6798kylpTPo4EM513tGLip6268UQc04QBOrI728GaSTm61mLquaan5R5T 3WSMqVLbHO7lLEz1cAYgySKix9CHht3rHa3nmMNKizQ/LWLsHiBmMTrBQzWKRSIm p7bRfCLsQPnNd7jPfOKUdyBGb6qz28XJzMwZ0FabkGhBf8QfXGMHRkTV1zu//IWA dzw2gals9SaQCppCRaG7SfUToZWhBFgPqVkL8exsrbJ6TfOLBL6qS0nceh6kQ2il dDGNO+z2GNxWX7+hFx3T3vLKEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDiljK9V 3LMNyQVClHWMbiKy+/AwMB8GA1UdIwQYMBaAFI3UFEhZF81MgBZ72hnXJJZGsGcl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzdCOS9EMjdDOTE1Qzc1 QjYxMUVGQjhFMjE1MTRDNEY5QUUwMi9qZFFVU0ZrWHpVeUFGbnZhR2Rja2xrYXda eVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2pkUVVTRmtYelV5QUZudmFHZGNrbGthd1p5VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NzdCOS9EMjdDOTE1Qzc1QjYxMUVGQjhFMjE1MTRDNEY5QUUwMi9qZFFVU0ZrWHpV eUFGbnZhR2Rja2xrYXdaeVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBsxD8wClUj07lNkkUjDw6tgGywmy6AVHqOHCpbjK7+xL4d53mmOzd8 /IL9VQk350fepsnZELDz2Gj14guJ/4llQJSubwAHR1Je8erO6OKWQxr/GUzoOCfk 0dfH/VT4o/kwHx2RhVmY3u/rduCzm8SW7KEzQTDfCiaBBlfSixXN61VgmOjaNWmq OP8ZRLnBgK4+eLxUUR+RgkSSvFhYV4TPA8J3/o7Kl2cb4bmF6eBErqicsMKzmcuf W3aw+4N/VnDuqP4JRWAheRvKAsIntq8auCBX72YCDq8FuexBhIDEhg/TAHmNCehD 8MpLOg0ZAPG7U/aNGdioo86DErKtWZUZ -----END CERTIFICATE-----Generated at Sat Dec 20 00:56:16 2025 by rpki-client