This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9123E38/6B91EDA0536C11EAA5C2790CC4F9AE02/0JTSRxQ1Lg680_iCdSMoJ7xqyJA.mft File: 0JTSRxQ1Lg680_iCdSMoJ7xqyJA.mft (raw, json) Hash identifier: heMHkSsA9zCUHdAxwUZpSAh0st7n+UTjYx9L795GYxo= Subject key identifier: B3:D8:8C:DF:62:E7:3E:FF:99:0C:3F:F2:F5:B0:CE:55:76:7C:F0:62 Authority key identifier: D0:94:D2:47:14:35:2E:0E:BC:D3:F8:82:75:23:28:27:BC:6A:C8:90 Certificate issuer: /CN=A9123E38/serialNumber=D094D24714352E0EBCD3F88275232827BC6AC890 Certificate serial: 0B15 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0JTSRxQ1Lg680_iCdSMoJ7xqyJA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123E38/6B91EDA0536C11EAA5C2790CC4F9AE02/0JTSRxQ1Lg680_iCdSMoJ7xqyJA.mft Manifest number: 0B13 Signing time: Sat 06 Dec 2025 16:14:41 +0000 Manifest this update: Sat 06 Dec 2025 16:14:40 +0000 Manifest next update: Sat 13 Dec 2025 16:14:40 +0000 Files and hashes: 1: 0JTSRxQ1Lg680_iCdSMoJ7xqyJA.crl (hash: lp2ao9qt7djbod2UeTtNGxWcsZlv6jo/q4Ty/iALJbw=) 2: DC25591636C011F0A9DAF53EC4F9AE02.roa (hash: X6qLGESMHlCjgInNJuuQgeTL462kIXu1+dGUahA9Gs8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123E38/6B91EDA0536C11EAA5C2790CC4F9AE02/0JTSRxQ1Lg680_iCdSMoJ7xqyJA.crl rsync://rpki.apnic.net/member_repository/A9123E38/6B91EDA0536C11EAA5C2790CC4F9AE02/0JTSRxQ1Lg680_iCdSMoJ7xqyJA.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0JTSRxQ1Lg680_iCdSMoJ7xqyJA.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:11:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2837 (0xb15) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123E38, serialNumber=D094D24714352E0EBCD3F88275232827BC6AC890 Validity Not Before: Dec 6 16:14:40 2025 GMT Not After : Dec 13 16:14:40 2025 GMT Subject: CN=69345671-b4fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:cb:ad:e5:3c:97:10:a4:6a:99:7f:69:85:b0: 2b:b4:9b:75:1d:c2:3f:e5:94:db:38:2c:34:85:5f: 4b:88:87:50:ed:00:43:c7:2e:2f:ee:8a:a9:48:85: c1:5a:71:43:6e:a6:03:bf:2e:00:7a:99:fd:b1:dc: 72:af:c0:9c:29:21:83:12:f1:87:05:b8:06:63:26: 11:d8:76:fc:ba:f0:8f:f3:3e:bd:45:ed:56:53:90: 2f:76:b9:e8:1e:d2:17:8c:df:77:9c:62:bb:c3:43: d4:c7:9d:d9:d4:c9:21:94:2a:ff:59:69:d7:a5:ff: da:3c:09:af:7b:36:d0:67:35:40:59:28:de:88:97: 8c:47:89:e7:e6:cb:bc:e1:d4:4d:59:45:f9:3a:13: bf:b4:d2:3d:8c:00:2a:05:8b:46:13:64:c9:fe:36: e6:72:32:1c:ed:dd:33:fc:9c:09:24:d1:92:0d:fd: 41:60:ad:2c:32:ea:b1:33:31:9c:33:3c:d1:43:07: f8:e4:19:f2:44:34:7a:eb:2e:7e:24:90:c8:05:07: a1:39:01:42:d6:3b:e2:da:30:4a:c3:d0:66:31:fc: a6:aa:a7:eb:b5:e9:36:00:23:2f:fe:67:c4:62:8b: f8:61:ed:78:aa:ff:b8:c1:e9:fb:fb:4d:db:f3:e4: 2f:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:D8:8C:DF:62:E7:3E:FF:99:0C:3F:F2:F5:B0:CE:55:76:7C:F0:62 X509v3 Authority Key Identifier: keyid:D0:94:D2:47:14:35:2E:0E:BC:D3:F8:82:75:23:28:27:BC:6A:C8:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123E38/6B91EDA0536C11EAA5C2790CC4F9AE02/0JTSRxQ1Lg680_iCdSMoJ7xqyJA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0JTSRxQ1Lg680_iCdSMoJ7xqyJA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123E38/6B91EDA0536C11EAA5C2790CC4F9AE02/0JTSRxQ1Lg680_iCdSMoJ7xqyJA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:f4:2a:37:6b:9d:50:da:d4:1e:ff:ed:83:84:54:b8:53:33: aa:3d:65:58:a1:b4:b9:f8:c3:48:cd:99:cd:c4:f4:7b:ae:41: 82:30:bd:a2:c6:7c:83:78:43:9a:ec:1c:ef:3d:ab:5f:38:6a: 16:67:d0:47:f9:29:5f:6d:4b:23:dc:73:9e:4e:96:56:ed:51: 5e:e5:13:3b:3b:e2:d8:81:05:a7:5b:46:f9:49:db:11:9a:d7: bf:88:cf:d5:f6:80:35:5c:b1:f1:2b:69:82:0a:74:b3:17:6f: ed:3c:77:8f:fd:a8:70:0d:4b:f0:da:15:97:ce:e2:3d:f3:86: 8b:20:bf:83:07:05:48:af:81:92:27:64:ce:81:d5:e6:95:c2: ce:c8:b3:a7:37:d8:ae:6e:9f:a3:e3:5b:33:2f:c2:29:c3:9d: e6:41:3d:3c:19:20:7e:74:aa:cb:26:61:d2:f4:d7:34:57:4f: f6:fb:be:ea:f5:ea:f5:af:5f:cc:b7:56:3f:aa:4b:9b:6e:aa: ea:57:09:09:ad:d3:ac:a3:97:f5:f3:7b:83:c7:0c:48:13:71: be:59:c5:e4:4b:23:43:c6:ef:7f:0f:2c:8c:94:9b:88:7f:de: a6:b9:cd:a8:20:d3:fc:90:b9:45:7d:b2:3b:87:41:f0:ae:55: 6e:c0:c4:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCxUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNFMzgxMTAvBgNVBAUTKEQwOTREMjQ3MTQzNTJFMEVCQ0QzRjg4Mjc1MjMyODI3 QkM2QUM4OTAwHhcNMjUxMjA2MTYxNDQwWhcNMjUxMjEzMTYxNDQwWjAYMRYwFAYD VQQDEw02OTM0NTY3MS1iNGZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA08ut5TyXEKRqmX9phbArtJt1HcI/5ZTbOCw0hV9LiIdQ7QBDxy4v7oqpSIXB WnFDbqYDvy4Aepn9sdxyr8CcKSGDEvGHBbgGYyYR2Hb8uvCP8z69Re1WU5Avdrno HtIXjN93nGK7w0PUx53Z1MkhlCr/WWnXpf/aPAmvezbQZzVAWSjeiJeMR4nn5su8 4dRNWUX5OhO/tNI9jAAqBYtGE2TJ/jbmcjIc7d0z/JwJJNGSDf1BYK0sMuqxMzGc MzzRQwf45BnyRDR66y5+JJDIBQehOQFC1jvi2jBKw9BmMfymqqfrtek2ACMv/mfE Yov4Ye14qv+4wen7+03b8+QvUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLPYjN9i 5z7/mQw/8vWwzlV2fPBiMB8GA1UdIwQYMBaAFNCU0kcUNS4OvNP4gnUjKCe8asiQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0UzOC82QjkxRURBMDUz NkMxMUVBQTVDMjc5MENDNEY5QUUwMi8wSlRTUnhRMUxnNjgwX2lDZFNNb0o3eHF5 SkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyLzBKVFNSeFExTGc2ODBfaUNkU01vSjd4cXlKQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy M0UzOC82QjkxRURBMDUzNkMxMUVBQTVDMjc5MENDNEY5QUUwMi8wSlRTUnhRMUxn NjgwX2lDZFNNb0o3eHF5SkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBa9Co3a51Q2tQe/+2DhFS4UzOqPWVYobS5+MNIzZnNxPR7rkGCML2i xnyDeEOa7BzvPatfOGoWZ9BH+SlfbUsj3HOeTpZW7VFe5RM7O+LYgQWnW0b5SdsR mte/iM/V9oA1XLHxK2mCCnSzF2/tPHeP/ahwDUvw2hWXzuI984aLIL+DBwVIr4GS J2TOgdXmlcLOyLOnN9iubp+j41szL8Ipw53mQT08GSB+dKrLJmHS9Nc0V0/2+77q 9er1r1/Mt1Y/qkubbqrqVwkJrdOso5f183uDxwxIE3G+WcXkSyNDxu9/DyyMlJuI f96muc2oINP8kLlFfbI7h0HwrlVuwMRj -----END CERTIFICATE-----Generated at Sat Dec 6 22:07:20 2025 by rpki-client