This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft File: JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft (raw, json) Hash identifier: 3EY1fBmsrR07BbL4DAyhSHnZm2tqZd/6hY647PaP6AY= Subject key identifier: 77:49:3A:A1:4E:44:1D:9A:7A:1A:CF:2D:33:AA:ED:0E:BF:F5:82:5C Authority key identifier: 25:03:77:5F:AC:3A:6F:47:23:4C:B8:32:A6:37:FC:10:82:A4:7C:44 Certificate issuer: /CN=A9128918/serialNumber=2503775FAC3A6F47234CB832A637FC1082A47C44 Certificate serial: 0D19 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JQN3X6w6b0cjTLgypjf8EIKkfEQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft Manifest number: 0D01 Signing time: Sat 06 Dec 2025 17:30:50 +0000 Manifest this update: Sat 06 Dec 2025 17:30:50 +0000 Manifest next update: Sat 13 Dec 2025 17:30:50 +0000 Files and hashes: 1: JQN3X6w6b0cjTLgypjf8EIKkfEQ.crl (hash: aOUr4lVn4d6zEupFMQ4a/WgPGQ1zQs5PGPUo4cmy6Fk=) 2: DA0A5C9280BE11EB88ED2418C4F9AE02.roa (hash: bJm8x/jB8mtzKPQKI3Nnf1xFyPp1oMwYrBpRRhfwUbw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.crl rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JQN3X6w6b0cjTLgypjf8EIKkfEQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3353 (0xd19) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128918, serialNumber=2503775FAC3A6F47234CB832A637FC1082A47C44 Validity Not Before: Dec 6 17:30:50 2025 GMT Not After : Dec 13 17:30:50 2025 GMT Subject: CN=6934684a-47aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:01:cb:05:23:57:ea:61:2f:da:7a:e5:18:d2: fd:80:c9:23:cc:85:fd:ec:cf:b8:29:38:af:6f:0c: 3f:5b:3c:61:7d:af:64:29:3a:ba:96:95:ff:f5:ba: c7:5e:f6:ec:3c:f8:a6:83:73:f9:93:31:86:b4:9c: 52:fe:91:b3:ab:18:15:84:20:40:c7:0e:ce:d3:d6: a9:3d:b6:92:fd:ee:df:aa:37:e2:09:94:9f:e9:90: c4:34:a3:a3:a1:d2:b1:e8:9a:cc:5e:2d:63:99:6d: b4:2b:a1:3d:ec:25:02:61:1d:e8:2c:34:cb:33:8e: 4d:bb:9e:6a:db:67:b9:71:4b:86:8d:cc:09:c8:18: a8:02:b1:07:6b:bb:42:5d:7d:f6:08:59:12:68:fc: c3:b6:95:e0:dd:d7:45:a7:5d:cb:39:f0:17:67:22: d1:e3:60:13:f4:8e:6f:0c:cd:8c:0d:9a:67:d7:5e: 78:cf:42:22:b9:58:82:ed:7f:8e:ed:0d:e3:03:1e: 3f:36:6e:a6:58:29:b9:6b:56:d6:78:a5:cb:34:d0: 01:0e:60:5b:a9:d0:c4:9c:a3:0c:c1:ab:ea:ea:85: 68:2c:0f:6b:8c:83:47:53:d2:93:db:d2:7d:73:b5: 35:e9:01:6d:4a:14:73:f5:26:62:c6:2c:0b:8d:db: d5:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:49:3A:A1:4E:44:1D:9A:7A:1A:CF:2D:33:AA:ED:0E:BF:F5:82:5C X509v3 Authority Key Identifier: keyid:25:03:77:5F:AC:3A:6F:47:23:4C:B8:32:A6:37:FC:10:82:A4:7C:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JQN3X6w6b0cjTLgypjf8EIKkfEQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:bc:c3:3f:24:2d:92:97:b5:b0:0c:bb:a4:3c:34:ee:76:de: 42:09:70:dd:76:ed:31:29:b3:5f:69:70:23:01:a0:84:45:05: 21:05:54:ad:ee:d6:55:6d:8f:e8:d4:ec:74:dd:2e:48:b3:d1: 70:fc:35:f8:f8:b8:35:7c:8c:cd:29:49:d2:ce:f1:cf:00:a5: 75:ca:00:37:c0:a2:02:f9:2f:c4:e7:80:8d:d2:4f:97:3d:6b: 02:f5:56:9f:ae:71:1e:a0:ce:ff:cf:16:d4:6c:cd:6e:85:f4: 03:46:cf:da:68:73:05:34:af:16:5a:9a:de:cd:68:ab:eb:25: 7b:07:e7:8e:8c:07:78:c9:bc:a4:1a:19:9e:ca:5b:3f:5e:4b: 6d:b8:ab:e9:a7:b3:0f:29:df:68:61:c1:df:76:eb:1c:85:e6: ef:9e:df:e7:1f:13:61:62:11:92:6d:8a:d6:44:7f:5e:a0:64: f7:44:05:47:39:52:c5:80:ce:9c:2e:e2:8a:89:a7:25:68:90: 90:60:9a:37:36:98:d9:f3:3a:34:80:2b:33:3e:c1:51:0c:c1: 45:64:44:2b:1d:ed:95:93:95:97:f3:55:30:18:da:79:ab:b3: 2c:74:94:d5:e3:89:9f:56:47:7e:2e:e1:06:1c:e5:0c:1f:39: f4:ef:74:e9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDRkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg5MTgxMTAvBgNVBAUTKDI1MDM3NzVGQUMzQTZGNDcyMzRDQjgzMkE2MzdGQzEw ODJBNDdDNDQwHhcNMjUxMjA2MTczMDUwWhcNMjUxMjEzMTczMDUwWjAYMRYwFAYD VQQDEw02OTM0Njg0YS00N2FhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqAHLBSNX6mEv2nrlGNL9gMkjzIX97M+4KTivbww/Wzxhfa9kKTq6lpX/9brH XvbsPPimg3P5kzGGtJxS/pGzqxgVhCBAxw7O09apPbaS/e7fqjfiCZSf6ZDENKOj odKx6JrMXi1jmW20K6E97CUCYR3oLDTLM45Nu55q22e5cUuGjcwJyBioArEHa7tC XX32CFkSaPzDtpXg3ddFp13LOfAXZyLR42AT9I5vDM2MDZpn1154z0IiuViC7X+O 7Q3jAx4/Nm6mWCm5a1bWeKXLNNABDmBbqdDEnKMMwavq6oVoLA9rjINHU9KT29J9 c7U16QFtShRz9SZixiwLjdvVjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHdJOqFO RB2aehrPLTOq7Q6/9YJcMB8GA1UdIwQYMBaAFCUDd1+sOm9HI0y4MqY3/BCCpHxE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODkxOC9FOThGREZENEY2 NzIxMUU5OTFFRDBCMTZDNEY5QUUwMi9KUU4zWDZ3NmIwY2pUTGd5cGpmOEVJS2tm RVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pRTjNYNnc2YjBjalRMZ3lwamY4RUlLa2ZFUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODkxOC9FOThGREZENEY2NzIxMUU5OTFFRDBCMTZDNEY5QUUwMi9KUU4zWDZ3NmIw Y2pUTGd5cGpmOEVJS2tmRVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYvMM/JC2Sl7WwDLukPDTudt5CCXDddu0xKbNfaXAjAaCERQUhBVSt 7tZVbY/o1Ox03S5Is9Fw/DX4+Lg1fIzNKUnSzvHPAKV1ygA3wKIC+S/E54CN0k+X PWsC9VafrnEeoM7/zxbUbM1uhfQDRs/aaHMFNK8WWprezWir6yV7B+eOjAd4ybyk Ghmeyls/XkttuKvpp7MPKd9oYcHfduschebvnt/nHxNhYhGSbYrWRH9eoGT3RAVH OVLFgM6cLuKKiaclaJCQYJo3NpjZ8zo0gCszPsFRDMFFZEQrHe2Vk5WX81UwGNp5 q7MsdJTV44mfVkd+LuEGHOUMHzn073Tp -----END CERTIFICATE-----Generated at Sat Dec 6 19:36:50 2025 by rpki-client