This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9149A6C/3B8493B451A511EBB4AF040EC4F9AE02/jRb9DiX7iW4m-nNKvJhM5LRpjdM.mft File: jRb9DiX7iW4m-nNKvJhM5LRpjdM.mft (raw, json) Hash identifier: axp6+z8+gdOyebvLmR8vOHs3Ta20kL5plqtZ3gtSess= Subject key identifier: 11:02:09:E9:0A:33:FD:B0:20:43:5A:33:05:6F:86:46:FA:7B:B6:A1 Authority key identifier: 8D:16:FD:0E:25:FB:89:6E:26:FA:73:4A:BC:98:4C:E4:B4:69:8D:D3 Certificate issuer: /CN=A9149A6C/serialNumber=8D16FD0E25FB896E26FA734ABC984CE4B4698DD3 Certificate serial: 073F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jRb9DiX7iW4m-nNKvJhM5LRpjdM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149A6C/3B8493B451A511EBB4AF040EC4F9AE02/jRb9DiX7iW4m-nNKvJhM5LRpjdM.mft Manifest number: 073A Signing time: Thu 04 Dec 2025 20:38:57 +0000 Manifest this update: Thu 04 Dec 2025 20:38:57 +0000 Manifest next update: Thu 11 Dec 2025 20:38:57 +0000 Files and hashes: 1: jRb9DiX7iW4m-nNKvJhM5LRpjdM.crl (hash: yj+ygltsqsm213adp+FLs3JBvKKK+TCUX9CQukpPT6k=) 2: 22D8137A51A711EBAAAB6410C4F9AE02.roa (hash: W1YtTgfcUQgVCMN18bivEJ+sBWqdB/GL1VhO0Gs0eBo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149A6C/3B8493B451A511EBB4AF040EC4F9AE02/jRb9DiX7iW4m-nNKvJhM5LRpjdM.crl rsync://rpki.apnic.net/member_repository/A9149A6C/3B8493B451A511EBB4AF040EC4F9AE02/jRb9DiX7iW4m-nNKvJhM5LRpjdM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jRb9DiX7iW4m-nNKvJhM5LRpjdM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 20:38:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1855 (0x73f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149A6C, serialNumber=8D16FD0E25FB896E26FA734ABC984CE4B4698DD3 Validity Not Before: Dec 4 20:38:57 2025 GMT Not After : Dec 11 20:38:57 2025 GMT Subject: CN=6931f161-7be4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:dd:64:4c:2c:3c:84:2f:7b:d4:e4:72:3c:6a: ca:fd:dc:10:81:2d:df:74:ef:65:cc:a4:37:ab:a7: 0a:c3:cc:86:8d:b6:f4:17:48:ce:42:37:51:7b:d4: 4b:72:58:99:b6:a6:b7:d5:b6:f7:f0:56:ae:fc:8f: da:e3:f1:c5:09:3a:98:d1:e2:24:02:1e:26:13:31: e1:b5:d1:70:5b:60:4d:2e:88:c9:c1:0b:50:66:69: 1b:a2:ec:c7:8e:d8:b4:2b:3b:a2:ba:94:cb:18:99: 54:b1:d6:5d:52:6c:47:83:9b:c5:d2:fe:f0:6b:a5: 7d:cf:97:d3:b6:86:ed:a2:21:d3:7f:59:a8:4d:01: 3f:29:36:43:ac:5a:d0:1e:17:1b:ff:29:63:16:d7: 5b:8c:df:cb:d8:94:65:e7:32:6b:9d:5e:37:98:64: 13:24:8a:b6:96:e9:61:86:59:fc:71:19:0b:54:d9: 9b:e2:e8:8c:cc:e1:5f:f2:75:d4:cd:b7:b0:f4:c1: 3b:8c:35:b8:7f:86:06:28:d3:c2:d8:39:e5:ca:3b: 7f:aa:cc:df:36:2c:32:5f:5b:5f:7f:97:00:6b:d7: d6:da:52:4c:3d:93:60:f8:e7:3e:d1:93:6f:1c:84: ce:97:1c:c2:eb:62:df:86:09:b6:92:56:3a:7e:a5: 68:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:02:09:E9:0A:33:FD:B0:20:43:5A:33:05:6F:86:46:FA:7B:B6:A1 X509v3 Authority Key Identifier: keyid:8D:16:FD:0E:25:FB:89:6E:26:FA:73:4A:BC:98:4C:E4:B4:69:8D:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149A6C/3B8493B451A511EBB4AF040EC4F9AE02/jRb9DiX7iW4m-nNKvJhM5LRpjdM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jRb9DiX7iW4m-nNKvJhM5LRpjdM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149A6C/3B8493B451A511EBB4AF040EC4F9AE02/jRb9DiX7iW4m-nNKvJhM5LRpjdM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:8d:58:af:ae:24:dc:31:3e:31:ec:e4:6e:c0:7d:4d:4d:04: d5:59:8d:76:8d:e2:a4:65:a0:c0:b4:b6:19:0f:e7:06:bb:d5: 63:3d:98:d6:45:c3:32:20:fa:96:63:8b:bb:23:b6:c4:75:1d: a1:3a:7d:46:d2:6e:94:82:6d:21:47:ed:ef:9d:ae:9c:dc:51: 15:ed:7d:ed:89:73:b0:53:ac:b6:47:55:54:9d:a8:c9:5d:66: a9:c1:63:e4:2d:fe:38:96:82:24:79:8c:b7:f7:bb:a3:52:b9: 09:5a:56:2d:c8:c6:4c:19:bf:03:84:22:e3:c6:b3:ec:81:ff: ba:b0:24:3c:39:7f:7b:ff:1b:8e:09:29:7e:8d:75:c2:5a:4a: 33:8f:e4:77:a1:25:a1:2e:aa:22:54:18:66:1f:41:7b:9d:3e: e0:28:3e:18:9d:12:98:2a:92:cb:aa:e8:77:cb:86:22:ed:58: c0:86:41:aa:77:6e:b4:37:1b:99:7e:e9:45:a7:3f:58:bb:80: 40:ce:06:61:7a:c8:ff:06:7b:5a:a4:03:e1:8f:15:4c:41:7e: 96:b9:11:80:ed:f0:b7:12:93:6d:9d:87:dc:0e:e1:8c:12:74: 3c:a6:27:13:3f:c4:37:fd:e2:a5:43:bb:d8:9c:9a:54:40:e0: c6:80:06:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBz8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlBNkMxMTAvBgNVBAUTKDhEMTZGRDBFMjVGQjg5NkUyNkZBNzM0QUJDOTg0Q0U0 QjQ2OThERDMwHhcNMjUxMjA0MjAzODU3WhcNMjUxMjExMjAzODU3WjAYMRYwFAYD VQQDEw02OTMxZjE2MS03YmU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqN1kTCw8hC971ORyPGrK/dwQgS3fdO9lzKQ3q6cKw8yGjbb0F0jOQjdRe9RL cliZtqa31bb38Fau/I/a4/HFCTqY0eIkAh4mEzHhtdFwW2BNLojJwQtQZmkbouzH jti0KzuiupTLGJlUsdZdUmxHg5vF0v7wa6V9z5fTtobtoiHTf1moTQE/KTZDrFrQ Hhcb/yljFtdbjN/L2JRl5zJrnV43mGQTJIq2lulhhln8cRkLVNmb4uiMzOFf8nXU zbew9ME7jDW4f4YGKNPC2Dnlyjt/qszfNiwyX1tff5cAa9fW2lJMPZNg+Oc+0ZNv HITOlxzC62Lfhgm2klY6fqVoVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBECCekK M/2wIENaMwVvhkb6e7ahMB8GA1UdIwQYMBaAFI0W/Q4l+4luJvpzSryYTOS0aY3T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUE2Qy8zQjg0OTNCNDUx QTUxMUVCQjRBRjA0MEVDNEY5QUUwMi9qUmI5RGlYN2lXNG0tbk5LdkpoTTVMUnBq ZE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pSYjlEaVg3aVc0bS1uTkt2SmhNNUxScGpkTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OUE2Qy8zQjg0OTNCNDUxQTUxMUVCQjRBRjA0MEVDNEY5QUUwMi9qUmI5RGlYN2lX NG0tbk5LdkpoTTVMUnBqZE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBNjVivriTcMT4x7ORuwH1NTQTVWY12jeKkZaDAtLYZD+cGu9VjPZjW RcMyIPqWY4u7I7bEdR2hOn1G0m6Ugm0hR+3vna6c3FEV7X3tiXOwU6y2R1VUnajJ XWapwWPkLf44loIkeYy397ujUrkJWlYtyMZMGb8DhCLjxrPsgf+6sCQ8OX97/xuO CSl+jXXCWkozj+R3oSWhLqoiVBhmH0F7nT7gKD4YnRKYKpLLquh3y4Yi7VjAhkGq d260NxuZfulFpz9Yu4BAzgZhesj/BntapAPhjxVMQX6WuRGA7fC3EpNtnYfcDuGM EnQ8picTP8Q3/eKlQ7vYnJpUQODGgAZC -----END CERTIFICATE-----Generated at Sat Dec 6 13:55:42 2025 by rpki-client