This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9151EB5/C57E38FC7F9C11EBAFC91466C4F9AE02/JSBFeBemYmHoez5BhOhi2ka6nw0.mft File: JSBFeBemYmHoez5BhOhi2ka6nw0.mft (raw, json) Hash identifier: zIkP3g4JbREmQ2uwShcwoCPpoDLBjVUDR5+KySm2U10= Subject key identifier: C9:E1:92:BD:DB:17:BD:70:C7:9B:33:E2:6C:0D:B6:61:CF:A9:74:FC Authority key identifier: 25:20:45:78:17:A6:62:61:E8:7B:3E:41:84:E8:62:DA:46:BA:9F:0D Certificate issuer: /CN=A9151EB5/serialNumber=2520457817A66261E87B3E4184E862DA46BA9F0D Certificate serial: 06DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JSBFeBemYmHoez5BhOhi2ka6nw0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9151EB5/C57E38FC7F9C11EBAFC91466C4F9AE02/JSBFeBemYmHoez5BhOhi2ka6nw0.mft Manifest number: 06DD Signing time: Sat 24 Jan 2026 21:21:21 +0000 Manifest this update: Sat 24 Jan 2026 21:21:20 +0000 Manifest next update: Sat 31 Jan 2026 21:21:20 +0000 Files and hashes: 1: JSBFeBemYmHoez5BhOhi2ka6nw0.crl (hash: E8nF8d/BmsFQ543t+wMF6zLOkMli4pPi4ZQHpwy0+z4=) 2: 81ACEA76E74711EFA8F61A3DC4F9AE02.roa (hash: ukg+6KCGHkrsTy11bBIK1xYhpVPUVwZenM7mxd/8rc4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9151EB5/C57E38FC7F9C11EBAFC91466C4F9AE02/JSBFeBemYmHoez5BhOhi2ka6nw0.crl rsync://rpki.apnic.net/member_repository/A9151EB5/C57E38FC7F9C11EBAFC91466C4F9AE02/JSBFeBemYmHoez5BhOhi2ka6nw0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JSBFeBemYmHoez5BhOhi2ka6nw0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 21:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1759 (0x6df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9151EB5, serialNumber=2520457817A66261E87B3E4184E862DA46BA9F0D Validity Not Before: Jan 24 21:21:20 2026 GMT Not After : Jan 31 21:21:20 2026 GMT Subject: CN=697537d0-e282 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:41:69:31:29:32:9d:9d:04:4f:d6:2c:9e:70: 82:bf:f2:d6:7b:fb:2b:4f:1d:c0:f0:b2:81:cb:d7: 8f:1e:fe:0f:35:19:75:60:3f:b0:3c:99:2d:2f:08: eb:a2:c1:fe:06:93:73:73:53:62:b6:6d:a9:eb:2e: 9a:fd:dd:d8:97:9d:8a:e3:3f:48:d1:df:d4:4e:9a: 82:83:4c:3f:a9:7f:9b:67:9a:e1:db:b3:71:ff:20: f8:3e:e5:bd:44:49:44:18:83:ea:dd:41:72:f8:ef: c1:b8:0a:ec:81:1c:c6:06:ce:12:24:6b:bf:d0:52: 0c:ee:e5:7e:2e:ec:81:23:47:d1:be:86:80:da:79: fe:37:b9:76:4a:a2:13:ff:c3:0f:e5:1c:ce:93:2f: 3e:72:b3:17:40:6b:57:20:c2:1f:e7:23:33:af:7b: 3a:15:ae:7f:a6:b9:4d:fb:05:d4:bc:7c:78:99:8a: 0f:0c:0d:99:f9:9a:d0:10:eb:fe:08:11:29:21:8c: e8:f4:33:f8:b2:3c:c8:fa:ca:50:d5:bf:7c:8d:03: d6:b8:2a:b1:8f:f4:0b:0e:ef:67:c9:8b:6b:33:b5: 47:5a:f7:fe:71:ba:0a:5a:89:57:26:42:f6:16:f2: 03:5f:36:9f:58:ae:e8:ab:ef:b3:5e:b2:77:f3:72: 9c:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:E1:92:BD:DB:17:BD:70:C7:9B:33:E2:6C:0D:B6:61:CF:A9:74:FC X509v3 Authority Key Identifier: keyid:25:20:45:78:17:A6:62:61:E8:7B:3E:41:84:E8:62:DA:46:BA:9F:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9151EB5/C57E38FC7F9C11EBAFC91466C4F9AE02/JSBFeBemYmHoez5BhOhi2ka6nw0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JSBFeBemYmHoez5BhOhi2ka6nw0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151EB5/C57E38FC7F9C11EBAFC91466C4F9AE02/JSBFeBemYmHoez5BhOhi2ka6nw0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:c0:39:64:e0:e9:62:d1:10:d9:59:b7:b7:e8:37:f1:bc:df: 85:db:64:ce:b1:be:35:a9:4d:cd:68:3e:85:ba:53:f3:de:5e: 65:3f:6f:ce:61:c3:32:a4:be:7d:f2:98:48:c8:97:28:2d:0b: 82:0f:97:52:78:a0:2f:ac:65:0a:0e:85:09:67:4b:35:8e:a4: 4b:21:cf:51:c4:79:71:28:54:af:54:f1:93:4d:29:00:f4:2b: 3d:5c:dd:a6:9b:40:00:5f:40:a4:0f:e3:24:03:96:9a:9f:15: 79:30:1e:d7:2a:bf:1e:5a:55:13:6e:79:9a:66:fe:54:1f:23: 1a:25:e2:7c:5f:1c:ce:e6:96:f5:d8:d3:e8:36:e7:e2:3f:2b: d3:e7:b8:d6:64:37:70:2d:5b:ba:dc:eb:09:f1:a4:0a:d2:f4: 48:07:0c:42:b2:bb:7b:e9:2f:3a:0a:0c:e0:9a:f9:46:8f:37: e5:4f:ff:3d:62:90:12:77:18:ff:fa:a7:0f:fa:81:92:39:3e: 8d:a2:7c:7d:d9:73:34:b7:ca:97:83:e3:db:31:41:9f:db:48: da:c8:ec:b8:38:92:d0:a6:1b:38:31:47:e7:42:ed:ae:3a:0a: b2:82:94:5e:f2:8b:e3:a2:23:87:00:38:bb:05:20:0c:19:c0: 63:c7:e5:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBt8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTFFQjUxMTAvBgNVBAUTKDI1MjA0NTc4MTdBNjYyNjFFODdCM0U0MTg0RTg2MkRB NDZCQTlGMEQwHhcNMjYwMTI0MjEyMTIwWhcNMjYwMTMxMjEyMTIwWjAYMRYwFAYD VQQDDA02OTc1MzdkMC1lMjgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAokFpMSkynZ0ET9YsnnCCv/LWe/srTx3A8LKBy9ePHv4PNRl1YD+wPJktLwjr osH+BpNzc1Nitm2p6y6a/d3Yl52K4z9I0d/UTpqCg0w/qX+bZ5rh27Nx/yD4PuW9 RElEGIPq3UFy+O/BuArsgRzGBs4SJGu/0FIM7uV+LuyBI0fRvoaA2nn+N7l2SqIT /8MP5RzOky8+crMXQGtXIMIf5yMzr3s6Fa5/prlN+wXUvHx4mYoPDA2Z+ZrQEOv+ CBEpIYzo9DP4sjzI+spQ1b98jQPWuCqxj/QLDu9nyYtrM7VHWvf+cboKWolXJkL2 FvIDXzafWK7oq++zXrJ383KcSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMnhkr3b F71wx5sz4mwNtmHPqXT8MB8GA1UdIwQYMBaAFCUgRXgXpmJh6Hs+QYToYtpGup8N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MUVCNS9DNTdFMzhGQzdG OUMxMUVCQUZDOTE0NjZDNEY5QUUwMi9KU0JGZUJlbVltSG9lejVCaE9oaTJrYTZu dzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pTQkZlQmVtWW1Ib2V6NUJoT2hpMmthNm53MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MUVCNS9DNTdFMzhGQzdGOUMxMUVCQUZDOTE0NjZDNEY5QUUwMi9KU0JGZUJlbVlt SG9lejVCaE9oaTJrYTZudzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7wDlk4Oli0RDZWbe36DfxvN+F22TOsb41qU3NaD6FulPz3l5lP2/O YcMypL598phIyJcoLQuCD5dSeKAvrGUKDoUJZ0s1jqRLIc9RxHlxKFSvVPGTTSkA 9Cs9XN2mm0AAX0CkD+MkA5aanxV5MB7XKr8eWlUTbnmaZv5UHyMaJeJ8XxzO5pb1 2NPoNufiPyvT57jWZDdwLVu63OsJ8aQK0vRIBwxCsrt76S86CgzgmvlGjzflT/89 YpASdxj/+qcP+oGSOT6Nonx92XM0t8qXg+PbMUGf20jayOy4OJLQphs4MUfnQu2u OgqygpRe8ovjoiOHADi7BSAMGcBjx+WM -----END CERTIFICATE-----Generated at Sun Jan 25 03:00:58 2026 by rpki-client