This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2152/B7C6C60006D211EA8AAC9344C4F9AE02/JD5IKavy-QnBLdoET-XTa4IQU5I.mft File: JD5IKavy-QnBLdoET-XTa4IQU5I.mft (raw, json) Hash identifier: HzDZesB8oofxrUTOP806zqNs604XfUvrjaYMgwTEFhY= Subject key identifier: 1D:5E:33:59:EC:FD:40:31:6D:EF:C1:0B:19:04:53:59:A3:7C:DD:BA Authority key identifier: 24:3E:48:29:AB:F2:F9:09:C1:2D:DA:04:4F:E5:D3:6B:82:10:53:92 Certificate issuer: /CN=A91F2152/serialNumber=243E4829ABF2F909C12DDA044FE5D36B82105392 Certificate serial: 0CBE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD5IKavy-QnBLdoET-XTa4IQU5I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2152/B7C6C60006D211EA8AAC9344C4F9AE02/JD5IKavy-QnBLdoET-XTa4IQU5I.mft Manifest number: 0CAD Signing time: Thu 04 Dec 2025 17:50:24 +0000 Manifest this update: Thu 04 Dec 2025 17:50:23 +0000 Manifest next update: Thu 11 Dec 2025 17:50:23 +0000 Files and hashes: 1: JD5IKavy-QnBLdoET-XTa4IQU5I.crl (hash: UcpZtmv4Yprm04pc3OLxoHUaYMdFBpz5q2MMt9opAXk=) 2: 2CF214DC93A611F0B9B44571C4F9AE02.roa (hash: gDTlO8JdKBOhrYpdJ9YbTAbJbDClxcUd9QV6sNxI620=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2152/B7C6C60006D211EA8AAC9344C4F9AE02/JD5IKavy-QnBLdoET-XTa4IQU5I.crl rsync://rpki.apnic.net/member_repository/A91F2152/B7C6C60006D211EA8AAC9344C4F9AE02/JD5IKavy-QnBLdoET-XTa4IQU5I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD5IKavy-QnBLdoET-XTa4IQU5I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 17:50:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3262 (0xcbe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2152, serialNumber=243E4829ABF2F909C12DDA044FE5D36B82105392 Validity Not Before: Dec 4 17:50:23 2025 GMT Not After : Dec 11 17:50:23 2025 GMT Subject: CN=6931c9df-b784 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:01:52:fb:90:fc:61:0e:15:50:ad:aa:33:41: c6:a2:21:1f:16:5b:45:75:66:41:2c:2e:37:15:c4: 4f:eb:f0:3b:66:1f:cd:7a:2a:a9:c3:0b:a2:d4:c4: 8a:9b:60:d0:f4:08:3c:a2:bb:2e:6b:3e:89:4e:0e: 29:3a:6f:89:77:39:7d:65:06:a6:b8:15:d9:1f:16: 4b:00:4a:51:b1:0a:26:31:9f:b8:9b:a8:54:0c:19: 75:05:0a:03:30:b9:79:76:53:f5:07:e5:49:ed:ea: e4:2a:97:72:2d:61:ed:9e:a4:a9:da:f8:2a:2a:88: a5:4b:7a:43:b3:19:6f:5a:c7:c2:3f:95:e9:56:10: ed:1d:a3:07:b1:77:0d:94:a3:08:18:61:5c:6b:20: 75:6f:50:df:26:bc:c1:c8:59:79:57:4e:4d:02:22: a6:e6:93:ff:92:f3:88:38:ab:ea:d5:4b:50:cd:81: 12:e1:ae:7e:9d:2f:15:1f:6b:80:45:2a:48:51:cc: cc:3f:fe:da:8f:c3:b1:e1:25:fe:9c:3a:f6:ef:73: f0:4e:3b:13:20:8a:57:24:31:57:f3:9d:26:bd:5a: b9:5b:78:82:3f:23:df:01:e4:60:55:ba:98:72:f7: 34:db:fe:71:55:c3:b7:04:ee:46:97:2d:9b:78:10: 09:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:5E:33:59:EC:FD:40:31:6D:EF:C1:0B:19:04:53:59:A3:7C:DD:BA X509v3 Authority Key Identifier: keyid:24:3E:48:29:AB:F2:F9:09:C1:2D:DA:04:4F:E5:D3:6B:82:10:53:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2152/B7C6C60006D211EA8AAC9344C4F9AE02/JD5IKavy-QnBLdoET-XTa4IQU5I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD5IKavy-QnBLdoET-XTa4IQU5I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2152/B7C6C60006D211EA8AAC9344C4F9AE02/JD5IKavy-QnBLdoET-XTa4IQU5I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:40:c7:21:7e:df:48:4a:a0:0b:15:11:d4:66:bd:5d:1e:c7: 35:2d:99:09:d0:ca:88:48:35:d6:38:fb:fb:76:5c:1b:1b:05: 6c:bb:fb:ac:0a:6b:99:1f:3b:de:10:e5:4c:5b:cd:bf:57:16: 55:1a:64:5a:28:85:de:4e:bd:7d:68:f5:0c:b0:8d:a8:11:22: 5b:3b:3b:07:86:08:66:f6:f7:ee:50:9d:9f:20:31:4c:41:c1: d0:75:6e:9a:2f:61:a6:36:45:dc:b7:c7:52:6d:ad:d3:37:9c: 11:85:99:88:b9:76:ca:b6:29:2b:fa:28:6a:c4:72:ea:bf:ae: 6f:93:3c:a9:7e:2e:7a:78:f2:3c:1c:bf:c5:ed:63:03:76:c7: ef:42:66:37:77:f3:ab:3b:01:10:03:d5:18:8e:ee:d9:cd:f2: 7d:63:19:c2:14:68:fa:f1:75:f3:95:21:ae:cb:c1:2f:af:b0: 04:c4:87:14:de:fd:f5:26:77:dd:a5:37:e9:a0:11:1e:ce:ad: 7d:9c:e7:29:8d:e1:6b:18:5e:bd:11:3d:6c:75:2c:c6:c1:6b: 12:e3:4b:0e:d3:62:3a:3c:2e:be:2a:45:22:2d:15:81:57:30: 08:8b:9a:24:53:66:83:6f:22:ad:6b:45:e9:f1:31:3b:85:a8: d2:7c:ab:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDL4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjIxNTIxMTAvBgNVBAUTKDI0M0U0ODI5QUJGMkY5MDlDMTJEREEwNDRGRTVEMzZC ODIxMDUzOTIwHhcNMjUxMjA0MTc1MDIzWhcNMjUxMjExMTc1MDIzWjAYMRYwFAYD VQQDEw02OTMxYzlkZi1iNzg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4AFS+5D8YQ4VUK2qM0HGoiEfFltFdWZBLC43FcRP6/A7Zh/Neiqpwwui1MSK m2DQ9Ag8orsuaz6JTg4pOm+Jdzl9ZQamuBXZHxZLAEpRsQomMZ+4m6hUDBl1BQoD MLl5dlP1B+VJ7erkKpdyLWHtnqSp2vgqKoilS3pDsxlvWsfCP5XpVhDtHaMHsXcN lKMIGGFcayB1b1DfJrzByFl5V05NAiKm5pP/kvOIOKvq1UtQzYES4a5+nS8VH2uA RSpIUczMP/7aj8Ox4SX+nDr273PwTjsTIIpXJDFX850mvVq5W3iCPyPfAeRgVbqY cvc02/5xVcO3BO5Gly2beBAJLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB1eM1ns /UAxbe/BCxkEU1mjfN26MB8GA1UdIwQYMBaAFCQ+SCmr8vkJwS3aBE/l02uCEFOS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMjE1Mi9CN0M2QzYwMDA2 RDIxMUVBOEFBQzkzNDRDNEY5QUUwMi9KRDVJS2F2eS1RbkJMZG9FVC1YVGE0SVFV NUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pENUlLYXZ5LVFuQkxkb0VULVhUYTRJUVU1SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MjE1Mi9CN0M2QzYwMDA2RDIxMUVBOEFBQzkzNDRDNEY5QUUwMi9KRDVJS2F2eS1R bkJMZG9FVC1YVGE0SVFVNUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQQMchft9ISqALFRHUZr1dHsc1LZkJ0MqISDXWOPv7dlwbGwVsu/us CmuZHzveEOVMW82/VxZVGmRaKIXeTr19aPUMsI2oESJbOzsHhghm9vfuUJ2fIDFM QcHQdW6aL2GmNkXct8dSba3TN5wRhZmIuXbKtikr+ihqxHLqv65vkzypfi56ePI8 HL/F7WMDdsfvQmY3d/OrOwEQA9UYju7ZzfJ9YxnCFGj68XXzlSGuy8Evr7AExIcU 3v31JnfdpTfpoBEezq19nOcpjeFrGF69ET1sdSzGwWsS40sO02I6PC6+KkUiLRWB VzAIi5okU2aDbyKta0Xp8TE7hajSfKvR -----END CERTIFICATE-----Generated at Sat Dec 6 17:42:57 2025 by rpki-client