This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911B5D7/25872BBE03B411E7B811AA14C4F9AE02/Qf4dQTWrLWdiPnYIM5hGitT6odw.mft File: Qf4dQTWrLWdiPnYIM5hGitT6odw.mft (raw, json) Hash identifier: Qy4Tmh3K/Se6neaLQWlVq28OUY2rv9rOt5q9Nk+QP2U= Subject key identifier: 72:B1:CA:E0:2C:2F:78:D8:EB:0E:CF:A6:AC:06:6F:84:BA:A1:AB:B9 Authority key identifier: 41:FE:1D:41:35:AB:2D:67:62:3E:76:08:33:98:46:8A:D4:FA:A1:DC Certificate issuer: /CN=A911B5D7/serialNumber=41FE1D4135AB2D67623E76083398468AD4FAA1DC Certificate serial: 1C61 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qf4dQTWrLWdiPnYIM5hGitT6odw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B5D7/25872BBE03B411E7B811AA14C4F9AE02/Qf4dQTWrLWdiPnYIM5hGitT6odw.mft Manifest number: 1C2B Signing time: Sat 06 Dec 2025 15:54:00 +0000 Manifest this update: Sat 06 Dec 2025 15:53:59 +0000 Manifest next update: Sat 13 Dec 2025 15:53:59 +0000 Files and hashes: 1: Qf4dQTWrLWdiPnYIM5hGitT6odw.crl (hash: 8lG/pbmhu+fyGChzX1AGf1q9ouEEFDL9zDwODMg0pQQ=) 2: E007C458C1F111F0BF3C4B61C4F9AE02.roa (hash: syr5keE2kGwUDFJmQwSmPdSjoefEMhtzkVJ4glu0DSA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B5D7/25872BBE03B411E7B811AA14C4F9AE02/Qf4dQTWrLWdiPnYIM5hGitT6odw.crl rsync://rpki.apnic.net/member_repository/A911B5D7/25872BBE03B411E7B811AA14C4F9AE02/Qf4dQTWrLWdiPnYIM5hGitT6odw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qf4dQTWrLWdiPnYIM5hGitT6odw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:53:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7265 (0x1c61) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B5D7, serialNumber=41FE1D4135AB2D67623E76083398468AD4FAA1DC Validity Not Before: Dec 6 15:53:59 2025 GMT Not After : Dec 13 15:53:59 2025 GMT Subject: CN=69345197-93f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:a6:5f:76:90:09:e3:06:b5:af:03:28:d1:41: 94:e1:47:8b:7a:6f:f3:3b:67:c2:79:55:70:9f:16: 94:4c:cd:34:61:d3:59:54:dc:78:d4:0e:48:1c:2e: 52:b9:bb:ef:dd:90:4a:ff:16:b3:20:5f:cf:1c:c5: e9:23:a9:8b:90:7f:64:72:a2:d9:a2:8b:eb:5c:f4: a5:d0:09:5b:02:de:59:52:ce:c7:22:5d:40:0d:5c: f1:32:19:29:ce:f6:ef:d8:e7:c1:8b:38:12:5f:a6: 8f:a0:41:38:b4:58:fb:b5:9f:ca:c2:f9:40:6f:d9: 7d:8f:c4:95:f6:c9:b2:91:c3:4c:78:24:61:da:70: 4e:58:f9:69:1c:f6:75:2c:bc:ff:6e:fa:26:73:ee: d9:29:2f:f6:e4:6c:85:08:ff:9f:07:45:d6:c6:15: 7c:ce:1c:c8:40:17:5d:3a:5b:11:e9:62:01:4d:f4: fa:d9:12:28:a5:bf:29:9d:a0:9d:2f:68:e0:a5:46: 4d:f8:22:8c:a0:e5:47:51:d6:ed:36:c0:17:bc:52: 53:0f:29:4d:31:d7:f4:10:a3:ec:18:f7:a6:2c:05: 97:6b:7c:3f:1a:b2:f9:26:4d:92:82:d8:19:a9:0b: 94:9b:68:6f:d1:c5:96:2b:80:9b:3d:f3:d2:d3:f7: 29:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:B1:CA:E0:2C:2F:78:D8:EB:0E:CF:A6:AC:06:6F:84:BA:A1:AB:B9 X509v3 Authority Key Identifier: keyid:41:FE:1D:41:35:AB:2D:67:62:3E:76:08:33:98:46:8A:D4:FA:A1:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B5D7/25872BBE03B411E7B811AA14C4F9AE02/Qf4dQTWrLWdiPnYIM5hGitT6odw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qf4dQTWrLWdiPnYIM5hGitT6odw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B5D7/25872BBE03B411E7B811AA14C4F9AE02/Qf4dQTWrLWdiPnYIM5hGitT6odw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:05:e6:27:f0:06:1a:d1:34:08:bd:b0:05:5e:e9:d4:7b:3d: 2c:6e:58:ca:07:24:71:c1:09:96:9a:dd:d9:2b:84:1f:fc:77: 13:f6:9e:43:5b:18:7b:b7:03:8c:58:22:16:66:69:87:8e:4c: bc:b4:cf:d5:2a:8d:07:33:b5:c4:71:33:d3:90:49:3e:dd:1e: 2d:1d:53:10:87:f3:76:be:1d:05:71:67:8c:d2:04:a6:56:99: 0b:68:39:64:63:33:1c:12:51:b1:49:6b:63:23:ff:31:42:71: 5c:36:a6:04:40:ee:ff:b4:f2:64:32:3d:77:21:16:06:a8:c7: e9:15:2e:36:d4:a5:30:b7:d7:81:d8:4c:2f:66:a5:e6:f6:14: 1e:4b:a7:45:4e:33:51:7d:c1:e3:dd:5d:4b:79:fc:a0:66:9d: b4:eb:41:80:de:af:c6:d3:78:0f:16:5a:c2:a2:9b:19:b9:fd: 11:05:8b:4d:60:90:2a:5f:97:62:0f:d4:c4:4d:b7:f2:88:da: af:d6:a5:75:2b:9e:be:8c:fd:dd:b5:2d:ae:c7:3b:16:16:44: 70:f2:5d:09:62:dd:48:b4:25:4d:d8:7f:38:ff:36:8f:dd:78: de:7b:00:34:ab:ae:ce:12:d6:6b:06:55:e7:14:96:93:a0:5a: 8e:a7:ad:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHGEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI1RDcxMTAvBgNVBAUTKDQxRkUxRDQxMzVBQjJENjc2MjNFNzYwODMzOTg0NjhB RDRGQUExREMwHhcNMjUxMjA2MTU1MzU5WhcNMjUxMjEzMTU1MzU5WjAYMRYwFAYD VQQDEw02OTM0NTE5Ny05M2Y0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA56ZfdpAJ4wa1rwMo0UGU4UeLem/zO2fCeVVwnxaUTM00YdNZVNx41A5IHC5S ubvv3ZBK/xazIF/PHMXpI6mLkH9kcqLZoovrXPSl0AlbAt5ZUs7HIl1ADVzxMhkp zvbv2OfBizgSX6aPoEE4tFj7tZ/KwvlAb9l9j8SV9smykcNMeCRh2nBOWPlpHPZ1 LLz/bvomc+7ZKS/25GyFCP+fB0XWxhV8zhzIQBddOlsR6WIBTfT62RIopb8pnaCd L2jgpUZN+CKMoOVHUdbtNsAXvFJTDylNMdf0EKPsGPemLAWXa3w/GrL5Jk2SgtgZ qQuUm2hv0cWWK4CbPfPS0/cpqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHKxyuAs L3jY6w7PpqwGb4S6oau5MB8GA1UdIwQYMBaAFEH+HUE1qy1nYj52CDOYRorU+qHc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjVENy8yNTg3MkJCRTAz QjQxMUU3QjgxMUFBMTRDNEY5QUUwMi9RZjRkUVRXckxXZGlQbllJTTVoR2l0VDZv ZHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FmNGRRVFdyTFdkaVBuWUlNNWhHaXRUNm9kdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjVENy8yNTg3MkJCRTAzQjQxMUU3QjgxMUFBMTRDNEY5QUUwMi9RZjRkUVRXckxX ZGlQbllJTTVoR2l0VDZvZHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjBeYn8AYa0TQIvbAFXunUez0sbljKByRxwQmWmt3ZK4Qf/HcT9p5D Wxh7twOMWCIWZmmHjky8tM/VKo0HM7XEcTPTkEk+3R4tHVMQh/N2vh0FcWeM0gSm VpkLaDlkYzMcElGxSWtjI/8xQnFcNqYEQO7/tPJkMj13IRYGqMfpFS421KUwt9eB 2EwvZqXm9hQeS6dFTjNRfcHj3V1LefygZp2060GA3q/G03gPFlrCopsZuf0RBYtN YJAqX5diD9TETbfyiNqv1qV1K56+jP3dtS2uxzsWFkRw8l0JYt1ItCVN2H84/zaP 3XjeewA0q67OEtZrBlXnFJaToFqOp62j -----END CERTIFICATE-----Generated at Sun Dec 7 12:02:21 2025 by rpki-client