This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.mft File: 0qCHG82DdsEajwSaOYVa_NsYMGQ.mft (raw, json) Hash identifier: UJ1FZFjIvxYISAiF2iBoObQ+4SBsZCPYc7kehCvm6Jg= Subject key identifier: DA:0C:DD:3D:35:C8:B9:BA:88:F5:75:3D:67:26:D2:9A:9D:67:12:56 Authority key identifier: D2:A0:87:1B:CD:83:76:C1:1A:8F:04:9A:39:85:5A:FC:DB:18:30:64 Certificate issuer: /CN=A911CA82/serialNumber=D2A0871BCD8376C11A8F049A39855AFCDB183064 Certificate serial: 0685 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0qCHG82DdsEajwSaOYVa_NsYMGQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.mft Manifest number: 066B Signing time: Thu 04 Dec 2025 21:31:07 +0000 Manifest this update: Thu 04 Dec 2025 21:31:06 +0000 Manifest next update: Thu 11 Dec 2025 21:31:06 +0000 Files and hashes: 1: 0qCHG82DdsEajwSaOYVa_NsYMGQ.crl (hash: apy+TRpQN4HUPRetoHQRwrbM9T2PuKaVnYXsoDhDP5s=) 2: CB304C36307111EDB0CBD946C4F9AE02.roa (hash: pfD/CVe6rifI0uuB7MyQhX8gICce4pIQVAo4x+DdB5k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.crl rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0qCHG82DdsEajwSaOYVa_NsYMGQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 21:31:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1669 (0x685) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CA82, serialNumber=D2A0871BCD8376C11A8F049A39855AFCDB183064 Validity Not Before: Dec 4 21:31:06 2025 GMT Not After : Dec 11 21:31:06 2025 GMT Subject: CN=6931fd9a-ad7c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:88:3d:89:2f:29:77:71:d1:9e:ce:e5:be:76: 30:f4:a8:90:78:18:c1:20:d6:64:1b:68:f3:93:67: 3c:74:1d:a6:f0:92:55:70:09:01:32:c3:ce:d0:25: e3:40:f4:15:e0:8f:09:e8:e3:50:54:21:8d:dc:b8: 2c:79:b9:f9:56:07:6c:a8:75:ff:0c:71:b7:bf:00: 4e:c7:98:c9:be:53:3a:63:78:eb:e2:03:b6:bd:dd: 06:31:8f:93:73:00:83:cf:1a:47:97:55:98:6a:a7: 44:6b:aa:dc:6a:c1:92:fa:f7:6f:80:85:4d:76:c8: a7:d5:ec:d3:4e:f8:68:66:ab:6b:29:2b:70:ed:6b: 58:e8:7a:da:09:65:5a:e7:78:23:ff:5d:3b:37:e2: 1f:d9:b2:b9:3d:c2:14:1f:cb:70:85:c7:8c:14:81: b3:2d:eb:30:26:48:04:be:5d:aa:f5:34:08:12:00: dd:4a:71:74:3b:e3:96:e8:0b:8d:c9:cb:e7:7f:de: 15:51:5f:f3:17:5e:2d:aa:fa:34:9e:13:c9:4f:e1: bf:09:81:f2:31:6a:9d:b0:47:ee:22:4d:39:8d:66: 6f:58:f0:d8:f8:3e:2c:9b:ee:1f:eb:fe:10:ae:25: 9b:90:f8:b4:25:f7:ef:f1:06:e3:4d:38:82:ce:36: 3e:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:0C:DD:3D:35:C8:B9:BA:88:F5:75:3D:67:26:D2:9A:9D:67:12:56 X509v3 Authority Key Identifier: keyid:D2:A0:87:1B:CD:83:76:C1:1A:8F:04:9A:39:85:5A:FC:DB:18:30:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0qCHG82DdsEajwSaOYVa_NsYMGQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:91:9d:46:9c:6f:12:0a:81:20:4e:b7:24:2a:2f:11:c4:77: 72:ef:54:ca:fa:1f:8d:96:7b:d4:c1:15:54:95:ab:68:04:15: f3:db:5c:32:ef:99:eb:4d:6f:c0:e1:b2:40:d8:97:2f:aa:ab: c0:6d:44:e9:9c:11:ed:46:88:ee:d9:f7:26:b0:24:6f:c1:20: c3:c9:b0:f8:28:78:35:cc:0a:a8:f3:b3:62:36:4d:24:c5:10: 56:9c:93:90:b9:62:2f:9b:a0:cc:ee:ab:39:dd:82:fe:f5:d1: 86:c1:99:e6:e6:1b:42:52:bf:7c:0c:9b:df:15:e5:26:91:48: 1d:aa:1e:00:3f:31:ef:0d:e6:b6:2e:9d:46:6f:78:ca:5f:6a: 99:e5:ec:d0:2a:2a:b3:fd:9f:8b:d6:f8:dd:6e:e6:e7:34:ba: f9:13:90:aa:57:9c:c6:fa:5e:d5:04:9a:65:64:b3:06:c9:60: b6:10:85:ea:3a:ae:02:72:8d:20:91:7d:39:15:c4:83:70:f3: 11:69:d3:9e:50:23:d9:41:56:7c:be:8e:d1:c4:0e:db:e4:b7: b6:15:c3:24:9c:b9:25:76:65:35:b3:24:fc:6e:ec:74:3a:39: 2c:8e:86:2b:21:b8:90:ad:90:bf:8b:5a:e6:b5:70:db:a9:79: 2c:95:8c:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBoUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNBODIxMTAvBgNVBAUTKEQyQTA4NzFCQ0Q4Mzc2QzExQThGMDQ5QTM5ODU1QUZD REIxODMwNjQwHhcNMjUxMjA0MjEzMTA2WhcNMjUxMjExMjEzMTA2WjAYMRYwFAYD VQQDEw02OTMxZmQ5YS1hZDdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA44g9iS8pd3HRns7lvnYw9KiQeBjBINZkG2jzk2c8dB2m8JJVcAkBMsPO0CXj QPQV4I8J6ONQVCGN3Lgsebn5VgdsqHX/DHG3vwBOx5jJvlM6Y3jr4gO2vd0GMY+T cwCDzxpHl1WYaqdEa6rcasGS+vdvgIVNdsin1ezTTvhoZqtrKStw7WtY6HraCWVa 53gj/107N+If2bK5PcIUH8twhceMFIGzLeswJkgEvl2q9TQIEgDdSnF0O+OW6AuN ycvnf94VUV/zF14tqvo0nhPJT+G/CYHyMWqdsEfuIk05jWZvWPDY+D4sm+4f6/4Q riWbkPi0Jffv8QbjTTiCzjY+bQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNoM3T01 yLm6iPV1PWcm0pqdZxJWMB8GA1UdIwQYMBaAFNKghxvNg3bBGo8EmjmFWvzbGDBk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0E4Mi8wQkVCMzc1QUJF NDQxMUVCQUUzRDQzNDhDNEY5QUUwMi8wcUNIRzgyRGRzRWFqd1NhT1lWYV9Oc1lN R1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBxQ0hHODJEZHNFYWp3U2FPWVZhX05zWU1HUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Q0E4Mi8wQkVCMzc1QUJFNDQxMUVCQUUzRDQzNDhDNEY5QUUwMi8wcUNIRzgyRGRz RWFqd1NhT1lWYV9Oc1lNR1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFkZ1GnG8SCoEgTrckKi8RxHdy71TK+h+NlnvUwRVUlatoBBXz21wy 75nrTW/A4bJA2JcvqqvAbUTpnBHtRoju2fcmsCRvwSDDybD4KHg1zAqo87NiNk0k xRBWnJOQuWIvm6DM7qs53YL+9dGGwZnm5htCUr98DJvfFeUmkUgdqh4APzHvDea2 Lp1Gb3jKX2qZ5ezQKiqz/Z+L1vjdbubnNLr5E5CqV5zG+l7VBJplZLMGyWC2EIXq Oq4Cco0gkX05FcSDcPMRadOeUCPZQVZ8vo7RxA7b5Le2FcMknLkldmU1syT8bux0 OjksjoYrIbiQrZC/i1rmtXDbqXkslYym -----END CERTIFICATE-----Generated at Sat Dec 6 20:05:57 2025 by rpki-client