This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.mft File: QN1mK29ul7NNO3WoAH3lOI2SclM.mft (raw, json) Hash identifier: vZfdkzbC8qPpvizU5aXFeCdnDzyKguPo4MwyRGx+Lkk= Subject key identifier: 14:39:38:AB:6B:B8:F4:C5:16:30:C7:B2:65:98:BB:46:7B:AB:EC:ED Authority key identifier: 40:DD:66:2B:6F:6E:97:B3:4D:3B:75:A8:00:7D:E5:38:8D:92:72:53 Certificate issuer: /CN=A911CF44/serialNumber=40DD662B6F6E97B34D3B75A8007DE5388D927253 Certificate serial: 06B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QN1mK29ul7NNO3WoAH3lOI2SclM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.mft Manifest number: 06A8 Signing time: Thu 04 Dec 2025 21:07:14 +0000 Manifest this update: Thu 04 Dec 2025 21:07:14 +0000 Manifest next update: Thu 11 Dec 2025 21:07:14 +0000 Files and hashes: 1: QN1mK29ul7NNO3WoAH3lOI2SclM.crl (hash: X0fv7SagMDNAVXM6RaVjhnfqI3ROmaKEEXUU9rcufNE=) 2: 85613B4E8C8411EBB68DD829C4F9AE02.roa (hash: JUDELwHgPtKuVC+Zxi+8ziVhRWeVBos3PiAym1dLOsg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.crl rsync://rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QN1mK29ul7NNO3WoAH3lOI2SclM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 21:07:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1712 (0x6b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CF44, serialNumber=40DD662B6F6E97B34D3B75A8007DE5388D927253 Validity Not Before: Dec 4 21:07:14 2025 GMT Not After : Dec 11 21:07:14 2025 GMT Subject: CN=6931f802-4fb6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:6b:e3:d6:70:c6:37:bb:42:94:c2:3d:e9:ca: 56:b9:07:12:26:d3:c2:8d:52:09:50:1d:3b:ca:cf: cc:9b:14:19:4a:6a:9c:84:4b:72:cb:c1:22:54:c7: d4:84:02:89:c5:1b:c7:5a:ed:0d:af:31:74:96:8d: 94:d6:13:8a:bc:10:c6:bc:fb:4e:63:56:e1:68:9e: ca:20:b2:76:bc:42:4e:b8:e9:62:d4:11:f9:0a:67: a6:f8:aa:ae:85:85:4e:9e:8b:31:7e:75:88:12:a4: c4:eb:62:52:b2:c6:3b:f1:15:9a:77:8a:e0:8e:36: 6d:97:d9:35:f9:5f:2a:02:30:23:00:73:6b:db:fe: 6f:f3:e4:a3:25:c6:a4:01:ab:26:be:48:08:12:bd: a2:51:64:23:4a:c6:ae:c5:40:7f:e4:1b:28:59:e2: cc:ae:45:70:60:08:4c:6d:2a:0c:96:b1:ff:6b:6d: 6e:eb:46:86:82:28:59:d4:bb:76:2a:34:45:ee:19: ee:3f:13:13:09:20:9f:08:71:ab:88:78:b1:4c:2d: bf:35:2f:6e:09:50:56:b2:9d:93:c3:19:b7:69:5f: be:78:d6:dc:cf:d1:5d:e1:d1:f7:e1:3d:d0:b5:c1: c6:ca:04:ff:2c:7b:17:da:87:51:7f:08:d5:24:05: 16:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:39:38:AB:6B:B8:F4:C5:16:30:C7:B2:65:98:BB:46:7B:AB:EC:ED X509v3 Authority Key Identifier: keyid:40:DD:66:2B:6F:6E:97:B3:4D:3B:75:A8:00:7D:E5:38:8D:92:72:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QN1mK29ul7NNO3WoAH3lOI2SclM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:72:a1:28:45:68:ab:f9:95:49:4d:ad:98:d4:d3:b0:c2:14: b5:e3:2a:cb:58:c3:36:1f:2a:b9:d7:12:4d:e4:03:c6:63:0f: 54:88:ce:41:6d:48:de:f8:f8:c4:0b:d1:49:8c:6b:bc:69:b9: 39:53:98:24:a8:eb:9b:e6:64:5f:9e:a5:70:34:08:81:41:23: 46:15:d6:b4:19:af:84:07:d3:8c:b7:79:5e:94:85:4c:86:da: af:ea:61:46:ff:07:0f:5a:5d:01:a4:ce:25:b3:cb:30:3c:f2: 88:ef:0f:22:a7:73:33:37:01:86:69:75:09:85:fa:f9:23:7a: ae:95:3e:b9:17:79:d8:57:65:df:fb:6f:36:37:f1:9d:0b:fb: 5a:6b:c2:c1:64:76:0a:16:4a:87:59:3e:a0:00:c5:7b:ce:8a: 5e:16:02:a4:85:d6:02:fd:7e:ee:14:13:0b:6f:43:ec:00:fa: 11:82:d1:82:29:0a:fa:b9:3f:98:e2:f9:bf:c6:a8:25:6c:10: a5:2f:82:b6:da:09:bc:44:b2:0c:f0:e2:24:14:2a:4d:4a:b2: 4d:eb:43:e1:cc:11:2e:3f:00:08:27:62:03:72:6f:60:42:13: 51:dd:2d:7f:8a:88:3d:f9:b9:93:8c:5e:8b:da:85:a1:67:05: 80:be:e1:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBrAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNGNDQxMTAvBgNVBAUTKDQwREQ2NjJCNkY2RTk3QjM0RDNCNzVBODAwN0RFNTM4 OEQ5MjcyNTMwHhcNMjUxMjA0MjEwNzE0WhcNMjUxMjExMjEwNzE0WjAYMRYwFAYD VQQDEw02OTMxZjgwMi00ZmI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5Wvj1nDGN7tClMI96cpWuQcSJtPCjVIJUB07ys/MmxQZSmqchEtyy8EiVMfU hAKJxRvHWu0NrzF0lo2U1hOKvBDGvPtOY1bhaJ7KILJ2vEJOuOli1BH5Cmem+Kqu hYVOnosxfnWIEqTE62JSssY78RWad4rgjjZtl9k1+V8qAjAjAHNr2/5v8+SjJcak AasmvkgIEr2iUWQjSsauxUB/5BsoWeLMrkVwYAhMbSoMlrH/a21u60aGgihZ1Lt2 KjRF7hnuPxMTCSCfCHGriHixTC2/NS9uCVBWsp2Twxm3aV++eNbcz9Fd4dH34T3Q tcHGygT/LHsX2odRfwjVJAUWWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBQ5OKtr uPTFFjDHsmWYu0Z7q+ztMB8GA1UdIwQYMBaAFEDdZitvbpezTTt1qAB95TiNknJT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0Y0NC82Njc3QkVCNjhD ODMxMUVCODQ5RTYxMjlDNEY5QUUwMi9RTjFtSzI5dWw3Tk5PM1dvQUgzbE9JMlNj bE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FOMW1LMjl1bDdOTk8zV29BSDNsT0kyU2NsTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Q0Y0NC82Njc3QkVCNjhDODMxMUVCODQ5RTYxMjlDNEY5QUUwMi9RTjFtSzI5dWw3 Tk5PM1dvQUgzbE9JMlNjbE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC2cqEoRWir+ZVJTa2Y1NOwwhS14yrLWMM2Hyq51xJN5APGYw9UiM5B bUje+PjEC9FJjGu8abk5U5gkqOub5mRfnqVwNAiBQSNGFda0Ga+EB9OMt3lelIVM htqv6mFG/wcPWl0BpM4ls8swPPKI7w8ip3MzNwGGaXUJhfr5I3qulT65F3nYV2Xf +282N/GdC/taa8LBZHYKFkqHWT6gAMV7zopeFgKkhdYC/X7uFBMLb0PsAPoRgtGC KQr6uT+Y4vm/xqglbBClL4K22gm8RLIM8OIkFCpNSrJN60PhzBEuPwAIJ2IDcm9g QhNR3S1/iog9+bmTjF6L2oWhZwWAvuFR -----END CERTIFICATE-----Generated at Sat Dec 6 13:56:10 2025 by rpki-client