This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911FABC/D9420076C4D211EDBF0E1982C4F9AE02/qHJCtzYn1CkjSl9UxSO7Qeu-h6o.mft File: qHJCtzYn1CkjSl9UxSO7Qeu-h6o.mft (raw, json) Hash identifier: 7ww3FaW3g88BWeZHz7zaJNJBhzRfanfluCC2/GEwdGs= Subject key identifier: 8D:72:6F:E5:77:49:84:63:E4:23:8E:63:80:3C:9B:41:FD:55:B9:FA Authority key identifier: A8:72:42:B7:36:27:D4:29:23:4A:5F:54:C5:23:BB:41:EB:BE:87:AA Certificate issuer: /CN=A911FABC/serialNumber=A87242B73627D429234A5F54C523BB41EBBE87AA Certificate serial: 0211 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qHJCtzYn1CkjSl9UxSO7Qeu-h6o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911FABC/D9420076C4D211EDBF0E1982C4F9AE02/qHJCtzYn1CkjSl9UxSO7Qeu-h6o.mft Manifest number: 020B Signing time: Fri 05 Dec 2025 00:44:21 +0000 Manifest this update: Fri 05 Dec 2025 00:44:21 +0000 Manifest next update: Fri 12 Dec 2025 00:44:21 +0000 Files and hashes: 1: qHJCtzYn1CkjSl9UxSO7Qeu-h6o.crl (hash: krGAGzcM18o2NreBDBdqZP0+rCfgkroPT0K5lcWq2fk=) 2: 9BF55430C4D611EDA65E8C87C4F9AE02.roa (hash: yQWifcUacebm0QWmZ7UB602HfF6Yw1unRDBx3kif0PM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911FABC/D9420076C4D211EDBF0E1982C4F9AE02/qHJCtzYn1CkjSl9UxSO7Qeu-h6o.crl rsync://rpki.apnic.net/member_repository/A911FABC/D9420076C4D211EDBF0E1982C4F9AE02/qHJCtzYn1CkjSl9UxSO7Qeu-h6o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qHJCtzYn1CkjSl9UxSO7Qeu-h6o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 00:44:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 529 (0x211) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911FABC, serialNumber=A87242B73627D429234A5F54C523BB41EBBE87AA Validity Not Before: Dec 5 00:44:21 2025 GMT Not After : Dec 12 00:44:21 2025 GMT Subject: CN=69322ae5-9b0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:15:9c:4c:92:7c:7d:e3:55:49:20:8e:8b:ab: 02:65:2f:86:08:1d:7e:d7:94:f0:28:f7:c3:5f:7e: af:83:65:5f:a0:57:df:0d:05:07:b7:cd:e9:28:ae: 74:c1:84:45:53:eb:55:a6:e9:c1:f2:3b:a9:c1:0b: a7:97:78:4e:c5:53:5a:6a:80:fb:9f:e4:5e:ae:61: 10:ff:8c:d4:de:84:c7:a2:9c:72:fa:3d:cd:fe:95: 6a:9e:d7:4f:d5:0e:a4:eb:96:5a:87:6a:15:f7:2e: 71:d8:3d:5f:4b:de:ec:5f:cd:0f:c3:1a:93:04:6a: 9b:80:34:30:b4:85:70:5d:fb:57:90:8a:1f:e6:f6: 2f:65:cc:e6:9a:5b:ff:47:d3:f1:a5:aa:23:27:4b: a0:b4:b8:ff:c0:d1:ba:b6:d6:ed:b4:46:92:0e:2b: f3:10:a5:f1:9a:3a:85:44:ec:50:73:b7:89:37:c3: 96:7e:a0:3c:d1:e4:c6:65:4d:3e:0d:b5:0f:70:8e: 46:c2:04:a6:1c:0b:87:df:25:ed:b6:d3:30:e6:28: 45:85:a3:cc:52:92:bf:8c:63:2e:df:10:60:63:98: 60:64:e0:d1:db:ea:18:69:66:77:3a:48:1a:e1:99: 42:24:7d:83:6e:52:57:dd:7a:bf:c7:01:6a:59:4e: 44:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:72:6F:E5:77:49:84:63:E4:23:8E:63:80:3C:9B:41:FD:55:B9:FA X509v3 Authority Key Identifier: keyid:A8:72:42:B7:36:27:D4:29:23:4A:5F:54:C5:23:BB:41:EB:BE:87:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911FABC/D9420076C4D211EDBF0E1982C4F9AE02/qHJCtzYn1CkjSl9UxSO7Qeu-h6o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qHJCtzYn1CkjSl9UxSO7Qeu-h6o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911FABC/D9420076C4D211EDBF0E1982C4F9AE02/qHJCtzYn1CkjSl9UxSO7Qeu-h6o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c7:67:f7:db:d4:32:ad:09:42:73:01:4b:9d:06:4d:3c:d4:17: e2:34:2a:56:8b:8c:28:09:97:74:f2:10:85:da:97:ef:6e:3f: cf:c9:0f:ac:0e:16:c9:68:4d:57:2f:e2:19:5e:00:ca:f5:11: d3:a8:47:4d:35:ee:97:aa:dd:00:ba:21:a8:d9:14:c5:f4:ff: eb:96:4f:fe:09:36:2a:e0:70:b3:26:f0:99:45:68:c9:9f:ca: 7c:d4:0a:14:2f:58:59:bf:e5:9d:3d:51:84:8e:9d:e1:84:e4: 54:00:8e:61:47:db:48:11:e0:1b:8c:37:44:d5:ce:11:10:ad: ef:78:2e:ef:c8:0a:cb:36:5d:d1:0e:63:e5:36:e5:56:af:e3: 85:bd:d0:6d:74:c4:68:41:8d:9f:32:74:1f:e9:9b:44:79:82: aa:f8:9c:c8:e3:1a:23:c9:0c:09:e7:fb:00:7e:c7:41:66:dc: b9:0a:cb:10:ef:cb:2e:05:a9:a1:38:43:56:be:80:c4:8d:aa: 6d:51:46:32:9a:5b:2a:52:98:7b:41:f5:c3:86:5c:5c:e6:a9: 96:ee:21:39:55:d8:bf:7d:8c:4a:3c:40:43:aa:3e:6a:e8:a8: 2c:c2:09:6e:80:bc:96:4c:23:20:3d:c1:d7:0a:9a:51:48:2e: 70:00:5a:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUZBQkMxMTAvBgNVBAUTKEE4NzI0MkI3MzYyN0Q0MjkyMzRBNUY1NEM1MjNCQjQx RUJCRTg3QUEwHhcNMjUxMjA1MDA0NDIxWhcNMjUxMjEyMDA0NDIxWjAYMRYwFAYD VQQDEw02OTMyMmFlNS05YjBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1RWcTJJ8feNVSSCOi6sCZS+GCB1+15TwKPfDX36vg2VfoFffDQUHt83pKK50 wYRFU+tVpunB8jupwQunl3hOxVNaaoD7n+RermEQ/4zU3oTHopxy+j3N/pVqntdP 1Q6k65Zah2oV9y5x2D1fS97sX80PwxqTBGqbgDQwtIVwXftXkIof5vYvZczmmlv/ R9PxpaojJ0ugtLj/wNG6ttbttEaSDivzEKXxmjqFROxQc7eJN8OWfqA80eTGZU0+ DbUPcI5GwgSmHAuH3yXtttMw5ihFhaPMUpK/jGMu3xBgY5hgZODR2+oYaWZ3Okga 4ZlCJH2DblJX3Xq/xwFqWU5EpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI1yb+V3 SYRj5COOY4A8m0H9Vbn6MB8GA1UdIwQYMBaAFKhyQrc2J9QpI0pfVMUju0Hrvoeq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRkFCQy9EOTQyMDA3NkM0 RDIxMUVEQkYwRTE5ODJDNEY5QUUwMi9xSEpDdHpZbjFDa2pTbDlVeFNPN1FldS1o Nm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FISkN0elluMUNralNsOVV4U083UWV1LWg2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RkFCQy9EOTQyMDA3NkM0RDIxMUVEQkYwRTE5ODJDNEY5QUUwMi9xSEpDdHpZbjFD a2pTbDlVeFNPN1FldS1oNm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDHZ/fb1DKtCUJzAUudBk081BfiNCpWi4woCZd08hCF2pfvbj/PyQ+s DhbJaE1XL+IZXgDK9RHTqEdNNe6Xqt0AuiGo2RTF9P/rlk/+CTYq4HCzJvCZRWjJ n8p81AoUL1hZv+WdPVGEjp3hhORUAI5hR9tIEeAbjDdE1c4REK3veC7vyArLNl3R DmPlNuVWr+OFvdBtdMRoQY2fMnQf6ZtEeYKq+JzI4xojyQwJ5/sAfsdBZty5CssQ 78suBamhOENWvoDEjaptUUYymlsqUph7QfXDhlxc5qmW7iE5Vdi/fYxKPEBDqj5q 6KgswglugLyWTCMgPcHXCppRSC5wAFoM -----END CERTIFICATE-----Generated at Sun Dec 7 01:52:02 2025 by rpki-client