This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9120A29/0E06DBA24D5C11EAA8088A66C4F9AE02/QbMaaMknik1EdI4t-MasqBV47LU.mft File: QbMaaMknik1EdI4t-MasqBV47LU.mft (raw, json) Hash identifier: sfHSIhwGZQ0k7Vyupp6Nrbp+E/8f1Y+7il8CVSfPddU= Subject key identifier: AB:DE:A7:E8:75:97:EC:64:17:4B:5F:C5:DE:98:4D:29:AB:75:F2:08 Authority key identifier: 41:B3:1A:68:C9:27:8A:4D:44:74:8E:2D:F8:C6:AC:A8:15:78:EC:B5 Certificate issuer: /CN=A9120A29/serialNumber=41B31A68C9278A4D44748E2DF8C6ACA81578ECB5 Certificate serial: 0B36 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QbMaaMknik1EdI4t-MasqBV47LU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120A29/0E06DBA24D5C11EAA8088A66C4F9AE02/QbMaaMknik1EdI4t-MasqBV47LU.mft Manifest number: 0B2F Signing time: Thu 04 Dec 2025 18:35:59 +0000 Manifest this update: Thu 04 Dec 2025 18:35:58 +0000 Manifest next update: Thu 11 Dec 2025 18:35:58 +0000 Files and hashes: 1: QbMaaMknik1EdI4t-MasqBV47LU.crl (hash: 2iIwF46D9hmHyOhrHLSYsbDe3JC0vJxWfM0k0kqs00I=) 2: 73A346A24D5D11EAA811C368C4F9AE02.roa (hash: AtiHUqqiSc5seLUNoB/SjIutv6okcY16FsBOaprHkwA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120A29/0E06DBA24D5C11EAA8088A66C4F9AE02/QbMaaMknik1EdI4t-MasqBV47LU.crl rsync://rpki.apnic.net/member_repository/A9120A29/0E06DBA24D5C11EAA8088A66C4F9AE02/QbMaaMknik1EdI4t-MasqBV47LU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QbMaaMknik1EdI4t-MasqBV47LU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 18:35:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2870 (0xb36) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120A29, serialNumber=41B31A68C9278A4D44748E2DF8C6ACA81578ECB5 Validity Not Before: Dec 4 18:35:58 2025 GMT Not After : Dec 11 18:35:58 2025 GMT Subject: CN=6931d48e-7050 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:13:b7:44:76:a2:2a:c7:50:5e:46:23:41:02: 36:6c:74:21:66:fb:f4:63:42:80:ac:5a:4c:ab:2a: 88:42:f3:c0:13:9a:db:f1:50:ca:7d:0c:7a:09:e3: 7e:db:04:5e:19:bb:de:d2:bb:bc:68:f6:3c:50:93: 3e:e1:e5:11:b8:c0:05:38:d2:24:68:30:72:ea:fa: 47:f6:b7:0c:bf:51:70:d5:78:cb:ac:aa:ed:a0:fc: 99:eb:1b:84:fa:02:14:d2:76:49:5c:e7:d2:ae:c0: b9:f7:a2:ae:21:0b:12:3f:95:27:12:53:f4:e8:2c: 50:ad:5c:ac:3b:32:a9:d8:d6:8e:fb:33:c3:7a:77: d6:b4:22:31:44:0b:91:3a:f2:ad:de:db:22:37:e3: bc:91:70:5b:66:37:6f:3b:ed:ee:5a:c3:f0:e2:73: e1:4d:75:d6:b2:af:19:cb:77:cf:65:8d:31:0e:8f: a1:1e:d1:e7:97:77:cb:5b:e6:f1:f6:55:97:a0:04: 56:74:9e:09:f6:da:ba:b8:2b:36:e2:3d:8b:53:3c: ce:cb:2b:f1:c0:86:e7:22:27:21:4d:90:0c:ca:6a: 3c:0a:6b:fe:fd:93:e9:e9:66:fc:8e:2d:55:78:af: 1a:6f:fa:e6:97:a1:77:ff:50:56:e4:2e:06:c0:ac: 9b:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:DE:A7:E8:75:97:EC:64:17:4B:5F:C5:DE:98:4D:29:AB:75:F2:08 X509v3 Authority Key Identifier: keyid:41:B3:1A:68:C9:27:8A:4D:44:74:8E:2D:F8:C6:AC:A8:15:78:EC:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120A29/0E06DBA24D5C11EAA8088A66C4F9AE02/QbMaaMknik1EdI4t-MasqBV47LU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QbMaaMknik1EdI4t-MasqBV47LU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120A29/0E06DBA24D5C11EAA8088A66C4F9AE02/QbMaaMknik1EdI4t-MasqBV47LU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:73:9f:4d:18:11:79:23:c4:fa:66:b7:f9:18:ce:a0:a9:3d: 11:08:11:09:e9:34:44:07:82:80:b5:45:4b:a2:b4:af:43:24: 85:da:68:f6:54:40:88:79:d9:d5:2d:b0:eb:92:40:83:e6:ab: ed:13:33:c1:62:c2:2b:5f:c0:59:19:ce:13:28:dc:32:94:68: 9b:13:a0:98:f3:1d:ea:ce:a0:88:9a:21:d0:f3:9f:8d:7e:12: 76:3f:5d:42:bb:7f:35:3b:c9:af:05:9e:6d:d9:05:58:06:ec: 21:79:5e:5d:80:5e:23:c1:0c:58:0f:95:1f:ae:e3:0b:e6:a8: c1:a8:d8:d9:6e:82:c8:48:40:4a:1b:73:0e:79:d2:93:c9:9d: 60:65:b0:a8:4b:f0:09:f7:5b:c7:c4:49:a1:d5:2f:06:3a:16: 5d:ca:dd:77:59:76:29:25:87:22:17:42:6a:27:0b:a9:a1:6b: 46:0b:7a:f2:69:f1:1d:db:2a:76:15:db:38:d2:68:42:a8:ba: e7:27:fe:8f:01:ff:e9:90:31:3b:f9:aa:e6:2c:7a:5f:b7:39: 43:b0:4d:52:a9:5a:bf:0d:45:95:5a:c8:a4:82:83:5f:0e:9e: 26:40:1d:95:13:98:47:89:36:01:69:89:46:97:9a:93:8d:a1: 2b:92:94:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCzYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBBMjkxMTAvBgNVBAUTKDQxQjMxQTY4QzkyNzhBNEQ0NDc0OEUyREY4QzZBQ0E4 MTU3OEVDQjUwHhcNMjUxMjA0MTgzNTU4WhcNMjUxMjExMTgzNTU4WjAYMRYwFAYD VQQDEw02OTMxZDQ4ZS03MDUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtxO3RHaiKsdQXkYjQQI2bHQhZvv0Y0KArFpMqyqIQvPAE5rb8VDKfQx6CeN+ 2wReGbve0ru8aPY8UJM+4eURuMAFONIkaDBy6vpH9rcMv1Fw1XjLrKrtoPyZ6xuE +gIU0nZJXOfSrsC596KuIQsSP5UnElP06CxQrVysOzKp2NaO+zPDenfWtCIxRAuR OvKt3tsiN+O8kXBbZjdvO+3uWsPw4nPhTXXWsq8Zy3fPZY0xDo+hHtHnl3fLW+bx 9lWXoARWdJ4J9tq6uCs24j2LUzzOyyvxwIbnIichTZAMymo8Cmv+/ZPp6Wb8ji1V eK8ab/rml6F3/1BW5C4GwKybjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKvep+h1 l+xkF0tfxd6YTSmrdfIIMB8GA1UdIwQYMBaAFEGzGmjJJ4pNRHSOLfjGrKgVeOy1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEEyOS8wRTA2REJBMjRE NUMxMUVBQTgwODhBNjZDNEY5QUUwMi9RYk1hYU1rbmlrMUVkSTR0LU1hc3FCVjQ3 TFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FiTWFhTWtuaWsxRWRJNHQtTWFzcUJWNDdMVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MEEyOS8wRTA2REJBMjRENUMxMUVBQTgwODhBNjZDNEY5QUUwMi9RYk1hYU1rbmlr MUVkSTR0LU1hc3FCVjQ3TFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMc59NGBF5I8T6Zrf5GM6gqT0RCBEJ6TREB4KAtUVLorSvQySF2mj2 VECIednVLbDrkkCD5qvtEzPBYsIrX8BZGc4TKNwylGibE6CY8x3qzqCImiHQ85+N fhJ2P11Cu381O8mvBZ5t2QVYBuwheV5dgF4jwQxYD5UfruML5qjBqNjZboLISEBK G3MOedKTyZ1gZbCoS/AJ91vHxEmh1S8GOhZdyt13WXYpJYciF0JqJwupoWtGC3ry afEd2yp2Fds40mhCqLrnJ/6PAf/pkDE7+armLHpftzlDsE1SqVq/DUWVWsikgoNf Dp4mQB2VE5hHiTYBaYlGl5qTjaErkpSh -----END CERTIFICATE-----Generated at Sat Dec 6 15:36:53 2025 by rpki-client