This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9125C22/045695B87FAE11EB977B5335C4F9AE02/2QaTkaPngEpuvd-dQfLeTZG9UbM.mft File: 2QaTkaPngEpuvd-dQfLeTZG9UbM.mft (raw, json) Hash identifier: q6y+aqaMLsHr1IDJn6vQh3zkgwB5SH5qb14ITX9J9lA= Subject key identifier: F1:F7:D3:49:44:A4:7B:2E:A2:66:71:27:2E:C8:72:F1:C2:FF:2C:99 Authority key identifier: D9:06:93:91:A3:E7:80:4A:6E:BD:DF:9D:41:F2:DE:4D:91:BD:51:B3 Certificate issuer: /CN=A9125C22/serialNumber=D9069391A3E7804A6EBDDF9D41F2DE4D91BD51B3 Certificate serial: 06DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QaTkaPngEpuvd-dQfLeTZG9UbM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125C22/045695B87FAE11EB977B5335C4F9AE02/2QaTkaPngEpuvd-dQfLeTZG9UbM.mft Manifest number: 06CF Signing time: Sat 06 Dec 2025 21:03:36 +0000 Manifest this update: Sat 06 Dec 2025 21:03:36 +0000 Manifest next update: Sat 13 Dec 2025 21:03:36 +0000 Files and hashes: 1: 2QaTkaPngEpuvd-dQfLeTZG9UbM.crl (hash: HJ0+6sK/anuok6SknHarPZ6j9MQ5UfAv03HwwbGr458=) 2: 202A51EA52D611EFA0333E23C4F9AE02.roa (hash: Sxl9Vw9Z+DTDShpFQB0WpYJiHDd/mA9uIojiho1C+jo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125C22/045695B87FAE11EB977B5335C4F9AE02/2QaTkaPngEpuvd-dQfLeTZG9UbM.crl rsync://rpki.apnic.net/member_repository/A9125C22/045695B87FAE11EB977B5335C4F9AE02/2QaTkaPngEpuvd-dQfLeTZG9UbM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QaTkaPngEpuvd-dQfLeTZG9UbM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 21:03:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1754 (0x6da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125C22, serialNumber=D9069391A3E7804A6EBDDF9D41F2DE4D91BD51B3 Validity Not Before: Dec 6 21:03:36 2025 GMT Not After : Dec 13 21:03:36 2025 GMT Subject: CN=69349a28-3c0f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:ca:3e:72:c9:ce:35:b4:15:1e:2a:e4:3d:0b: ac:dd:f8:89:7b:02:62:29:8a:61:a6:67:e6:63:a3: 91:e3:ba:19:6d:4b:5b:6a:37:b3:01:40:05:c2:5e: ce:65:26:c8:86:31:20:4b:cf:75:e6:f2:91:af:70: 33:63:f3:f0:70:e4:8b:8b:2e:5a:85:c6:de:e6:df: 0e:9d:4b:22:6e:ad:93:06:77:09:18:16:9a:b2:ca: 6c:43:cb:f4:ca:5a:e9:6c:44:04:05:42:fe:6d:d1: f1:4b:c7:ee:2c:fb:35:a7:13:65:82:81:0f:a5:cf: 60:1e:92:58:68:01:28:f5:7d:13:a6:67:11:47:03: 1d:d5:86:92:53:c7:01:07:b7:2a:24:3a:16:c1:74: fc:ab:52:ca:a7:7f:5b:8d:dc:a7:83:f4:f6:ef:26: 5b:63:b1:93:ef:75:94:7b:ac:57:e4:4e:0e:8e:29: c8:12:6b:06:75:f9:dd:09:ca:a6:2b:35:ab:34:a1: 8e:d2:bb:a1:9f:d6:b4:4a:bc:32:aa:11:c1:5a:8b: 23:fa:f6:d1:dc:ed:1f:28:49:2f:b3:cf:ae:4a:99: 34:6b:73:26:22:c7:7e:ae:0d:6a:2a:c5:b5:4d:57: 1c:7c:61:59:66:7d:66:df:70:e8:c7:d1:9c:7f:43: 2c:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:F7:D3:49:44:A4:7B:2E:A2:66:71:27:2E:C8:72:F1:C2:FF:2C:99 X509v3 Authority Key Identifier: keyid:D9:06:93:91:A3:E7:80:4A:6E:BD:DF:9D:41:F2:DE:4D:91:BD:51:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125C22/045695B87FAE11EB977B5335C4F9AE02/2QaTkaPngEpuvd-dQfLeTZG9UbM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QaTkaPngEpuvd-dQfLeTZG9UbM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125C22/045695B87FAE11EB977B5335C4F9AE02/2QaTkaPngEpuvd-dQfLeTZG9UbM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:c7:5c:fe:b3:3b:3e:30:d9:e9:44:c4:7c:c9:50:76:01:cd: 01:ee:6a:d2:ee:83:21:7d:ca:a2:c7:f5:32:52:c0:90:1d:3b: a4:60:14:77:00:e8:b7:56:1a:44:94:a7:a6:81:d3:6a:5c:6a: 15:62:19:30:f8:ef:93:12:54:9c:7f:da:46:94:dc:95:c7:5c: 7e:b9:f2:d8:13:96:f3:73:e5:70:13:02:1e:65:7a:be:e2:1e: 71:9e:5b:09:83:a4:70:02:e6:c9:02:db:e1:bd:90:20:87:0c: 7e:30:dd:36:08:7d:bc:35:a9:4c:f7:8c:e1:3c:ce:64:70:4c: c4:c9:ad:68:fc:44:0d:a6:a0:22:a8:a7:25:fd:29:c9:48:da: a9:cd:35:2e:ac:58:43:d5:7c:aa:9f:46:7e:8d:81:cb:b8:7e: 32:9a:75:4b:f6:28:c4:cd:01:7c:e8:76:df:39:e9:a2:51:29: b7:09:6c:b3:c1:b0:de:fc:d1:ce:4d:1a:ce:40:55:43:b1:52: 40:42:99:30:82:12:eb:53:49:08:a0:49:8b:75:46:96:ba:3c: 56:1b:2b:45:c9:68:43:0c:1e:c0:11:73:4e:19:ed:e3:db:9f: de:61:40:a1:81:6c:58:d7:c1:8a:55:1e:0f:2e:e7:ea:54:e4: 20:60:ce:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBtowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVDMjIxMTAvBgNVBAUTKEQ5MDY5MzkxQTNFNzgwNEE2RUJEREY5RDQxRjJERTRE OTFCRDUxQjMwHhcNMjUxMjA2MjEwMzM2WhcNMjUxMjEzMjEwMzM2WjAYMRYwFAYD VQQDEw02OTM0OWEyOC0zYzBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnso+csnONbQVHirkPQus3fiJewJiKYphpmfmY6OR47oZbUtbajezAUAFwl7O ZSbIhjEgS8915vKRr3AzY/PwcOSLiy5ahcbe5t8OnUsibq2TBncJGBaasspsQ8v0 ylrpbEQEBUL+bdHxS8fuLPs1pxNlgoEPpc9gHpJYaAEo9X0TpmcRRwMd1YaSU8cB B7cqJDoWwXT8q1LKp39bjdyng/T27yZbY7GT73WUe6xX5E4OjinIEmsGdfndCcqm KzWrNKGO0ruhn9a0SrwyqhHBWosj+vbR3O0fKEkvs8+uSpk0a3MmIsd+rg1qKsW1 TVccfGFZZn1m33Dox9Gcf0Ms7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPH300lE pHsuomZxJy7IcvHC/yyZMB8GA1UdIwQYMBaAFNkGk5Gj54BKbr3fnUHy3k2RvVGz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUMyMi8wNDU2OTVCODdG QUUxMUVCOTc3QjUzMzVDNEY5QUUwMi8yUWFUa2FQbmdFcHV2ZC1kUWZMZVRaRzlV Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJRYVRrYVBuZ0VwdXZkLWRRZkxlVFpHOVViTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NUMyMi8wNDU2OTVCODdGQUUxMUVCOTc3QjUzMzVDNEY5QUUwMi8yUWFUa2FQbmdF cHV2ZC1kUWZMZVRaRzlVYk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQx1z+szs+MNnpRMR8yVB2Ac0B7mrS7oMhfcqix/UyUsCQHTukYBR3 AOi3VhpElKemgdNqXGoVYhkw+O+TElScf9pGlNyVx1x+ufLYE5bzc+VwEwIeZXq+ 4h5xnlsJg6RwAubJAtvhvZAghwx+MN02CH28NalM94zhPM5kcEzEya1o/EQNpqAi qKcl/SnJSNqpzTUurFhD1Xyqn0Z+jYHLuH4ymnVL9ijEzQF86HbfOemiUSm3CWyz wbDe/NHOTRrOQFVDsVJAQpkwghLrU0kIoEmLdUaWujxWGytFyWhDDB7AEXNOGe3j 25/eYUChgWxY18GKVR4PLufqVOQgYM6u -----END CERTIFICATE-----Generated at Sun Dec 7 02:47:31 2025 by rpki-client