This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9125C31/38BF409A159011EA9C413652C4F9AE02/cQU3JEaiBkVG2WKfQhw3b9zvIdY.mft File: cQU3JEaiBkVG2WKfQhw3b9zvIdY.mft (raw, json) Hash identifier: ME/X3qOWxMnBniEkmXfKD45fcoh6n+DS0IY9ynvqrls= Subject key identifier: C8:8F:24:58:D6:D8:B8:55:D7:9F:5B:D4:6D:D6:AB:A1:3A:1D:84:34 Authority key identifier: 71:05:37:24:46:A2:06:45:46:D9:62:9F:42:1C:37:6F:DC:EF:21:D6 Certificate issuer: /CN=A9125C31/serialNumber=7105372446A2064546D9629F421C376FDCEF21D6 Certificate serial: 0C55 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cQU3JEaiBkVG2WKfQhw3b9zvIdY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125C31/38BF409A159011EA9C413652C4F9AE02/cQU3JEaiBkVG2WKfQhw3b9zvIdY.mft Manifest number: 0C4E Signing time: Sat 06 Dec 2025 17:58:20 +0000 Manifest this update: Sat 06 Dec 2025 17:58:19 +0000 Manifest next update: Sat 13 Dec 2025 17:58:19 +0000 Files and hashes: 1: cQU3JEaiBkVG2WKfQhw3b9zvIdY.crl (hash: pd984yEPyjfuXOzaIpqIXWTjXKMY++JaaIFRMgbBSME=) 2: 4697751815B111EA8277BA34C4F9AE02.roa (hash: dxDp9E0tHPQ++XAIde+nxMm3Ga/WWcWY96m0Hl+beDw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125C31/38BF409A159011EA9C413652C4F9AE02/cQU3JEaiBkVG2WKfQhw3b9zvIdY.crl rsync://rpki.apnic.net/member_repository/A9125C31/38BF409A159011EA9C413652C4F9AE02/cQU3JEaiBkVG2WKfQhw3b9zvIdY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cQU3JEaiBkVG2WKfQhw3b9zvIdY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 17:58:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3157 (0xc55) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125C31, serialNumber=7105372446A2064546D9629F421C376FDCEF21D6 Validity Not Before: Dec 6 17:58:19 2025 GMT Not After : Dec 13 17:58:19 2025 GMT Subject: CN=69346ebc-cb0b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:da:12:11:99:42:93:92:dc:ef:5d:41:24:b4: 5f:2f:c2:b1:82:54:ce:0e:86:7b:0a:f4:66:00:2d: ab:fd:07:8e:21:cf:03:ca:f2:ed:24:b5:c6:13:19: bc:77:61:90:2e:aa:0f:3b:63:4f:32:7c:34:d4:1f: f6:70:94:99:f2:ee:13:6f:96:60:91:f0:04:b6:0e: 36:1d:c6:80:e3:16:85:48:a8:b7:ee:05:33:a9:50: 7a:1e:dd:79:ce:ba:f8:0d:09:d5:aa:5e:4f:39:d7: 23:01:cb:f7:a9:ca:a3:b4:c7:c6:2d:1f:fa:28:5a: 16:79:26:df:c4:a6:99:1d:6d:dc:2d:7c:eb:2b:4b: ae:91:1c:7c:70:3e:da:a8:c6:05:bf:d9:40:24:c3: 29:bc:8b:5b:87:e1:3c:16:a8:ba:68:1b:5d:10:53: 37:fb:50:4e:16:65:65:c9:d8:f5:94:c8:c0:0d:d3: 6b:29:dd:2c:62:73:65:38:e4:42:9b:d2:7b:b9:5a: d7:8a:ff:00:0d:b9:cf:65:0c:7f:2b:92:dd:3a:a5: fd:a6:b4:5c:d2:c8:59:08:2c:bc:0e:f9:a8:5d:f5: 97:15:ab:f1:83:e2:b3:cd:a3:ba:a5:cb:cb:aa:43: de:27:9e:a2:95:c2:23:62:7f:19:cf:c3:e6:81:73: 0e:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:8F:24:58:D6:D8:B8:55:D7:9F:5B:D4:6D:D6:AB:A1:3A:1D:84:34 X509v3 Authority Key Identifier: keyid:71:05:37:24:46:A2:06:45:46:D9:62:9F:42:1C:37:6F:DC:EF:21:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125C31/38BF409A159011EA9C413652C4F9AE02/cQU3JEaiBkVG2WKfQhw3b9zvIdY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cQU3JEaiBkVG2WKfQhw3b9zvIdY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125C31/38BF409A159011EA9C413652C4F9AE02/cQU3JEaiBkVG2WKfQhw3b9zvIdY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:7f:b4:a4:b5:3c:b9:a9:05:9f:71:e6:d9:53:32:50:82:a0: 94:b3:cb:1b:aa:9b:f0:a5:68:26:b4:72:08:2d:b8:f0:a0:30: 88:a0:90:a4:06:98:0a:7a:39:0a:2d:82:c6:ed:c8:36:fa:a0: 4f:3b:46:5d:3c:40:d0:63:39:17:f4:44:3a:5c:23:7b:1a:74: 3c:05:bd:fb:f2:cd:23:73:bf:5a:12:5f:3b:7a:1c:bd:dc:3a: d3:a4:48:91:9f:79:20:1c:78:51:0e:a8:97:59:7d:a8:14:09: 9d:c7:10:53:5b:9c:1f:5a:2f:53:bd:7f:bb:f3:99:a9:62:47: b1:82:f4:8e:3a:ba:1d:e7:6b:c0:f7:45:57:54:36:e3:06:fc: 47:c9:e9:4c:2a:0c:1b:fa:e1:01:7c:c8:5c:97:ac:6c:2d:d3: ba:70:35:bf:73:ad:b6:2c:38:84:6c:e6:48:88:05:fb:18:df: c4:63:75:03:f1:65:13:22:55:00:94:42:b6:c7:05:ba:0d:e3: b6:c7:8c:da:bc:ff:01:0f:e2:81:ec:52:52:41:8a:32:aa:4a: d6:e2:99:22:98:15:79:2c:ce:16:6d:87:2c:9d:6e:e0:4a:70: c8:46:ba:ca:02:ef:08:a6:23:f6:c5:d4:03:01:0c:25:69:22: c6:00:f3:0e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDFUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVDMzExMTAvBgNVBAUTKDcxMDUzNzI0NDZBMjA2NDU0NkQ5NjI5RjQyMUMzNzZG RENFRjIxRDYwHhcNMjUxMjA2MTc1ODE5WhcNMjUxMjEzMTc1ODE5WjAYMRYwFAYD VQQDEw02OTM0NmViYy1jYjBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAytoSEZlCk5Lc711BJLRfL8KxglTODoZ7CvRmAC2r/QeOIc8DyvLtJLXGExm8 d2GQLqoPO2NPMnw01B/2cJSZ8u4Tb5ZgkfAEtg42HcaA4xaFSKi37gUzqVB6Ht15 zrr4DQnVql5POdcjAcv3qcqjtMfGLR/6KFoWeSbfxKaZHW3cLXzrK0uukRx8cD7a qMYFv9lAJMMpvItbh+E8Fqi6aBtdEFM3+1BOFmVlydj1lMjADdNrKd0sYnNlOORC m9J7uVrXiv8ADbnPZQx/K5LdOqX9prRc0shZCCy8DvmoXfWXFavxg+KzzaO6pcvL qkPeJ56ilcIjYn8Zz8PmgXMOOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMiPJFjW 2LhV159b1G3Wq6E6HYQ0MB8GA1UdIwQYMBaAFHEFNyRGogZFRtlin0IcN2/c7yHW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUMzMS8zOEJGNDA5QTE1 OTAxMUVBOUM0MTM2NTJDNEY5QUUwMi9jUVUzSkVhaUJrVkcyV0tmUWh3M2I5enZJ ZFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NRVTNKRWFpQmtWRzJXS2ZRaHczYjl6dklkWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NUMzMS8zOEJGNDA5QTE1OTAxMUVBOUM0MTM2NTJDNEY5QUUwMi9jUVUzSkVhaUJr VkcyV0tmUWh3M2I5enZJZFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABf7SktTy5qQWfcebZUzJQgqCUs8sbqpvwpWgmtHIILbjwoDCIoJCk BpgKejkKLYLG7cg2+qBPO0ZdPEDQYzkX9EQ6XCN7GnQ8Bb378s0jc79aEl87ehy9 3DrTpEiRn3kgHHhRDqiXWX2oFAmdxxBTW5wfWi9TvX+785mpYkexgvSOOrod52vA 90VXVDbjBvxHyelMKgwb+uEBfMhcl6xsLdO6cDW/c622LDiEbOZIiAX7GN/EY3UD 8WUTIlUAlEK2xwW6DeO2x4zavP8BD+KB7FJSQYoyqkrW4pkimBV5LM4WbYcsnW7g SnDIRrrKAu8IpiP2xdQDAQwlaSLGAPMO -----END CERTIFICATE-----Generated at Sun Dec 7 03:24:47 2025 by rpki-client