This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912A13F/A672E3B6BF6E11EAB656BF2FC4F9AE02/qxYnt6hRQ5Lhxni3sHiFWkRVZuQ.mft File: qxYnt6hRQ5Lhxni3sHiFWkRVZuQ.mft (raw, json) Hash identifier: Cqvrb64cED5mBwEhU43jCc3//szup/i5xK2VfZqtEWo= Subject key identifier: F1:41:EA:0B:AA:AA:52:FE:97:AC:EC:01:BE:5E:CB:D9:53:93:02:25 Authority key identifier: AB:16:27:B7:A8:51:43:92:E1:C6:78:B7:B0:78:85:5A:44:55:66:E4 Certificate issuer: /CN=A912A13F/serialNumber=AB1627B7A8514392E1C678B7B078855A445566E4 Certificate serial: 08F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qxYnt6hRQ5Lhxni3sHiFWkRVZuQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A13F/A672E3B6BF6E11EAB656BF2FC4F9AE02/qxYnt6hRQ5Lhxni3sHiFWkRVZuQ.mft Manifest number: 08E9 Signing time: Sat 06 Dec 2025 19:32:09 +0000 Manifest this update: Sat 06 Dec 2025 19:32:09 +0000 Manifest next update: Sat 13 Dec 2025 19:32:09 +0000 Files and hashes: 1: qxYnt6hRQ5Lhxni3sHiFWkRVZuQ.crl (hash: 1zV4GPKDFgJvlM4sHPNAdulIcWuEZPUigIwLSyJ5OPc=) 2: 34E1DFE8BF7011EAB745BE31C4F9AE02.roa (hash: AenHLZ8tFLrfLlf8LlZoDLQVepIJzcT6WIJ3CgJXjkM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A13F/A672E3B6BF6E11EAB656BF2FC4F9AE02/qxYnt6hRQ5Lhxni3sHiFWkRVZuQ.crl rsync://rpki.apnic.net/member_repository/A912A13F/A672E3B6BF6E11EAB656BF2FC4F9AE02/qxYnt6hRQ5Lhxni3sHiFWkRVZuQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qxYnt6hRQ5Lhxni3sHiFWkRVZuQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 19:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2289 (0x8f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A13F, serialNumber=AB1627B7A8514392E1C678B7B078855A445566E4 Validity Not Before: Dec 6 19:32:09 2025 GMT Not After : Dec 13 19:32:09 2025 GMT Subject: CN=693484b9-8f60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:49:dc:9c:90:46:95:ab:07:6b:fe:c7:3b:7c: 7d:9c:24:46:1c:d6:13:9d:b7:1e:f3:1c:a5:d0:59: c9:e0:ec:62:fc:ae:00:81:ca:61:cd:5f:fb:84:16: 4a:53:2c:64:2b:6a:6a:fe:7c:d2:6b:39:2d:07:81: db:55:20:13:ec:4f:53:85:0c:98:55:29:19:fc:73: a5:42:b4:3d:26:b0:67:4a:de:c0:f5:75:ab:d8:4d: ff:ee:c7:a7:38:b3:79:f3:08:30:a3:e2:f4:12:9a: b6:f2:ea:e9:b4:f4:55:44:fc:6f:c7:fc:55:2f:39: c4:da:cb:60:3a:73:43:07:56:f9:bd:3d:f6:bb:0d: 4e:6a:ff:b8:46:d5:3b:45:43:9a:a3:1c:a7:e4:1b: 79:d0:09:19:ec:ec:c0:7d:6b:dd:aa:f2:c2:c7:15: 1a:a6:5a:73:46:1b:79:70:3c:71:35:58:b3:b4:ac: 50:2f:d3:68:1d:ef:ea:a6:63:b9:c4:18:2a:5b:74: 58:e3:f9:93:a0:ad:5d:a1:70:40:3d:53:3a:76:9f: d5:76:db:95:28:9f:b7:15:5f:e8:40:97:c6:50:b3: 67:89:cb:e9:80:dc:4b:4f:25:67:63:e9:38:dd:da: 52:b8:1e:87:b5:b4:dc:b6:35:de:0d:f9:3c:4e:6a: 0d:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:41:EA:0B:AA:AA:52:FE:97:AC:EC:01:BE:5E:CB:D9:53:93:02:25 X509v3 Authority Key Identifier: keyid:AB:16:27:B7:A8:51:43:92:E1:C6:78:B7:B0:78:85:5A:44:55:66:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A13F/A672E3B6BF6E11EAB656BF2FC4F9AE02/qxYnt6hRQ5Lhxni3sHiFWkRVZuQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qxYnt6hRQ5Lhxni3sHiFWkRVZuQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A13F/A672E3B6BF6E11EAB656BF2FC4F9AE02/qxYnt6hRQ5Lhxni3sHiFWkRVZuQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:ad:95:df:23:90:76:8c:7c:97:1d:6f:15:6f:4a:99:63:4b: 28:69:a6:f7:aa:73:a5:3d:ed:7a:e2:83:37:d1:53:f4:b3:75: dc:c2:8f:5d:ba:4b:e2:3f:34:f3:41:9d:c3:b8:26:e3:a3:66: 6d:3e:14:b0:49:11:0e:8c:44:58:60:53:ec:ea:f1:ac:cf:9e: c0:1c:97:18:8f:cc:39:3c:8a:b3:37:8c:87:69:ca:d7:f1:b6: 25:3e:82:37:87:2a:0b:a9:0c:0f:36:b4:87:d8:aa:ab:6c:9e: 8e:7b:51:17:d7:3e:3e:a1:85:7f:ab:a4:85:d0:69:0e:09:a3: 2b:52:35:a3:e8:cb:2c:78:d7:49:35:67:cb:5e:12:0f:bf:9a: 7f:e9:0c:a7:36:2a:ca:0e:b0:09:a3:cb:62:2c:17:19:fc:d6: 25:cc:a8:24:2d:40:2e:9f:f7:de:e0:ae:1a:e9:11:ce:82:c1: b1:62:ce:22:0d:1e:fa:86:79:24:c8:cd:c0:67:72:37:1d:30: 62:a2:9e:2e:a5:d1:3b:7a:77:fd:f7:c7:ef:0d:7c:3e:ee:c8: 92:d7:9a:53:02:34:a5:76:f0:d8:5f:8a:b1:4d:69:cf:64:a2: 60:2d:f2:f4:ee:4b:0c:d5:29:c2:7e:18:63:d9:bd:7c:dd:e0: 81:8c:0c:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCPEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkExM0YxMTAvBgNVBAUTKEFCMTYyN0I3QTg1MTQzOTJFMUM2NzhCN0IwNzg4NTVB NDQ1NTY2RTQwHhcNMjUxMjA2MTkzMjA5WhcNMjUxMjEzMTkzMjA5WjAYMRYwFAYD VQQDEw02OTM0ODRiOS04ZjYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsEncnJBGlasHa/7HO3x9nCRGHNYTnbce8xyl0FnJ4Oxi/K4AgcphzV/7hBZK UyxkK2pq/nzSazktB4HbVSAT7E9ThQyYVSkZ/HOlQrQ9JrBnSt7A9XWr2E3/7sen OLN58wgwo+L0Epq28urptPRVRPxvx/xVLznE2stgOnNDB1b5vT32uw1Oav+4RtU7 RUOaoxyn5Bt50AkZ7OzAfWvdqvLCxxUaplpzRht5cDxxNViztKxQL9NoHe/qpmO5 xBgqW3RY4/mToK1doXBAPVM6dp/VdtuVKJ+3FV/oQJfGULNnicvpgNxLTyVnY+k4 3dpSuB6HtbTctjXeDfk8TmoNkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPFB6guq qlL+l6zsAb5ey9lTkwIlMB8GA1UdIwQYMBaAFKsWJ7eoUUOS4cZ4t7B4hVpEVWbk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQTEzRi9BNjcyRTNCNkJG NkUxMUVBQjY1NkJGMkZDNEY5QUUwMi9xeFludDZoUlE1TGh4bmkzc0hpRldrUlZa dVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3F4WW50NmhSUTVMaHhuaTNzSGlGV2tSVlp1US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QTEzRi9BNjcyRTNCNkJGNkUxMUVBQjY1NkJGMkZDNEY5QUUwMi9xeFludDZoUlE1 TGh4bmkzc0hpRldrUlZadVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC+rZXfI5B2jHyXHW8Vb0qZY0soaab3qnOlPe164oM30VP0s3Xcwo9d ukviPzTzQZ3DuCbjo2ZtPhSwSREOjERYYFPs6vGsz57AHJcYj8w5PIqzN4yHacrX 8bYlPoI3hyoLqQwPNrSH2KqrbJ6Oe1EX1z4+oYV/q6SF0GkOCaMrUjWj6MsseNdJ NWfLXhIPv5p/6QynNirKDrAJo8tiLBcZ/NYlzKgkLUAun/fe4K4a6RHOgsGxYs4i DR76hnkkyM3AZ3I3HTBiop4updE7enf998fvDXw+7siS15pTAjSldvDYX4qxTWnP ZKJgLfL07ksM1SnCfhhj2b183eCBjAz0 -----END CERTIFICATE-----Generated at Sun Dec 7 00:55:59 2025 by rpki-client