This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.mft File: QG4t-6oOoAfdxmmT8sezCNoKGlc.mft (raw, json) Hash identifier: 2dcKdBsq8bWLETs06yZhgYeucJNVEJKUw+/VmjCQN0Y= Subject key identifier: B6:F6:BF:74:3B:56:87:36:12:E8:44:AE:9F:89:F1:2A:B7:8E:EC:10 Authority key identifier: 40:6E:2D:FB:AA:0E:A0:07:DD:C6:69:93:F2:C7:B3:08:DA:0A:1A:57 Certificate issuer: /CN=A91315C1/serialNumber=406E2DFBAA0EA007DDC66993F2C7B308DA0A1A57 Certificate serial: 0C33 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QG4t-6oOoAfdxmmT8sezCNoKGlc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.mft Manifest number: 0C2B Signing time: Sat 06 Dec 2025 18:02:38 +0000 Manifest this update: Sat 06 Dec 2025 18:02:37 +0000 Manifest next update: Sat 13 Dec 2025 18:02:37 +0000 Files and hashes: 1: QG4t-6oOoAfdxmmT8sezCNoKGlc.crl (hash: VFAs8WznEjRdGhlq8dXCtNKULxVymaDCOZAjhAtaJ9g=) 2: 9D6DB59E1C5211EA8C6AAE37C4F9AE02.roa (hash: fjLr8uQxYz0b2IkiqsLdHlpaSbA1UhMnKJdo096hNVQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.crl rsync://rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QG4t-6oOoAfdxmmT8sezCNoKGlc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 18:02:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3123 (0xc33) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91315C1, serialNumber=406E2DFBAA0EA007DDC66993F2C7B308DA0A1A57 Validity Not Before: Dec 6 18:02:37 2025 GMT Not After : Dec 13 18:02:37 2025 GMT Subject: CN=69346fbe-ae83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:7f:27:b3:8a:f5:58:1b:25:4b:f6:dc:7c:b2: 78:41:69:fc:1d:d7:a9:28:6c:e1:02:c8:da:c3:0c: fe:f3:2a:61:5a:45:ac:3d:ff:88:a6:1e:84:31:65: cf:f9:8a:3b:89:53:09:36:6b:03:33:80:52:ec:89: c5:cf:7b:47:8b:ea:97:b9:1b:1a:5e:99:f8:b1:c4: c4:ab:73:a0:f6:d6:3b:56:24:f1:1c:0b:a6:8d:aa: 19:a6:a4:d4:72:79:d1:e9:9a:38:48:3b:2a:99:cb: f7:6c:06:f1:3b:47:0c:c8:7a:b5:57:e8:62:c5:2a: c2:44:88:16:b1:33:92:2a:7f:44:e3:31:b2:08:ea: c7:43:7c:7e:04:b4:63:fc:2a:08:5d:b4:85:e8:b5: e1:a9:22:d0:81:b6:c1:e0:93:9c:6d:57:34:f4:80: 00:34:d4:fd:a5:f1:36:aa:04:22:7f:15:6e:ef:06: 75:a5:a0:5b:c2:fa:e6:80:20:15:5a:15:a5:93:b7: 8b:91:fe:ed:08:11:98:dc:4b:6f:b5:d8:ec:e1:3b: 1d:96:91:41:28:7c:3e:3d:0e:6a:fa:96:20:d0:b1: e0:6d:ce:c4:c1:04:4c:aa:43:31:12:f3:95:39:d1: e3:10:9e:3a:1b:ac:6b:91:4c:ff:f0:8e:ff:a2:c0: 2a:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:F6:BF:74:3B:56:87:36:12:E8:44:AE:9F:89:F1:2A:B7:8E:EC:10 X509v3 Authority Key Identifier: keyid:40:6E:2D:FB:AA:0E:A0:07:DD:C6:69:93:F2:C7:B3:08:DA:0A:1A:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QG4t-6oOoAfdxmmT8sezCNoKGlc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:ac:81:ae:b9:c3:85:89:5c:c8:e8:aa:19:cb:d8:22:0c:3c: e2:15:ec:10:84:18:27:c2:e3:e2:f8:72:13:b7:c2:4b:39:7a: 0a:d9:d2:4a:45:7e:1f:29:25:52:e8:47:a0:64:ce:16:3e:09: 58:d5:fb:db:c1:d1:77:91:94:0c:34:31:3c:99:e2:b9:bc:d0: 3c:6c:67:fb:fe:69:57:70:e8:2e:35:0e:cc:3f:d8:97:a7:dc: 7d:2c:97:d8:50:a7:27:bb:47:ba:c2:2d:f9:37:30:cf:96:e0: 36:e1:c5:6c:89:dd:ed:28:70:ed:20:4b:b5:df:fe:b6:c9:54: 1a:11:6f:53:64:ba:bd:59:a4:56:cb:5d:14:f1:0e:c4:28:14: a4:b7:9e:18:3e:26:4c:6a:b5:4a:8a:31:24:5d:8f:78:64:7f: 34:16:08:2a:82:74:38:e0:2e:d1:73:b3:22:c3:bd:b6:92:23: 50:a4:d6:bc:cd:db:bc:a2:bc:d7:54:51:9f:df:11:48:a8:a1: 14:9f:0e:53:96:cd:75:0f:e4:b5:0f:6f:ff:3d:54:99:0b:ed: 5b:5e:a9:f7:d7:04:72:10:95:a0:7e:39:17:d0:49:26:2e:7a: 81:39:ef:9a:67:d6:eb:71:81:04:54:3a:8c:3b:3a:6a:2d:64: 2f:d0:29:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDDMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE1QzExMTAvBgNVBAUTKDQwNkUyREZCQUEwRUEwMDdEREM2Njk5M0YyQzdCMzA4 REEwQTFBNTcwHhcNMjUxMjA2MTgwMjM3WhcNMjUxMjEzMTgwMjM3WjAYMRYwFAYD VQQDEw02OTM0NmZiZS1hZTgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArH8ns4r1WBslS/bcfLJ4QWn8HdepKGzhAsjawwz+8yphWkWsPf+Iph6EMWXP +Yo7iVMJNmsDM4BS7InFz3tHi+qXuRsaXpn4scTEq3Og9tY7ViTxHAumjaoZpqTU cnnR6Zo4SDsqmcv3bAbxO0cMyHq1V+hixSrCRIgWsTOSKn9E4zGyCOrHQ3x+BLRj /CoIXbSF6LXhqSLQgbbB4JOcbVc09IAANNT9pfE2qgQifxVu7wZ1paBbwvrmgCAV WhWlk7eLkf7tCBGY3Etvtdjs4TsdlpFBKHw+PQ5q+pYg0LHgbc7EwQRMqkMxEvOV OdHjEJ46G6xrkUz/8I7/osAqmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLb2v3Q7 Voc2EuhErp+J8Sq3juwQMB8GA1UdIwQYMBaAFEBuLfuqDqAH3cZpk/LHswjaChpX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTVDMS8zMDA5QThBQTFD NTIxMUVBODREMTk5MzdDNEY5QUUwMi9RRzR0LTZvT29BZmR4bW1UOHNlekNOb0tH bGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FHNHQtNm9Pb0FmZHhtbVQ4c2V6Q05vS0dsYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MTVDMS8zMDA5QThBQTFDNTIxMUVBODREMTk5MzdDNEY5QUUwMi9RRzR0LTZvT29B ZmR4bW1UOHNlekNOb0tHbGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBArIGuucOFiVzI6KoZy9giDDziFewQhBgnwuPi+HITt8JLOXoK2dJK RX4fKSVS6EegZM4WPglY1fvbwdF3kZQMNDE8meK5vNA8bGf7/mlXcOguNQ7MP9iX p9x9LJfYUKcnu0e6wi35NzDPluA24cVsid3tKHDtIEu13/62yVQaEW9TZLq9WaRW y10U8Q7EKBSkt54YPiZMarVKijEkXY94ZH80FggqgnQ44C7Rc7Miw722kiNQpNa8 zdu8orzXVFGf3xFIqKEUnw5Tls11D+S1D2//PVSZC+1bXqn31wRyEJWgfjkX0Ekm LnqBOe+aZ9brcYEEVDqMOzpqLWQv0ClA -----END CERTIFICATE-----Generated at Sat Dec 6 23:45:34 2025 by rpki-client