This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A913DF3B/CDBA812EF03A11EB8D30E058C4F9AE02/qJaxcL8NiHI_NsesIIeFSqKEvXE.mft File: qJaxcL8NiHI_NsesIIeFSqKEvXE.mft (raw, json) Hash identifier: h+QKpkPwonWvXpNYMcU2v8+VOCAZrx02cBYLlFRAh6c= Subject key identifier: 70:71:46:04:00:40:0F:CF:7B:BF:28:B1:2F:62:A4:D6:86:F2:52:3B Authority key identifier: A8:96:B1:70:BF:0D:88:72:3F:36:C7:AC:20:87:85:4A:A2:84:BD:71 Certificate issuer: /CN=A913DF3B/serialNumber=A896B170BF0D88723F36C7AC2087854AA284BD71 Certificate serial: 05AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qJaxcL8NiHI_NsesIIeFSqKEvXE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913DF3B/CDBA812EF03A11EB8D30E058C4F9AE02/qJaxcL8NiHI_NsesIIeFSqKEvXE.mft Manifest number: 05A8 Signing time: Sat 06 Dec 2025 21:57:13 +0000 Manifest this update: Sat 06 Dec 2025 21:57:12 +0000 Manifest next update: Sat 13 Dec 2025 21:57:12 +0000 Files and hashes: 1: qJaxcL8NiHI_NsesIIeFSqKEvXE.crl (hash: E8zS61hrnWTpsYABxxkxWUUcGIP60ToIk1+/ei6EdBw=) 2: 8D7E9B7EF03D11EB804DF61FC4F9AE02.roa (hash: 0C374rc1/yzntVHlBO2RHsCgAiQUBU23dQBcBVfekCo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913DF3B/CDBA812EF03A11EB8D30E058C4F9AE02/qJaxcL8NiHI_NsesIIeFSqKEvXE.crl rsync://rpki.apnic.net/member_repository/A913DF3B/CDBA812EF03A11EB8D30E058C4F9AE02/qJaxcL8NiHI_NsesIIeFSqKEvXE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qJaxcL8NiHI_NsesIIeFSqKEvXE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 21:57:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1454 (0x5ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913DF3B, serialNumber=A896B170BF0D88723F36C7AC2087854AA284BD71 Validity Not Before: Dec 6 21:57:12 2025 GMT Not After : Dec 13 21:57:12 2025 GMT Subject: CN=6934a6b8-aedd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:b4:a1:d6:1c:6a:55:c7:f1:b8:f2:2f:df:77: c4:c8:3c:6e:5d:13:3d:5a:09:a4:f1:d5:ea:dc:4a: cc:97:de:b3:9f:75:7a:88:61:69:26:76:3a:c4:15: 58:56:7e:35:c9:1e:59:d0:bc:88:d9:b7:f2:df:28: 09:e5:82:4a:34:82:90:2b:b7:ac:a8:87:78:18:79: 1e:21:ee:e3:0f:1d:37:b8:50:99:87:7e:11:32:84: a4:41:c0:f8:e3:de:fd:91:0c:11:57:44:00:cc:64: 81:80:4d:cc:ca:21:b9:37:92:ab:ef:44:a3:9d:c0: 4f:7f:dc:c1:fa:13:05:3c:09:1e:91:af:b0:5e:e6: b7:c4:12:df:57:93:ad:b3:a1:2b:69:62:80:85:f1: 98:9d:eb:a2:92:1f:a9:b4:50:e1:b4:01:a0:d1:33: 01:ca:d7:cb:19:f3:d2:94:b8:4a:0f:76:6f:3d:bf: c5:9d:16:35:f8:77:3c:87:67:ef:b8:8e:fb:43:64: dc:20:8b:a9:3a:69:39:75:0f:65:64:d4:4b:0f:f8: b9:19:e3:8a:fe:6b:82:fd:1e:39:3d:66:24:7e:62: c9:2b:e8:1e:26:5a:83:06:7e:48:c0:e1:bc:cd:ee: c4:b5:6f:f1:27:8e:6e:08:5d:22:22:69:2b:79:97: 6d:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:71:46:04:00:40:0F:CF:7B:BF:28:B1:2F:62:A4:D6:86:F2:52:3B X509v3 Authority Key Identifier: keyid:A8:96:B1:70:BF:0D:88:72:3F:36:C7:AC:20:87:85:4A:A2:84:BD:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913DF3B/CDBA812EF03A11EB8D30E058C4F9AE02/qJaxcL8NiHI_NsesIIeFSqKEvXE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qJaxcL8NiHI_NsesIIeFSqKEvXE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913DF3B/CDBA812EF03A11EB8D30E058C4F9AE02/qJaxcL8NiHI_NsesIIeFSqKEvXE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:fd:0a:ff:eb:f2:c2:9c:7e:0c:74:56:46:4f:48:66:6b:cb: f7:18:73:f8:4e:6f:a1:7e:d9:ca:38:db:fd:0e:d5:8e:a4:b8: 28:41:d8:4c:c9:32:14:b7:a6:97:7c:df:b4:63:1f:d8:c1:5a: 7a:c2:2a:45:e8:26:33:d1:57:44:11:ae:df:fb:44:b2:44:52: 1b:f3:21:1d:0e:2d:f1:95:d6:d6:83:0a:70:5a:38:b1:bb:c0: 5f:4b:68:d5:7b:b1:d5:82:8f:8a:87:aa:0e:31:f6:35:8b:eb: d1:21:5f:67:11:ed:e0:59:cf:48:7f:52:5c:c9:d5:0b:1f:02: 9b:05:63:e7:86:72:06:e8:c9:23:23:f5:d7:20:96:bb:c9:41: 99:26:3f:7d:3d:63:cf:ca:3e:ee:26:7b:33:10:d6:4c:b0:1c: 5e:87:af:29:0c:1a:2b:9d:c2:1c:57:78:b9:a7:ca:79:97:38: b7:b2:74:cb:e6:ca:58:18:45:a3:35:4c:99:bb:23:bf:9d:99: 4f:88:d3:25:f5:1d:c1:fa:bf:2c:8f:43:e8:a4:2b:40:25:da: 27:7b:6c:92:4e:b5:ff:10:26:76:36:0f:65:36:bf:58:a3:85: 0f:dc:e2:d6:7e:f2:c8:a9:af:e3:15:e9:bc:d4:54:69:39:2f: 37:8c:8a:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBa4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0RGM0IxMTAvBgNVBAUTKEE4OTZCMTcwQkYwRDg4NzIzRjM2QzdBQzIwODc4NTRB QTI4NEJENzEwHhcNMjUxMjA2MjE1NzEyWhcNMjUxMjEzMjE1NzEyWjAYMRYwFAYD VQQDEw02OTM0YTZiOC1hZWRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn7Sh1hxqVcfxuPIv33fEyDxuXRM9Wgmk8dXq3ErMl96zn3V6iGFpJnY6xBVY Vn41yR5Z0LyI2bfy3ygJ5YJKNIKQK7esqId4GHkeIe7jDx03uFCZh34RMoSkQcD4 4979kQwRV0QAzGSBgE3MyiG5N5Kr70SjncBPf9zB+hMFPAkeka+wXua3xBLfV5Ot s6EraWKAhfGYneuikh+ptFDhtAGg0TMBytfLGfPSlLhKD3ZvPb/FnRY1+Hc8h2fv uI77Q2TcIIupOmk5dQ9lZNRLD/i5GeOK/muC/R45PWYkfmLJK+geJlqDBn5IwOG8 ze7EtW/xJ45uCF0iImkreZdtFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHBxRgQA QA/Pe78osS9ipNaG8lI7MB8GA1UdIwQYMBaAFKiWsXC/DYhyPzbHrCCHhUqihL1x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzREYzQi9DREJBODEyRUYw M0ExMUVCOEQzMEUwNThDNEY5QUUwMi9xSmF4Y0w4TmlISV9Oc2VzSUllRlNxS0V2 WEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FKYXhjTDhOaUhJX05zZXNJSWVGU3FLRXZYRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz REYzQi9DREJBODEyRUYwM0ExMUVCOEQzMEUwNThDNEY5QUUwMi9xSmF4Y0w4TmlI SV9Oc2VzSUllRlNxS0V2WEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8/Qr/6/LCnH4MdFZGT0hma8v3GHP4Tm+hftnKONv9DtWOpLgoQdhM yTIUt6aXfN+0Yx/YwVp6wipF6CYz0VdEEa7f+0SyRFIb8yEdDi3xldbWgwpwWjix u8BfS2jVe7HVgo+Kh6oOMfY1i+vRIV9nEe3gWc9If1JcydULHwKbBWPnhnIG6Mkj I/XXIJa7yUGZJj99PWPPyj7uJnszENZMsBxeh68pDBorncIcV3i5p8p5lzi3snTL 5spYGEWjNUyZuyO/nZlPiNMl9R3B+r8sj0PopCtAJdone2ySTrX/ECZ2Ng9lNr9Y o4UP3OLWfvLIqa/jFem81FRpOS83jIpG -----END CERTIFICATE-----Generated at Sun Dec 7 04:55:57 2025 by rpki-client