This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.mft File: QrsPPBhH5li75BQYSUzonOjjRIg.mft (raw, json) Hash identifier: Y5zcnGNdzYoUqudRcWz+o9kLR2Uagpq5Jmb5M7VKBOQ= Subject key identifier: EC:5A:FF:A7:3F:20:E9:76:19:C4:18:7A:0F:BF:B6:6B:81:BA:64:3F Authority key identifier: 42:BB:0F:3C:18:47:E6:58:BB:E4:14:18:49:4C:E8:9C:E8:E3:44:88 Certificate issuer: /CN=A9172506/serialNumber=42BB0F3C1847E658BBE41418494CE89CE8E34488 Certificate serial: EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QrsPPBhH5li75BQYSUzonOjjRIg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.mft Manifest number: E9 Signing time: Fri 05 Dec 2025 03:26:27 +0000 Manifest this update: Fri 05 Dec 2025 03:26:27 +0000 Manifest next update: Fri 12 Dec 2025 03:26:27 +0000 Files and hashes: 1: QrsPPBhH5li75BQYSUzonOjjRIg.crl (hash: b0oJj9z7wiN5U/S0a1f3/D22+mLVzhIqtat5X6OGEdw=) 2: DD75C9BC6EDF11EF90C49A5FC4F9AE02.roa (hash: ribPo1yuX+hIqHtl1PCEzGGO/yQznd+mDINBcQhxFF0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.crl rsync://rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QrsPPBhH5li75BQYSUzonOjjRIg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 03:26:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 235 (0xeb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172506, serialNumber=42BB0F3C1847E658BBE41418494CE89CE8E34488 Validity Not Before: Dec 5 03:26:27 2025 GMT Not After : Dec 12 03:26:27 2025 GMT Subject: CN=693250e3-d8fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:3d:61:ef:79:43:91:2c:7d:b2:71:5f:dc:10: 53:1d:bd:c8:04:5e:11:58:4e:cb:6b:f9:00:0f:6a: 4f:57:ac:98:3e:dd:12:c6:4f:b7:1d:87:a6:31:19: bb:4a:19:13:97:b3:d8:31:11:24:13:2c:4e:bb:e9: 7d:00:bb:d7:91:6d:c5:f4:e4:f4:52:a4:03:a1:ea: 65:9d:e5:e1:5a:b5:df:0c:71:b3:09:0b:0b:70:f3: 22:4f:d8:97:06:84:14:b0:f5:e1:b9:15:85:b6:13: dd:3a:a9:5e:64:dd:04:d9:81:a7:81:41:2f:f5:84: c3:30:88:16:cc:a8:76:0c:59:8e:75:a7:21:9b:2f: c0:ce:09:64:af:2d:18:b3:a1:49:30:1c:b1:8a:bf: 00:b7:a7:32:54:4e:d2:4a:6f:1b:a4:a7:4a:a8:25: bf:ea:a9:8e:44:6e:d7:5a:c9:32:89:40:94:fe:86: 4f:71:d6:8b:23:a2:36:3d:c2:31:12:9b:17:3d:c1: bc:2d:c4:18:38:8b:76:ec:77:16:ef:09:62:10:8b: 3a:d6:f3:6f:16:dc:b0:9e:5a:84:92:6e:73:6c:94: 85:c3:5d:fe:b5:8b:50:69:23:e7:00:48:1c:31:61: 19:66:1e:2f:6f:44:2c:72:3a:dc:ef:2f:b3:be:08: d3:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:5A:FF:A7:3F:20:E9:76:19:C4:18:7A:0F:BF:B6:6B:81:BA:64:3F X509v3 Authority Key Identifier: keyid:42:BB:0F:3C:18:47:E6:58:BB:E4:14:18:49:4C:E8:9C:E8:E3:44:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QrsPPBhH5li75BQYSUzonOjjRIg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:75:9c:8f:ab:22:2f:24:bb:a3:06:1a:33:21:f1:8e:2e:96: f6:d2:48:34:fe:b1:3e:27:f6:b6:89:5c:98:ee:85:ea:97:a5: 23:9c:24:89:4d:9c:92:fb:65:66:60:2a:78:28:d0:a3:13:77: 10:82:18:b3:b0:6e:06:e9:77:07:73:57:e7:f3:45:81:71:28: be:40:38:81:42:f4:09:8f:dd:ac:f0:26:6e:b2:0f:bb:6b:09: e3:f2:a2:b2:a7:47:b7:aa:40:d8:63:87:35:a7:f0:bf:28:61: fc:48:5e:84:db:08:3c:30:db:1a:f5:66:7c:13:30:2e:d5:70: 65:24:71:1e:44:0f:9d:ee:71:bb:bf:62:33:85:af:db:fd:a9: 4e:a8:47:49:9f:35:f7:45:ca:9c:bc:5e:4d:fa:a1:a1:b3:20: d5:91:20:3d:16:05:00:e6:e8:d9:11:f6:aa:ad:ec:bc:61:cf: 6b:a8:b8:4d:c9:6e:df:69:f3:f5:f9:39:d4:48:57:aa:d8:13: a3:07:12:ae:e1:d9:c0:35:a2:8d:81:57:50:04:4b:6b:67:ec: d5:c8:3e:14:d3:bd:2d:e5:4c:3c:e5:31:50:a3:63:98:70:d5: 08:02:90:fd:b7:eb:ab:8c:fe:c0:bf:c6:6c:3a:bb:11:39:69: df:f3:05:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzI1MDYxMTAvBgNVBAUTKDQyQkIwRjNDMTg0N0U2NThCQkU0MTQxODQ5NENFODlD RThFMzQ0ODgwHhcNMjUxMjA1MDMyNjI3WhcNMjUxMjEyMDMyNjI3WjAYMRYwFAYD VQQDEw02OTMyNTBlMy1kOGZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoD1h73lDkSx9snFf3BBTHb3IBF4RWE7La/kAD2pPV6yYPt0Sxk+3HYemMRm7 ShkTl7PYMREkEyxOu+l9ALvXkW3F9OT0UqQDoeplneXhWrXfDHGzCQsLcPMiT9iX BoQUsPXhuRWFthPdOqleZN0E2YGngUEv9YTDMIgWzKh2DFmOdachmy/Azglkry0Y s6FJMByxir8At6cyVE7SSm8bpKdKqCW/6qmORG7XWskyiUCU/oZPcdaLI6I2PcIx EpsXPcG8LcQYOIt27HcW7wliEIs61vNvFtywnlqEkm5zbJSFw13+tYtQaSPnAEgc MWEZZh4vb0Qscjrc7y+zvgjTKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOxa/6c/ IOl2GcQYeg+/tmuBumQ/MB8GA1UdIwQYMBaAFEK7DzwYR+ZYu+QUGElM6Jzo40SI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MjUwNi9CMDQ5MDhDRTZF REUxMUVGQUFDMkNCNURDNEY5QUUwMi9RcnNQUEJoSDVsaTc1QlFZU1V6b25PampS SWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Fyc1BQQmhINWxpNzVCUVlTVXpvbk9qalJJZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MjUwNi9CMDQ5MDhDRTZFREUxMUVGQUFDMkNCNURDNEY5QUUwMi9RcnNQUEJoSDVs aTc1QlFZU1V6b25PampSSWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5dZyPqyIvJLujBhozIfGOLpb20kg0/rE+J/a2iVyY7oXql6UjnCSJ TZyS+2VmYCp4KNCjE3cQghizsG4G6XcHc1fn80WBcSi+QDiBQvQJj92s8CZusg+7 awnj8qKyp0e3qkDYY4c1p/C/KGH8SF6E2wg8MNsa9WZ8EzAu1XBlJHEeRA+d7nG7 v2Izha/b/alOqEdJnzX3RcqcvF5N+qGhsyDVkSA9FgUA5ujZEfaqrey8Yc9rqLhN yW7fafP1+TnUSFeq2BOjBxKu4dnANaKNgVdQBEtrZ+zVyD4U070t5Uw85TFQo2OY cNUIApD9t+urjP7Av8ZsOrsROWnf8wUn -----END CERTIFICATE-----Generated at Sat Dec 6 19:13:17 2025 by rpki-client