This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9176E1D/FE8835BCF9F011EFB77A8C6EC4F9AE02/CqbkgyhCXhJMVhwqwYfIoZYkcRA.mft File: CqbkgyhCXhJMVhwqwYfIoZYkcRA.mft (raw, json) Hash identifier: OOjMCOfhIskbGqeRglPmo3a5GAhxw2whQMunMl5+mso= Subject key identifier: C9:9B:36:2E:A7:EB:06:09:81:90:7D:D5:15:1B:40:83:90:9A:F0:E3 Authority key identifier: 0A:A6:E4:83:28:42:5E:12:4C:56:1C:2A:C1:87:C8:A1:96:24:71:10 Certificate issuer: /CN=A9176E1D/serialNumber=0AA6E48328425E124C561C2AC187C8A196247110 Certificate serial: 99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CqbkgyhCXhJMVhwqwYfIoZYkcRA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176E1D/FE8835BCF9F011EFB77A8C6EC4F9AE02/CqbkgyhCXhJMVhwqwYfIoZYkcRA.mft Manifest number: 94 Signing time: Fri 05 Dec 2025 04:29:16 +0000 Manifest this update: Fri 05 Dec 2025 04:29:16 +0000 Manifest next update: Fri 12 Dec 2025 04:29:16 +0000 Files and hashes: 1: CqbkgyhCXhJMVhwqwYfIoZYkcRA.crl (hash: TAGjsnZ311Upl2P04/2IHVrgsdlgxurxobA17PuzlfE=) 2: 8A5CF8F0FB7411EF83C11685C4F9AE02.roa (hash: gNUxEstcyYM8bAYzOWKSq0siVBhwvrTxTLZTCsVvFik=) 3: 4C9617646D0611F0BBBF9039C4F9AE02.roa (hash: Vaj7yoUJUzeUA3126kxNxsmUyuPrhpFqRcjaAWEYWYI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176E1D/FE8835BCF9F011EFB77A8C6EC4F9AE02/CqbkgyhCXhJMVhwqwYfIoZYkcRA.crl rsync://rpki.apnic.net/member_repository/A9176E1D/FE8835BCF9F011EFB77A8C6EC4F9AE02/CqbkgyhCXhJMVhwqwYfIoZYkcRA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CqbkgyhCXhJMVhwqwYfIoZYkcRA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:29:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 153 (0x99) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176E1D, serialNumber=0AA6E48328425E124C561C2AC187C8A196247110 Validity Not Before: Dec 5 04:29:16 2025 GMT Not After : Dec 12 04:29:16 2025 GMT Subject: CN=69325f9c-4497 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:d9:78:9d:40:6c:7e:a1:01:10:26:1a:01:fd: 1e:67:78:18:41:78:a1:fb:7f:d4:c9:0b:93:99:c6: 1d:19:2f:bc:a3:18:9a:09:ba:13:04:97:65:e7:ec: 45:e8:9d:b8:e9:69:60:64:f2:19:84:c3:13:76:f1: bf:9a:96:84:d3:fa:2b:22:4e:1d:1c:20:e0:de:7f: 28:92:ff:a1:56:81:aa:0a:7c:47:51:a9:35:b1:3e: 9f:99:cf:e3:fb:93:a7:19:0e:7b:19:e9:92:83:9d: 60:6c:b2:e3:cc:8e:26:cf:f7:70:98:a8:fa:78:6c: ef:a3:82:3f:47:fd:dd:ad:e1:29:96:4e:02:1f:41: 05:81:bc:09:27:6f:a9:26:4a:48:8a:99:08:9a:31: c7:35:81:e3:d5:94:3c:77:16:c4:e4:47:ca:8a:11: b1:ef:18:80:02:9c:34:d7:b5:a6:e7:9a:72:e1:1e: a2:7f:dd:0f:e6:bb:e8:45:1c:53:09:f2:a4:67:be: 45:a0:90:b9:96:7c:fe:b4:79:63:03:0b:33:98:44: 19:ee:e1:d1:9d:6f:02:4a:bb:30:44:b5:a1:f5:92: 8a:39:49:9b:fe:3e:41:37:77:5e:24:6d:52:8f:50: 6e:05:58:db:89:cf:74:73:97:dc:93:ae:71:a7:a4: 62:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:9B:36:2E:A7:EB:06:09:81:90:7D:D5:15:1B:40:83:90:9A:F0:E3 X509v3 Authority Key Identifier: keyid:0A:A6:E4:83:28:42:5E:12:4C:56:1C:2A:C1:87:C8:A1:96:24:71:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176E1D/FE8835BCF9F011EFB77A8C6EC4F9AE02/CqbkgyhCXhJMVhwqwYfIoZYkcRA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CqbkgyhCXhJMVhwqwYfIoZYkcRA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176E1D/FE8835BCF9F011EFB77A8C6EC4F9AE02/CqbkgyhCXhJMVhwqwYfIoZYkcRA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:17:58:cb:73:b9:06:81:aa:0a:5f:d6:3b:66:ad:04:3e:da: b6:72:17:59:49:2c:45:82:06:3b:1f:64:ba:f3:85:3c:a3:09: 8a:40:a8:55:68:90:74:49:eb:75:d4:f0:d9:fc:cc:90:36:57: 1c:1e:f5:1b:b5:de:b9:6f:4c:82:b5:32:b2:48:6d:af:0c:ae: d5:68:d8:12:c2:66:42:3e:31:43:93:1b:1d:1d:a1:8e:73:56: 80:0e:05:a7:bf:44:43:2a:58:f6:ab:13:1e:cf:f3:9f:25:3e: 18:c6:1b:7e:70:ba:56:27:ae:d0:86:22:c2:d9:70:c4:fc:91: 09:27:57:ae:bf:bc:d6:a3:d6:d4:23:12:21:58:0f:bd:6f:c3: b6:cd:95:73:f5:7a:01:9d:43:d3:2d:58:fe:e1:48:6b:bf:bd: 40:f0:b6:91:98:a6:b4:96:09:03:2d:21:3c:79:08:84:7e:fa: e2:fd:46:49:3a:fa:19:60:6f:d3:35:b2:a8:60:a8:8e:a3:05: 9a:ef:27:fc:78:18:fd:d7:90:51:92:54:d6:ec:ee:e3:26:80: 1f:a9:6a:27:09:b0:8a:d0:c0:04:18:7c:4a:90:bf:d4:98:93: df:2d:b5:8d:95:0b:82:8a:df:e2:90:67:e8:7b:e9:ff:35:dc: 86:12:c9:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzZFMUQxMTAvBgNVBAUTKDBBQTZFNDgzMjg0MjVFMTI0QzU2MUMyQUMxODdDOEEx OTYyNDcxMTAwHhcNMjUxMjA1MDQyOTE2WhcNMjUxMjEyMDQyOTE2WjAYMRYwFAYD VQQDEw02OTMyNWY5Yy00NDk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw9l4nUBsfqEBECYaAf0eZ3gYQXih+3/UyQuTmcYdGS+8oxiaCboTBJdl5+xF 6J246WlgZPIZhMMTdvG/mpaE0/orIk4dHCDg3n8okv+hVoGqCnxHUak1sT6fmc/j +5OnGQ57GemSg51gbLLjzI4mz/dwmKj6eGzvo4I/R/3dreEplk4CH0EFgbwJJ2+p JkpIipkImjHHNYHj1ZQ8dxbE5EfKihGx7xiAApw017Wm55py4R6if90P5rvoRRxT CfKkZ75FoJC5lnz+tHljAwszmEQZ7uHRnW8CSrswRLWh9ZKKOUmb/j5BN3deJG1S j1BuBVjbic90c5fck65xp6RijQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMmbNi6n 6wYJgZB91RUbQIOQmvDjMB8GA1UdIwQYMBaAFAqm5IMoQl4STFYcKsGHyKGWJHEQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NkUxRC9GRTg4MzVCQ0Y5 RjAxMUVGQjc3QThDNkVDNEY5QUUwMi9DcWJrZ3loQ1hoSk1WaHdxd1lmSW9aWWtj UkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NxYmtneWhDWGhKTVZod3F3WWZJb1pZa2NSQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NkUxRC9GRTg4MzVCQ0Y5RjAxMUVGQjc3QThDNkVDNEY5QUUwMi9DcWJrZ3loQ1ho Sk1WaHdxd1lmSW9aWWtjUkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZF1jLc7kGgaoKX9Y7Zq0EPtq2chdZSSxFggY7H2S684U8owmKQKhV aJB0Set11PDZ/MyQNlccHvUbtd65b0yCtTKySG2vDK7VaNgSwmZCPjFDkxsdHaGO c1aADgWnv0RDKlj2qxMez/OfJT4Yxht+cLpWJ67QhiLC2XDE/JEJJ1euv7zWo9bU IxIhWA+9b8O2zZVz9XoBnUPTLVj+4Uhrv71A8LaRmKa0lgkDLSE8eQiEfvri/UZJ OvoZYG/TNbKoYKiOowWa7yf8eBj915BRklTW7O7jJoAfqWonCbCK0MAEGHxKkL/U mJPfLbWNlQuCit/ikGfoe+n/NdyGEsmH -----END CERTIFICATE-----Generated at Sat Dec 6 18:10:53 2025 by rpki-client