This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917FACB/1C946AF2B46511EF9BFBAA67C4F9AE02/QC0dC9kfQ4Aseg1wc2GIvroKCBI.mft File: QC0dC9kfQ4Aseg1wc2GIvroKCBI.mft (raw, json) Hash identifier: N2EwnER5ts32rHPQQEwzsZ/hltQPh6PboDv7J60DIuE= Subject key identifier: 19:9F:52:1E:8E:C7:DC:38:5C:A2:AC:B6:6D:74:20:92:31:65:B3:C4 Authority key identifier: 40:2D:1D:0B:D9:1F:43:80:2C:7A:0D:70:73:61:88:BE:BA:0A:08:12 Certificate issuer: /CN=A917FACB/serialNumber=402D1D0BD91F43802C7A0D70736188BEBA0A0812 Certificate serial: C0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QC0dC9kfQ4Aseg1wc2GIvroKCBI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917FACB/1C946AF2B46511EF9BFBAA67C4F9AE02/QC0dC9kfQ4Aseg1wc2GIvroKCBI.mft Manifest number: BD Signing time: Fri 05 Dec 2025 04:00:40 +0000 Manifest this update: Fri 05 Dec 2025 04:00:39 +0000 Manifest next update: Fri 12 Dec 2025 04:00:39 +0000 Files and hashes: 1: QC0dC9kfQ4Aseg1wc2GIvroKCBI.crl (hash: ApIUvhbcA5suU7Wnp7omU9spmvRVBpyyafiT+//Ok24=) 2: 817FDF1EB46511EF86BEAC6BC4F9AE02.roa (hash: wJ3laQ7nVagMEJPomzazSfS6B/Yq1uHmjJhmSe/2HtA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917FACB/1C946AF2B46511EF9BFBAA67C4F9AE02/QC0dC9kfQ4Aseg1wc2GIvroKCBI.crl rsync://rpki.apnic.net/member_repository/A917FACB/1C946AF2B46511EF9BFBAA67C4F9AE02/QC0dC9kfQ4Aseg1wc2GIvroKCBI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QC0dC9kfQ4Aseg1wc2GIvroKCBI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 192 (0xc0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917FACB, serialNumber=402D1D0BD91F43802C7A0D70736188BEBA0A0812 Validity Not Before: Dec 5 04:00:39 2025 GMT Not After : Dec 12 04:00:39 2025 GMT Subject: CN=693258e8-851f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:1e:c6:0d:93:dc:4a:23:28:60:5b:a2:88:9f: 9c:26:68:43:78:25:3d:d4:cc:c0:b9:6c:36:02:73: 34:4b:1c:02:88:10:45:a6:86:da:62:32:52:f0:d1: 6b:b3:80:3b:17:78:7b:2d:00:a3:19:ff:f8:22:d3: 62:b2:c5:9c:a8:e2:6d:7a:f4:99:c6:a0:e8:49:f0: 68:b2:7c:b5:0c:f8:86:77:c6:dd:64:0b:1a:fc:7e: f0:46:41:3b:d9:13:93:58:4e:83:60:83:7d:6b:03: 93:a4:7d:f7:16:89:15:75:69:a2:7e:f2:f1:1f:bf: ba:6e:f4:53:35:fe:94:28:43:ee:df:20:b9:dd:19: 2d:dc:40:ec:85:a7:82:64:ab:fa:c3:79:1a:94:6f: 68:9f:17:4c:5a:50:62:df:d2:8d:c9:f1:1b:28:98: 4b:b6:45:ff:44:1f:f2:ba:55:9b:00:7d:dd:11:a7: 71:25:bf:f3:00:0a:21:64:a4:9d:17:29:9f:2c:a7: 02:19:36:fb:8d:d0:e3:e7:4c:c7:37:c1:96:cf:fa: f5:52:db:95:26:06:92:39:31:f1:0f:19:ec:3c:9b: 8d:e1:bf:a3:42:e6:40:05:79:59:1b:9d:e8:7f:54: 30:e3:71:d6:0e:81:57:f5:06:9c:c1:05:27:1b:a1: dc:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:9F:52:1E:8E:C7:DC:38:5C:A2:AC:B6:6D:74:20:92:31:65:B3:C4 X509v3 Authority Key Identifier: keyid:40:2D:1D:0B:D9:1F:43:80:2C:7A:0D:70:73:61:88:BE:BA:0A:08:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917FACB/1C946AF2B46511EF9BFBAA67C4F9AE02/QC0dC9kfQ4Aseg1wc2GIvroKCBI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QC0dC9kfQ4Aseg1wc2GIvroKCBI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917FACB/1C946AF2B46511EF9BFBAA67C4F9AE02/QC0dC9kfQ4Aseg1wc2GIvroKCBI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:17:54:20:6d:21:ee:ed:80:98:d6:df:20:20:a3:f0:dd:66: 5f:3d:41:36:c9:49:54:ca:27:0a:2a:91:2a:60:e1:78:6d:39: 8d:6d:9a:b7:ea:40:00:9b:05:24:7c:44:b9:e5:a3:48:24:5a: 3a:e9:42:a5:b3:85:43:17:3f:9c:75:38:2e:58:ef:86:4c:42: 79:76:66:99:ee:07:17:f5:9b:36:88:46:40:fc:b1:84:aa:1b: 72:1e:f5:b0:7a:c0:24:44:f2:6e:72:c4:c3:e0:52:89:e7:43: 9b:f6:f5:c8:10:2b:1d:b7:42:80:67:f7:9a:50:4e:11:e4:aa: b9:f4:da:f7:f1:50:56:e2:12:cd:18:79:2a:92:86:2f:0a:98: cf:a7:f8:cc:cd:30:08:9c:56:6c:98:92:94:d0:c6:b2:37:52: b1:d3:32:1e:fc:c9:14:0a:fd:a6:31:62:bc:0d:3e:60:30:4a: 2c:db:43:5a:bb:85:3a:1c:e0:36:ab:ee:4b:db:cf:ca:97:99: 8e:1b:04:90:e3:98:44:b9:f8:89:82:51:59:d7:d2:3a:14:15: b0:f4:dc:60:87:a5:96:a8:44:6e:29:9b:30:b5:d3:7e:22:35: 92:7f:34:9d:11:84:ba:90:3e:7d:06:3a:e3:0d:62:da:e1:ff: 44:90:d3:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0ZBQ0IxMTAvBgNVBAUTKDQwMkQxRDBCRDkxRjQzODAyQzdBMEQ3MDczNjE4OEJF QkEwQTA4MTIwHhcNMjUxMjA1MDQwMDM5WhcNMjUxMjEyMDQwMDM5WjAYMRYwFAYD VQQDEw02OTMyNThlOC04NTFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlR7GDZPcSiMoYFuiiJ+cJmhDeCU91MzAuWw2AnM0SxwCiBBFpobaYjJS8NFr s4A7F3h7LQCjGf/4ItNissWcqOJtevSZxqDoSfBosny1DPiGd8bdZAsa/H7wRkE7 2ROTWE6DYIN9awOTpH33FokVdWmifvLxH7+6bvRTNf6UKEPu3yC53Rkt3EDshaeC ZKv6w3kalG9onxdMWlBi39KNyfEbKJhLtkX/RB/yulWbAH3dEadxJb/zAAohZKSd FymfLKcCGTb7jdDj50zHN8GWz/r1UtuVJgaSOTHxDxnsPJuN4b+jQuZABXlZG53o f1Qw43HWDoFX9QacwQUnG6Hc9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBmfUh6O x9w4XKKstm10IJIxZbPEMB8GA1UdIwQYMBaAFEAtHQvZH0OALHoNcHNhiL66CggS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RkFDQi8xQzk0NkFGMkI0 NjUxMUVGOUJGQkFBNjdDNEY5QUUwMi9RQzBkQzlrZlE0QXNlZzF3YzJHSXZyb0tD QkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FDMGRDOWtmUTRBc2VnMXdjMkdJdnJvS0NCSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RkFDQi8xQzk0NkFGMkI0NjUxMUVGOUJGQkFBNjdDNEY5QUUwMi9RQzBkQzlrZlE0 QXNlZzF3YzJHSXZyb0tDQkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsF1QgbSHu7YCY1t8gIKPw3WZfPUE2yUlUyicKKpEqYOF4bTmNbZq3 6kAAmwUkfES55aNIJFo66UKls4VDFz+cdTguWO+GTEJ5dmaZ7gcX9Zs2iEZA/LGE qhtyHvWwesAkRPJucsTD4FKJ50Ob9vXIECsdt0KAZ/eaUE4R5Kq59Nr38VBW4hLN GHkqkoYvCpjPp/jMzTAInFZsmJKU0MayN1Kx0zIe/MkUCv2mMWK8DT5gMEos20Na u4U6HOA2q+5L28/Kl5mOGwSQ45hEufiJglFZ19I6FBWw9Nxgh6WWqERuKZswtdN+ IjWSfzSdEYS6kD59BjrjDWLa4f9EkNNA -----END CERTIFICATE-----Generated at Sat Dec 6 17:52:24 2025 by rpki-client