This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917FDF3/B3A852B2B5D911EAA6B88754C4F9AE02/qz22NdhTYB5LpVUAZxIB2Jb-za0.mft File: qz22NdhTYB5LpVUAZxIB2Jb-za0.mft (raw, json) Hash identifier: 3E+k+HpT1La9Jw/pdaGPdbxPlHksnVWDAWWvpwv0r/8= Subject key identifier: 55:CA:23:C4:2A:28:7A:BF:BF:5B:28:79:67:80:5E:41:8A:36:94:9A Authority key identifier: AB:3D:B6:35:D8:53:60:1E:4B:A5:55:00:67:12:01:D8:96:FE:CD:AD Certificate issuer: /CN=A917FDF3/serialNumber=AB3DB635D853601E4BA55500671201D896FECDAD Certificate serial: 0921 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qz22NdhTYB5LpVUAZxIB2Jb-za0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917FDF3/B3A852B2B5D911EAA6B88754C4F9AE02/qz22NdhTYB5LpVUAZxIB2Jb-za0.mft Manifest number: 0919 Signing time: Thu 04 Dec 2025 19:28:03 +0000 Manifest this update: Thu 04 Dec 2025 19:28:03 +0000 Manifest next update: Thu 11 Dec 2025 19:28:03 +0000 Files and hashes: 1: qz22NdhTYB5LpVUAZxIB2Jb-za0.crl (hash: Z5FpvqgcQJ1EzJnOdurHjRmBkoekxW9Q3c5KUn5jkHI=) 2: 0FE0AF42B5DB11EA9DA12556C4F9AE02.roa (hash: Fs5lIXhoeLDLVgaGXIOh275fjXBBfxZsCamTtOxAxUw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917FDF3/B3A852B2B5D911EAA6B88754C4F9AE02/qz22NdhTYB5LpVUAZxIB2Jb-za0.crl rsync://rpki.apnic.net/member_repository/A917FDF3/B3A852B2B5D911EAA6B88754C4F9AE02/qz22NdhTYB5LpVUAZxIB2Jb-za0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qz22NdhTYB5LpVUAZxIB2Jb-za0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 19:28:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2337 (0x921) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917FDF3, serialNumber=AB3DB635D853601E4BA55500671201D896FECDAD Validity Not Before: Dec 4 19:28:03 2025 GMT Not After : Dec 11 19:28:03 2025 GMT Subject: CN=6931e0c3-0518 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:3e:0a:d1:01:57:3e:17:88:bc:d1:d6:97:c6: 7b:58:c6:a2:a2:f7:9b:63:53:04:8b:7f:c8:b5:0b: 20:64:c7:a1:6e:47:62:d7:2f:c1:bc:9c:a4:9b:d1: aa:9e:26:35:03:28:1c:03:e1:0a:f7:c9:f9:4e:94: fa:1f:20:e3:06:e1:38:32:5b:14:62:9f:97:df:75: 66:d1:bb:f6:70:34:d2:00:d3:5f:d9:e5:81:ad:79: 79:5c:2b:7a:54:a9:cb:04:d6:76:0b:9f:3d:e5:27: 78:52:6f:69:a7:f7:cb:9a:c1:c2:27:1a:ed:50:62: 73:6e:f4:81:fa:77:c9:1c:68:8c:a1:f7:10:e3:e2: c5:7c:1c:1c:53:79:d6:20:b3:27:b8:c2:60:81:49: 67:2e:7c:7c:d9:6d:e0:d3:84:79:f1:9c:cd:37:a5: 3c:9f:f1:03:bd:d1:e1:50:99:25:bf:3a:c3:bd:3e: d2:a5:55:7d:3e:16:9f:8d:57:61:f1:67:dc:b9:62: 17:17:7b:4c:d4:5c:1e:f4:3e:a6:c8:7d:3b:1e:18: 4d:cf:89:33:d5:ae:f0:5c:9a:1c:07:ae:cc:49:0f: c5:cd:1a:9c:ab:91:b4:28:45:96:9a:f1:3f:78:37: ff:75:00:7c:71:94:00:df:d3:ff:df:06:fb:ca:44: 67:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:CA:23:C4:2A:28:7A:BF:BF:5B:28:79:67:80:5E:41:8A:36:94:9A X509v3 Authority Key Identifier: keyid:AB:3D:B6:35:D8:53:60:1E:4B:A5:55:00:67:12:01:D8:96:FE:CD:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917FDF3/B3A852B2B5D911EAA6B88754C4F9AE02/qz22NdhTYB5LpVUAZxIB2Jb-za0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qz22NdhTYB5LpVUAZxIB2Jb-za0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917FDF3/B3A852B2B5D911EAA6B88754C4F9AE02/qz22NdhTYB5LpVUAZxIB2Jb-za0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:9f:6e:26:02:dd:d2:ee:b6:ce:30:1e:58:06:2d:d1:c4:11: 87:4f:0e:e0:78:7e:d6:74:10:39:a6:09:8c:bc:a0:16:e6:f4: ba:dc:27:c9:7b:33:8d:33:c4:bd:17:76:98:ac:52:6f:fb:88: d5:8c:ae:eb:dd:2a:f6:a5:74:b9:bd:73:07:05:49:23:d6:dc: 2e:7b:d3:90:af:17:b7:05:ce:82:21:a5:ee:44:c8:e1:50:d1: 11:2c:b9:67:55:e7:67:92:ca:3d:b2:bb:de:e5:9a:d2:67:72: e7:5d:45:9d:0f:b5:3e:92:18:89:50:76:f9:97:1e:54:75:3d: d9:63:ad:e6:53:5d:79:6c:61:7b:a0:2f:79:94:b2:77:b0:2f: 48:04:f6:ce:46:95:29:3d:14:56:b4:b9:85:8e:c2:75:4c:59: 64:61:af:5f:e7:e2:90:d1:96:d9:27:26:d5:51:6b:5f:9c:e1: 62:a9:64:d3:73:f5:69:c7:23:17:6a:de:76:10:b6:e1:39:0a: 53:d1:da:bc:31:6c:af:67:47:08:cd:5b:cb:7f:33:53:4a:89: 72:ae:fa:a1:23:0f:9f:3a:93:02:17:69:65:96:15:19:46:79: 0f:1d:92:03:2e:75:a4:18:ef:10:6b:6d:0a:bd:fa:fa:83:29: 5a:48:76:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCSEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0ZERjMxMTAvBgNVBAUTKEFCM0RCNjM1RDg1MzYwMUU0QkE1NTUwMDY3MTIwMUQ4 OTZGRUNEQUQwHhcNMjUxMjA0MTkyODAzWhcNMjUxMjExMTkyODAzWjAYMRYwFAYD VQQDEw02OTMxZTBjMy0wNTE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyD4K0QFXPheIvNHWl8Z7WMaiovebY1MEi3/ItQsgZMehbkdi1y/BvJykm9Gq niY1AygcA+EK98n5TpT6HyDjBuE4MlsUYp+X33Vm0bv2cDTSANNf2eWBrXl5XCt6 VKnLBNZ2C5895Sd4Um9pp/fLmsHCJxrtUGJzbvSB+nfJHGiMofcQ4+LFfBwcU3nW ILMnuMJggUlnLnx82W3g04R58ZzNN6U8n/EDvdHhUJklvzrDvT7SpVV9PhafjVdh 8WfcuWIXF3tM1Fwe9D6myH07HhhNz4kz1a7wXJocB67MSQ/FzRqcq5G0KEWWmvE/ eDf/dQB8cZQA39P/3wb7ykRn1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFXKI8Qq KHq/v1soeWeAXkGKNpSaMB8GA1UdIwQYMBaAFKs9tjXYU2AeS6VVAGcSAdiW/s2t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RkRGMy9CM0E4NTJCMkI1 RDkxMUVBQTZCODg3NTRDNEY5QUUwMi9xejIyTmRoVFlCNUxwVlVBWnhJQjJKYi16 YTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3F6MjJOZGhUWUI1THBWVUFaeElCMkpiLXphMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RkRGMy9CM0E4NTJCMkI1RDkxMUVBQTZCODg3NTRDNEY5QUUwMi9xejIyTmRoVFlC NUxwVlVBWnhJQjJKYi16YTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKn24mAt3S7rbOMB5YBi3RxBGHTw7geH7WdBA5pgmMvKAW5vS63CfJ ezONM8S9F3aYrFJv+4jVjK7r3Sr2pXS5vXMHBUkj1twue9OQrxe3Bc6CIaXuRMjh UNERLLlnVednkso9srve5ZrSZ3LnXUWdD7U+khiJUHb5lx5UdT3ZY63mU115bGF7 oC95lLJ3sC9IBPbORpUpPRRWtLmFjsJ1TFlkYa9f5+KQ0ZbZJybVUWtfnOFiqWTT c/VpxyMXat52ELbhOQpT0dq8MWyvZ0cIzVvLfzNTSolyrvqhIw+fOpMCF2lllhUZ RnkPHZIDLnWkGO8Qa20Kvfr6gylaSHYR -----END CERTIFICATE-----Generated at Sat Dec 6 15:48:13 2025 by rpki-client