This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.mft File: QJ0BHok_2Mjws-isFGkqp7udAlk.mft (raw, json) Hash identifier: 3tyZK7XQiooNcU+Wn1SQAqBofQP28oif7xNJxjKRltE= Subject key identifier: D4:BD:99:9D:F5:BD:96:61:94:05:92:44:40:60:B3:50:E6:C6:A1:D1 Authority key identifier: 40:9D:01:1E:89:3F:D8:C8:F0:B3:E8:AC:14:69:2A:A7:BB:9D:02:59 Certificate issuer: /CN=A91808E1/serialNumber=409D011E893FD8C8F0B3E8AC14692AA7BB9D0259 Certificate serial: 044F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QJ0BHok_2Mjws-isFGkqp7udAlk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.mft Manifest number: 0449 Signing time: Sat 06 Dec 2025 22:54:18 +0000 Manifest this update: Sat 06 Dec 2025 22:54:17 +0000 Manifest next update: Sat 13 Dec 2025 22:54:17 +0000 Files and hashes: 1: QJ0BHok_2Mjws-isFGkqp7udAlk.crl (hash: /GsqkWp5a4Aiay9PvgxFj14vLI6wsdo4q32UPucP9Wo=) 2: E7FE45667E8311ECA552B67FC4F9AE02.roa (hash: vev8cF3wVonEj/spB6AbH6AE+o8N+kb1JbFrPlAS1N8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.crl rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QJ0BHok_2Mjws-isFGkqp7udAlk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 22:54:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1103 (0x44f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91808E1, serialNumber=409D011E893FD8C8F0B3E8AC14692AA7BB9D0259 Validity Not Before: Dec 6 22:54:17 2025 GMT Not After : Dec 13 22:54:17 2025 GMT Subject: CN=6934b41a-1e1e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:88:30:f9:81:b5:07:b0:6b:73:3d:7d:b7:cb: 14:fa:ca:66:10:3d:0c:d3:6b:02:a0:45:3a:26:b7: 8f:8b:fd:0a:0c:f3:ef:40:ca:91:81:83:c4:30:85: 15:56:e4:78:b2:15:d6:8b:95:af:90:78:ba:00:c3: fa:0e:e3:ff:11:d0:ef:ea:c1:a2:a6:a8:81:52:d8: d6:dc:da:b9:60:11:36:c1:44:87:ff:f1:a5:98:63: c0:25:2c:92:4e:80:c7:d4:35:e1:45:9f:e9:b8:2f: 09:7c:21:cd:d3:5f:8a:8e:1a:8b:76:10:3a:cb:28: ab:e4:47:8c:25:27:45:1b:79:52:d9:c3:3f:26:f5: fa:74:42:a6:03:b6:e7:04:9b:cf:f3:ca:e0:d0:e7: 51:24:9d:92:b8:bb:fe:34:9a:d5:6e:ce:57:d4:14: 31:fa:0a:0d:b4:9c:82:37:d6:87:17:4d:9c:31:e7: 7e:ee:80:7d:33:3e:6e:85:4d:2f:1b:3d:f0:12:ed: 00:24:1e:b1:ef:03:00:7e:49:4b:c8:09:cd:51:9f: 98:90:8d:13:85:c5:a7:05:dd:7f:24:40:1a:f8:ac: 33:66:2d:07:bb:c2:25:7f:55:7a:8f:96:95:d2:7f: 6d:c3:b9:1f:f3:04:f6:44:f9:c1:52:0f:50:ee:ca: a3:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:BD:99:9D:F5:BD:96:61:94:05:92:44:40:60:B3:50:E6:C6:A1:D1 X509v3 Authority Key Identifier: keyid:40:9D:01:1E:89:3F:D8:C8:F0:B3:E8:AC:14:69:2A:A7:BB:9D:02:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QJ0BHok_2Mjws-isFGkqp7udAlk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:9a:06:35:b9:06:c6:44:12:8f:a0:9b:8d:1b:e9:f2:ac:11: f2:f5:6a:0a:6f:ec:26:5b:bf:80:b8:ca:f8:37:4e:f0:9d:be: 1d:61:bd:4f:33:ff:45:05:58:71:7d:08:55:95:31:03:fc:58: a6:15:4f:b5:7d:e8:d3:f9:e9:fb:3c:82:90:d9:44:17:34:5c: 68:dc:04:5c:c6:74:ce:5a:97:df:50:e0:8c:05:4e:d3:c5:89: a6:7b:38:5b:9e:f3:23:3f:e0:e2:d4:9a:67:4b:98:8e:75:90: 91:86:60:4c:ac:50:c3:f1:e6:f3:d6:5f:ed:c0:15:d7:c7:f2: ef:3d:78:fc:a7:ba:e4:52:ff:9e:3f:8f:b0:22:60:c2:87:c7: ff:0e:84:e7:6c:91:3d:f4:be:c2:6f:77:d3:7d:e4:1e:52:5a: 3a:d8:54:bd:d8:5e:73:1e:a9:4c:61:2e:d7:fd:07:8d:01:90: dd:a2:f8:58:fd:c3:6f:be:4b:12:65:91:9e:dc:6b:0d:5d:86: a4:f9:c7:b4:5b:6a:d9:74:a0:7c:a4:60:b7:3a:15:c6:60:87: 83:10:77:b6:de:a2:48:06:b7:24:6d:e1:7d:68:46:f8:9f:cf: 6b:2f:75:6e:29:6c:b6:c9:57:f3:b3:57:83:94:22:6a:d6:e5: fa:8c:76:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBE8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODA4RTExMTAvBgNVBAUTKDQwOUQwMTFFODkzRkQ4QzhGMEIzRThBQzE0NjkyQUE3 QkI5RDAyNTkwHhcNMjUxMjA2MjI1NDE3WhcNMjUxMjEzMjI1NDE3WjAYMRYwFAYD VQQDEw02OTM0YjQxYS0xZTFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsogw+YG1B7Brcz19t8sU+spmED0M02sCoEU6JrePi/0KDPPvQMqRgYPEMIUV VuR4shXWi5WvkHi6AMP6DuP/EdDv6sGipqiBUtjW3Nq5YBE2wUSH//GlmGPAJSyS ToDH1DXhRZ/puC8JfCHN01+KjhqLdhA6yyir5EeMJSdFG3lS2cM/JvX6dEKmA7bn BJvP88rg0OdRJJ2SuLv+NJrVbs5X1BQx+goNtJyCN9aHF02cMed+7oB9Mz5uhU0v Gz3wEu0AJB6x7wMAfklLyAnNUZ+YkI0ThcWnBd1/JEAa+KwzZi0Hu8Ilf1V6j5aV 0n9tw7kf8wT2RPnBUg9Q7sqjgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNS9mZ31 vZZhlAWSREBgs1DmxqHRMB8GA1UdIwQYMBaAFECdAR6JP9jI8LPorBRpKqe7nQJZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDhFMS9GOTBGOUU4ODdF ODExMUVDQjg4NzNBN0ZDNEY5QUUwMi9RSjBCSG9rXzJNandzLWlzRkdrcXA3dWRB bGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FKMEJIb2tfMk1qd3MtaXNGR2txcDd1ZEFsay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MDhFMS9GOTBGOUU4ODdFODExMUVDQjg4NzNBN0ZDNEY5QUUwMi9RSjBCSG9rXzJN andzLWlzRkdrcXA3dWRBbGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZmgY1uQbGRBKPoJuNG+nyrBHy9WoKb+wmW7+AuMr4N07wnb4dYb1P M/9FBVhxfQhVlTED/FimFU+1fejT+en7PIKQ2UQXNFxo3ARcxnTOWpffUOCMBU7T xYmmezhbnvMjP+Di1JpnS5iOdZCRhmBMrFDD8ebz1l/twBXXx/LvPXj8p7rkUv+e P4+wImDCh8f/DoTnbJE99L7Cb3fTfeQeUlo62FS92F5zHqlMYS7X/QeNAZDdovhY /cNvvksSZZGe3GsNXYak+ce0W2rZdKB8pGC3OhXGYIeDEHe23qJIBrckbeF9aEb4 n89rL3VuKWy2yVfzs1eDlCJq1uX6jHYh -----END CERTIFICATE-----Generated at Sun Dec 7 03:39:57 2025 by rpki-client