This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9196DC9/0E6FF54AAE5B11F08C7CAC53C4F9AE02/sQnalQV25mJneVo066kbw3qZI7Q.mft File: sQnalQV25mJneVo066kbw3qZI7Q.mft (raw, json) Hash identifier: 1p7wA62GrENy/P2+487eWQe1zVWBFVYbUAMF1leF9FY= Subject key identifier: 99:41:2A:AF:2D:E1:D9:E6:47:83:46:EE:4F:9B:D9:9B:9D:F7:9F:1B Authority key identifier: B1:09:DA:95:05:76:E6:62:67:79:5A:34:EB:A9:1B:C3:7A:99:23:B4 Certificate issuer: /CN=A9196DC9/serialNumber=B109DA950576E66267795A34EBA91BC37A9923B4 Certificate serial: 21 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sQnalQV25mJneVo066kbw3qZI7Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196DC9/0E6FF54AAE5B11F08C7CAC53C4F9AE02/sQnalQV25mJneVo066kbw3qZI7Q.mft Manifest number: 1D Signing time: Fri 05 Dec 2025 05:40:03 +0000 Manifest this update: Fri 05 Dec 2025 05:40:02 +0000 Manifest next update: Fri 12 Dec 2025 05:40:02 +0000 Files and hashes: 1: sQnalQV25mJneVo066kbw3qZI7Q.crl (hash: RCX7A/FFLX/LcF8rLKiZiJ1avtczHo8eYSrzMJsUb/0=) 2: 0FDE83B6C36811F0BB7F9C65C4F9AE02.roa (hash: HUV1xiTm4nTnouvWGKMxu0/+nSr2OIqTSE04ekggEQI=) 3: EBBEEC14C36711F084BC3465C4F9AE02.roa (hash: sEsXZZXeC9fx2SKgwdoJZ8ecJUtifztiDpJwhoX/eN0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196DC9/0E6FF54AAE5B11F08C7CAC53C4F9AE02/sQnalQV25mJneVo066kbw3qZI7Q.crl rsync://rpki.apnic.net/member_repository/A9196DC9/0E6FF54AAE5B11F08C7CAC53C4F9AE02/sQnalQV25mJneVo066kbw3qZI7Q.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sQnalQV25mJneVo066kbw3qZI7Q.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 05:40:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33 (0x21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196DC9, serialNumber=B109DA950576E66267795A34EBA91BC37A9923B4 Validity Not Before: Dec 5 05:40:02 2025 GMT Not After : Dec 12 05:40:02 2025 GMT Subject: CN=69327032-1901 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:4d:cf:4a:75:1b:d9:32:c5:ca:57:12:2b:fc: a0:7d:71:1e:70:bd:f4:04:2e:51:e7:d5:87:5c:3e: 54:37:b1:a4:5d:c3:a2:26:08:6c:62:d6:cf:38:ee: 86:13:2b:a7:f3:fc:9d:70:54:b7:51:5d:db:ba:a4: 74:62:f5:b8:e3:47:2c:41:82:f1:70:d0:e4:ae:d9: 2c:18:87:0b:10:00:62:b7:04:ef:6a:5f:87:64:5d: d2:2a:16:c8:c4:79:a3:e7:60:10:e3:ab:da:73:cf: 5e:db:58:b8:d7:f6:f1:b5:13:7d:e9:e2:64:63:b7: 3f:1e:55:14:be:79:40:ec:6c:da:08:86:18:45:be: 96:90:07:6e:4f:04:6f:5b:3d:d9:39:93:ce:e0:fa: a0:28:d4:32:b4:f9:ed:25:e2:90:96:8e:07:87:92: 28:5a:3a:a7:b5:0a:fc:9f:13:23:7c:f4:f5:99:e0: e6:41:8f:5e:c5:f6:09:e0:98:29:6a:cc:0a:94:4d: 51:f6:7b:c2:b8:bf:39:6d:71:da:16:bc:8c:12:64: 6e:b2:af:df:47:61:f1:ba:dd:e0:1a:e9:64:d3:d8: 05:10:ab:a9:86:5b:b2:6a:83:3d:39:c3:b9:00:8c: e6:3d:74:f9:f4:2f:84:3a:b1:27:5a:6d:66:31:68: 71:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:41:2A:AF:2D:E1:D9:E6:47:83:46:EE:4F:9B:D9:9B:9D:F7:9F:1B X509v3 Authority Key Identifier: keyid:B1:09:DA:95:05:76:E6:62:67:79:5A:34:EB:A9:1B:C3:7A:99:23:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196DC9/0E6FF54AAE5B11F08C7CAC53C4F9AE02/sQnalQV25mJneVo066kbw3qZI7Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sQnalQV25mJneVo066kbw3qZI7Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196DC9/0E6FF54AAE5B11F08C7CAC53C4F9AE02/sQnalQV25mJneVo066kbw3qZI7Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:c1:e8:47:ef:a3:7b:af:3f:8e:73:20:18:11:ce:4f:1b:06: 12:e8:22:66:dc:7b:25:51:79:48:9f:b6:fc:75:bc:38:c7:db: 08:09:d7:e3:6f:fd:3b:54:22:bd:27:94:6a:c7:08:cc:e7:dd: a3:5a:1f:b2:66:9f:ef:93:fe:c3:e8:ff:45:2d:13:85:0d:8c: f9:b6:af:aa:5f:b0:0a:f6:bd:ad:da:a4:ae:6d:1b:c5:da:6d: 15:88:af:5a:6b:9e:c3:1e:37:2d:81:f7:de:56:df:26:e9:81: 50:b8:47:f4:b7:e4:04:59:b9:4c:f3:b8:db:e8:80:ac:72:28: 93:cd:53:89:1e:a8:42:b6:d1:04:1b:db:a8:3f:97:a6:27:c0: 2a:22:b0:c9:c7:fe:0e:33:49:b5:e4:56:e9:20:e1:f6:c7:fa: 30:46:75:57:0d:c8:a3:85:28:24:4e:c5:b6:f0:6c:7f:5d:5c: bb:eb:32:29:4e:e1:41:67:ce:a7:42:2b:92:40:6a:25:b0:e9: e8:33:88:cd:49:aa:d4:8b:11:5b:e7:5a:78:d4:d7:19:9d:27: 8a:05:c6:3c:ee:4a:38:4c:1c:f1:3e:4a:40:1e:49:d9:f3:ce: 03:02:18:80:cc:22:3b:9c:92:c3:49:e2:7f:09:c2:62:81:69: 7b:ff:e6:78 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBITANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 NkRDOTExMC8GA1UEBRMoQjEwOURBOTUwNTc2RTY2MjY3Nzk1QTM0RUJBOTFCQzM3 QTk5MjNCNDAeFw0yNTEyMDUwNTQwMDJaFw0yNTEyMTIwNTQwMDJaMBgxFjAUBgNV BAMTDTY5MzI3MDMyLTE5MDEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC9Tc9KdRvZMsXKVxIr/KB9cR5wvfQELlHn1YdcPlQ3saRdw6ImCGxi1s847oYT K6fz/J1wVLdRXdu6pHRi9bjjRyxBgvFw0OSu2SwYhwsQAGK3BO9qX4dkXdIqFsjE eaPnYBDjq9pzz17bWLjX9vG1E33p4mRjtz8eVRS+eUDsbNoIhhhFvpaQB25PBG9b Pdk5k87g+qAo1DK0+e0l4pCWjgeHkihaOqe1CvyfEyN89PWZ4OZBj17F9gngmClq zAqUTVH2e8K4vzltcdoWvIwSZG6yr99HYfG63eAa6WTT2AUQq6mGW7Jqgz05w7kA jOY9dPn0L4Q6sSdabWYxaHE1AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUmUEqry3h 2eZHg0buT5vZm533nxswHwYDVR0jBBgwFoAUsQnalQV25mJneVo066kbw3qZI7Qw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk2REM5LzBFNkZGNTRBQUU1 QjExRjA4QzdDQUM1M0M0RjlBRTAyL3NRbmFsUVYyNW1KbmVWbzA2NmtidzNxWkk3 US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvc1FuYWxRVjI1bUpuZVZvMDY2a2J3M3FaSTdRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk2 REM5LzBFNkZGNTRBQUU1QjExRjA4QzdDQUM1M0M0RjlBRTAyL3NRbmFsUVYyNW1K bmVWbzA2NmtidzNxWkk3US5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABbB6Efvo3uvP45zIBgRzk8bBhLoImbceyVReUiftvx1vDjH2wgJ1+Nv /TtUIr0nlGrHCMzn3aNaH7Jmn++T/sPo/0UtE4UNjPm2r6pfsAr2va3apK5tG8Xa bRWIr1prnsMeNy2B995W3ybpgVC4R/S35ARZuUzzuNvogKxyKJPNU4keqEK20QQb 26g/l6YnwCoisMnH/g4zSbXkVukg4fbH+jBGdVcNyKOFKCROxbbwbH9dXLvrMilO 4UFnzqdCK5JAaiWw6egziM1JqtSLEVvnWnjU1xmdJ4oFxjzuSjhMHPE+SkAeSdnz zgMCGIDMIjucksNJ4n8JwmKBaXv/5ng= -----END CERTIFICATE-----Generated at Sat Dec 6 19:18:25 2025 by rpki-client