This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9198D20/3F7703C21CE911EA98897487C4F9AE02/Q8PPEXS9crQ0xpKLir6_BdYxP0A.mft File: Q8PPEXS9crQ0xpKLir6_BdYxP0A.mft (raw, json) Hash identifier: x9WRVfM2jKFXJ2KS0kkYpMlXyFa43um6as0sl3CdWCY= Subject key identifier: 7D:47:90:FC:AF:98:B8:FA:BD:36:E5:24:21:9C:16:ED:68:A6:FE:A8 Authority key identifier: 43:C3:CF:11:74:BD:72:B4:34:C6:92:8B:8A:BE:BF:05:D6:31:3F:40 Certificate issuer: /CN=A9198D20/serialNumber=43C3CF1174BD72B434C6928B8ABEBF05D6313F40 Certificate serial: 0C2E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q8PPEXS9crQ0xpKLir6_BdYxP0A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198D20/3F7703C21CE911EA98897487C4F9AE02/Q8PPEXS9crQ0xpKLir6_BdYxP0A.mft Manifest number: 0C27 Signing time: Sat 06 Dec 2025 18:03:30 +0000 Manifest this update: Sat 06 Dec 2025 18:03:30 +0000 Manifest next update: Sat 13 Dec 2025 18:03:30 +0000 Files and hashes: 1: Q8PPEXS9crQ0xpKLir6_BdYxP0A.crl (hash: rQ4LQuNwnHcJe9qwzP3kx39F7H3rse681rdXxC+KNH0=) 2: EE985C561CEA11EA8B382C0BC4F9AE02.roa (hash: /clDM2qDPD5uC0RxJEAiWWigew7J9uL+PN4x0Vi4eF0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198D20/3F7703C21CE911EA98897487C4F9AE02/Q8PPEXS9crQ0xpKLir6_BdYxP0A.crl rsync://rpki.apnic.net/member_repository/A9198D20/3F7703C21CE911EA98897487C4F9AE02/Q8PPEXS9crQ0xpKLir6_BdYxP0A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q8PPEXS9crQ0xpKLir6_BdYxP0A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 18:03:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3118 (0xc2e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198D20, serialNumber=43C3CF1174BD72B434C6928B8ABEBF05D6313F40 Validity Not Before: Dec 6 18:03:30 2025 GMT Not After : Dec 13 18:03:30 2025 GMT Subject: CN=69346ff2-45a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:01:be:f3:56:02:e7:c0:80:e0:c1:8f:a1:6e: 7f:72:db:40:fe:99:50:44:db:6f:b6:9c:96:51:11: 9c:8c:e8:9c:17:a9:a6:61:f6:49:48:da:12:fd:ac: ab:f4:fb:f6:45:4e:da:a6:b6:73:51:ac:20:39:b9: 1f:68:70:3e:07:9d:06:9f:fe:9c:bd:ce:45:92:71: f5:af:c7:e5:cc:39:c7:19:5b:02:76:c1:30:5e:ba: b7:e4:92:17:79:60:d4:a5:22:9d:9b:19:c4:69:a8: 09:75:62:d8:18:72:b5:4e:f6:4e:71:34:9f:96:16: 1e:4d:0c:52:e7:ee:9d:65:f6:9a:ee:70:b0:17:c5: ba:0b:8d:78:42:a0:e1:73:fa:53:fb:c8:65:f2:3f: e4:f3:c2:cb:ed:f3:7a:e0:35:88:37:de:a3:34:16: 00:a1:b0:56:b5:c5:24:d4:ef:d7:fd:94:c4:22:6e: 1a:6e:fc:4a:e5:65:ac:fb:47:e6:6e:5a:28:08:5d: ca:27:a8:ee:ad:c1:62:cc:5b:ec:5a:a3:dc:e0:22: 8e:b5:93:fe:34:b8:35:49:46:7a:b2:43:c7:95:7b: 83:6b:02:a1:ce:7a:f8:51:e0:99:bb:24:70:95:ed: 13:68:a2:7a:bc:19:35:2d:bc:52:ab:9b:9d:dd:05: 40:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:47:90:FC:AF:98:B8:FA:BD:36:E5:24:21:9C:16:ED:68:A6:FE:A8 X509v3 Authority Key Identifier: keyid:43:C3:CF:11:74:BD:72:B4:34:C6:92:8B:8A:BE:BF:05:D6:31:3F:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198D20/3F7703C21CE911EA98897487C4F9AE02/Q8PPEXS9crQ0xpKLir6_BdYxP0A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q8PPEXS9crQ0xpKLir6_BdYxP0A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198D20/3F7703C21CE911EA98897487C4F9AE02/Q8PPEXS9crQ0xpKLir6_BdYxP0A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:f0:c2:38:09:be:14:6d:92:72:e4:78:15:25:78:ee:9b:cb: 8b:e9:88:14:87:01:88:fe:df:0b:96:af:69:4c:6e:18:62:0d: b0:9a:88:58:a4:5d:a3:c5:f0:1b:05:83:32:82:8a:cb:b9:75: a7:12:3d:95:5b:04:38:79:44:ff:4f:0f:0c:96:68:29:fd:ce: f6:19:5f:ee:59:5a:01:15:d7:0b:c5:b8:57:65:a2:40:bc:5e: dd:62:7c:0e:4a:43:40:58:af:e0:cb:ea:b8:39:cd:86:1b:54: 78:d1:e4:d8:fe:f0:a7:7c:b1:2b:14:0e:3f:4f:62:f0:32:07: 62:9e:ef:d6:0b:d4:de:be:3c:41:4e:87:4f:e9:47:a3:ff:fe: bb:8e:d6:8b:70:b4:68:25:e0:af:23:a6:85:72:4a:b7:8b:4f: f4:4c:9d:4c:47:50:19:f8:4d:be:0b:ae:fd:44:72:a1:d2:00: 9c:06:a4:78:ba:d8:c2:c3:63:38:b1:d7:fa:69:0c:bd:9d:45: 06:0d:d8:b7:c4:48:d9:7c:ee:2f:bf:8b:f0:a2:06:b0:d5:02: f7:14:11:9e:47:9d:19:62:b9:6a:ba:09:c9:f5:1d:9c:aa:fd: ee:8f:69:f9:30:79:07:8c:16:85:cd:d5:f5:38:6f:0b:2a:df: 44:4c:af:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDC4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OThEMjAxMTAvBgNVBAUTKDQzQzNDRjExNzRCRDcyQjQzNEM2OTI4QjhBQkVCRjA1 RDYzMTNGNDAwHhcNMjUxMjA2MTgwMzMwWhcNMjUxMjEzMTgwMzMwWjAYMRYwFAYD VQQDEw02OTM0NmZmMi00NWE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwQG+81YC58CA4MGPoW5/cttA/plQRNtvtpyWURGcjOicF6mmYfZJSNoS/ayr 9Pv2RU7aprZzUawgObkfaHA+B50Gn/6cvc5FknH1r8flzDnHGVsCdsEwXrq35JIX eWDUpSKdmxnEaagJdWLYGHK1TvZOcTSflhYeTQxS5+6dZfaa7nCwF8W6C414QqDh c/pT+8hl8j/k88LL7fN64DWIN96jNBYAobBWtcUk1O/X/ZTEIm4abvxK5WWs+0fm blooCF3KJ6jurcFizFvsWqPc4CKOtZP+NLg1SUZ6skPHlXuDawKhznr4UeCZuyRw le0TaKJ6vBk1LbxSq5ud3QVAqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH1HkPyv mLj6vTblJCGcFu1opv6oMB8GA1UdIwQYMBaAFEPDzxF0vXK0NMaSi4q+vwXWMT9A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OEQyMC8zRjc3MDNDMjFD RTkxMUVBOTg4OTc0ODdDNEY5QUUwMi9ROFBQRVhTOWNyUTB4cEtMaXI2X0JkWXhQ MEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1E4UFBFWFM5Y3JRMHhwS0xpcjZfQmRZeFAwQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OEQyMC8zRjc3MDNDMjFDRTkxMUVBOTg4OTc0ODdDNEY5QUUwMi9ROFBQRVhTOWNy UTB4cEtMaXI2X0JkWXhQMEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAU8MI4Cb4UbZJy5HgVJXjum8uL6YgUhwGI/t8Llq9pTG4YYg2wmohY pF2jxfAbBYMygorLuXWnEj2VWwQ4eUT/Tw8Mlmgp/c72GV/uWVoBFdcLxbhXZaJA vF7dYnwOSkNAWK/gy+q4Oc2GG1R40eTY/vCnfLErFA4/T2LwMgdinu/WC9TevjxB TodP6Uej//67jtaLcLRoJeCvI6aFckq3i0/0TJ1MR1AZ+E2+C679RHKh0gCcBqR4 utjCw2M4sdf6aQy9nUUGDdi3xEjZfO4vv4vwogaw1QL3FBGeR50ZYrlqugnJ9R2c qv3uj2n5MHkHjBaFzdX1OG8LKt9ETK+L -----END CERTIFICATE-----Generated at Sun Dec 7 03:44:10 2025 by rpki-client