This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919FE97/D218302E7D4711EB93121F58C4F9AE02/-QbZf3qofIbamQOdI27NtR0jH3o.mft File: -QbZf3qofIbamQOdI27NtR0jH3o.mft (raw, json) Hash identifier: m/hkcQuHRJc0il9QzkR7KCoUMF0ktLT3inzKiKyz05o= Subject key identifier: A2:9B:91:0A:7C:9C:EE:34:7D:40:E5:37:1C:B4:97:F0:84:83:0F:86 Authority key identifier: F9:06:D9:7F:7A:A8:7C:86:DA:99:03:9D:23:6E:CD:B5:1D:23:1F:7A Certificate issuer: /CN=A919FE97/serialNumber=F906D97F7AA87C86DA99039D236ECDB51D231F7A Certificate serial: 06D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-QbZf3qofIbamQOdI27NtR0jH3o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919FE97/D218302E7D4711EB93121F58C4F9AE02/-QbZf3qofIbamQOdI27NtR0jH3o.mft Manifest number: 06CD Signing time: Sat 06 Dec 2025 21:01:47 +0000 Manifest this update: Sat 06 Dec 2025 21:01:46 +0000 Manifest next update: Sat 13 Dec 2025 21:01:46 +0000 Files and hashes: 1: -QbZf3qofIbamQOdI27NtR0jH3o.crl (hash: 8TGfWFsdK8nylaADfQedmryWsAmukYyBVSIu1DCscgs=) 2: 06EFF1D07D4B11EBA736017DC4F9AE02.roa (hash: ACBayas3sWm8LRkAgsG4BLCCWR0NJPgThMvDEl+trzE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919FE97/D218302E7D4711EB93121F58C4F9AE02/-QbZf3qofIbamQOdI27NtR0jH3o.crl rsync://rpki.apnic.net/member_repository/A919FE97/D218302E7D4711EB93121F58C4F9AE02/-QbZf3qofIbamQOdI27NtR0jH3o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-QbZf3qofIbamQOdI27NtR0jH3o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 21:01:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1750 (0x6d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919FE97, serialNumber=F906D97F7AA87C86DA99039D236ECDB51D231F7A Validity Not Before: Dec 6 21:01:46 2025 GMT Not After : Dec 13 21:01:46 2025 GMT Subject: CN=693499bb-7365 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:03:5c:90:62:a3:fb:7d:ac:49:03:19:61:f0: 80:c5:60:18:ad:5a:67:03:b7:95:13:19:04:8c:2b: 2e:29:56:b9:81:21:bf:5a:01:d7:10:df:96:86:13: 38:cb:59:3c:a4:10:7a:0e:18:78:8b:78:d9:22:04: 16:59:0a:25:07:69:40:74:83:27:e4:3d:c6:55:32: ea:7a:72:e4:4d:c9:d7:47:b7:9a:42:1d:f3:0b:01: e5:b1:ff:27:e4:93:4e:1c:f7:4b:c2:85:81:e0:4b: b2:ea:54:85:a1:4a:5d:e8:46:6a:26:4d:a9:e9:4f: 3a:60:59:0d:d0:6e:a1:16:1b:27:88:33:ae:01:33: 82:fb:50:a2:8b:55:36:91:7f:b4:2e:fa:b7:2b:dc: 66:d9:97:5f:9e:33:5a:a3:93:6a:6c:c9:e7:a8:4e: 44:e2:04:74:29:7d:23:ca:a7:c7:71:ad:6f:df:08: a3:a8:74:7a:0d:9f:ad:ac:61:a7:1a:a0:67:f4:91: fb:d2:92:a8:8e:fe:03:c8:e7:47:21:81:06:a8:71: 15:27:19:6e:85:a2:51:58:5c:9e:5d:5b:11:64:25: 2b:7b:3d:32:f1:a6:ba:c3:3e:37:0a:34:ad:f0:d0: 94:14:a7:79:4c:11:98:62:c9:f6:7a:53:4b:df:21: 70:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:9B:91:0A:7C:9C:EE:34:7D:40:E5:37:1C:B4:97:F0:84:83:0F:86 X509v3 Authority Key Identifier: keyid:F9:06:D9:7F:7A:A8:7C:86:DA:99:03:9D:23:6E:CD:B5:1D:23:1F:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919FE97/D218302E7D4711EB93121F58C4F9AE02/-QbZf3qofIbamQOdI27NtR0jH3o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-QbZf3qofIbamQOdI27NtR0jH3o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919FE97/D218302E7D4711EB93121F58C4F9AE02/-QbZf3qofIbamQOdI27NtR0jH3o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:69:b7:99:64:de:95:6a:63:88:50:25:88:f4:4c:9f:94:40: 19:58:92:06:13:1f:2c:40:8c:c1:ba:f3:dc:9a:c1:68:eb:99: d5:e1:5f:ba:c4:21:4a:7c:09:38:a4:8d:51:af:76:60:6e:fd: 3e:15:35:c1:3f:dd:eb:70:85:42:46:3b:cb:b8:e9:3a:82:ea: d8:f5:d7:2d:c7:21:70:b1:cc:c7:7d:0d:5f:33:2b:83:f1:ad: 71:d6:c2:b4:85:b6:63:4d:00:f3:41:d0:65:89:75:4b:98:53: 18:a1:1a:02:6d:ad:59:25:ba:6f:34:49:74:c9:c2:3e:4a:5d: 61:31:44:46:02:20:c2:3d:97:b8:d3:5e:e6:80:75:d8:ab:c1: 14:01:79:4f:57:c6:66:3d:35:f4:09:5b:57:61:ad:e2:b8:2f: 4c:17:88:64:e2:51:49:bb:62:9b:b1:f0:91:c5:b3:ab:38:7a: 2d:13:98:f7:87:75:1b:70:c0:aa:33:e0:2b:d3:bd:1c:90:e1: 80:c7:f1:6c:fc:2a:5c:17:c8:0c:18:57:86:cc:1d:97:27:d9: 65:50:2c:1a:ad:33:c8:76:59:2d:05:c9:e1:fa:90:c2:e1:20: 38:3b:76:10:45:31:b2:68:ed:e0:2a:fc:a6:b2:d7:b5:61:06: 51:b3:c1:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBtYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUZFOTcxMTAvBgNVBAUTKEY5MDZEOTdGN0FBODdDODZEQTk5MDM5RDIzNkVDREI1 MUQyMzFGN0EwHhcNMjUxMjA2MjEwMTQ2WhcNMjUxMjEzMjEwMTQ2WjAYMRYwFAYD VQQDEw02OTM0OTliYi03MzY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArQNckGKj+32sSQMZYfCAxWAYrVpnA7eVExkEjCsuKVa5gSG/WgHXEN+WhhM4 y1k8pBB6Dhh4i3jZIgQWWQolB2lAdIMn5D3GVTLqenLkTcnXR7eaQh3zCwHlsf8n 5JNOHPdLwoWB4Euy6lSFoUpd6EZqJk2p6U86YFkN0G6hFhsniDOuATOC+1Cii1U2 kX+0Lvq3K9xm2ZdfnjNao5NqbMnnqE5E4gR0KX0jyqfHca1v3wijqHR6DZ+trGGn GqBn9JH70pKojv4DyOdHIYEGqHEVJxluhaJRWFyeXVsRZCUrez0y8aa6wz43CjSt 8NCUFKd5TBGYYsn2elNL3yFw6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKKbkQp8 nO40fUDlNxy0l/CEgw+GMB8GA1UdIwQYMBaAFPkG2X96qHyG2pkDnSNuzbUdIx96 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RkU5Ny9EMjE4MzAyRTdE NDcxMUVCOTMxMjFGNThDNEY5QUUwMi8tUWJaZjNxb2ZJYmFtUU9kSTI3TnRSMGpI M28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1RYlpmM3FvZkliYW1RT2RJMjdOdFIwakgzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RkU5Ny9EMjE4MzAyRTdENDcxMUVCOTMxMjFGNThDNEY5QUUwMi8tUWJaZjNxb2ZJ YmFtUU9kSTI3TnRSMGpIM28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBkabeZZN6VamOIUCWI9EyflEAZWJIGEx8sQIzBuvPcmsFo65nV4V+6 xCFKfAk4pI1Rr3Zgbv0+FTXBP93rcIVCRjvLuOk6gurY9dctxyFwsczHfQ1fMyuD 8a1x1sK0hbZjTQDzQdBliXVLmFMYoRoCba1ZJbpvNEl0ycI+Sl1hMURGAiDCPZe4 017mgHXYq8EUAXlPV8ZmPTX0CVtXYa3iuC9MF4hk4lFJu2KbsfCRxbOrOHotE5j3 h3UbcMCqM+Ar070ckOGAx/Fs/CpcF8gMGFeGzB2XJ9llUCwarTPIdlktBcnh+pDC 4SA4O3YQRTGyaO3gKvymste1YQZRs8FK -----END CERTIFICATE-----Generated at Sun Dec 7 00:58:08 2025 by rpki-client