This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9120A29/0E06DBA24D5C11EAA8088A66C4F9AE02/QbMaaMknik1EdI4t-MasqBV47LU.mft File: QbMaaMknik1EdI4t-MasqBV47LU.mft (raw, json) Hash identifier: 80AAS1V7Y2QGDlFjxD+R2BQFiBRdwIciTOxgqIIYXYs= Subject key identifier: 5E:EF:7B:83:0E:D3:27:B0:DA:46:EB:40:70:1D:42:C0:71:3A:8B:08 Authority key identifier: 41:B3:1A:68:C9:27:8A:4D:44:74:8E:2D:F8:C6:AC:A8:15:78:EC:B5 Certificate issuer: /CN=A9120A29/serialNumber=41B31A68C9278A4D44748E2DF8C6ACA81578ECB5 Certificate serial: 0B3F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QbMaaMknik1EdI4t-MasqBV47LU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120A29/0E06DBA24D5C11EAA8088A66C4F9AE02/QbMaaMknik1EdI4t-MasqBV47LU.mft Manifest number: 0B38 Signing time: Mon 22 Dec 2025 18:44:12 +0000 Manifest this update: Mon 22 Dec 2025 18:44:12 +0000 Manifest next update: Mon 29 Dec 2025 18:44:12 +0000 Files and hashes: 1: QbMaaMknik1EdI4t-MasqBV47LU.crl (hash: f/0S61Ep694Nmii2nJC/YHXHCrFfz7OuodcY8uYEKvY=) 2: 73A346A24D5D11EAA811C368C4F9AE02.roa (hash: AtiHUqqiSc5seLUNoB/SjIutv6okcY16FsBOaprHkwA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120A29/0E06DBA24D5C11EAA8088A66C4F9AE02/QbMaaMknik1EdI4t-MasqBV47LU.crl rsync://rpki.apnic.net/member_repository/A9120A29/0E06DBA24D5C11EAA8088A66C4F9AE02/QbMaaMknik1EdI4t-MasqBV47LU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QbMaaMknik1EdI4t-MasqBV47LU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 18:44:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2879 (0xb3f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120A29, serialNumber=41B31A68C9278A4D44748E2DF8C6ACA81578ECB5 Validity Not Before: Dec 22 18:44:12 2025 GMT Not After : Dec 29 18:44:12 2025 GMT Subject: CN=6949917c-2350 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:d7:93:9b:7d:92:68:7c:94:f5:65:f6:84:3c: f7:bc:55:36:de:e7:c5:6f:32:0b:01:ee:2c:ac:05: a6:54:af:a5:85:0e:a1:ec:e5:8e:11:1c:5d:25:7b: 30:23:29:05:c9:b4:f8:59:28:f9:e7:22:bb:62:52: bd:7a:10:11:49:14:c7:9c:a9:fe:1e:88:74:3a:6e: a7:60:67:b3:74:ca:27:fd:06:ce:5c:3e:57:e9:03: da:37:43:17:b4:30:a3:7b:05:7d:f7:c7:1c:eb:30: ea:a5:ba:3e:f8:9b:27:42:b4:3a:81:ff:72:d8:35: 2d:b2:2e:80:89:19:1c:6e:a3:c5:ec:07:c9:87:40: 68:79:a5:2e:21:f2:e5:a1:cc:e9:cc:df:14:24:ce: 56:d6:51:38:27:51:16:7a:59:9b:99:b8:06:b5:d2: 89:7f:28:fd:ac:66:9f:55:4a:ed:b8:e3:14:e5:33: ee:a2:89:96:9d:b9:64:c7:38:38:cd:42:38:b2:18: 74:b3:5e:ff:87:68:c6:54:ad:9f:74:27:64:0e:6d: 30:84:3f:c1:1a:08:7f:4e:9b:a5:17:e2:49:94:e8: d9:37:13:e4:00:e0:ab:c6:d1:2a:7b:90:73:77:80: b4:29:7c:f2:0c:8c:ca:93:2b:aa:12:b1:06:a7:61: f1:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:EF:7B:83:0E:D3:27:B0:DA:46:EB:40:70:1D:42:C0:71:3A:8B:08 X509v3 Authority Key Identifier: keyid:41:B3:1A:68:C9:27:8A:4D:44:74:8E:2D:F8:C6:AC:A8:15:78:EC:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120A29/0E06DBA24D5C11EAA8088A66C4F9AE02/QbMaaMknik1EdI4t-MasqBV47LU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QbMaaMknik1EdI4t-MasqBV47LU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120A29/0E06DBA24D5C11EAA8088A66C4F9AE02/QbMaaMknik1EdI4t-MasqBV47LU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:9b:7f:f9:23:dd:97:b2:15:56:2d:6b:fc:05:a2:07:ad:6d: 56:02:30:1d:4d:b8:33:99:6c:b9:50:c2:eb:e0:5c:73:a0:0b: 5f:66:b7:33:38:5c:05:f7:fa:13:94:60:ba:bb:c4:b3:86:1e: 7e:ed:91:10:ab:5b:e4:13:06:48:6d:02:64:45:66:ce:97:27: 3b:2b:4a:12:f0:dd:2e:ca:05:65:f8:1e:be:e6:60:18:13:f4: 44:23:80:10:77:f9:8b:5b:9a:0d:63:32:db:56:77:b9:7b:00: da:0a:bb:fc:66:18:0e:46:28:ce:06:ad:82:62:dc:93:fa:02: 27:f3:9d:03:88:c6:d0:64:86:84:af:3b:6e:4c:54:92:90:44: b5:ab:34:6d:e9:33:3c:7f:2f:5b:bf:0e:33:0c:ec:a8:be:68: 11:fe:f2:ba:17:48:02:e2:73:b1:de:d3:19:61:b4:74:01:f2: 6f:43:10:10:b5:de:c5:9c:17:31:a6:53:5e:fc:19:54:a3:d9: a4:f6:05:ec:99:dd:3a:99:ec:f2:aa:d6:d2:5c:92:02:9b:81: 99:08:02:09:70:76:ca:05:2d:4c:32:58:25:bc:93:f5:bf:24: d9:64:95:be:29:39:6a:ce:e4:3c:2d:17:e0:8a:b7:4f:71:0f: 3b:23:e9:71 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCz8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBBMjkxMTAvBgNVBAUTKDQxQjMxQTY4QzkyNzhBNEQ0NDc0OEUyREY4QzZBQ0E4 MTU3OEVDQjUwHhcNMjUxMjIyMTg0NDEyWhcNMjUxMjI5MTg0NDEyWjAYMRYwFAYD VQQDDA02OTQ5OTE3Yy0yMzUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsdeTm32SaHyU9WX2hDz3vFU23ufFbzILAe4srAWmVK+lhQ6h7OWOERxdJXsw IykFybT4WSj55yK7YlK9ehARSRTHnKn+Hoh0Om6nYGezdMon/QbOXD5X6QPaN0MX tDCjewV998cc6zDqpbo++JsnQrQ6gf9y2DUtsi6AiRkcbqPF7AfJh0BoeaUuIfLl oczpzN8UJM5W1lE4J1EWelmbmbgGtdKJfyj9rGafVUrtuOMU5TPuoomWnblkxzg4 zUI4shh0s17/h2jGVK2fdCdkDm0whD/BGgh/TpulF+JJlOjZNxPkAOCrxtEqe5Bz d4C0KXzyDIzKkyuqErEGp2HxgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF7ve4MO 0yew2kbrQHAdQsBxOosIMB8GA1UdIwQYMBaAFEGzGmjJJ4pNRHSOLfjGrKgVeOy1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEEyOS8wRTA2REJBMjRE NUMxMUVBQTgwODhBNjZDNEY5QUUwMi9RYk1hYU1rbmlrMUVkSTR0LU1hc3FCVjQ3 TFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FiTWFhTWtuaWsxRWRJNHQtTWFzcUJWNDdMVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MEEyOS8wRTA2REJBMjRENUMxMUVBQTgwODhBNjZDNEY5QUUwMi9RYk1hYU1rbmlr MUVkSTR0LU1hc3FCVjQ3TFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBlm3/5I92XshVWLWv8BaIHrW1WAjAdTbgzmWy5UMLr4FxzoAtfZrcz OFwF9/oTlGC6u8Szhh5+7ZEQq1vkEwZIbQJkRWbOlyc7K0oS8N0uygVl+B6+5mAY E/REI4AQd/mLW5oNYzLbVne5ewDaCrv8ZhgORijOBq2CYtyT+gIn850DiMbQZIaE rztuTFSSkES1qzRt6TM8fy9bvw4zDOyovmgR/vK6F0gC4nOx3tMZYbR0AfJvQxAQ td7FnBcxplNe/BlUo9mk9gXsmd06mezyqtbSXJICm4GZCAIJcHbKBS1MMlglvJP1 vyTZZJW+KTlqzuQ8LRfgirdPcQ87I+lx -----END CERTIFICATE-----Generated at Wed Dec 24 02:04:02 2025 by rpki-client