This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911B5D7/25872BBE03B411E7B811AA14C4F9AE02/Qf4dQTWrLWdiPnYIM5hGitT6odw.mft File: Qf4dQTWrLWdiPnYIM5hGitT6odw.mft (raw, json) Hash identifier: SWfzAi24JtpRC6MHoxnpMMLqbo344Jm0kpcGw/xDFw4= Subject key identifier: 3A:4B:AD:A8:18:C7:CF:EA:BE:5C:B0:46:42:BF:90:F3:F2:DE:90:A4 Authority key identifier: 41:FE:1D:41:35:AB:2D:67:62:3E:76:08:33:98:46:8A:D4:FA:A1:DC Certificate issuer: /CN=A911B5D7/serialNumber=41FE1D4135AB2D67623E76083398468AD4FAA1DC Certificate serial: 1C68 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qf4dQTWrLWdiPnYIM5hGitT6odw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B5D7/25872BBE03B411E7B811AA14C4F9AE02/Qf4dQTWrLWdiPnYIM5hGitT6odw.mft Manifest number: 1C32 Signing time: Sat 20 Dec 2025 16:02:33 +0000 Manifest this update: Sat 20 Dec 2025 16:02:32 +0000 Manifest next update: Sat 27 Dec 2025 16:02:32 +0000 Files and hashes: 1: Qf4dQTWrLWdiPnYIM5hGitT6odw.crl (hash: 43l5yjTCBOeeA+oiKUsaA7pNMGhwLeyAvVVEKvZi0x0=) 2: E007C458C1F111F0BF3C4B61C4F9AE02.roa (hash: syr5keE2kGwUDFJmQwSmPdSjoefEMhtzkVJ4glu0DSA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B5D7/25872BBE03B411E7B811AA14C4F9AE02/Qf4dQTWrLWdiPnYIM5hGitT6odw.crl rsync://rpki.apnic.net/member_repository/A911B5D7/25872BBE03B411E7B811AA14C4F9AE02/Qf4dQTWrLWdiPnYIM5hGitT6odw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qf4dQTWrLWdiPnYIM5hGitT6odw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 16:02:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7272 (0x1c68) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B5D7, serialNumber=41FE1D4135AB2D67623E76083398468AD4FAA1DC Validity Not Before: Dec 20 16:02:32 2025 GMT Not After : Dec 27 16:02:32 2025 GMT Subject: CN=6946c899-7b87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:74:94:7d:f9:f1:c2:ff:f1:cf:2c:d5:3d:3c: 16:d0:1d:cc:d6:4c:a4:f0:e6:08:c3:21:9e:2a:cc: e7:73:94:8e:ee:dd:c1:a4:b8:c7:a6:61:a0:ed:0f: a3:b9:66:ae:27:19:7a:96:44:ee:38:86:8f:eb:5b: 7a:62:69:2c:ab:27:6e:3f:6f:1c:42:b5:d2:4d:90: 39:80:a0:84:62:85:77:fa:73:d4:a9:70:0c:a7:02: 9a:e5:09:a2:37:2b:44:50:9b:93:3f:36:c9:1f:e2: 62:7e:75:72:ef:79:39:f5:05:d0:45:6f:40:fb:1d: 45:65:02:9b:04:82:54:3c:32:d7:9c:37:c4:cc:39: 4b:77:75:79:32:90:af:70:1d:e6:dc:7d:de:fd:5b: 94:6f:07:ae:05:3a:0d:87:a2:f0:55:bf:c5:b7:b5: b8:d3:40:ac:ed:f0:17:88:20:d2:a2:aa:a9:98:53: 49:36:12:a8:80:80:51:19:9f:d4:e6:af:a6:86:47: 4c:2b:29:2b:e0:3a:eb:bf:00:22:ff:6d:02:fe:e2: 13:4c:a5:69:b1:48:41:71:f7:90:4f:61:84:fd:fc: 55:40:f8:02:39:9e:28:df:05:78:ab:47:c6:ad:d8: 67:2c:d3:0b:20:32:2e:ca:ff:4b:dd:67:65:1f:95: 0e:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:4B:AD:A8:18:C7:CF:EA:BE:5C:B0:46:42:BF:90:F3:F2:DE:90:A4 X509v3 Authority Key Identifier: keyid:41:FE:1D:41:35:AB:2D:67:62:3E:76:08:33:98:46:8A:D4:FA:A1:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B5D7/25872BBE03B411E7B811AA14C4F9AE02/Qf4dQTWrLWdiPnYIM5hGitT6odw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qf4dQTWrLWdiPnYIM5hGitT6odw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B5D7/25872BBE03B411E7B811AA14C4F9AE02/Qf4dQTWrLWdiPnYIM5hGitT6odw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c1:60:11:d3:5b:e3:d4:af:e1:47:2a:0f:49:d7:0b:16:54:cd: 93:44:90:23:84:db:28:02:de:0b:1a:de:c5:d1:bb:20:a2:47: 31:84:a4:53:33:29:ea:8e:06:ce:32:0f:b5:35:d9:c9:56:d8: 68:7d:cc:3f:03:58:b1:5e:06:88:fc:7f:aa:a0:4c:45:29:6a: a7:c2:e9:5f:8b:6a:8d:cb:26:08:35:46:e6:e7:5a:4e:09:73: bf:ea:12:d0:4b:2a:d5:b8:c9:12:2f:96:a1:a3:64:57:44:9b: 25:f0:53:0c:d9:98:c7:26:06:f4:b6:e2:85:4b:d0:49:21:46: 67:7b:ea:90:d8:c9:9e:7d:e5:10:cc:07:07:bc:75:12:34:a7: 0d:c6:1a:d1:32:8b:48:bb:87:17:c7:d4:aa:7b:e0:df:3f:29: 72:c8:c3:d1:6d:d6:9f:77:c5:27:8b:45:e7:52:84:7c:39:05: af:c3:42:1a:56:46:6e:f1:fb:66:28:bd:35:ed:36:dd:75:f0: 67:83:38:ce:43:ac:6d:63:4d:ee:00:9c:25:fe:3d:66:6d:62: ba:3b:e7:c6:4a:ec:92:cb:37:fd:b1:a4:d0:45:5f:3c:dc:fd: d5:a1:78:99:9a:fd:b9:79:30:b7:9a:c0:36:b1:28:6f:4d:e8: 43:2a:0f:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHGgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI1RDcxMTAvBgNVBAUTKDQxRkUxRDQxMzVBQjJENjc2MjNFNzYwODMzOTg0NjhB RDRGQUExREMwHhcNMjUxMjIwMTYwMjMyWhcNMjUxMjI3MTYwMjMyWjAYMRYwFAYD VQQDDA02OTQ2Yzg5OS03Yjg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAi3SUffnxwv/xzyzVPTwW0B3M1kyk8OYIwyGeKsznc5SO7t3BpLjHpmGg7Q+j uWauJxl6lkTuOIaP61t6YmksqyduP28cQrXSTZA5gKCEYoV3+nPUqXAMpwKa5Qmi NytEUJuTPzbJH+JifnVy73k59QXQRW9A+x1FZQKbBIJUPDLXnDfEzDlLd3V5MpCv cB3m3H3e/VuUbweuBToNh6LwVb/Ft7W400Cs7fAXiCDSoqqpmFNJNhKogIBRGZ/U 5q+mhkdMKykr4DrrvwAi/20C/uITTKVpsUhBcfeQT2GE/fxVQPgCOZ4o3wV4q0fG rdhnLNMLIDIuyv9L3WdlH5UO5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDpLragY x8/qvlywRkK/kPPy3pCkMB8GA1UdIwQYMBaAFEH+HUE1qy1nYj52CDOYRorU+qHc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjVENy8yNTg3MkJCRTAz QjQxMUU3QjgxMUFBMTRDNEY5QUUwMi9RZjRkUVRXckxXZGlQbllJTTVoR2l0VDZv ZHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FmNGRRVFdyTFdkaVBuWUlNNWhHaXRUNm9kdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjVENy8yNTg3MkJCRTAzQjQxMUU3QjgxMUFBMTRDNEY5QUUwMi9RZjRkUVRXckxX ZGlQbllJTTVoR2l0VDZvZHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDBYBHTW+PUr+FHKg9J1wsWVM2TRJAjhNsoAt4LGt7F0bsgokcxhKRT MynqjgbOMg+1NdnJVthofcw/A1ixXgaI/H+qoExFKWqnwulfi2qNyyYINUbm51pO CXO/6hLQSyrVuMkSL5aho2RXRJsl8FMM2ZjHJgb0tuKFS9BJIUZne+qQ2MmefeUQ zAcHvHUSNKcNxhrRMotIu4cXx9Sqe+DfPylyyMPRbdafd8Uni0XnUoR8OQWvw0Ia VkZu8ftmKL017TbddfBngzjOQ6xtY03uAJwl/j1mbWK6O+fGSuySyzf9saTQRV88 3P3VoXiZmv25eTC3msA2sShvTehDKg+y -----END CERTIFICATE-----Generated at Sun Dec 21 23:03:59 2025 by rpki-client