This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.mft File: 0qCHG82DdsEajwSaOYVa_NsYMGQ.mft (raw, json) Hash identifier: Y5po/GQP+NNvox6ISH8wJFgLgHe/vMAGajgupxGaOTM= Subject key identifier: BE:C4:BC:52:69:9C:3A:E4:3C:F6:FA:BC:99:1B:24:AD:84:BB:9F:D0 Authority key identifier: D2:A0:87:1B:CD:83:76:C1:1A:8F:04:9A:39:85:5A:FC:DB:18:30:64 Certificate issuer: /CN=A911CA82/serialNumber=D2A0871BCD8376C11A8F049A39855AFCDB183064 Certificate serial: 0693 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0qCHG82DdsEajwSaOYVa_NsYMGQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.mft Manifest number: 0678 Signing time: Mon 22 Dec 2025 21:55:07 +0000 Manifest this update: Mon 22 Dec 2025 21:55:06 +0000 Manifest next update: Mon 29 Dec 2025 21:55:06 +0000 Files and hashes: 1: 0qCHG82DdsEajwSaOYVa_NsYMGQ.crl (hash: maWjSj8T1/nRx6HMKho5squgactY7V2YBjTCPV/3VJs=) 2: CB304C36307111EDB0CBD946C4F9AE02.roa (hash: jEdo1Rs/DDX/IrH+sOX8S2VLADZNFH0eDKIDU/uoHNw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.crl rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0qCHG82DdsEajwSaOYVa_NsYMGQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 21:55:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1683 (0x693) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CA82, serialNumber=D2A0871BCD8376C11A8F049A39855AFCDB183064 Validity Not Before: Dec 22 21:55:06 2025 GMT Not After : Dec 29 21:55:06 2025 GMT Subject: CN=6949be3b-cbbd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:fe:25:43:59:18:b5:60:4a:ff:56:13:8d:86: 76:f1:25:55:cc:9f:fd:17:cd:4c:b8:e7:53:8b:46: b4:ce:2f:a2:2c:70:0a:57:4f:b7:a8:74:b5:f4:03: f5:6e:95:38:c2:81:dd:07:81:2f:ea:25:13:f1:f7: b5:1f:61:15:e7:e9:ac:1a:93:80:af:25:b0:b0:78: b4:da:49:f6:a1:67:11:22:3e:01:2a:6e:fe:d4:86: 5f:a0:db:74:e3:8f:4b:a6:15:69:b4:fb:7d:1e:4c: 18:09:02:3a:c1:c5:ca:63:b6:7f:fd:02:c6:db:b1: d7:db:1f:cf:06:07:4f:38:f5:bd:51:34:eb:36:fc: a1:68:16:03:dc:0b:1f:59:b4:b0:43:97:48:0a:10: 11:b1:0e:aa:67:7d:04:f4:dc:0f:3d:0f:3f:40:55: 69:71:6d:f3:51:d2:3c:b9:cd:ca:c7:34:7f:8b:31: ba:e8:d0:06:ec:31:fa:37:65:a1:85:51:ca:21:66: 33:52:b1:24:79:37:1c:67:94:7e:45:d2:96:f6:8a: cb:af:0a:e5:0e:5d:66:05:d9:7e:69:4f:55:e0:06: 6c:5a:35:5f:20:18:bd:96:d7:e2:1e:75:78:a2:38: bb:30:93:44:34:05:db:a1:bc:ce:34:6a:0c:13:36: e3:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:C4:BC:52:69:9C:3A:E4:3C:F6:FA:BC:99:1B:24:AD:84:BB:9F:D0 X509v3 Authority Key Identifier: keyid:D2:A0:87:1B:CD:83:76:C1:1A:8F:04:9A:39:85:5A:FC:DB:18:30:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0qCHG82DdsEajwSaOYVa_NsYMGQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c0:9f:51:7a:d5:7d:07:5d:08:a3:86:e1:5e:c7:39:c0:43:a8: 74:87:36:3a:5e:6a:c5:29:4d:1c:47:86:60:7d:41:1b:50:17: 1e:de:4d:42:10:87:2b:00:7e:31:e5:e6:f1:6d:a7:55:70:fd: 13:4a:29:d2:3b:38:2d:60:84:03:a2:15:b1:00:20:ef:83:8c: d5:f5:2c:5e:9c:41:ce:93:40:74:b9:a3:fe:61:53:a6:12:07: b4:dc:3e:7b:94:8a:c8:b9:41:21:9f:ab:79:69:bb:94:3b:1c: 98:f1:4a:98:65:2f:9d:58:8f:06:e5:80:7e:52:e8:d5:ff:a5: 57:3e:f9:e6:f0:cc:3d:5d:db:50:69:18:a3:ac:a9:69:51:a4: e7:8a:42:4a:1d:a8:13:e4:fc:a9:4d:8f:0c:78:c9:79:d2:33: fb:3e:d3:e7:9c:18:eb:40:3f:fc:1b:f6:51:86:95:33:e1:82: ee:49:67:c8:25:b9:71:2a:b8:2b:9e:af:33:34:5f:b8:41:24: 3f:b0:27:f1:59:bc:da:b0:06:dc:b1:86:87:37:63:92:93:33: 11:56:0c:2e:26:67:f1:49:c2:b2:be:81:cb:0e:3a:c4:2d:3c: 8c:37:b8:64:e1:53:a0:f7:a1:fe:bc:1e:43:61:2d:22:bc:80: c7:17:60:b5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBpMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNBODIxMTAvBgNVBAUTKEQyQTA4NzFCQ0Q4Mzc2QzExQThGMDQ5QTM5ODU1QUZD REIxODMwNjQwHhcNMjUxMjIyMjE1NTA2WhcNMjUxMjI5MjE1NTA2WjAYMRYwFAYD VQQDDA02OTQ5YmUzYi1jYmJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnP4lQ1kYtWBK/1YTjYZ28SVVzJ/9F81MuOdTi0a0zi+iLHAKV0+3qHS19AP1 bpU4woHdB4Ev6iUT8fe1H2EV5+msGpOAryWwsHi02kn2oWcRIj4BKm7+1IZfoNt0 449LphVptPt9HkwYCQI6wcXKY7Z//QLG27HX2x/PBgdPOPW9UTTrNvyhaBYD3Asf WbSwQ5dIChARsQ6qZ30E9NwPPQ8/QFVpcW3zUdI8uc3KxzR/izG66NAG7DH6N2Wh hVHKIWYzUrEkeTccZ5R+RdKW9orLrwrlDl1mBdl+aU9V4AZsWjVfIBi9ltfiHnV4 oji7MJNENAXbobzONGoMEzbj6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL7EvFJp nDrkPPb6vJkbJK2Eu5/QMB8GA1UdIwQYMBaAFNKghxvNg3bBGo8EmjmFWvzbGDBk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0E4Mi8wQkVCMzc1QUJF NDQxMUVCQUUzRDQzNDhDNEY5QUUwMi8wcUNIRzgyRGRzRWFqd1NhT1lWYV9Oc1lN R1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBxQ0hHODJEZHNFYWp3U2FPWVZhX05zWU1HUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Q0E4Mi8wQkVCMzc1QUJFNDQxMUVCQUUzRDQzNDhDNEY5QUUwMi8wcUNIRzgyRGRz RWFqd1NhT1lWYV9Oc1lNR1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDAn1F61X0HXQijhuFexznAQ6h0hzY6XmrFKU0cR4ZgfUEbUBce3k1C EIcrAH4x5ebxbadVcP0TSinSOzgtYIQDohWxACDvg4zV9SxenEHOk0B0uaP+YVOm Ege03D57lIrIuUEhn6t5abuUOxyY8UqYZS+dWI8G5YB+UujV/6VXPvnm8Mw9XdtQ aRijrKlpUaTnikJKHagT5PypTY8MeMl50jP7PtPnnBjrQD/8G/ZRhpUz4YLuSWfI JblxKrgrnq8zNF+4QSQ/sCfxWbzasAbcsYaHN2OSkzMRVgwuJmfxScKyvoHLDjrE LTyMN7hk4VOg96H+vB5DYS0ivIDHF2C1 -----END CERTIFICATE-----Generated at Wed Dec 24 15:46:45 2025 by rpki-client