This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911CB05/F0B66CF88A9A11EFB8AA5648C4F9AE02/QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.mft File: QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.mft (raw, json) Hash identifier: ea6N8esz12jbS/TIoQAHFgPS/2fcINUAxoyE6ACFnMU= Subject key identifier: 64:E2:F5:55:02:FF:A4:2E:62:C9:88:50:14:A8:C3:02:97:19:41:B2 Authority key identifier: 40:DD:EE:F0:18:EA:DC:DE:4D:1B:F7:8D:15:48:51:F8:D8:BC:26:A5 Certificate issuer: /CN=A911CB05/serialNumber=40DDEEF018EADCDE4D1BF78D154851F8D8BC26A5 Certificate serial: D8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CB05/F0B66CF88A9A11EFB8AA5648C4F9AE02/QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.mft Manifest number: D6 Signing time: Wed 03 Dec 2025 04:00:32 +0000 Manifest this update: Wed 03 Dec 2025 04:00:32 +0000 Manifest next update: Wed 10 Dec 2025 04:00:32 +0000 Files and hashes: 1: QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.crl (hash: DmzefmjZvdWB9sr31+unuToRVA80ozElZniZQlkC9ko=) 2: E692CC2A8A9B11EFBC56AA85C4F9AE02.roa (hash: izaJYsSU6U7Mo7zWWYJeDmZ95mIz6wQL/e1yh556DPY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CB05/F0B66CF88A9A11EFB8AA5648C4F9AE02/QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.crl rsync://rpki.apnic.net/member_repository/A911CB05/F0B66CF88A9A11EFB8AA5648C4F9AE02/QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 04:00:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 216 (0xd8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CB05, serialNumber=40DDEEF018EADCDE4D1BF78D154851F8D8BC26A5 Validity Not Before: Dec 3 04:00:32 2025 GMT Not After : Dec 10 04:00:32 2025 GMT Subject: CN=692fb5e0-a3dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:ed:a5:d7:6a:ba:05:97:a5:eb:02:74:60:62: dd:1f:22:53:65:af:aa:23:18:1f:7c:2c:42:73:87: e9:a8:73:cb:d3:f7:47:66:d8:e9:8f:19:fb:f1:e0: c7:45:4c:2a:7a:eb:a8:a8:58:84:0f:7b:7f:52:af: 62:fc:7f:ba:b2:9e:88:9c:2a:b0:1b:36:ee:e5:ba: 6c:a7:cd:ab:01:4d:0c:f4:bc:aa:89:ed:cf:0a:32: bb:fd:9e:6e:3f:06:ad:db:93:6f:bf:a7:4e:95:3d: 64:a0:00:56:af:04:4b:0c:8d:3e:b0:cd:46:1e:93: 98:0e:f7:8f:77:d8:de:e7:7f:a0:f3:83:cd:5f:f2: 7f:10:81:d6:c9:a3:b7:db:a2:e0:0c:58:dc:69:63: c7:40:e8:7f:ad:fc:2e:6f:7a:17:0c:34:c9:6d:fd: 1b:d5:29:d1:ec:19:0e:3b:4c:ce:10:ad:f6:dc:df: 81:59:47:96:19:f0:f7:d2:05:8f:41:cf:c9:28:e7: a1:d5:e5:a1:7d:2f:b1:b5:8a:90:ba:2d:d5:9c:76: d4:10:77:9b:d9:02:42:6b:cc:07:b2:0c:28:2b:a3: aa:07:47:71:12:27:ff:8f:d9:a8:c8:37:b5:ce:8c: b0:65:33:63:d9:35:38:ef:d8:b4:13:4d:98:2f:cf: eb:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:E2:F5:55:02:FF:A4:2E:62:C9:88:50:14:A8:C3:02:97:19:41:B2 X509v3 Authority Key Identifier: keyid:40:DD:EE:F0:18:EA:DC:DE:4D:1B:F7:8D:15:48:51:F8:D8:BC:26:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CB05/F0B66CF88A9A11EFB8AA5648C4F9AE02/QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CB05/F0B66CF88A9A11EFB8AA5648C4F9AE02/QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c4:c8:c1:fa:83:f2:19:b9:60:6d:ea:b7:84:18:2b:c6:53:5a: 2a:93:8c:3e:1d:ff:61:93:67:5c:dc:fe:cf:e2:30:89:5d:2e: e0:10:3b:3c:2b:c1:42:f1:04:fa:e9:98:5c:43:f4:c4:d0:50: 35:ab:e3:34:c6:4a:97:9f:7d:f1:c9:1e:9a:09:a4:10:1c:95: 27:cd:05:2f:7f:26:67:f5:00:eb:2a:1f:b7:36:53:7d:d3:4d: 78:28:9f:5c:9b:1a:c7:88:c5:ba:ba:24:6b:f0:4e:4c:68:da: 08:76:93:f1:c8:ab:d5:7f:24:e2:7a:47:f8:68:86:af:9a:7a: 38:60:55:bd:a0:a0:20:62:75:60:23:84:ca:0a:fd:48:a6:a5: 3f:97:85:b4:61:cd:56:a6:1f:d2:75:e8:e5:5a:34:1a:56:da: b6:87:22:77:1b:17:ed:88:4b:97:85:0e:d1:7f:04:72:8b:2b: 33:3c:4d:fe:a1:9d:ba:c0:bd:5e:04:fd:71:a1:d0:d7:c6:63: 0a:e8:e3:fb:c8:54:53:76:f2:fe:32:fa:91:c2:b5:18:4d:9b: 65:84:bb:51:d6:5c:e9:fe:b1:47:b3:92:fe:23:15:af:0b:75: 39:c6:ce:cd:68:8d:4d:56:bb:45:6e:f8:53:09:f7:ef:a7:78: 9e:1a:6d:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNCMDUxMTAvBgNVBAUTKDQwRERFRUYwMThFQURDREU0RDFCRjc4RDE1NDg1MUY4 RDhCQzI2QTUwHhcNMjUxMjAzMDQwMDMyWhcNMjUxMjEwMDQwMDMyWjAYMRYwFAYD VQQDEw02OTJmYjVlMC1hM2RkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu+2l12q6BZel6wJ0YGLdHyJTZa+qIxgffCxCc4fpqHPL0/dHZtjpjxn78eDH RUwqeuuoqFiED3t/Uq9i/H+6sp6InCqwGzbu5bpsp82rAU0M9Lyqie3PCjK7/Z5u Pwat25Nvv6dOlT1koABWrwRLDI0+sM1GHpOYDvePd9je53+g84PNX/J/EIHWyaO3 26LgDFjcaWPHQOh/rfwub3oXDDTJbf0b1SnR7BkOO0zOEK323N+BWUeWGfD30gWP Qc/JKOeh1eWhfS+xtYqQui3VnHbUEHeb2QJCa8wHsgwoK6OqB0dxEif/j9moyDe1 zoywZTNj2TU479i0E02YL8/rEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGTi9VUC /6QuYsmIUBSowwKXGUGyMB8GA1UdIwQYMBaAFEDd7vAY6tzeTRv3jRVIUfjYvCal MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0IwNS9GMEI2NkNGODhB OUExMUVGQjhBQTU2NDhDNEY5QUUwMi9RTjN1OEJqcTNONU5HX2VORlVoUi1OaThK cVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FOM3U4QmpxM041TkdfZU5GVWhSLU5pOEpxVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Q0IwNS9GMEI2NkNGODhBOUExMUVGQjhBQTU2NDhDNEY5QUUwMi9RTjN1OEJqcTNO NU5HX2VORlVoUi1OaThKcVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDEyMH6g/IZuWBt6reEGCvGU1oqk4w+Hf9hk2dc3P7P4jCJXS7gEDs8 K8FC8QT66ZhcQ/TE0FA1q+M0xkqXn33xyR6aCaQQHJUnzQUvfyZn9QDrKh+3NlN9 0014KJ9cmxrHiMW6uiRr8E5MaNoIdpPxyKvVfyTiekf4aIavmno4YFW9oKAgYnVg I4TKCv1IpqU/l4W0Yc1Wph/SdejlWjQaVtq2hyJ3GxftiEuXhQ7RfwRyiyszPE3+ oZ26wL1eBP1xodDXxmMK6OP7yFRTdvL+MvqRwrUYTZtlhLtR1lzp/rFHs5L+IxWv C3U5xs7NaI1NVrtFbvhTCffvp3ieGm0x -----END CERTIFICATE-----Generated at Wed Dec 3 16:22:48 2025 by rpki-client