This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.mft File: QN1mK29ul7NNO3WoAH3lOI2SclM.mft (raw, json) Hash identifier: Ssaddxc+F+xHlYg/R0uGY64M7UDetPQZm0Y+WldgiSo= Subject key identifier: 75:34:DC:1F:7D:2A:03:C9:DC:EF:6F:85:CE:97:8C:4C:D4:E2:03:DF Authority key identifier: 40:DD:66:2B:6F:6E:97:B3:4D:3B:75:A8:00:7D:E5:38:8D:92:72:53 Certificate issuer: /CN=A911CF44/serialNumber=40DD662B6F6E97B34D3B75A8007DE5388D927253 Certificate serial: 06B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QN1mK29ul7NNO3WoAH3lOI2SclM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.mft Manifest number: 06B1 Signing time: Mon 22 Dec 2025 21:30:04 +0000 Manifest this update: Mon 22 Dec 2025 21:30:04 +0000 Manifest next update: Mon 29 Dec 2025 21:30:04 +0000 Files and hashes: 1: QN1mK29ul7NNO3WoAH3lOI2SclM.crl (hash: KXHoZS6styjcKpwmp/r/IDZC4O8sIqbLs0OGz/xrM8U=) 2: 85613B4E8C8411EBB68DD829C4F9AE02.roa (hash: JUDELwHgPtKuVC+Zxi+8ziVhRWeVBos3PiAym1dLOsg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.crl rsync://rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QN1mK29ul7NNO3WoAH3lOI2SclM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 21:30:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1721 (0x6b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CF44, serialNumber=40DD662B6F6E97B34D3B75A8007DE5388D927253 Validity Not Before: Dec 22 21:30:04 2025 GMT Not After : Dec 29 21:30:04 2025 GMT Subject: CN=6949b85c-bfd0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:7d:92:db:12:c2:b5:29:53:60:86:c2:41:e1: f2:23:39:41:81:42:d9:58:7f:f7:63:c3:ad:01:af: de:b4:85:b1:b8:47:0c:82:3c:c9:11:77:c2:b6:74: ef:5f:21:90:12:40:d5:2f:be:01:79:6c:8f:7a:45: 01:37:07:32:69:d9:e7:21:53:6f:1c:57:de:c1:3a: 42:38:80:5a:ea:91:dd:5b:a6:e7:6a:1b:72:03:2f: 67:b8:02:cb:d2:54:70:12:63:58:98:da:04:99:b8: 21:cb:65:25:cd:e5:63:3b:65:b4:92:81:5d:5d:74: b2:75:64:37:d5:43:07:de:da:67:15:bc:f1:db:e4: c5:de:05:8c:cf:f4:6c:6d:40:d1:61:2a:1f:97:c6: e3:8b:7c:45:1f:b5:61:cf:ab:09:48:cd:8f:56:23: e3:5b:f7:d7:a5:06:7c:37:d6:28:e8:5f:cb:c7:41: 7a:98:50:93:4a:0d:e2:c1:aa:55:30:b3:42:e8:aa: 4a:4e:cf:3f:fc:53:fe:6e:45:05:20:c1:4e:3f:88: 0c:5b:4d:db:36:90:ae:1a:eb:af:b2:28:18:7b:1a: 3f:d7:61:04:44:34:8a:8a:bd:05:e2:fa:34:d0:c0: e2:7f:da:49:b7:a9:e1:f1:90:7d:a6:ad:f7:b3:18: d5:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:34:DC:1F:7D:2A:03:C9:DC:EF:6F:85:CE:97:8C:4C:D4:E2:03:DF X509v3 Authority Key Identifier: keyid:40:DD:66:2B:6F:6E:97:B3:4D:3B:75:A8:00:7D:E5:38:8D:92:72:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QN1mK29ul7NNO3WoAH3lOI2SclM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d0:db:6d:8c:20:bf:0b:85:ad:52:1e:78:91:52:2e:ee:d9:59: b7:9a:0e:90:cf:ac:a9:b0:ef:b3:26:5d:e2:87:c5:fa:e3:e3: d0:29:e8:34:a3:d4:dd:7d:b7:c2:9d:0d:9d:da:95:2e:e9:39: d7:96:50:96:15:3b:0d:e0:d9:2f:47:d4:9a:5c:ae:26:1b:80: a7:05:81:64:ef:1d:35:e5:e0:5a:1a:8a:76:5b:6d:1d:ea:ff: d9:b3:c6:33:da:39:e6:49:75:1d:60:90:7e:bf:1f:d6:cc:8e: 78:3a:58:84:c4:14:86:14:1b:bf:23:e1:70:8a:17:53:b8:d2: af:b4:73:de:90:96:a5:a6:5b:43:91:f1:6f:e9:94:6b:9c:ee: 85:e3:5b:6b:7a:e1:58:7b:01:75:61:be:53:40:57:76:9b:28: d9:be:6f:bc:59:67:7e:77:81:75:5e:16:98:de:e1:d4:b3:36: 4a:91:81:a3:80:d8:f0:29:11:71:b3:72:87:3e:46:5b:d3:1b: 1a:00:59:a4:25:c2:21:cc:2f:00:bd:2a:1a:4e:f3:6d:6c:3f: e4:f3:97:9f:7d:2a:96:11:74:83:17:8d:92:2a:5f:c6:7c:ab: b8:32:b2:3c:71:5e:d5:c6:49:b8:8b:fb:ea:75:49:eb:e7:a4: fe:c7:6b:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBrkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNGNDQxMTAvBgNVBAUTKDQwREQ2NjJCNkY2RTk3QjM0RDNCNzVBODAwN0RFNTM4 OEQ5MjcyNTMwHhcNMjUxMjIyMjEzMDA0WhcNMjUxMjI5MjEzMDA0WjAYMRYwFAYD VQQDDA02OTQ5Yjg1Yy1iZmQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAln2S2xLCtSlTYIbCQeHyIzlBgULZWH/3Y8OtAa/etIWxuEcMgjzJEXfCtnTv XyGQEkDVL74BeWyPekUBNwcyadnnIVNvHFfewTpCOIBa6pHdW6bnahtyAy9nuALL 0lRwEmNYmNoEmbghy2UlzeVjO2W0koFdXXSydWQ31UMH3tpnFbzx2+TF3gWMz/Rs bUDRYSofl8bji3xFH7Vhz6sJSM2PViPjW/fXpQZ8N9Yo6F/Lx0F6mFCTSg3iwapV MLNC6KpKTs8//FP+bkUFIMFOP4gMW03bNpCuGuuvsigYexo/12EERDSKir0F4vo0 0MDif9pJt6nh8ZB9pq33sxjVAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHU03B99 KgPJ3O9vhc6XjEzU4gPfMB8GA1UdIwQYMBaAFEDdZitvbpezTTt1qAB95TiNknJT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0Y0NC82Njc3QkVCNjhD ODMxMUVCODQ5RTYxMjlDNEY5QUUwMi9RTjFtSzI5dWw3Tk5PM1dvQUgzbE9JMlNj bE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FOMW1LMjl1bDdOTk8zV29BSDNsT0kyU2NsTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Q0Y0NC82Njc3QkVCNjhDODMxMUVCODQ5RTYxMjlDNEY5QUUwMi9RTjFtSzI5dWw3 Tk5PM1dvQUgzbE9JMlNjbE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDQ222MIL8Lha1SHniRUi7u2Vm3mg6Qz6ypsO+zJl3ih8X64+PQKeg0 o9TdfbfCnQ2d2pUu6TnXllCWFTsN4NkvR9SaXK4mG4CnBYFk7x015eBaGop2W20d 6v/Zs8Yz2jnmSXUdYJB+vx/WzI54OliExBSGFBu/I+FwihdTuNKvtHPekJalpltD kfFv6ZRrnO6F41treuFYewF1Yb5TQFd2myjZvm+8WWd+d4F1XhaY3uHUszZKkYGj gNjwKRFxs3KHPkZb0xsaAFmkJcIhzC8AvSoaTvNtbD/k85effSqWEXSDF42SKl/G fKu4MrI8cV7Vxkm4i/vqdUnr56T+x2vI -----END CERTIFICATE-----Generated at Tue Dec 23 06:39:28 2025 by rpki-client