This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9125C31/38BF409A159011EA9C413652C4F9AE02/cQU3JEaiBkVG2WKfQhw3b9zvIdY.mft File: cQU3JEaiBkVG2WKfQhw3b9zvIdY.mft (raw, json) Hash identifier: P6hO7XD3WAi0XqSByGzav5H6VcqFCBfnZ4Qpu0nGz0M= Subject key identifier: 09:64:E5:A7:AF:4C:AB:66:BD:1C:59:3B:F0:79:6D:49:FC:F8:6F:65 Authority key identifier: 71:05:37:24:46:A2:06:45:46:D9:62:9F:42:1C:37:6F:DC:EF:21:D6 Certificate issuer: /CN=A9125C31/serialNumber=7105372446A2064546D9629F421C376FDCEF21D6 Certificate serial: 0C5E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cQU3JEaiBkVG2WKfQhw3b9zvIdY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125C31/38BF409A159011EA9C413652C4F9AE02/cQU3JEaiBkVG2WKfQhw3b9zvIdY.mft Manifest number: 0C57 Signing time: Wed 24 Dec 2025 18:14:50 +0000 Manifest this update: Wed 24 Dec 2025 18:14:49 +0000 Manifest next update: Wed 31 Dec 2025 18:14:49 +0000 Files and hashes: 1: cQU3JEaiBkVG2WKfQhw3b9zvIdY.crl (hash: dVGINi+a7HVBFfJuW6DLzzcwt5Nc5eHUorzbH8QgseA=) 2: 4697751815B111EA8277BA34C4F9AE02.roa (hash: dxDp9E0tHPQ++XAIde+nxMm3Ga/WWcWY96m0Hl+beDw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125C31/38BF409A159011EA9C413652C4F9AE02/cQU3JEaiBkVG2WKfQhw3b9zvIdY.crl rsync://rpki.apnic.net/member_repository/A9125C31/38BF409A159011EA9C413652C4F9AE02/cQU3JEaiBkVG2WKfQhw3b9zvIdY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cQU3JEaiBkVG2WKfQhw3b9zvIdY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Dec 2025 17:24:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3166 (0xc5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125C31, serialNumber=7105372446A2064546D9629F421C376FDCEF21D6 Validity Not Before: Dec 24 18:14:49 2025 GMT Not After : Dec 31 18:14:49 2025 GMT Subject: CN=694c2d99-c88e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:73:a3:14:cd:64:69:19:07:08:14:88:bf:a2: ab:36:ba:cf:5a:e7:0c:d8:b5:14:b5:4d:a2:1f:03: 3c:11:40:c4:99:0a:4d:6c:3c:a8:c0:da:d2:a5:26: a2:8a:c4:e9:40:78:9f:c8:e2:5a:78:06:87:0b:b8: 22:72:6f:d2:cb:7e:a9:ae:a6:d5:b7:62:d0:f7:45: d0:b4:8f:7a:bf:b5:14:8d:d9:a7:db:b2:e9:cf:7a: bb:de:ee:31:db:8f:c6:7e:95:44:ad:6f:a7:70:75: 9f:a6:b4:0f:59:4a:ac:3a:c0:2e:05:24:80:d3:9f: 99:b0:e1:04:a7:1d:2f:2b:c0:50:b1:e0:96:f1:8b: 0a:d6:fc:a6:c6:6c:12:45:44:f3:9e:46:a2:5d:88: e5:67:a0:b7:74:49:4a:2f:ce:ea:f4:3c:ac:74:7a: bf:69:84:d2:94:c4:d6:84:a5:d9:a5:e7:9f:8d:7e: 41:63:4d:91:12:bc:65:ad:1a:dc:61:43:10:7c:67: 47:f2:1e:8e:91:fb:63:3c:49:8f:78:d4:87:1d:3f: e5:31:71:a7:75:49:4c:16:25:33:a0:80:d4:8f:a2: 8a:24:12:51:ff:ae:a6:50:4d:3e:44:35:78:58:c8: 8d:bb:a5:b3:eb:cb:68:46:65:4c:fc:70:e8:a1:87: 8b:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:64:E5:A7:AF:4C:AB:66:BD:1C:59:3B:F0:79:6D:49:FC:F8:6F:65 X509v3 Authority Key Identifier: keyid:71:05:37:24:46:A2:06:45:46:D9:62:9F:42:1C:37:6F:DC:EF:21:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125C31/38BF409A159011EA9C413652C4F9AE02/cQU3JEaiBkVG2WKfQhw3b9zvIdY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cQU3JEaiBkVG2WKfQhw3b9zvIdY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125C31/38BF409A159011EA9C413652C4F9AE02/cQU3JEaiBkVG2WKfQhw3b9zvIdY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:15:12:98:7d:ad:2b:14:22:20:31:c8:30:0d:47:b9:2c:55: 97:32:3c:f8:7e:15:c4:e9:03:07:63:a3:b4:8f:42:81:ec:12: 53:09:c3:dc:02:04:a7:36:06:cd:e2:94:91:2b:9d:d1:ef:43: 86:da:1f:2c:67:47:8b:36:6e:63:92:7e:5b:53:4a:98:f4:b2: 11:85:dc:4d:76:52:54:f5:89:03:af:88:46:ba:95:9d:4b:f6: 42:3a:c2:56:d2:75:39:6e:5a:53:d5:87:97:95:c2:b5:71:ec: 09:72:58:2c:45:9c:89:69:80:07:0a:df:85:6e:3d:59:41:62: 69:08:c6:2a:3e:66:e4:34:6d:82:17:f4:c0:84:c4:a6:65:bb: 87:5b:94:1d:a4:63:70:d3:d0:56:eb:b6:e1:2c:1c:2c:09:fc: 20:bc:7d:75:0f:11:fb:0d:24:db:06:83:f6:46:3e:e0:d3:37: 8d:81:fa:87:71:57:bb:b5:3b:93:02:f8:4d:21:6e:3f:11:4f: 0f:fd:6b:eb:b9:28:5e:88:ed:ec:28:df:cb:79:91:0b:49:c6: ba:af:3f:f3:e6:6f:35:35:0b:84:ea:af:07:c8:6e:73:ef:ce: a5:1c:24:a5:f7:f4:15:26:46:13:1a:ac:bc:43:b7:a7:dd:b9: 4e:61:2d:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDF4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVDMzExMTAvBgNVBAUTKDcxMDUzNzI0NDZBMjA2NDU0NkQ5NjI5RjQyMUMzNzZG RENFRjIxRDYwHhcNMjUxMjI0MTgxNDQ5WhcNMjUxMjMxMTgxNDQ5WjAYMRYwFAYD VQQDDA02OTRjMmQ5OS1jODhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwnOjFM1kaRkHCBSIv6KrNrrPWucM2LUUtU2iHwM8EUDEmQpNbDyowNrSpSai isTpQHifyOJaeAaHC7gicm/Sy36prqbVt2LQ90XQtI96v7UUjdmn27Lpz3q73u4x 24/GfpVErW+ncHWfprQPWUqsOsAuBSSA05+ZsOEEpx0vK8BQseCW8YsK1vymxmwS RUTznkaiXYjlZ6C3dElKL87q9DysdHq/aYTSlMTWhKXZpeefjX5BY02RErxlrRrc YUMQfGdH8h6OkftjPEmPeNSHHT/lMXGndUlMFiUzoIDUj6KKJBJR/66mUE0+RDV4 WMiNu6Wz68toRmVM/HDooYeLPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAlk5aev TKtmvRxZO/B5bUn8+G9lMB8GA1UdIwQYMBaAFHEFNyRGogZFRtlin0IcN2/c7yHW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUMzMS8zOEJGNDA5QTE1 OTAxMUVBOUM0MTM2NTJDNEY5QUUwMi9jUVUzSkVhaUJrVkcyV0tmUWh3M2I5enZJ ZFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NRVTNKRWFpQmtWRzJXS2ZRaHczYjl6dklkWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NUMzMS8zOEJGNDA5QTE1OTAxMUVBOUM0MTM2NTJDNEY5QUUwMi9jUVUzSkVhaUJr VkcyV0tmUWh3M2I5enZJZFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2FRKYfa0rFCIgMcgwDUe5LFWXMjz4fhXE6QMHY6O0j0KB7BJTCcPc AgSnNgbN4pSRK53R70OG2h8sZ0eLNm5jkn5bU0qY9LIRhdxNdlJU9YkDr4hGupWd S/ZCOsJW0nU5blpT1YeXlcK1cewJclgsRZyJaYAHCt+Fbj1ZQWJpCMYqPmbkNG2C F/TAhMSmZbuHW5QdpGNw09BW67bhLBwsCfwgvH11DxH7DSTbBoP2Rj7g0zeNgfqH cVe7tTuTAvhNIW4/EU8P/WvruSheiO3sKN/LeZELSca6rz/z5m81NQuE6q8HyG5z 786lHCSl9/QVJkYTGqy8Q7en3blOYS23 -----END CERTIFICATE-----Generated at Wed Dec 24 21:23:59 2025 by rpki-client