This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A913631F/7B3F0B1CCF1C11EF81947F85C4F9AE02/QDu3uRj5FUrYLCrTWu_Aq-jQat4.mft File: QDu3uRj5FUrYLCrTWu_Aq-jQat4.mft (raw, json) Hash identifier: KjqDNiwbEcM1focekrHh+/Nc71OMIqma1ti+v5HkQ28= Subject key identifier: 1E:3D:62:12:30:DE:5F:21:9E:89:E4:4C:09:5E:4C:05:9D:9B:31:FE Authority key identifier: 40:3B:B7:B9:18:F9:15:4A:D8:2C:2A:D3:5A:EF:C0:AB:E8:D0:6A:DE Certificate issuer: /CN=A913631F/serialNumber=403BB7B918F9154AD82C2AD35AEFC0ABE8D06ADE Certificate serial: B2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QDu3uRj5FUrYLCrTWu_Aq-jQat4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913631F/7B3F0B1CCF1C11EF81947F85C4F9AE02/QDu3uRj5FUrYLCrTWu_Aq-jQat4.mft Manifest number: B1 Signing time: Sun 21 Dec 2025 05:12:32 +0000 Manifest this update: Sun 21 Dec 2025 05:12:31 +0000 Manifest next update: Sun 28 Dec 2025 05:12:31 +0000 Files and hashes: 1: QDu3uRj5FUrYLCrTWu_Aq-jQat4.crl (hash: BOF2jSjUDXYcdE31XwIOy6jWnI0muOw9e64AJonTGCk=) 2: CA9B891ACF1C11EF981F2F86C4F9AE02.roa (hash: DSiGqsj/wHYJqRQngYpUalsfP9r6Z3qaSue0LX+uo6I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913631F/7B3F0B1CCF1C11EF81947F85C4F9AE02/QDu3uRj5FUrYLCrTWu_Aq-jQat4.crl rsync://rpki.apnic.net/member_repository/A913631F/7B3F0B1CCF1C11EF81947F85C4F9AE02/QDu3uRj5FUrYLCrTWu_Aq-jQat4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QDu3uRj5FUrYLCrTWu_Aq-jQat4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 05:12:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 178 (0xb2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913631F, serialNumber=403BB7B918F9154AD82C2AD35AEFC0ABE8D06ADE Validity Not Before: Dec 21 05:12:31 2025 GMT Not After : Dec 28 05:12:31 2025 GMT Subject: CN=694781c0-d7cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:41:c1:ec:ce:df:c1:44:23:3d:e9:e9:1d:57: 71:95:bf:2e:1d:d2:a6:bd:a3:74:e5:82:7b:aa:3c: 4d:36:4a:74:d2:f3:0a:76:c3:7a:3b:6a:b1:35:79: 3c:9e:37:44:2c:1d:81:5a:b2:26:ce:e6:d0:5e:7f: df:a2:e9:b5:c2:6e:d2:98:73:03:b0:dc:6f:b2:26: 96:39:53:de:06:56:54:51:d3:88:2f:dc:21:cd:7b: af:25:40:ee:d9:66:1e:43:95:a6:b4:e6:3a:12:c1: 02:2c:95:01:46:8f:a9:cd:3e:15:5a:1a:28:b8:9c: 79:09:ea:40:b8:dc:36:ab:db:3d:08:7e:ef:9e:c8: e4:76:25:08:ca:9e:22:ea:0e:d7:a1:f7:ed:5a:31: 50:7b:fc:68:75:4a:d1:80:87:a0:5d:d4:a7:a7:42: 9d:40:b0:7e:8c:c3:f2:74:54:a2:9b:97:6e:47:b3: 69:1b:f9:89:95:e2:38:12:06:f4:1e:3a:e9:87:9d: ea:e8:a1:6a:37:67:bc:57:dd:e6:49:51:9c:09:05: 9e:e7:d0:33:c4:4f:a8:18:a7:8d:21:1d:27:9b:cf: 3c:cb:1f:18:77:ca:8f:34:82:a6:4e:c6:55:1a:56: 86:6b:8f:a8:8a:f2:b3:fe:2b:d6:83:9c:76:b7:8a: e0:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:3D:62:12:30:DE:5F:21:9E:89:E4:4C:09:5E:4C:05:9D:9B:31:FE X509v3 Authority Key Identifier: keyid:40:3B:B7:B9:18:F9:15:4A:D8:2C:2A:D3:5A:EF:C0:AB:E8:D0:6A:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913631F/7B3F0B1CCF1C11EF81947F85C4F9AE02/QDu3uRj5FUrYLCrTWu_Aq-jQat4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QDu3uRj5FUrYLCrTWu_Aq-jQat4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913631F/7B3F0B1CCF1C11EF81947F85C4F9AE02/QDu3uRj5FUrYLCrTWu_Aq-jQat4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:a7:13:74:1c:f0:0f:f3:55:0c:b4:94:c1:65:76:8c:a2:26: d5:c3:8f:fd:ef:f4:3f:9e:65:ee:2e:2b:88:4d:93:4a:29:95: 72:9b:3b:38:57:10:2c:56:48:ba:82:42:d2:ce:d8:2b:d0:0d: b6:2c:de:0a:54:0c:80:f6:47:dc:b7:a1:42:ed:2d:69:25:3f: 7a:ec:7b:24:bc:68:24:83:f5:52:3d:84:88:99:d1:3a:74:0f: 22:07:9d:20:68:79:13:a5:7b:a4:9d:64:98:75:c5:40:89:7a: 48:b7:c9:69:b9:9f:02:27:1c:f7:e6:56:f5:41:ce:30:64:df: 47:94:f6:18:de:6c:5b:8a:e9:2d:0b:46:3e:2a:9b:fd:bb:a3: 15:af:47:df:04:ca:ce:cc:70:24:88:6f:0f:bf:37:71:7a:4f: 9f:3c:f3:48:7f:a3:50:0e:24:ca:7a:75:ec:99:d6:a8:b9:bd: e0:dd:98:b2:73:ba:9c:43:c5:52:38:2a:ab:1f:07:5a:d4:e4: a9:b1:87:11:c6:ab:03:0e:68:4b:21:05:e2:5d:5b:2c:6c:f0: 1c:64:36:48:4e:a7:52:6d:46:21:9c:2b:64:76:1c:11:4b:01: 41:39:b4:9b:7e:e1:13:87:d5:16:d2:4c:4b:1a:d7:fd:fc:f5: b1:1c:ae:6f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzYzMUYxMTAvBgNVBAUTKDQwM0JCN0I5MThGOTE1NEFEODJDMkFEMzVBRUZDMEFC RThEMDZBREUwHhcNMjUxMjIxMDUxMjMxWhcNMjUxMjI4MDUxMjMxWjAYMRYwFAYD VQQDDA02OTQ3ODFjMC1kN2NmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9UHB7M7fwUQjPenpHVdxlb8uHdKmvaN05YJ7qjxNNkp00vMKdsN6O2qxNXk8 njdELB2BWrImzubQXn/foum1wm7SmHMDsNxvsiaWOVPeBlZUUdOIL9whzXuvJUDu 2WYeQ5WmtOY6EsECLJUBRo+pzT4VWhoouJx5CepAuNw2q9s9CH7vnsjkdiUIyp4i 6g7XofftWjFQe/xodUrRgIegXdSnp0KdQLB+jMPydFSim5duR7NpG/mJleI4Egb0 Hjrph53q6KFqN2e8V93mSVGcCQWe59AzxE+oGKeNIR0nm888yx8Yd8qPNIKmTsZV GlaGa4+oivKz/ivWg5x2t4rgkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB49YhIw 3l8hnonkTAleTAWdmzH+MB8GA1UdIwQYMBaAFEA7t7kY+RVK2Cwq01rvwKvo0Gre MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNjMxRi83QjNGMEIxQ0NG MUMxMUVGODE5NDdGODVDNEY5QUUwMi9RRHUzdVJqNUZVcllMQ3JUV3VfQXEtalFh dDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FEdTN1Umo1RlVyWUxDclRXdV9BcS1qUWF0NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NjMxRi83QjNGMEIxQ0NGMUMxMUVGODE5NDdGODVDNEY5QUUwMi9RRHUzdVJqNUZV cllMQ3JUV3VfQXEtalFhdDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2pxN0HPAP81UMtJTBZXaMoibVw4/97/Q/nmXuLiuITZNKKZVymzs4 VxAsVki6gkLSztgr0A22LN4KVAyA9kfct6FC7S1pJT967HskvGgkg/VSPYSImdE6 dA8iB50gaHkTpXuknWSYdcVAiXpIt8lpuZ8CJxz35lb1Qc4wZN9HlPYY3mxbiukt C0Y+Kpv9u6MVr0ffBMrOzHAkiG8Pvzdxek+fPPNIf6NQDiTKenXsmdaoub3g3Ziy c7qcQ8VSOCqrHwda1OSpsYcRxqsDDmhLIQXiXVssbPAcZDZITqdSbUYhnCtkdhwR SwFBObSbfuETh9UW0kxLGtf9/PWxHK5v -----END CERTIFICATE-----Generated at Sun Dec 21 21:34:01 2025 by rpki-client