This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9143FC4/B165A3A8295811E2B38D58FB08B02CD2/qafXPj7Y1cRm3LxsIJzUNTzemM8.mft File: qafXPj7Y1cRm3LxsIJzUNTzemM8.mft (raw, json) Hash identifier: iby3exAJ1KJ31Zlyrv9QmhmIoz7C7430wxjtHsPFrz8= Subject key identifier: 3C:7B:B9:44:33:85:91:E9:5E:75:CA:E8:28:F1:53:42:20:61:0A:7E Authority key identifier: A9:A7:D7:3E:3E:D8:D5:C4:66:DC:BC:6C:20:9C:D4:35:3C:DE:98:CF Certificate issuer: /CN=A9143FC4/serialNumber=A9A7D73E3ED8D5C466DCBC6C209CD4353CDE98CF Certificate serial: 34B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qafXPj7Y1cRm3LxsIJzUNTzemM8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143FC4/B165A3A8295811E2B38D58FB08B02CD2/qafXPj7Y1cRm3LxsIJzUNTzemM8.mft Manifest number: 34B1 Signing time: Mon 22 Dec 2025 15:12:03 +0000 Manifest this update: Mon 22 Dec 2025 15:12:02 +0000 Manifest next update: Mon 29 Dec 2025 15:12:02 +0000 Files and hashes: 1: qafXPj7Y1cRm3LxsIJzUNTzemM8.crl (hash: cas5otP4+pSZz5W3gOMTlhn0yMNfVAxe2O74uZcC+/4=) 2: FE96F04256EE11F09D243832C4F9AE02.roa (hash: i7V57Dro1PeoCEaseJh0ivldyfQ81BauNS5GWJcFu1M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143FC4/B165A3A8295811E2B38D58FB08B02CD2/qafXPj7Y1cRm3LxsIJzUNTzemM8.crl rsync://rpki.apnic.net/member_repository/A9143FC4/B165A3A8295811E2B38D58FB08B02CD2/qafXPj7Y1cRm3LxsIJzUNTzemM8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qafXPj7Y1cRm3LxsIJzUNTzemM8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 15:12:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13491 (0x34b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143FC4, serialNumber=A9A7D73E3ED8D5C466DCBC6C209CD4353CDE98CF Validity Not Before: Dec 22 15:12:02 2025 GMT Not After : Dec 29 15:12:02 2025 GMT Subject: CN=69495fc2-9744 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:ea:1d:39:8d:4a:f3:99:8a:8f:01:39:d5:35: 5f:5b:c2:79:3d:b0:1e:52:81:14:7a:ea:1a:e1:81: 0d:68:f4:12:79:10:ad:9f:2f:81:93:fb:3d:e1:0c: 40:c9:1c:af:fd:82:04:67:26:9f:af:d3:89:78:b6: 81:e4:c2:ca:7e:9d:8e:69:95:99:3a:ed:e6:89:f1: 70:9b:5d:8c:88:b9:05:d6:f9:9e:72:7c:cc:74:b9: ba:53:01:a1:ce:27:03:32:88:6a:43:35:e7:ac:e2: 6f:8f:d8:1f:f3:a7:23:99:79:58:00:cb:10:44:6c: 93:52:38:2b:71:b4:c2:73:cf:8b:96:33:3e:fc:fb: 60:2e:e0:ec:7c:18:60:82:08:e5:84:e3:c3:c2:54: 03:5d:3d:e3:b4:aa:be:b6:61:d9:11:50:82:de:84: 22:0a:48:d8:ed:a6:67:55:02:b9:0a:a6:74:09:18: 04:0e:e6:6a:ef:6c:c6:1d:44:79:4a:f0:51:15:38: 5c:ab:c6:14:57:f1:b6:9c:47:57:06:a6:43:51:d7: f4:04:8e:05:a5:93:02:63:e9:8d:6e:aa:b7:b4:e5: 54:f2:39:fd:9d:32:5a:82:02:29:ac:68:07:c5:fc: 26:6d:89:0b:57:0a:f7:5c:03:6b:98:5e:84:77:15: 51:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:7B:B9:44:33:85:91:E9:5E:75:CA:E8:28:F1:53:42:20:61:0A:7E X509v3 Authority Key Identifier: keyid:A9:A7:D7:3E:3E:D8:D5:C4:66:DC:BC:6C:20:9C:D4:35:3C:DE:98:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143FC4/B165A3A8295811E2B38D58FB08B02CD2/qafXPj7Y1cRm3LxsIJzUNTzemM8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qafXPj7Y1cRm3LxsIJzUNTzemM8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143FC4/B165A3A8295811E2B38D58FB08B02CD2/qafXPj7Y1cRm3LxsIJzUNTzemM8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:ee:3c:5a:a5:22:52:b8:73:f5:31:d0:23:1e:15:2a:0b:49: c7:d1:70:b5:16:e3:5c:02:70:42:c6:30:21:3c:71:16:92:32: c6:d9:e7:64:5c:93:ed:07:c2:ea:82:08:0b:d1:93:27:be:32: 9d:05:1e:f6:ef:7b:db:9c:98:3f:1f:1c:ad:29:2c:06:01:99: e9:72:29:d1:04:14:d1:df:49:52:85:c6:20:f1:ef:cc:c8:72: a2:f1:61:7b:84:81:76:20:95:97:2b:ef:e3:9a:e9:07:b8:66: b6:ba:e7:d7:cf:47:1b:73:12:1b:51:36:ac:56:74:9c:6f:64: cf:72:b2:6e:8b:b6:79:eb:a7:5b:c1:51:de:0b:04:1f:c1:b8: be:39:10:89:2e:b1:4c:c5:d0:c2:1c:e0:71:2c:6c:28:b4:0b: 9d:d8:83:73:3a:bf:ee:10:fc:a3:61:ba:4b:c3:ac:d3:5c:a0: c4:4f:88:65:1d:61:b1:6c:4f:87:5d:e8:57:6b:b0:c5:31:1a: 39:89:43:16:cf:45:69:54:db:80:4a:f2:ab:ba:08:3d:18:f3: 55:c4:ea:fa:d1:9e:5b:51:47:1f:b0:f6:24:e2:b9:1d:0b:97: 2d:16:56:70:99:18:d0:27:53:bd:0d:7d:57:e4:89:6b:fb:68: 13:e5:ae:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNLMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNGQzQxMTAvBgNVBAUTKEE5QTdENzNFM0VEOEQ1QzQ2NkRDQkM2QzIwOUNENDM1 M0NERTk4Q0YwHhcNMjUxMjIyMTUxMjAyWhcNMjUxMjI5MTUxMjAyWjAYMRYwFAYD VQQDDA02OTQ5NWZjMi05NzQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAneodOY1K85mKjwE51TVfW8J5PbAeUoEUeuoa4YENaPQSeRCtny+Bk/s94QxA yRyv/YIEZyafr9OJeLaB5MLKfp2OaZWZOu3mifFwm12MiLkF1vmecnzMdLm6UwGh zicDMohqQzXnrOJvj9gf86cjmXlYAMsQRGyTUjgrcbTCc8+LljM+/PtgLuDsfBhg ggjlhOPDwlQDXT3jtKq+tmHZEVCC3oQiCkjY7aZnVQK5CqZ0CRgEDuZq72zGHUR5 SvBRFThcq8YUV/G2nEdXBqZDUdf0BI4FpZMCY+mNbqq3tOVU8jn9nTJaggIprGgH xfwmbYkLVwr3XANrmF6EdxVRbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDx7uUQz hZHpXnXK6CjxU0IgYQp+MB8GA1UdIwQYMBaAFKmn1z4+2NXEZty8bCCc1DU83pjP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0ZDNC9CMTY1QTNBODI5 NTgxMUUyQjM4RDU4RkIwOEIwMkNEMi9xYWZYUGo3WTFjUm0zTHhzSUp6VU5UemVt TTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FhZlhQajdZMWNSbTNMeHNJSnpVTlR6ZW1NOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0ZDNC9CMTY1QTNBODI5NTgxMUUyQjM4RDU4RkIwOEIwMkNEMi9xYWZYUGo3WTFj Um0zTHhzSUp6VU5UemVtTTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBC7jxapSJSuHP1MdAjHhUqC0nH0XC1FuNcAnBCxjAhPHEWkjLG2edk XJPtB8LqgggL0ZMnvjKdBR7273vbnJg/HxytKSwGAZnpcinRBBTR30lShcYg8e/M yHKi8WF7hIF2IJWXK+/jmukHuGa2uufXz0cbcxIbUTasVnScb2TPcrJui7Z566db wVHeCwQfwbi+ORCJLrFMxdDCHOBxLGwotAud2INzOr/uEPyjYbpLw6zTXKDET4hl HWGxbE+HXehXa7DFMRo5iUMWz0VpVNuASvKrugg9GPNVxOr60Z5bUUcfsPYk4rkd C5ctFlZwmRjQJ1O9DX1X5Ilr+2gT5a5R -----END CERTIFICATE-----Generated at Wed Dec 24 16:00:43 2025 by rpki-client