This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914A49B/B94F6936015111EF9857C01EC4F9AE02/1QN6-WnIrOoBtXD8ZK3UgorAZBQ.mft File: 1QN6-WnIrOoBtXD8ZK3UgorAZBQ.mft (raw, json) Hash identifier: tH70Y1s2b+sFQpXtNSMdmUYr+effxYgCSKCh80UpOng= Subject key identifier: 0D:93:70:07:BE:49:7A:C6:F3:C5:B7:3C:DB:0D:FC:3A:BC:D0:24:84 Authority key identifier: D5:03:7A:F9:69:C8:AC:EA:01:B5:70:FC:64:AD:D4:82:8A:C0:64:14 Certificate issuer: /CN=A914A49B/serialNumber=D5037AF969C8ACEA01B570FC64ADD4828AC06414 Certificate serial: 013F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1QN6-WnIrOoBtXD8ZK3UgorAZBQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914A49B/B94F6936015111EF9857C01EC4F9AE02/1QN6-WnIrOoBtXD8ZK3UgorAZBQ.mft Manifest number: 013A Signing time: Tue 23 Dec 2025 03:30:02 +0000 Manifest this update: Tue 23 Dec 2025 03:30:02 +0000 Manifest next update: Tue 30 Dec 2025 03:30:02 +0000 Files and hashes: 1: 1QN6-WnIrOoBtXD8ZK3UgorAZBQ.crl (hash: ICthw60CHAYy+ZgLsDjGI9GxAaxhQd8MTdyQ+a908QQ=) 2: 2907520205DA11EF974A6A0BC4F9AE02.roa (hash: ewrjscJpS/Xz/iKI0GqdO+oPSijzuVXsC0vnRwXLRmM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914A49B/B94F6936015111EF9857C01EC4F9AE02/1QN6-WnIrOoBtXD8ZK3UgorAZBQ.crl rsync://rpki.apnic.net/member_repository/A914A49B/B94F6936015111EF9857C01EC4F9AE02/1QN6-WnIrOoBtXD8ZK3UgorAZBQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1QN6-WnIrOoBtXD8ZK3UgorAZBQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 03:30:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 319 (0x13f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914A49B, serialNumber=D5037AF969C8ACEA01B570FC64ADD4828AC06414 Validity Not Before: Dec 23 03:30:02 2025 GMT Not After : Dec 30 03:30:02 2025 GMT Subject: CN=694a0cba-cd13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:b9:e9:c3:89:c2:87:48:26:25:f6:9c:1f:ca: 2a:98:7d:1e:c9:a1:c1:aa:01:a1:e0:3e:6d:f8:0e: 62:76:6d:c3:13:4b:f0:14:cc:cc:a3:07:c5:2c:7e: 29:99:7f:d4:52:70:8d:c3:37:c2:6a:c6:c0:ba:42: 2c:0a:a1:8b:01:49:2e:86:c2:01:8a:e7:62:b9:a8: 7f:0c:d2:ed:fe:7c:62:dd:69:aa:c6:71:ec:3a:46: d5:b3:0a:82:29:4c:bf:82:3c:ff:12:04:74:97:65: ee:8f:07:cc:61:e9:e6:84:84:c1:53:0e:d5:0b:84: 8a:16:1e:e9:4b:4d:22:74:84:ce:c1:df:bf:fd:0c: 50:0d:39:ee:ee:0a:a9:4a:5f:31:d8:0c:d6:4b:b1: 50:9b:26:db:0c:37:8a:7f:55:2b:d1:c7:82:cd:f8: c5:66:76:16:07:db:9f:78:29:3c:b9:89:fe:98:01: 2f:fb:6d:b5:b2:9a:55:c5:b6:19:1e:50:b0:bc:82: fd:be:3f:1e:10:c8:69:87:a3:b7:4f:f1:53:8f:70: 5b:0d:d3:8a:ff:f7:68:6b:35:b2:76:0a:2a:52:73: 18:97:57:5f:aa:46:3e:95:ff:5e:8f:03:6e:18:3a: 83:48:73:cd:02:01:bf:e5:40:ae:63:75:e4:c3:35: f4:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:93:70:07:BE:49:7A:C6:F3:C5:B7:3C:DB:0D:FC:3A:BC:D0:24:84 X509v3 Authority Key Identifier: keyid:D5:03:7A:F9:69:C8:AC:EA:01:B5:70:FC:64:AD:D4:82:8A:C0:64:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914A49B/B94F6936015111EF9857C01EC4F9AE02/1QN6-WnIrOoBtXD8ZK3UgorAZBQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1QN6-WnIrOoBtXD8ZK3UgorAZBQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914A49B/B94F6936015111EF9857C01EC4F9AE02/1QN6-WnIrOoBtXD8ZK3UgorAZBQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:0f:4a:dc:69:7d:6e:f9:04:16:97:89:70:71:b5:ab:f4:95: 73:4b:d1:df:b7:b0:67:d8:40:f5:9d:70:46:be:f5:d4:29:df: 55:f7:71:eb:d5:57:b0:79:85:f4:c2:d9:7f:a8:ea:85:8a:df: ec:14:5c:af:b2:a8:60:20:66:75:ce:24:b0:d6:21:4a:21:07: 29:53:e8:6c:6d:ab:09:b2:4b:33:02:ed:2e:4c:d8:4e:a6:3a: 11:11:f8:9d:a5:e0:42:f0:55:ce:1b:93:df:07:b5:2d:f2:78: d0:e3:29:2f:62:42:a7:a8:ca:9c:51:64:a7:87:7a:82:f6:57: f5:8a:47:34:e1:72:34:4a:6b:16:0a:33:3d:7b:27:aa:9f:8f: a4:c1:95:12:c7:b7:a5:18:a3:4f:69:53:2d:40:36:ae:9a:f1: a0:e1:24:a9:68:3e:d8:ad:50:a7:5d:84:fc:40:5e:03:f7:7a: 69:76:6c:da:5b:ee:3c:bf:1a:39:07:b2:43:7a:d7:d6:d7:68: d0:45:60:dd:17:a1:89:81:22:5f:d1:cd:02:36:4e:44:0c:ca: d8:69:dc:08:57:0b:c2:49:9e:29:bd:83:bd:2d:89:04:ed:0f: a4:7f:c3:fa:63:7e:7e:37:cd:94:14:55:1b:3d:b6:33:f7:bf: f4:9f:c5:66 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAT8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEE0OUIxMTAvBgNVBAUTKEQ1MDM3QUY5NjlDOEFDRUEwMUI1NzBGQzY0QURENDgy OEFDMDY0MTQwHhcNMjUxMjIzMDMzMDAyWhcNMjUxMjMwMDMzMDAyWjAYMRYwFAYD VQQDDA02OTRhMGNiYS1jZDEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4Lnpw4nCh0gmJfacH8oqmH0eyaHBqgGh4D5t+A5idm3DE0vwFMzMowfFLH4p mX/UUnCNwzfCasbAukIsCqGLAUkuhsIBiudiuah/DNLt/nxi3WmqxnHsOkbVswqC KUy/gjz/EgR0l2XujwfMYenmhITBUw7VC4SKFh7pS00idITOwd+//QxQDTnu7gqp Sl8x2AzWS7FQmybbDDeKf1Ur0ceCzfjFZnYWB9ufeCk8uYn+mAEv+221sppVxbYZ HlCwvIL9vj8eEMhph6O3T/FTj3BbDdOK//doazWydgoqUnMYl1dfqkY+lf9ejwNu GDqDSHPNAgG/5UCuY3XkwzX0/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA2TcAe+ SXrG88W3PNsN/Dq80CSEMB8GA1UdIwQYMBaAFNUDevlpyKzqAbVw/GSt1IKKwGQU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QTQ5Qi9COTRGNjkzNjAx NTExMUVGOTg1N0MwMUVDNEY5QUUwMi8xUU42LVduSXJPb0J0WEQ4WkszVWdvckFa QlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFRTjYtV25Jck9vQnRYRDhaSzNVZ29yQVpCUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QTQ5Qi9COTRGNjkzNjAxNTExMUVGOTg1N0MwMUVDNEY5QUUwMi8xUU42LVduSXJP b0J0WEQ4WkszVWdvckFaQlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOD0rcaX1u+QQWl4lwcbWr9JVzS9Hft7Bn2ED1nXBGvvXUKd9V93Hr 1VeweYX0wtl/qOqFit/sFFyvsqhgIGZ1ziSw1iFKIQcpU+hsbasJskszAu0uTNhO pjoREfidpeBC8FXOG5PfB7Ut8njQ4ykvYkKnqMqcUWSnh3qC9lf1ikc04XI0SmsW CjM9eyeqn4+kwZUSx7elGKNPaVMtQDaumvGg4SSpaD7YrVCnXYT8QF4D93ppdmza W+48vxo5B7JDetfW12jQRWDdF6GJgSJf0c0CNk5EDMrYadwIVwvCSZ4pvYO9LYkE 7Q+kf8P6Y35+N82UFFUbPbYz97/0n8Vm -----END CERTIFICATE-----Generated at Wed Dec 24 19:33:04 2025 by rpki-client