This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914D6FC/88759182432F11EDBBD98F5CC4F9AE02/qL9U9ggZZyIZNcsXzBPr-4QaYMI.mft File: qL9U9ggZZyIZNcsXzBPr-4QaYMI.mft (raw, json) Hash identifier: elVGSc+U2SI9L2h0HQrbWhc6+oTZkc6S1Fvl3z15GoM= Subject key identifier: 96:4A:61:BC:60:B7:64:C1:40:29:E7:4E:D8:00:AE:29:B5:21:B3:A2 Authority key identifier: A8:BF:54:F6:08:19:67:22:19:35:CB:17:CC:13:EB:FB:84:1A:60:C2 Certificate issuer: /CN=A914D6FC/serialNumber=A8BF54F6081967221935CB17CC13EBFB841A60C2 Certificate serial: 026C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qL9U9ggZZyIZNcsXzBPr-4QaYMI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D6FC/88759182432F11EDBBD98F5CC4F9AE02/qL9U9ggZZyIZNcsXzBPr-4QaYMI.mft Manifest number: 0262 Signing time: Sun 21 Dec 2025 00:52:36 +0000 Manifest this update: Sun 21 Dec 2025 00:52:36 +0000 Manifest next update: Sun 28 Dec 2025 00:52:36 +0000 Files and hashes: 1: qL9U9ggZZyIZNcsXzBPr-4QaYMI.crl (hash: 87n456zDs/Fo5GD+MTeKditXP126XFOkQPWf3/83dt0=) 2: 11EC50B48B8F11EF8DE96E60C4F9AE02.roa (hash: H0AJqEiGAywgjMNh/B1Rg0QqAknxodzCmkcexEm/7aU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D6FC/88759182432F11EDBBD98F5CC4F9AE02/qL9U9ggZZyIZNcsXzBPr-4QaYMI.crl rsync://rpki.apnic.net/member_repository/A914D6FC/88759182432F11EDBBD98F5CC4F9AE02/qL9U9ggZZyIZNcsXzBPr-4QaYMI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qL9U9ggZZyIZNcsXzBPr-4QaYMI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 00:52:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 620 (0x26c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D6FC, serialNumber=A8BF54F6081967221935CB17CC13EBFB841A60C2 Validity Not Before: Dec 21 00:52:36 2025 GMT Not After : Dec 28 00:52:36 2025 GMT Subject: CN=694744d4-2693 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:ae:58:7d:b4:21:08:42:6b:73:69:e9:1c:ac: 32:bc:84:db:54:5d:03:9a:9d:37:15:5a:97:5e:1d: 26:8e:b1:8e:e2:7d:ff:18:9b:f0:c1:5c:54:12:97: 4c:55:85:70:59:ed:b4:ca:1d:0c:02:58:8c:ac:34: c4:17:d3:c1:b3:4d:3f:f4:1f:31:4c:97:98:d5:d7: 30:c6:6f:14:6c:e4:a2:86:b0:df:ac:76:ba:a0:48: 93:4a:56:ad:ac:5c:9f:ee:f0:50:17:de:35:e1:ac: b9:0d:5c:9a:2d:73:e8:52:6f:41:c8:92:5c:70:01: 21:2b:79:8f:97:c5:39:f7:aa:c9:72:b9:fc:1a:b4: c8:65:b6:44:da:23:78:c1:73:e8:b5:fc:a8:f6:6a: 59:71:39:40:e6:05:9b:14:64:12:65:1d:8c:96:1d: a5:1d:82:58:90:76:65:03:f5:eb:11:6f:5e:d4:30: c6:b4:b9:40:75:4f:3f:b4:09:26:43:73:d6:28:0a: 15:ab:c9:4d:e1:39:95:f1:76:27:82:69:1e:f4:2b: f0:0a:9f:69:1f:cb:31:d3:31:5a:0e:48:90:37:db: 72:b0:ae:6f:58:12:01:1d:7e:e2:b3:1f:45:9a:d0: 66:5d:df:d0:5f:46:3c:60:5a:07:85:0d:a9:06:4c: 41:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:4A:61:BC:60:B7:64:C1:40:29:E7:4E:D8:00:AE:29:B5:21:B3:A2 X509v3 Authority Key Identifier: keyid:A8:BF:54:F6:08:19:67:22:19:35:CB:17:CC:13:EB:FB:84:1A:60:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D6FC/88759182432F11EDBBD98F5CC4F9AE02/qL9U9ggZZyIZNcsXzBPr-4QaYMI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qL9U9ggZZyIZNcsXzBPr-4QaYMI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D6FC/88759182432F11EDBBD98F5CC4F9AE02/qL9U9ggZZyIZNcsXzBPr-4QaYMI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:ff:53:72:29:1b:fd:64:55:7b:aa:27:c2:eb:03:92:7f:ec: 38:f5:a8:06:44:3f:b0:ea:e6:12:1b:cd:31:d9:ec:5c:6f:f2: f3:52:b4:83:95:1a:e4:cc:7d:09:5a:bb:f3:cb:9b:93:40:33: e0:aa:9b:ee:ca:11:a1:7d:53:f1:46:2a:2b:cd:9a:dc:1d:4e: d1:b4:82:73:e7:2a:8b:84:ac:90:03:33:ad:1e:e7:92:c8:dc: 34:d4:d1:a3:0b:d8:89:fa:7e:1d:64:19:c1:32:a3:dd:c8:3b: 38:22:6c:43:f2:bb:1e:ee:14:4f:60:7e:5f:5f:d9:48:b2:70: 6d:cc:6f:9c:38:ff:ae:d9:49:9b:d0:3d:e4:be:ee:4d:53:ea: 89:75:c7:ab:df:fe:d5:70:9a:3e:ca:ca:a7:2d:b8:cf:90:a9: 46:2d:aa:e0:65:44:ce:e1:4d:6e:73:dd:b2:42:ac:3e:74:26: e9:92:0a:6a:63:3d:f9:0c:33:2b:78:66:b2:37:ac:52:41:35: 3e:39:0f:69:10:94:03:e8:6c:37:14:04:02:ce:3c:24:5a:43: 62:a7:f7:da:53:3a:08:64:9f:e5:7f:2f:a1:c7:95:7f:de:7b: 4d:b4:c1:23:d5:17:2b:96:c9:46:5d:f4:c0:4d:5e:f4:a6:f5: 45:53:9e:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAmwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEQ2RkMxMTAvBgNVBAUTKEE4QkY1NEY2MDgxOTY3MjIxOTM1Q0IxN0NDMTNFQkZC ODQxQTYwQzIwHhcNMjUxMjIxMDA1MjM2WhcNMjUxMjI4MDA1MjM2WjAYMRYwFAYD VQQDDA02OTQ3NDRkNC0yNjkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5a5YfbQhCEJrc2npHKwyvITbVF0Dmp03FVqXXh0mjrGO4n3/GJvwwVxUEpdM VYVwWe20yh0MAliMrDTEF9PBs00/9B8xTJeY1dcwxm8UbOSihrDfrHa6oEiTSlat rFyf7vBQF9414ay5DVyaLXPoUm9ByJJccAEhK3mPl8U596rJcrn8GrTIZbZE2iN4 wXPotfyo9mpZcTlA5gWbFGQSZR2Mlh2lHYJYkHZlA/XrEW9e1DDGtLlAdU8/tAkm Q3PWKAoVq8lN4TmV8XYngmke9CvwCp9pH8sx0zFaDkiQN9tysK5vWBIBHX7isx9F mtBmXd/QX0Y8YFoHhQ2pBkxB/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJZKYbxg t2TBQCnnTtgArim1IbOiMB8GA1UdIwQYMBaAFKi/VPYIGWciGTXLF8wT6/uEGmDC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RDZGQy84ODc1OTE4MjQz MkYxMUVEQkJEOThGNUNDNEY5QUUwMi9xTDlVOWdnWlp5SVpOY3NYekJQci00UWFZ TUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FMOVU5Z2daWnlJWk5jc1h6QlByLTRRYVlNSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RDZGQy84ODc1OTE4MjQzMkYxMUVEQkJEOThGNUNDNEY5QUUwMi9xTDlVOWdnWlp5 SVpOY3NYekJQci00UWFZTUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCp/1NyKRv9ZFV7qifC6wOSf+w49agGRD+w6uYSG80x2excb/LzUrSD lRrkzH0JWrvzy5uTQDPgqpvuyhGhfVPxRiorzZrcHU7RtIJz5yqLhKyQAzOtHueS yNw01NGjC9iJ+n4dZBnBMqPdyDs4ImxD8rse7hRPYH5fX9lIsnBtzG+cOP+u2Umb 0D3kvu5NU+qJdcer3/7VcJo+ysqnLbjPkKlGLargZUTO4U1uc92yQqw+dCbpkgpq Yz35DDMreGayN6xSQTU+OQ9pEJQD6Gw3FAQCzjwkWkNip/faUzoIZJ/lfy+hx5V/ 3ntNtMEj1RcrlslGXfTATV70pvVFU54g -----END CERTIFICATE-----Generated at Mon Dec 22 22:19:58 2025 by rpki-client