This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914E026/D6B26304F56A11E9BF2AE684C4F9AE02/qw2Hl8WKg6W0nAd6Mu9nMock5BI.mft File: qw2Hl8WKg6W0nAd6Mu9nMock5BI.mft (raw, json) Hash identifier: FuEqXkCeUWQ9LGhCf4I3tOXarBHV+4ragENa8EEaZkQ= Subject key identifier: FF:8E:EB:DD:83:F7:6F:ED:35:7A:39:F8:B6:24:C6:B9:24:2F:48:A2 Authority key identifier: AB:0D:87:97:C5:8A:83:A5:B4:9C:07:7A:32:EF:67:32:87:24:E4:12 Certificate issuer: /CN=A914E026/serialNumber=AB0D8797C58A83A5B49C077A32EF67328724E412 Certificate serial: 0CF9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qw2Hl8WKg6W0nAd6Mu9nMock5BI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E026/D6B26304F56A11E9BF2AE684C4F9AE02/qw2Hl8WKg6W0nAd6Mu9nMock5BI.mft Manifest number: 0CF9 Signing time: Mon 22 Dec 2025 17:43:35 +0000 Manifest this update: Mon 22 Dec 2025 17:43:35 +0000 Manifest next update: Mon 29 Dec 2025 17:43:35 +0000 Files and hashes: 1: qw2Hl8WKg6W0nAd6Mu9nMock5BI.crl (hash: s5CyilEr/AAKdBy8Wd8LAyy+xcvGNGeXQQSy8ss+clo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E026/D6B26304F56A11E9BF2AE684C4F9AE02/qw2Hl8WKg6W0nAd6Mu9nMock5BI.crl rsync://rpki.apnic.net/member_repository/A914E026/D6B26304F56A11E9BF2AE684C4F9AE02/qw2Hl8WKg6W0nAd6Mu9nMock5BI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qw2Hl8WKg6W0nAd6Mu9nMock5BI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 17:43:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3321 (0xcf9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E026, serialNumber=AB0D8797C58A83A5B49C077A32EF67328724E412 Validity Not Before: Dec 22 17:43:35 2025 GMT Not After : Dec 29 17:43:35 2025 GMT Subject: CN=69498347-b006 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:2b:7e:f4:90:11:44:ee:92:89:a8:3b:7f:53: b8:c8:3b:09:b3:00:11:80:e7:66:a4:bf:34:20:79: ba:3e:f0:cb:ec:01:53:78:bd:4e:92:65:68:37:0d: 9a:02:c4:dd:8a:ef:9f:5a:23:4c:8a:7a:bc:14:f4: 11:16:74:e2:39:1d:fb:40:b4:54:f4:f6:92:3c:df: 83:51:51:a6:41:b5:79:4e:fd:a6:64:15:3b:dc:88: 10:09:37:7b:f2:38:39:a4:d7:45:63:07:e0:ed:b3: b4:2c:da:08:1e:e3:66:11:96:ea:da:17:45:70:d2: a0:4a:4c:24:7d:8b:7e:f4:a6:0c:c5:a9:de:a0:17: 4f:51:e6:bb:ac:a7:60:a0:a9:2a:59:7b:b8:e2:a1: e8:31:de:60:21:72:77:f3:58:8c:22:36:98:c5:16: e1:36:3b:32:5a:1a:19:80:4d:32:8e:f2:74:3c:86: 67:14:5f:44:55:ac:69:3d:c1:c5:14:75:78:ec:70: b2:2c:12:68:a5:0a:31:f5:eb:e1:b2:60:ae:b7:73: 9b:ea:9b:e9:86:a9:00:3e:5b:e4:12:a0:24:14:ea: a9:50:13:49:a9:dc:ff:3a:3a:f8:ba:b1:a9:bf:2b: 45:1c:17:2f:04:6d:c7:2c:e9:54:6e:d5:8a:27:03: d5:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:8E:EB:DD:83:F7:6F:ED:35:7A:39:F8:B6:24:C6:B9:24:2F:48:A2 X509v3 Authority Key Identifier: keyid:AB:0D:87:97:C5:8A:83:A5:B4:9C:07:7A:32:EF:67:32:87:24:E4:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E026/D6B26304F56A11E9BF2AE684C4F9AE02/qw2Hl8WKg6W0nAd6Mu9nMock5BI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qw2Hl8WKg6W0nAd6Mu9nMock5BI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E026/D6B26304F56A11E9BF2AE684C4F9AE02/qw2Hl8WKg6W0nAd6Mu9nMock5BI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:dd:73:3e:47:d9:b7:d7:a0:4a:78:6e:db:a0:41:26:34:a9: 52:a3:8b:6f:de:21:f5:49:3f:3e:48:a7:c9:db:77:02:53:4d: 32:e5:14:b2:d2:18:cc:bc:ba:f7:7e:e2:70:5f:4f:40:10:04: 30:0e:ec:c4:1d:6f:b3:72:96:6c:b1:c5:10:49:d7:d5:4c:da: 78:d3:88:1c:83:fc:a6:be:58:88:e2:85:6d:81:e1:0a:ff:e8: f9:01:d5:c0:fc:ce:03:83:4d:67:db:04:80:56:0e:16:6f:b1: 36:01:9c:57:f5:d2:58:93:11:8c:e3:ae:b5:d8:92:ef:87:be: 43:85:21:a8:87:6d:2a:f4:58:e5:0d:c0:cd:c5:0d:02:31:3c: 28:3d:10:d3:62:d1:e2:0c:c7:42:2a:1b:43:48:08:79:bc:09: e6:51:76:d5:e1:53:2a:c3:c6:e2:08:d6:95:53:12:bb:a0:61: 2c:94:99:04:89:e1:1c:2b:ad:22:ea:6b:9e:0c:3b:82:21:77: 6c:67:e5:3d:7f:e5:1e:3f:0c:0e:0c:6b:4d:85:61:e0:ae:06: bd:a5:a5:61:ca:e6:0c:f0:07:51:37:7c:3b:fd:bc:e1:91:9b: 9e:74:9d:a3:79:2d:95:7d:af:06:b0:e2:e8:98:81:40:dc:9b: 4b:75:23:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDPkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUwMjYxMTAvBgNVBAUTKEFCMEQ4Nzk3QzU4QTgzQTVCNDlDMDc3QTMyRUY2NzMy ODcyNEU0MTIwHhcNMjUxMjIyMTc0MzM1WhcNMjUxMjI5MTc0MzM1WjAYMRYwFAYD VQQDDA02OTQ5ODM0Ny1iMDA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2it+9JARRO6Siag7f1O4yDsJswARgOdmpL80IHm6PvDL7AFTeL1OkmVoNw2a AsTdiu+fWiNMinq8FPQRFnTiOR37QLRU9PaSPN+DUVGmQbV5Tv2mZBU73IgQCTd7 8jg5pNdFYwfg7bO0LNoIHuNmEZbq2hdFcNKgSkwkfYt+9KYMxaneoBdPUea7rKdg oKkqWXu44qHoMd5gIXJ381iMIjaYxRbhNjsyWhoZgE0yjvJ0PIZnFF9EVaxpPcHF FHV47HCyLBJopQox9evhsmCut3Ob6pvphqkAPlvkEqAkFOqpUBNJqdz/Ojr4urGp vytFHBcvBG3HLOlUbtWKJwPVzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP+O692D 92/tNXo5+LYkxrkkL0iiMB8GA1UdIwQYMBaAFKsNh5fFioOltJwHejLvZzKHJOQS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTAyNi9ENkIyNjMwNEY1 NkExMUU5QkYyQUU2ODRDNEY5QUUwMi9xdzJIbDhXS2c2VzBuQWQ2TXU5bk1vY2s1 QkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3F3MkhsOFdLZzZXMG5BZDZNdTluTW9jazVCSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTAyNi9ENkIyNjMwNEY1NkExMUU5QkYyQUU2ODRDNEY5QUUwMi9xdzJIbDhXS2c2 VzBuQWQ2TXU5bk1vY2s1QkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBj3XM+R9m316BKeG7boEEmNKlSo4tv3iH1ST8+SKfJ23cCU00y5RSy 0hjMvLr3fuJwX09AEAQwDuzEHW+zcpZsscUQSdfVTNp404gcg/ymvliI4oVtgeEK /+j5AdXA/M4Dg01n2wSAVg4Wb7E2AZxX9dJYkxGM46612JLvh75DhSGoh20q9Fjl DcDNxQ0CMTwoPRDTYtHiDMdCKhtDSAh5vAnmUXbV4VMqw8biCNaVUxK7oGEslJkE ieEcK60i6mueDDuCIXdsZ+U9f+UePwwODGtNhWHgrga9paVhyuYM8AdRN3w7/bzh kZuedJ2jeS2Vfa8GsOLomIFA3JtLdSND -----END CERTIFICATE-----Generated at Wed Dec 24 15:46:39 2025 by rpki-client