This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9169A3F/9B2754F6A24F11EFB6B0FF49C4F9AE02/hqZPKtLd4rfZYk5pInrQmxd4xsE.mft File: hqZPKtLd4rfZYk5pInrQmxd4xsE.mft (raw, json) Hash identifier: ysF/GEni74czDfHlPFfHFZont5+nyTYFq9lAtHHEHSA= Subject key identifier: 71:8E:01:9A:A9:21:00:B5:D4:0A:AD:12:65:EC:A1:F2:D8:C3:9B:E6 Authority key identifier: 86:A6:4F:2A:D2:DD:E2:B7:D9:62:4E:69:22:7A:D0:9B:17:78:C6:C1 Certificate issuer: /CN=A9169A3F/serialNumber=86A64F2AD2DDE2B7D9624E69227AD09B1778C6C1 Certificate serial: C5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hqZPKtLd4rfZYk5pInrQmxd4xsE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169A3F/9B2754F6A24F11EFB6B0FF49C4F9AE02/hqZPKtLd4rfZYk5pInrQmxd4xsE.mft Manifest number: C5 Signing time: Wed 03 Dec 2025 04:12:14 +0000 Manifest this update: Wed 03 Dec 2025 04:12:13 +0000 Manifest next update: Wed 10 Dec 2025 04:12:13 +0000 Files and hashes: 1: hqZPKtLd4rfZYk5pInrQmxd4xsE.crl (hash: EnYra6KgyijfYQDxQvVgNWF1lE+iqkxu8TmVtRUnQcQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169A3F/9B2754F6A24F11EFB6B0FF49C4F9AE02/hqZPKtLd4rfZYk5pInrQmxd4xsE.crl rsync://rpki.apnic.net/member_repository/A9169A3F/9B2754F6A24F11EFB6B0FF49C4F9AE02/hqZPKtLd4rfZYk5pInrQmxd4xsE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hqZPKtLd4rfZYk5pInrQmxd4xsE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 04:12:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 197 (0xc5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169A3F, serialNumber=86A64F2AD2DDE2B7D9624E69227AD09B1778C6C1 Validity Not Before: Dec 3 04:12:13 2025 GMT Not After : Dec 10 04:12:13 2025 GMT Subject: CN=692fb89e-0814 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:fd:5a:8f:c6:58:bb:84:e7:05:6a:e4:23:0b: 03:fa:e4:a3:fc:36:1f:f7:09:95:11:6a:64:86:cb: 32:98:bb:57:92:23:00:2c:7d:b2:cc:bb:97:04:98: e9:2a:50:e5:23:6c:91:6e:23:e2:2f:c0:82:b0:e5: 77:b1:f0:6f:b4:35:57:90:0f:5c:32:6d:7b:56:70: 0b:ef:64:f8:86:5c:7f:d1:45:52:ed:53:23:3e:40: 34:6f:46:a7:40:5e:d8:2d:22:72:21:b9:28:cd:a8: 7d:50:93:88:4b:47:cc:51:f9:dc:cc:0f:c4:22:f6: 23:f8:fa:d0:2f:62:bc:92:01:bf:1b:fe:07:80:a3: b6:cd:b2:cd:81:03:87:68:bb:34:86:22:fa:3d:88: 58:1f:31:f6:67:50:55:d8:64:6d:eb:2d:1b:23:83: d3:c6:a5:e0:11:4d:83:87:cf:c1:fc:66:34:e1:76: 42:65:f0:1b:f5:36:53:6c:e6:fa:d9:c1:d8:fd:29: 11:04:64:e5:b2:07:8a:33:45:1e:e8:32:f7:54:29: 6e:57:ed:48:33:32:99:24:a9:40:43:4d:cc:e1:b6: 49:27:6c:93:4a:ef:00:e4:12:d0:19:73:fc:c5:84: fa:e7:ed:1e:18:55:0c:d6:17:3e:b8:03:19:4e:d4: 65:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:8E:01:9A:A9:21:00:B5:D4:0A:AD:12:65:EC:A1:F2:D8:C3:9B:E6 X509v3 Authority Key Identifier: keyid:86:A6:4F:2A:D2:DD:E2:B7:D9:62:4E:69:22:7A:D0:9B:17:78:C6:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169A3F/9B2754F6A24F11EFB6B0FF49C4F9AE02/hqZPKtLd4rfZYk5pInrQmxd4xsE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hqZPKtLd4rfZYk5pInrQmxd4xsE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169A3F/9B2754F6A24F11EFB6B0FF49C4F9AE02/hqZPKtLd4rfZYk5pInrQmxd4xsE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:4f:ca:33:8e:58:b4:a2:6e:8d:64:40:ed:d8:0e:38:6a:00: d2:7d:c4:a2:fb:d1:35:0e:f7:0d:17:0e:72:4c:0c:31:57:26: 36:f5:32:b3:25:a3:4c:d5:97:fa:6a:fd:bf:fe:a9:58:25:26: ec:89:35:58:2f:c8:1d:76:18:6d:11:0d:0a:57:f2:57:79:90: af:df:de:c1:13:13:c4:36:cf:c8:a5:10:a4:17:7b:81:64:58: d2:a9:e0:7f:d7:04:f6:6a:a8:79:ff:2f:32:cc:24:1e:03:da: c7:7d:01:59:bf:25:1f:02:7d:4c:1e:4c:10:fe:3d:e6:32:8c: bd:9a:de:4b:1a:bc:f3:72:1f:db:4e:10:71:3c:a6:aa:85:1f: e3:ad:a2:8a:22:ce:15:88:89:09:f3:18:21:11:32:45:0a:b7: ec:0d:98:fa:5d:18:4a:c7:29:67:90:50:8f:e0:9d:94:26:9d: 84:42:19:63:0a:32:16:39:15:a8:b6:24:04:c4:c2:18:f8:2b: 18:da:2c:e5:05:27:02:f4:f9:92:02:94:a3:e1:99:df:86:df: 53:7a:7a:80:b4:22:bb:66:c8:0a:07:d0:fb:69:c7:33:91:d3: cf:ca:48:d9:95:d8:8a:5f:e1:42:b1:7a:a9:9c:5a:01:85:ad: ff:d9:e1:e0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjlBM0YxMTAvBgNVBAUTKDg2QTY0RjJBRDJEREUyQjdEOTYyNEU2OTIyN0FEMDlC MTc3OEM2QzEwHhcNMjUxMjAzMDQxMjEzWhcNMjUxMjEwMDQxMjEzWjAYMRYwFAYD VQQDEw02OTJmYjg5ZS0wODE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxf1aj8ZYu4TnBWrkIwsD+uSj/DYf9wmVEWpkhssymLtXkiMALH2yzLuXBJjp KlDlI2yRbiPiL8CCsOV3sfBvtDVXkA9cMm17VnAL72T4hlx/0UVS7VMjPkA0b0an QF7YLSJyIbkozah9UJOIS0fMUfnczA/EIvYj+PrQL2K8kgG/G/4HgKO2zbLNgQOH aLs0hiL6PYhYHzH2Z1BV2GRt6y0bI4PTxqXgEU2Dh8/B/GY04XZCZfAb9TZTbOb6 2cHY/SkRBGTlsgeKM0Ue6DL3VCluV+1IMzKZJKlAQ03M4bZJJ2yTSu8A5BLQGXP8 xYT65+0eGFUM1hc+uAMZTtRlKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHGOAZqp IQC11AqtEmXsofLYw5vmMB8GA1UdIwQYMBaAFIamTyrS3eK32WJOaSJ60JsXeMbB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OUEzRi85QjI3NTRGNkEy NEYxMUVGQjZCMEZGNDlDNEY5QUUwMi9ocVpQS3RMZDRyZlpZazVwSW5yUW14ZDR4 c0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2hxWlBLdExkNHJmWllrNXBJbnJRbXhkNHhzRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OUEzRi85QjI3NTRGNkEyNEYxMUVGQjZCMEZGNDlDNEY5QUUwMi9ocVpQS3RMZDRy ZlpZazVwSW5yUW14ZDR4c0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWT8ozjli0om6NZEDt2A44agDSfcSi+9E1DvcNFw5yTAwxVyY29TKz JaNM1Zf6av2//qlYJSbsiTVYL8gddhhtEQ0KV/JXeZCv397BExPENs/IpRCkF3uB ZFjSqeB/1wT2aqh5/y8yzCQeA9rHfQFZvyUfAn1MHkwQ/j3mMoy9mt5LGrzzch/b ThBxPKaqhR/jraKKIs4ViIkJ8xghETJFCrfsDZj6XRhKxylnkFCP4J2UJp2EQhlj CjIWORWotiQExMIY+CsY2izlBScC9PmSApSj4Znfht9TenqAtCK7ZsgKB9D7accz kdPPykjZldiKX+FCsXqpnFoBha3/2eHg -----END CERTIFICATE-----Generated at Wed Dec 3 15:32:11 2025 by rpki-client