This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919960D/BD0B64C68DDA11ED873A7487C4F9AE02/QgBM9ryh-lZCT17qJPYqkrJc3s8.mft File: QgBM9ryh-lZCT17qJPYqkrJc3s8.mft (raw, json) Hash identifier: wChl5TL9V+p6VksQJsZB69u0qhRqMHW/SWRI/m6WBys= Subject key identifier: E5:B6:8D:DA:C1:8E:28:59:E7:DC:16:1A:98:5F:78:1D:8A:4D:F1:E2 Authority key identifier: 42:00:4C:F6:BC:A1:FA:56:42:4F:5E:EA:24:F6:2A:92:B2:5C:DE:CF Certificate issuer: /CN=A919960D/serialNumber=42004CF6BCA1FA56424F5EEA24F62A92B25CDECF Certificate serial: 022C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QgBM9ryh-lZCT17qJPYqkrJc3s8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919960D/BD0B64C68DDA11ED873A7487C4F9AE02/QgBM9ryh-lZCT17qJPYqkrJc3s8.mft Manifest number: 0226 Signing time: Sun 07 Dec 2025 00:40:10 +0000 Manifest this update: Sun 07 Dec 2025 00:40:10 +0000 Manifest next update: Sun 14 Dec 2025 00:40:10 +0000 Files and hashes: 1: QgBM9ryh-lZCT17qJPYqkrJc3s8.crl (hash: nRiMIg+6yQVkA40VmA1DemWFuTJuSK8bOTzrpuseZZ0=) 2: BE9174768DDE11ED97AFDA82C4F9AE02.roa (hash: ZcR87fOE985weT09Qg5tlvuB8e7ekzEVhJSSXPksgz0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919960D/BD0B64C68DDA11ED873A7487C4F9AE02/QgBM9ryh-lZCT17qJPYqkrJc3s8.crl rsync://rpki.apnic.net/member_repository/A919960D/BD0B64C68DDA11ED873A7487C4F9AE02/QgBM9ryh-lZCT17qJPYqkrJc3s8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QgBM9ryh-lZCT17qJPYqkrJc3s8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 00:40:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 556 (0x22c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919960D, serialNumber=42004CF6BCA1FA56424F5EEA24F62A92B25CDECF Validity Not Before: Dec 7 00:40:10 2025 GMT Not After : Dec 14 00:40:10 2025 GMT Subject: CN=6934ccea-425e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:ef:e6:7b:da:9a:0e:8f:b3:f9:14:08:3b:57: f5:02:a9:d1:31:24:b6:16:dc:93:b7:06:16:17:de: cb:1a:d0:90:0c:00:c5:a2:2a:a8:1a:5a:52:0f:69: e4:10:70:a6:66:75:44:18:4a:54:ae:b1:84:cb:34: 46:df:a4:54:1c:c8:ab:90:70:e4:19:cb:bd:7e:28: 94:3f:9f:59:1c:27:f6:1c:f9:42:90:c7:aa:36:19: f4:db:60:5e:5a:96:3e:08:8b:62:cb:70:be:ec:8d: 15:fc:1d:ad:38:9c:09:4a:65:b6:b4:77:a6:d7:55: a9:2d:63:ad:bc:d7:fe:7b:46:8b:40:0a:2b:a8:a6: 55:8c:ea:4b:e1:32:df:6c:4e:d7:a9:8d:5d:47:62: 6d:69:c7:21:e9:f6:37:ad:3d:b5:85:52:11:5f:89: 18:73:c4:2d:36:fb:db:b7:f5:9f:f6:cb:98:d0:54: 5e:d9:fd:ad:dd:b7:fd:1e:d8:11:30:3b:12:1c:09: fb:cc:25:92:65:7d:2c:c6:a9:16:e3:d4:21:7e:16: 19:00:25:f8:13:2d:57:79:e1:95:64:b2:09:19:12: 72:61:f9:26:be:ec:71:eb:78:3c:bb:e3:52:bc:70: f6:b8:b3:54:c6:66:53:58:ac:18:12:ad:4a:31:f6: 04:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:B6:8D:DA:C1:8E:28:59:E7:DC:16:1A:98:5F:78:1D:8A:4D:F1:E2 X509v3 Authority Key Identifier: keyid:42:00:4C:F6:BC:A1:FA:56:42:4F:5E:EA:24:F6:2A:92:B2:5C:DE:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919960D/BD0B64C68DDA11ED873A7487C4F9AE02/QgBM9ryh-lZCT17qJPYqkrJc3s8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QgBM9ryh-lZCT17qJPYqkrJc3s8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919960D/BD0B64C68DDA11ED873A7487C4F9AE02/QgBM9ryh-lZCT17qJPYqkrJc3s8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:3d:18:72:79:30:e8:89:8b:fc:e5:b1:54:39:3f:89:0a:f2: a2:bc:10:58:f0:df:06:7d:02:0c:77:56:18:01:72:a9:3b:77: ad:51:72:7b:bc:91:4d:0c:46:4a:ca:17:b8:62:0c:dd:82:a1: f5:fa:ff:75:11:a7:11:63:52:c1:dc:97:53:c9:fd:31:83:33: 45:0d:3f:2f:b9:df:73:85:ec:ba:e1:a0:b0:5f:28:e4:63:18: fc:fb:3c:0e:f8:67:5c:69:a7:28:86:d3:b6:f8:fc:37:2e:75: 38:a0:cb:27:7d:fd:8c:1e:1e:38:b7:c6:5d:a8:b0:1f:20:a2: 1c:9a:77:8f:9f:fd:32:b8:78:1f:55:8d:10:c8:ae:3a:fc:75: cf:72:81:0c:41:5d:bf:e5:b8:22:20:15:9d:bc:4c:03:4b:26: f0:80:a8:be:7d:52:0d:5b:d0:44:75:eb:47:55:f8:27:83:05: 33:3f:ff:e7:8f:73:a4:3e:15:59:00:89:c6:16:a0:5d:aa:07: 6c:46:c4:dd:1c:c1:bf:86:39:64:3d:f7:7b:99:15:d9:5e:cc: e9:48:ef:2d:f5:6e:0b:28:19:33:dc:9f:7f:ae:86:0c:85:20: 61:97:0f:22:a0:fe:ba:63:db:dc:0e:a6:d9:80:43:e1:42:bb: c6:7c:7e:e5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTk2MEQxMTAvBgNVBAUTKDQyMDA0Q0Y2QkNBMUZBNTY0MjRGNUVFQTI0RjYyQTky QjI1Q0RFQ0YwHhcNMjUxMjA3MDA0MDEwWhcNMjUxMjE0MDA0MDEwWjAYMRYwFAYD VQQDEw02OTM0Y2NlYS00MjVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxe/me9qaDo+z+RQIO1f1AqnRMSS2FtyTtwYWF97LGtCQDADFoiqoGlpSD2nk EHCmZnVEGEpUrrGEyzRG36RUHMirkHDkGcu9fiiUP59ZHCf2HPlCkMeqNhn022Be WpY+CItiy3C+7I0V/B2tOJwJSmW2tHem11WpLWOtvNf+e0aLQAorqKZVjOpL4TLf bE7XqY1dR2Jtacch6fY3rT21hVIRX4kYc8QtNvvbt/Wf9suY0FRe2f2t3bf9HtgR MDsSHAn7zCWSZX0sxqkW49QhfhYZACX4Ey1XeeGVZLIJGRJyYfkmvuxx63g8u+NS vHD2uLNUxmZTWKwYEq1KMfYEeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOW2jdrB jihZ59wWGphfeB2KTfHiMB8GA1UdIwQYMBaAFEIATPa8ofpWQk9e6iT2KpKyXN7P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTYwRC9CRDBCNjRDNjhE REExMUVEODczQTc0ODdDNEY5QUUwMi9RZ0JNOXJ5aC1sWkNUMTdxSlBZcWtySmMz czguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FnQk05cnloLWxaQ1QxN3FKUFlxa3JKYzNzOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OTYwRC9CRDBCNjRDNjhEREExMUVEODczQTc0ODdDNEY5QUUwMi9RZ0JNOXJ5aC1s WkNUMTdxSlBZcWtySmMzczgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnPRhyeTDoiYv85bFUOT+JCvKivBBY8N8GfQIMd1YYAXKpO3etUXJ7 vJFNDEZKyhe4YgzdgqH1+v91EacRY1LB3JdTyf0xgzNFDT8vud9zhey64aCwXyjk Yxj8+zwO+GdcaacohtO2+Pw3LnU4oMsnff2MHh44t8ZdqLAfIKIcmnePn/0yuHgf VY0QyK46/HXPcoEMQV2/5bgiIBWdvEwDSybwgKi+fVINW9BEdetHVfgngwUzP//n j3OkPhVZAInGFqBdqgdsRsTdHMG/hjlkPfd7mRXZXszpSO8t9W4LKBkz3J9/roYM hSBhlw8ioP66Y9vcDqbZgEPhQrvGfH7l -----END CERTIFICATE-----Generated at Mon Dec 8 06:14:06 2025 by rpki-client