This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919960D/BD0B64C68DDA11ED873A7487C4F9AE02/QgBM9ryh-lZCT17qJPYqkrJc3s8.mft File: QgBM9ryh-lZCT17qJPYqkrJc3s8.mft (raw, json) Hash identifier: DuI/mAtTYsrvlP+ywOEqe9L+V80kF0PDerFALv75pL4= Subject key identifier: 05:AE:1A:BC:C8:1C:0B:2C:88:37:22:5C:94:22:5B:98:49:88:38:B0 Authority key identifier: 42:00:4C:F6:BC:A1:FA:56:42:4F:5E:EA:24:F6:2A:92:B2:5C:DE:CF Certificate issuer: /CN=A919960D/serialNumber=42004CF6BCA1FA56424F5EEA24F62A92B25CDECF Certificate serial: 0234 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QgBM9ryh-lZCT17qJPYqkrJc3s8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919960D/BD0B64C68DDA11ED873A7487C4F9AE02/QgBM9ryh-lZCT17qJPYqkrJc3s8.mft Manifest number: 022E Signing time: Tue 23 Dec 2025 01:05:59 +0000 Manifest this update: Tue 23 Dec 2025 01:05:59 +0000 Manifest next update: Tue 30 Dec 2025 01:05:59 +0000 Files and hashes: 1: QgBM9ryh-lZCT17qJPYqkrJc3s8.crl (hash: XTma3YJdCUxszddYZyuKoTV7GGBxZ1f8j8K08Hwgiis=) 2: BE9174768DDE11ED97AFDA82C4F9AE02.roa (hash: ZcR87fOE985weT09Qg5tlvuB8e7ekzEVhJSSXPksgz0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919960D/BD0B64C68DDA11ED873A7487C4F9AE02/QgBM9ryh-lZCT17qJPYqkrJc3s8.crl rsync://rpki.apnic.net/member_repository/A919960D/BD0B64C68DDA11ED873A7487C4F9AE02/QgBM9ryh-lZCT17qJPYqkrJc3s8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QgBM9ryh-lZCT17qJPYqkrJc3s8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 01:05:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 564 (0x234) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919960D, serialNumber=42004CF6BCA1FA56424F5EEA24F62A92B25CDECF Validity Not Before: Dec 23 01:05:59 2025 GMT Not After : Dec 30 01:05:59 2025 GMT Subject: CN=6949eaf7-c563 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:6b:bc:37:9e:84:7a:22:b6:5a:e8:67:6c:95: 73:d5:c6:d8:7b:3a:0d:ef:59:ff:ed:c6:7f:7f:84: a4:ed:d0:8e:17:ad:da:99:0d:43:9e:c4:7e:06:f3: dd:c9:7c:e5:2c:36:b6:50:a3:6b:52:45:6b:49:f9: 05:2a:db:66:9c:6e:23:c2:23:80:9e:f4:47:de:3c: ae:98:e1:12:75:51:7c:8c:30:d2:fa:aa:c2:14:12: 01:2a:bc:ec:5c:ed:60:f8:33:0d:5f:62:53:9f:16: e7:63:e5:a2:00:4a:5e:77:66:eb:42:7b:9d:a9:18: eb:97:05:44:4a:28:84:33:b9:fc:28:6a:2c:98:55: 7b:65:20:41:b7:94:ef:f4:70:55:57:6a:f7:ca:17: 21:cc:11:e4:c7:eb:63:45:6f:a3:fd:7c:d3:73:ac: d8:4f:6d:12:dc:b7:8a:14:4b:6f:51:0b:40:0e:75: ca:7e:e6:10:f2:46:db:ab:0a:84:a9:a8:4e:89:3e: 6b:5b:35:12:3a:2d:fe:53:1e:11:0c:b9:75:ba:39: 48:45:72:6e:1c:f4:2c:ca:4b:ee:26:c6:35:a4:92: b4:e1:0f:ce:c9:de:7a:31:66:75:42:17:ea:c9:25: ad:21:cf:67:5f:ec:3e:30:4a:68:c3:3b:a2:5f:4d: 82:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:AE:1A:BC:C8:1C:0B:2C:88:37:22:5C:94:22:5B:98:49:88:38:B0 X509v3 Authority Key Identifier: keyid:42:00:4C:F6:BC:A1:FA:56:42:4F:5E:EA:24:F6:2A:92:B2:5C:DE:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919960D/BD0B64C68DDA11ED873A7487C4F9AE02/QgBM9ryh-lZCT17qJPYqkrJc3s8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QgBM9ryh-lZCT17qJPYqkrJc3s8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919960D/BD0B64C68DDA11ED873A7487C4F9AE02/QgBM9ryh-lZCT17qJPYqkrJc3s8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:cf:1d:15:45:fc:2e:ab:1c:78:c1:0f:9b:e7:46:2f:2c:d9: b8:db:11:2d:37:49:cf:34:f6:02:8b:7c:83:d0:90:e0:e0:8b: 2e:58:ce:1c:77:ad:67:b8:bb:11:95:db:95:c9:79:15:df:27: bf:8e:e7:59:a3:d4:ba:81:83:a0:96:c0:8c:f9:0e:a2:57:fb: ae:42:07:d6:f9:06:ab:5e:9f:5e:30:49:75:ce:09:e7:82:db: 01:f7:0d:ac:18:fb:f8:92:90:69:48:d1:ef:bc:70:93:dd:cb: 29:fb:96:e3:73:ae:24:78:8a:85:07:60:77:2b:5a:bd:df:d5: 95:89:5a:d6:ff:70:cd:3c:f6:80:c3:4c:ee:27:37:7b:b7:39: 1b:0a:88:a2:34:15:45:e8:13:4b:2b:01:3f:44:ea:95:cc:59: 73:94:1c:bf:d7:29:8e:07:0f:f3:1e:21:c5:98:68:13:17:cc: c0:5a:df:ef:95:84:9f:ef:c1:96:a2:56:f1:75:69:0b:7a:bf: 3c:2e:82:41:22:81:df:28:28:52:0e:32:bc:70:90:d0:6a:dc: 5e:43:09:bb:37:11:61:8f:75:9c:89:ab:39:df:7d:78:bd:ea: 07:36:18:6b:a3:7f:78:a3:2f:e7:0c:bd:79:3b:00:d6:8f:04: f4:68:4c:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTk2MEQxMTAvBgNVBAUTKDQyMDA0Q0Y2QkNBMUZBNTY0MjRGNUVFQTI0RjYyQTky QjI1Q0RFQ0YwHhcNMjUxMjIzMDEwNTU5WhcNMjUxMjMwMDEwNTU5WjAYMRYwFAYD VQQDDA02OTQ5ZWFmNy1jNTYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA22u8N56EeiK2WuhnbJVz1cbYezoN71n/7cZ/f4Sk7dCOF63amQ1DnsR+BvPd yXzlLDa2UKNrUkVrSfkFKttmnG4jwiOAnvRH3jyumOESdVF8jDDS+qrCFBIBKrzs XO1g+DMNX2JTnxbnY+WiAEped2brQnudqRjrlwVESiiEM7n8KGosmFV7ZSBBt5Tv 9HBVV2r3yhchzBHkx+tjRW+j/XzTc6zYT20S3LeKFEtvUQtADnXKfuYQ8kbbqwqE qahOiT5rWzUSOi3+Ux4RDLl1ujlIRXJuHPQsykvuJsY1pJK04Q/Oyd56MWZ1Qhfq ySWtIc9nX+w+MEpowzuiX02CsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAWuGrzI HAssiDciXJQiW5hJiDiwMB8GA1UdIwQYMBaAFEIATPa8ofpWQk9e6iT2KpKyXN7P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTYwRC9CRDBCNjRDNjhE REExMUVEODczQTc0ODdDNEY5QUUwMi9RZ0JNOXJ5aC1sWkNUMTdxSlBZcWtySmMz czguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FnQk05cnloLWxaQ1QxN3FKUFlxa3JKYzNzOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OTYwRC9CRDBCNjRDNjhEREExMUVEODczQTc0ODdDNEY5QUUwMi9RZ0JNOXJ5aC1s WkNUMTdxSlBZcWtySmMzczgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvzx0VRfwuqxx4wQ+b50YvLNm42xEtN0nPNPYCi3yD0JDg4IsuWM4c d61nuLsRlduVyXkV3ye/judZo9S6gYOglsCM+Q6iV/uuQgfW+QarXp9eMEl1zgnn gtsB9w2sGPv4kpBpSNHvvHCT3csp+5bjc64keIqFB2B3K1q939WViVrW/3DNPPaA w0zuJzd7tzkbCoiiNBVF6BNLKwE/ROqVzFlzlBy/1ymOBw/zHiHFmGgTF8zAWt/v lYSf78GWolbxdWkLer88LoJBIoHfKChSDjK8cJDQatxeQwm7NxFhj3Wcias53314 veoHNhhro394oy/nDL15OwDWjwT0aEwm -----END CERTIFICATE-----Generated at Tue Dec 23 14:17:08 2025 by rpki-client