This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919E8DB/B48E25F4B76311EF82DD8F33C4F9AE02/QGGGPd9D57OxiePJwyF7wSuzXyE.mft File: QGGGPd9D57OxiePJwyF7wSuzXyE.mft (raw, json) Hash identifier: fjoN6oOYi2oBeLsFMGUw8/+StGD4kVoT1wD78tMGaYI= Subject key identifier: 44:88:9D:09:16:48:09:1B:AF:55:BA:40:2D:AE:5D:55:E5:C3:11:78 Authority key identifier: 40:61:86:3D:DF:43:E7:B3:B1:89:E3:C9:C3:21:7B:C1:2B:B3:5F:21 Certificate issuer: /CN=A919E8DB/serialNumber=4061863DDF43E7B3B189E3C9C3217BC12BB35F21 Certificate serial: DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QGGGPd9D57OxiePJwyF7wSuzXyE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919E8DB/B48E25F4B76311EF82DD8F33C4F9AE02/QGGGPd9D57OxiePJwyF7wSuzXyE.mft Manifest number: CF Signing time: Tue 23 Dec 2025 04:53:00 +0000 Manifest this update: Tue 23 Dec 2025 04:53:00 +0000 Manifest next update: Tue 30 Dec 2025 04:53:00 +0000 Files and hashes: 1: QGGGPd9D57OxiePJwyF7wSuzXyE.crl (hash: nRMDV6eH7djGN1vHPPcpLa1n2W3vkvLlrRWbqcs5H9I=) 2: DCAA44D6BF2A11EFBAAF1F16C4F9AE02.roa (hash: Nht97ur+ekDVMahSKVw1nXYEmKhTRBnAIrSGC7Jrda0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919E8DB/B48E25F4B76311EF82DD8F33C4F9AE02/QGGGPd9D57OxiePJwyF7wSuzXyE.crl rsync://rpki.apnic.net/member_repository/A919E8DB/B48E25F4B76311EF82DD8F33C4F9AE02/QGGGPd9D57OxiePJwyF7wSuzXyE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QGGGPd9D57OxiePJwyF7wSuzXyE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 04:52:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 218 (0xda) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919E8DB, serialNumber=4061863DDF43E7B3B189E3C9C3217BC12BB35F21 Validity Not Before: Dec 23 04:53:00 2025 GMT Not After : Dec 30 04:53:00 2025 GMT Subject: CN=694a202c-c1ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:ba:cf:fc:e9:84:c2:c5:6e:45:1f:2c:08:06: 11:a4:de:aa:8c:18:de:d9:3b:ba:f0:41:7e:c4:db: 31:39:54:94:c2:58:ad:5f:52:ae:5c:4e:db:3e:60: f2:c9:3e:76:12:7a:23:87:21:e6:20:d9:b2:cd:f2: bc:c4:81:2a:be:f5:69:ff:e9:1a:d9:31:f3:e9:a2: 11:42:23:ff:3f:25:fc:62:82:ed:0c:f6:1e:e4:57: 06:dc:f0:d8:ef:8d:6a:b0:07:97:7d:2e:fc:2f:64: 03:99:d6:8c:45:41:52:69:44:21:a8:06:f4:cc:8a: dd:81:49:2c:b7:88:6b:a2:6c:fb:f9:a1:9f:45:e1: 96:87:c7:e4:18:66:26:ff:c6:4a:54:ac:fb:d4:e7: b0:e6:29:85:f1:95:16:92:c7:10:d9:f1:24:b5:71: 04:6e:8b:17:1e:6c:e3:c0:83:5a:94:5f:9a:d6:be: 49:8f:42:cb:f6:34:f0:3d:c2:29:38:06:8a:c0:c9: 39:64:b4:81:58:1f:ce:f5:48:cf:a0:3b:60:d8:aa: 6f:81:61:db:8f:8a:e3:40:6d:56:77:87:51:c5:80: 95:95:98:b4:dd:cd:cf:21:4e:ea:6c:cc:d6:89:0f: e6:c1:a9:0c:91:e6:c9:ec:a4:2c:eb:0d:7a:90:de: fe:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:88:9D:09:16:48:09:1B:AF:55:BA:40:2D:AE:5D:55:E5:C3:11:78 X509v3 Authority Key Identifier: keyid:40:61:86:3D:DF:43:E7:B3:B1:89:E3:C9:C3:21:7B:C1:2B:B3:5F:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919E8DB/B48E25F4B76311EF82DD8F33C4F9AE02/QGGGPd9D57OxiePJwyF7wSuzXyE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QGGGPd9D57OxiePJwyF7wSuzXyE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919E8DB/B48E25F4B76311EF82DD8F33C4F9AE02/QGGGPd9D57OxiePJwyF7wSuzXyE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:52:af:4d:c8:b8:37:60:e1:1e:3f:69:6f:e0:76:86:c3:84: ce:79:37:7d:3b:25:f7:91:fb:f2:e5:c7:71:13:6b:fc:33:39: 69:e7:ae:90:80:d4:8d:ed:12:81:4a:d0:ab:3b:22:eb:9a:4f: 49:89:01:0a:20:ed:74:af:35:52:e9:fc:11:90:f9:31:ac:3d: 39:91:be:4e:65:33:9a:a2:90:eb:9b:61:89:4e:cf:17:ad:06: ef:02:27:02:c6:3d:5c:22:96:bf:c9:46:ad:2f:6f:97:43:85: ed:19:82:5a:3b:b8:4c:52:67:e5:d4:6c:77:d6:fe:18:c9:c0: 8d:45:2d:ac:77:5a:3f:ff:85:a8:a3:0c:8a:63:8a:2e:e2:c3: bc:42:a0:6a:75:1e:82:b3:50:38:76:be:b9:c1:94:b8:e6:06: f0:19:43:1d:bf:5c:21:5e:99:d3:8c:c9:90:1a:9b:e1:f4:ce: e7:32:c6:67:20:dc:38:9e:50:26:14:d1:d0:f9:2d:dc:0f:c3: 16:ad:89:ae:fa:51:58:ea:dc:f4:f5:f2:28:d3:94:48:d9:a7: 41:cc:e7:51:4c:4e:63:36:0d:a0:26:fa:45:ff:c7:36:41:93: 7c:e4:6a:89:f1:16:67:e5:61:35:1c:11:44:8e:cc:73:cf:b6: e1:fc:11:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUU4REIxMTAvBgNVBAUTKDQwNjE4NjNEREY0M0U3QjNCMTg5RTNDOUMzMjE3QkMx MkJCMzVGMjEwHhcNMjUxMjIzMDQ1MzAwWhcNMjUxMjMwMDQ1MzAwWjAYMRYwFAYD VQQDDA02OTRhMjAyYy1jMWZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAorrP/OmEwsVuRR8sCAYRpN6qjBje2Tu68EF+xNsxOVSUwlitX1KuXE7bPmDy yT52EnojhyHmINmyzfK8xIEqvvVp/+ka2THz6aIRQiP/PyX8YoLtDPYe5FcG3PDY 741qsAeXfS78L2QDmdaMRUFSaUQhqAb0zIrdgUkst4hromz7+aGfReGWh8fkGGYm /8ZKVKz71Oew5imF8ZUWkscQ2fEktXEEbosXHmzjwINalF+a1r5Jj0LL9jTwPcIp OAaKwMk5ZLSBWB/O9UjPoDtg2KpvgWHbj4rjQG1Wd4dRxYCVlZi03c3PIU7qbMzW iQ/mwakMkebJ7KQs6w16kN7+9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFESInQkW SAkbr1W6QC2uXVXlwxF4MB8GA1UdIwQYMBaAFEBhhj3fQ+ezsYnjycMhe8Ers18h MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RThEQi9CNDhFMjVGNEI3 NjMxMUVGODJERDhGMzNDNEY5QUUwMi9RR0dHUGQ5RDU3T3hpZVBKd3lGN3dTdXpY eUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FHR0dQZDlENTdPeGllUEp3eUY3d1N1elh5RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RThEQi9CNDhFMjVGNEI3NjMxMUVGODJERDhGMzNDNEY5QUUwMi9RR0dHUGQ5RDU3 T3hpZVBKd3lGN3dTdXpYeUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2Uq9NyLg3YOEeP2lv4HaGw4TOeTd9OyX3kfvy5cdxE2v8Mzlp566Q gNSN7RKBStCrOyLrmk9JiQEKIO10rzVS6fwRkPkxrD05kb5OZTOaopDrm2GJTs8X rQbvAicCxj1cIpa/yUatL2+XQ4XtGYJaO7hMUmfl1Gx31v4YycCNRS2sd1o//4Wo owyKY4ou4sO8QqBqdR6Cs1A4dr65wZS45gbwGUMdv1whXpnTjMmQGpvh9M7nMsZn INw4nlAmFNHQ+S3cD8MWrYmu+lFY6tz09fIo05RI2adBzOdRTE5jNg2gJvpF/8c2 QZN85GqJ8RZn5WE1HBFEjsxzz7bh/BFy -----END CERTIFICATE-----Generated at Wed Dec 24 14:10:40 2025 by rpki-client