This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.mft File: 0qCHG82DdsEajwSaOYVa_NsYMGQ.mft (raw, json) Hash identifier: ohI0OuyL6uNy5p1DXrJCNqZKM2Wmftrd5Y3bYuE23yk= Subject key identifier: D9:4F:99:3D:F1:62:CA:8A:E8:EB:0C:EB:78:D4:8E:4F:CC:74:5F:54 Authority key identifier: D2:A0:87:1B:CD:83:76:C1:1A:8F:04:9A:39:85:5A:FC:DB:18:30:64 Certificate issuer: /CN=A911CA82/serialNumber=D2A0871BCD8376C11A8F049A39855AFCDB183064 Certificate serial: 0691 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0qCHG82DdsEajwSaOYVa_NsYMGQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.mft Manifest number: 0676 Signing time: Thu 18 Dec 2025 22:07:18 +0000 Manifest this update: Thu 18 Dec 2025 22:07:18 +0000 Manifest next update: Thu 25 Dec 2025 22:07:18 +0000 Files and hashes: 1: 0qCHG82DdsEajwSaOYVa_NsYMGQ.crl (hash: 3tvGk3qBVxHSWZ0Z+9IzdsoxT+KM6JE7zCKxC4/UvGg=) 2: CB304C36307111EDB0CBD946C4F9AE02.roa (hash: jEdo1Rs/DDX/IrH+sOX8S2VLADZNFH0eDKIDU/uoHNw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.crl rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0qCHG82DdsEajwSaOYVa_NsYMGQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 22:07:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1681 (0x691) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CA82, serialNumber=D2A0871BCD8376C11A8F049A39855AFCDB183064 Validity Not Before: Dec 18 22:07:18 2025 GMT Not After : Dec 25 22:07:18 2025 GMT Subject: CN=69447b16-009c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:b3:f0:4b:97:26:e4:db:22:92:82:d5:b7:18: 8b:db:e2:d6:01:fd:a7:e1:3b:8f:c2:23:ad:59:7b: 4a:b8:c2:88:aa:56:2e:92:2b:79:dd:b2:26:22:a7: 6f:90:fa:2c:ab:f1:4a:13:8c:4d:37:59:f0:2b:e9: 8b:10:c0:5b:42:f8:7c:8b:0a:f2:35:36:ed:04:92: 52:b6:61:4f:46:a0:4e:0c:39:2f:6f:c0:d8:fd:34: c2:a4:14:f7:bb:c0:8f:3d:a1:4f:85:e2:7d:6f:60: 12:2b:e3:af:42:d9:ad:dc:36:44:67:a1:67:0d:32: 62:c2:37:a7:54:7c:0a:61:a5:21:12:9d:3d:6e:e9: 77:c2:bf:a2:db:3d:7b:ba:ff:94:40:a4:d0:75:9d: ca:52:ef:e9:c3:a5:a4:b9:81:55:86:a2:a1:3d:7d: c2:0f:88:43:94:24:9d:73:ed:d3:81:9d:63:98:dc: f1:18:50:14:18:79:1f:8c:18:c8:92:02:56:d4:b2: c3:b7:ff:5f:fa:eb:c5:54:74:17:ac:fa:42:ad:f7: 65:7b:04:2d:ca:a1:64:f4:da:7e:ca:9f:ab:f5:14: 02:dd:72:4a:5b:39:7c:12:9e:36:44:86:11:ed:2f: a7:5b:5e:14:6f:26:7b:8e:88:9d:1e:0f:62:cb:e5: 04:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:4F:99:3D:F1:62:CA:8A:E8:EB:0C:EB:78:D4:8E:4F:CC:74:5F:54 X509v3 Authority Key Identifier: keyid:D2:A0:87:1B:CD:83:76:C1:1A:8F:04:9A:39:85:5A:FC:DB:18:30:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0qCHG82DdsEajwSaOYVa_NsYMGQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:6b:42:12:08:ad:43:62:60:07:4b:e3:74:23:a6:dd:98:ce: 31:a0:7d:d7:fb:6b:59:46:69:2d:83:18:da:f5:23:6f:f3:e4: 26:59:17:04:4d:7a:5d:cc:50:45:9e:ba:57:23:84:b1:7b:25: 83:4b:0e:a6:ff:e5:53:e4:c5:2e:ad:54:49:c5:78:89:07:59: 18:37:f4:37:e2:34:33:b0:71:52:0b:86:48:73:6a:c9:1e:30: 05:ea:f3:23:75:9d:c6:dd:6a:0d:5f:59:63:ae:15:40:16:a9: 97:90:b1:eb:62:69:16:ce:ab:43:53:90:bc:c1:af:5e:75:91: 70:23:04:33:8c:e9:0b:3d:58:15:31:7f:b1:5e:1b:8e:1a:05: 1e:b2:01:cd:b4:34:26:ef:9a:58:5e:6f:a8:19:d2:fd:10:4a: b3:a7:85:03:21:00:dd:a4:de:f6:63:11:94:0a:35:5d:19:aa: ff:85:fe:cb:b4:a8:80:1b:16:1e:9f:55:40:80:27:22:bf:28: 72:7a:59:6f:7b:04:ee:9c:06:85:ec:4e:7b:03:d6:c0:be:96: b9:b8:28:ae:8e:3e:ed:24:dc:a7:e4:cc:55:48:8d:59:55:2d: 4b:73:07:b7:08:eb:8c:12:a1:1d:0d:79:8e:e8:99:d0:96:fa: e7:2c:13:66 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBpEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNBODIxMTAvBgNVBAUTKEQyQTA4NzFCQ0Q4Mzc2QzExQThGMDQ5QTM5ODU1QUZD REIxODMwNjQwHhcNMjUxMjE4MjIwNzE4WhcNMjUxMjI1MjIwNzE4WjAYMRYwFAYD VQQDDA02OTQ0N2IxNi0wMDljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAybPwS5cm5NsikoLVtxiL2+LWAf2n4TuPwiOtWXtKuMKIqlYukit53bImIqdv kPosq/FKE4xNN1nwK+mLEMBbQvh8iwryNTbtBJJStmFPRqBODDkvb8DY/TTCpBT3 u8CPPaFPheJ9b2ASK+OvQtmt3DZEZ6FnDTJiwjenVHwKYaUhEp09bul3wr+i2z17 uv+UQKTQdZ3KUu/pw6WkuYFVhqKhPX3CD4hDlCSdc+3TgZ1jmNzxGFAUGHkfjBjI kgJW1LLDt/9f+uvFVHQXrPpCrfdlewQtyqFk9Np+yp+r9RQC3XJKWzl8Ep42RIYR 7S+nW14UbyZ7joidHg9iy+UE8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNlPmT3x YsqK6OsM63jUjk/MdF9UMB8GA1UdIwQYMBaAFNKghxvNg3bBGo8EmjmFWvzbGDBk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0E4Mi8wQkVCMzc1QUJF NDQxMUVCQUUzRDQzNDhDNEY5QUUwMi8wcUNIRzgyRGRzRWFqd1NhT1lWYV9Oc1lN R1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBxQ0hHODJEZHNFYWp3U2FPWVZhX05zWU1HUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Q0E4Mi8wQkVCMzc1QUJFNDQxMUVCQUUzRDQzNDhDNEY5QUUwMi8wcUNIRzgyRGRz RWFqd1NhT1lWYV9Oc1lNR1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCma0ISCK1DYmAHS+N0I6bdmM4xoH3X+2tZRmktgxja9SNv8+QmWRcE TXpdzFBFnrpXI4SxeyWDSw6m/+VT5MUurVRJxXiJB1kYN/Q34jQzsHFSC4ZIc2rJ HjAF6vMjdZ3G3WoNX1ljrhVAFqmXkLHrYmkWzqtDU5C8wa9edZFwIwQzjOkLPVgV MX+xXhuOGgUesgHNtDQm75pYXm+oGdL9EEqzp4UDIQDdpN72YxGUCjVdGar/hf7L tKiAGxYen1VAgCcivyhyellvewTunAaF7E57A9bAvpa5uCiujj7tJNyn5MxVSI1Z VS1Lcwe3COuMEqEdDXmO6JnQlvrnLBNm -----END CERTIFICATE-----Generated at Fri Dec 19 19:05:40 2025 by rpki-client