This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.mft File: QN1mK29ul7NNO3WoAH3lOI2SclM.mft (raw, json) Hash identifier: G4poNTHkTTCHls1N3mu/ZVNvkKC72C+cQTgETb8UOrk= Subject key identifier: 9C:57:3C:0D:75:72:8F:F2:DA:AB:9D:13:E7:DA:BA:BE:E1:A9:DC:7F Authority key identifier: 40:DD:66:2B:6F:6E:97:B3:4D:3B:75:A8:00:7D:E5:38:8D:92:72:53 Certificate issuer: /CN=A911CF44/serialNumber=40DD662B6F6E97B34D3B75A8007DE5388D927253 Certificate serial: 06BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QN1mK29ul7NNO3WoAH3lOI2SclM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.mft Manifest number: 06B4 Signing time: Sun 28 Dec 2025 21:31:27 +0000 Manifest this update: Sun 28 Dec 2025 21:31:26 +0000 Manifest next update: Sun 04 Jan 2026 21:31:26 +0000 Files and hashes: 1: QN1mK29ul7NNO3WoAH3lOI2SclM.crl (hash: vP9HA4chKKhSCmkgsVlqWjYCbVkEYxJh8/g03HRqPIw=) 2: 85613B4E8C8411EBB68DD829C4F9AE02.roa (hash: JUDELwHgPtKuVC+Zxi+8ziVhRWeVBos3PiAym1dLOsg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.crl rsync://rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QN1mK29ul7NNO3WoAH3lOI2SclM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 Jan 2026 21:31:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1724 (0x6bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CF44, serialNumber=40DD662B6F6E97B34D3B75A8007DE5388D927253 Validity Not Before: Dec 28 21:31:26 2025 GMT Not After : Jan 4 21:31:26 2026 GMT Subject: CN=6951a1af-58dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:f8:88:c6:b3:64:75:87:63:5c:23:22:1d:b4: d8:a3:7f:0e:85:74:96:3a:bd:2e:7b:8f:25:80:e8: 4f:61:95:d8:79:d0:ff:43:0a:97:3b:e3:d6:dc:10: 07:e0:36:a0:be:3b:64:4f:29:a3:09:8b:5e:c5:de: bf:e5:18:70:ac:d0:3b:a4:fc:74:8e:17:92:23:c8: 38:d7:db:19:37:d0:af:07:5e:a4:10:21:10:eb:f3: 6c:1e:93:65:4a:93:d7:b2:4c:a0:a2:0b:da:39:a9: ba:12:3f:ce:b1:8e:32:6c:b6:ea:be:24:8b:b9:88: 89:32:63:fb:2e:a5:f0:18:07:3c:1f:84:98:b4:c1: b9:17:44:d9:4a:e4:8c:19:1f:c1:7d:39:9c:41:41: 7a:94:96:73:ae:16:ef:46:ff:14:26:9f:ba:2c:a6: 0c:29:78:ae:28:66:a3:ce:38:33:6a:c3:a0:2b:3a: 1d:16:a5:01:24:c1:f9:ef:dc:96:81:e6:33:9b:52: 96:4d:9c:24:9f:74:37:02:43:8c:f4:17:84:09:a3: 54:02:60:12:0d:81:26:1f:45:df:fa:9e:52:81:a4: 3b:dc:99:83:03:d4:b1:ed:fe:ca:4a:c7:76:9d:07: 59:1c:23:6d:46:5a:62:74:9f:09:7c:a5:b7:40:94: 46:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:57:3C:0D:75:72:8F:F2:DA:AB:9D:13:E7:DA:BA:BE:E1:A9:DC:7F X509v3 Authority Key Identifier: keyid:40:DD:66:2B:6F:6E:97:B3:4D:3B:75:A8:00:7D:E5:38:8D:92:72:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QN1mK29ul7NNO3WoAH3lOI2SclM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:0c:be:b7:ee:52:24:ca:d6:7b:13:21:4c:fb:de:75:41:2b: 95:2d:00:b0:f0:93:3a:e3:aa:8c:4f:40:9d:82:e5:c9:78:e6: f0:73:8f:fe:27:62:ef:3c:59:b2:61:20:f8:64:e7:25:4d:c9: 9c:c7:23:5e:31:ad:cb:e9:5a:71:a3:a8:c1:ce:f2:fe:e7:e6: bc:37:63:f5:c7:b9:03:10:89:44:4b:35:1b:71:6e:80:35:3a: 44:b5:b0:65:b7:64:92:cf:f3:38:7f:c3:28:10:f6:8f:fa:c9: cf:77:32:02:3d:43:d7:e3:a2:b3:35:ea:55:8e:70:94:f4:96: c5:27:9f:f8:f8:c8:9b:b2:ba:9a:81:fe:8f:5a:75:db:59:95: a1:09:14:7a:ae:3c:4f:e7:7f:60:17:54:a5:aa:d8:f3:36:8a: c2:c1:6d:3b:26:59:85:db:a9:a4:61:99:a9:5f:d6:bf:42:77: 36:f3:bc:31:56:cf:b8:4d:8c:9d:55:45:19:0d:22:b6:28:f5: c9:ae:8d:dd:93:e3:e6:4b:11:9a:fa:43:77:e2:1f:2c:74:56: 1f:19:7c:76:a5:82:25:1d:c4:88:01:0a:74:be:5d:1e:55:a2: 83:a7:a2:46:4d:dd:69:44:73:e6:a6:52:86:4d:c5:d1:38:5f: 12:0d:73:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBrwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNGNDQxMTAvBgNVBAUTKDQwREQ2NjJCNkY2RTk3QjM0RDNCNzVBODAwN0RFNTM4 OEQ5MjcyNTMwHhcNMjUxMjI4MjEzMTI2WhcNMjYwMTA0MjEzMTI2WjAYMRYwFAYD VQQDDA02OTUxYTFhZi01OGRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsfiIxrNkdYdjXCMiHbTYo38OhXSWOr0ue48lgOhPYZXYedD/QwqXO+PW3BAH 4DagvjtkTymjCYtexd6/5RhwrNA7pPx0jheSI8g419sZN9CvB16kECEQ6/NsHpNl SpPXskygogvaOam6Ej/OsY4ybLbqviSLuYiJMmP7LqXwGAc8H4SYtMG5F0TZSuSM GR/BfTmcQUF6lJZzrhbvRv8UJp+6LKYMKXiuKGajzjgzasOgKzodFqUBJMH579yW geYzm1KWTZwkn3Q3AkOM9BeECaNUAmASDYEmH0Xf+p5SgaQ73JmDA9Sx7f7KSsd2 nQdZHCNtRlpidJ8JfKW3QJRGOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJxXPA11 co/y2qudE+faur7hqdx/MB8GA1UdIwQYMBaAFEDdZitvbpezTTt1qAB95TiNknJT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0Y0NC82Njc3QkVCNjhD ODMxMUVCODQ5RTYxMjlDNEY5QUUwMi9RTjFtSzI5dWw3Tk5PM1dvQUgzbE9JMlNj bE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FOMW1LMjl1bDdOTk8zV29BSDNsT0kyU2NsTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Q0Y0NC82Njc3QkVCNjhDODMxMUVCODQ5RTYxMjlDNEY5QUUwMi9RTjFtSzI5dWw3 Tk5PM1dvQUgzbE9JMlNjbE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCGDL637lIkytZ7EyFM+951QSuVLQCw8JM646qMT0CdguXJeObwc4/+ J2LvPFmyYSD4ZOclTcmcxyNeMa3L6Vpxo6jBzvL+5+a8N2P1x7kDEIlESzUbcW6A NTpEtbBlt2SSz/M4f8MoEPaP+snPdzICPUPX46KzNepVjnCU9JbFJ5/4+Mibsrqa gf6PWnXbWZWhCRR6rjxP539gF1SlqtjzNorCwW07JlmF26mkYZmpX9a/Qnc287wx Vs+4TYydVUUZDSK2KPXJro3dk+PmSxGa+kN34h8sdFYfGXx2pYIlHcSIAQp0vl0e VaKDp6JGTd1pRHPmplKGTcXROF8SDXOH -----END CERTIFICATE-----Generated at Mon Dec 29 14:54:30 2025 by rpki-client