This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912C8AF/EE0AEECA3E8111EB9ABD920FC4F9AE02/Qk4KOEPz-h9Etq8u8-4RgVxLUgk.mft File: Qk4KOEPz-h9Etq8u8-4RgVxLUgk.mft (raw, json) Hash identifier: zDoVK3LJKTam7wOXnsJoxOOHeSgSrzoP27totIKHFqg= Subject key identifier: F4:3D:1B:54:34:A1:AF:00:AC:27:56:F0:F6:73:17:EE:40:96:A9:69 Authority key identifier: 42:4E:0A:38:43:F3:FA:1F:44:B6:AF:2E:F3:EE:11:81:5C:4B:52:09 Certificate issuer: /CN=A912C8AF/serialNumber=424E0A3843F3FA1F44B6AF2EF3EE11815C4B5209 Certificate serial: 0798 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Qk4KOEPz-h9Etq8u8-4RgVxLUgk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C8AF/EE0AEECA3E8111EB9ABD920FC4F9AE02/Qk4KOEPz-h9Etq8u8-4RgVxLUgk.mft Manifest number: 078E Signing time: Sat 20 Dec 2025 18:55:49 +0000 Manifest this update: Sat 20 Dec 2025 18:55:49 +0000 Manifest next update: Sat 27 Dec 2025 18:55:48 +0000 Files and hashes: 1: Qk4KOEPz-h9Etq8u8-4RgVxLUgk.crl (hash: XnjlRShIkW8ibGq3p6cb1LcJOOGdnFQ7xdSliIrV4Ho=) 2: 510308503E8211EBA910FF57C4F9AE02.roa (hash: PjHH406K/ka7XNZ7a0h9GqbdKh0e4+H0cJO6YTJYTgA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C8AF/EE0AEECA3E8111EB9ABD920FC4F9AE02/Qk4KOEPz-h9Etq8u8-4RgVxLUgk.crl rsync://rpki.apnic.net/member_repository/A912C8AF/EE0AEECA3E8111EB9ABD920FC4F9AE02/Qk4KOEPz-h9Etq8u8-4RgVxLUgk.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Qk4KOEPz-h9Etq8u8-4RgVxLUgk.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 18:55:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1944 (0x798) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C8AF, serialNumber=424E0A3843F3FA1F44B6AF2EF3EE11815C4B5209 Validity Not Before: Dec 20 18:55:49 2025 GMT Not After : Dec 27 18:55:48 2025 GMT Subject: CN=6946f135-2884 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:29:20:fd:16:ca:b1:ab:68:d5:3a:9a:b1:69: 53:38:4d:cf:f6:00:a9:fb:1a:68:6d:f7:96:c0:c6: 4e:87:7d:1d:11:a7:6a:20:00:c5:83:bf:5a:4d:8d: 82:cf:51:11:7a:28:c5:bc:88:7f:07:36:3f:62:9f: 47:36:a3:de:05:c3:41:65:1f:40:3f:95:a1:98:fa: 22:c7:f7:af:a1:3f:11:f7:b5:ee:3a:8a:1a:d5:9e: 10:2f:24:3f:8f:93:c0:4f:5d:3e:b2:52:ab:0d:6b: ee:b5:3f:d3:5b:a1:2a:07:f1:96:73:c9:8a:6c:aa: e6:25:42:15:19:9d:b4:bd:09:4f:03:ab:5b:f1:96: d1:c5:5b:c3:68:a1:cb:7d:a5:c5:38:38:f5:7c:28: a0:d5:6a:c4:e6:2b:11:fd:ee:65:dc:6b:a5:c1:bf: 05:b2:63:c8:5f:95:5c:ad:e6:53:5c:3c:11:78:48: 07:80:2c:b1:ee:67:06:58:e7:fd:f1:35:ea:9b:57: f4:cd:9a:18:7b:6c:79:82:6e:f4:3e:6f:73:72:4b: 0b:11:19:70:07:52:cc:30:3d:14:fa:bc:3a:a2:e5: e9:8d:ae:3f:76:8e:54:b7:70:0a:8f:a4:0c:74:5a: eb:e8:9b:c0:2c:52:46:cd:0c:f2:81:5a:2b:ea:a9: 64:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:3D:1B:54:34:A1:AF:00:AC:27:56:F0:F6:73:17:EE:40:96:A9:69 X509v3 Authority Key Identifier: keyid:42:4E:0A:38:43:F3:FA:1F:44:B6:AF:2E:F3:EE:11:81:5C:4B:52:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C8AF/EE0AEECA3E8111EB9ABD920FC4F9AE02/Qk4KOEPz-h9Etq8u8-4RgVxLUgk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Qk4KOEPz-h9Etq8u8-4RgVxLUgk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C8AF/EE0AEECA3E8111EB9ABD920FC4F9AE02/Qk4KOEPz-h9Etq8u8-4RgVxLUgk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:38:c2:90:fe:e9:de:0e:5e:fc:ca:0b:94:cc:5a:06:20:91: b3:59:0c:28:3e:2e:94:e5:d9:8f:83:7f:30:ef:e0:a1:4f:06: 15:4f:53:f7:7b:f4:67:97:19:21:b6:ea:1f:c3:0c:ed:71:31: 4f:bc:c3:d5:3f:a6:4c:10:4d:a3:5e:13:f3:59:5f:3c:3c:72: 74:a3:4d:c4:ec:78:74:10:f2:e8:e0:f9:aa:5a:49:2f:26:21: 56:b1:74:10:03:e5:90:04:5d:fd:7b:c7:7d:01:46:0b:77:f0: ba:d1:18:73:8d:e6:fc:48:a4:7f:7f:ca:11:c6:32:6a:72:59: 97:70:ff:6c:92:1f:86:01:91:32:fb:ca:5e:7f:1b:f7:ee:70: 79:86:3f:c8:4c:2d:da:58:82:47:a6:e8:4d:65:af:63:f5:8e: d6:98:30:51:73:46:0a:c5:4c:64:b8:2f:b2:24:42:a2:7a:0e: 80:35:61:f7:23:0e:48:15:35:c5:16:c2:c7:a5:7e:83:e0:49: d3:bd:a2:d0:b4:f3:f3:67:32:bc:46:50:24:0f:85:2b:79:24: 0d:7b:c1:e3:43:af:47:f5:30:e3:a1:94:e3:7f:cd:b3:31:e2: 8f:34:65:9d:8f:e9:f5:8d:df:4c:a5:25:54:a6:d9:31:57:54: 05:46:e0:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB5gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkM4QUYxMTAvBgNVBAUTKDQyNEUwQTM4NDNGM0ZBMUY0NEI2QUYyRUYzRUUxMTgx NUM0QjUyMDkwHhcNMjUxMjIwMTg1NTQ5WhcNMjUxMjI3MTg1NTQ4WjAYMRYwFAYD VQQDDA02OTQ2ZjEzNS0yODg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsSkg/RbKsato1TqasWlTOE3P9gCp+xpobfeWwMZOh30dEadqIADFg79aTY2C z1EReijFvIh/BzY/Yp9HNqPeBcNBZR9AP5WhmPoix/evoT8R97XuOooa1Z4QLyQ/ j5PAT10+slKrDWvutT/TW6EqB/GWc8mKbKrmJUIVGZ20vQlPA6tb8ZbRxVvDaKHL faXFODj1fCig1WrE5isR/e5l3Gulwb8FsmPIX5VcreZTXDwReEgHgCyx7mcGWOf9 8TXqm1f0zZoYe2x5gm70Pm9zcksLERlwB1LMMD0U+rw6ouXpja4/do5Ut3AKj6QM dFrr6JvALFJGzQzygVor6qlkbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPQ9G1Q0 oa8ArCdW8PZzF+5AlqlpMB8GA1UdIwQYMBaAFEJOCjhD8/ofRLavLvPuEYFcS1IJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQzhBRi9FRTBBRUVDQTNF ODExMUVCOUFCRDkyMEZDNEY5QUUwMi9RazRLT0VQei1oOUV0cTh1OC00UmdWeExV Z2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1FrNEtPRVB6LWg5RXRxOHU4LTRSZ1Z4TFVnay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QzhBRi9FRTBBRUVDQTNFODExMUVCOUFCRDkyMEZDNEY5QUUwMi9RazRLT0VQei1o OUV0cTh1OC00UmdWeExVZ2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzOMKQ/uneDl78yguUzFoGIJGzWQwoPi6U5dmPg38w7+ChTwYVT1P3 e/RnlxkhtuofwwztcTFPvMPVP6ZMEE2jXhPzWV88PHJ0o03E7Hh0EPLo4PmqWkkv JiFWsXQQA+WQBF39e8d9AUYLd/C60Rhzjeb8SKR/f8oRxjJqclmXcP9skh+GAZEy +8pefxv37nB5hj/ITC3aWIJHpuhNZa9j9Y7WmDBRc0YKxUxkuC+yJEKieg6ANWH3 Iw5IFTXFFsLHpX6D4EnTvaLQtPPzZzK8RlAkD4UreSQNe8HjQ69H9TDjoZTjf82z MeKPNGWdj+n1jd9MpSVUptkxV1QFRuCz -----END CERTIFICATE-----Generated at Sun Dec 21 10:21:18 2025 by rpki-client