This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9133CD2/45F3AA7EAC1611EDB947B860C4F9AE02/mqwVb6kYtDBXQdrp1duikzdGzoc.mft File: mqwVb6kYtDBXQdrp1duikzdGzoc.mft (raw, json) Hash identifier: 9siHUheN84a0Cvq9sefsT7QjbfnTnMT255XHL8thizI= Subject key identifier: D5:EA:B8:90:38:02:8B:AE:23:AB:A4:80:E1:9A:F7:79:E9:FD:6D:7F Authority key identifier: 9A:AC:15:6F:A9:18:B4:30:57:41:DA:E9:D5:DB:A2:93:37:46:CE:87 Certificate issuer: /CN=A9133CD2/serialNumber=9AAC156FA918B4305741DAE9D5DBA2933746CE87 Certificate serial: 022B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mqwVb6kYtDBXQdrp1duikzdGzoc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9133CD2/45F3AA7EAC1611EDB947B860C4F9AE02/mqwVb6kYtDBXQdrp1duikzdGzoc.mft Manifest number: 0220 Signing time: Sun 21 Dec 2025 01:27:26 +0000 Manifest this update: Sun 21 Dec 2025 01:27:26 +0000 Manifest next update: Sun 28 Dec 2025 01:27:26 +0000 Files and hashes: 1: mqwVb6kYtDBXQdrp1duikzdGzoc.crl (hash: RB1YrWfSd7QP8KDKIEmk28/50q5VeCWr/nPjRsS8Il4=) 2: A46B24207D3811EF8EE86E6BC4F9AE02.roa (hash: q4NWMO7W6lRpux2uN6ng9OrQyUZmWgx1UYeF7qqy2kQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9133CD2/45F3AA7EAC1611EDB947B860C4F9AE02/mqwVb6kYtDBXQdrp1duikzdGzoc.crl rsync://rpki.apnic.net/member_repository/A9133CD2/45F3AA7EAC1611EDB947B860C4F9AE02/mqwVb6kYtDBXQdrp1duikzdGzoc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mqwVb6kYtDBXQdrp1duikzdGzoc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 01:27:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 555 (0x22b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9133CD2, serialNumber=9AAC156FA918B4305741DAE9D5DBA2933746CE87 Validity Not Before: Dec 21 01:27:26 2025 GMT Not After : Dec 28 01:27:26 2025 GMT Subject: CN=69474cfe-a142 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:c0:2a:30:a1:62:fa:26:cf:49:62:31:35:00: 45:5c:c9:2f:d7:00:a6:f1:80:af:3b:48:52:de:2c: b9:5f:e0:f8:35:cf:7f:a0:12:16:3e:a5:2b:6d:28: 8f:6c:4b:07:3a:3f:50:ad:df:6f:72:34:32:27:7d: c7:b6:8a:cf:9a:f6:21:7b:91:d7:2d:67:3d:f4:bb: bc:cc:41:e3:71:ba:30:ef:05:c2:e2:44:ef:74:10: df:c0:78:f4:4b:de:48:10:10:cb:23:28:de:38:a7: 9b:c3:b6:83:70:cd:4c:0d:16:b4:55:95:13:c9:58: 68:f0:b6:d6:b6:e6:76:f2:50:fd:98:c7:b1:51:93: 0b:80:16:64:f0:01:04:ba:cb:3b:16:e1:e2:60:f9: 8f:d9:51:64:a9:03:41:1c:91:e5:5a:10:05:db:64: d9:95:b3:7f:a4:c0:b1:5d:1b:67:7d:c1:eb:ad:2a: 8e:c2:67:57:7a:98:b9:16:db:13:c3:81:ec:83:44: 81:ea:1b:f8:5b:d0:45:f7:1b:f5:4b:aa:8f:98:23: 51:31:60:06:d9:b9:9d:3d:90:5d:1b:ad:95:38:5d: 11:22:fd:77:be:39:1d:c5:4f:90:5c:96:9e:29:01: cf:75:3b:ac:eb:4e:20:fe:13:4e:ec:ab:e5:37:44: ed:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:EA:B8:90:38:02:8B:AE:23:AB:A4:80:E1:9A:F7:79:E9:FD:6D:7F X509v3 Authority Key Identifier: keyid:9A:AC:15:6F:A9:18:B4:30:57:41:DA:E9:D5:DB:A2:93:37:46:CE:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9133CD2/45F3AA7EAC1611EDB947B860C4F9AE02/mqwVb6kYtDBXQdrp1duikzdGzoc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mqwVb6kYtDBXQdrp1duikzdGzoc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9133CD2/45F3AA7EAC1611EDB947B860C4F9AE02/mqwVb6kYtDBXQdrp1duikzdGzoc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:2e:13:f7:f3:7c:63:8e:5d:81:db:54:b1:78:6c:de:3d:07: 4f:a0:ce:5c:52:02:59:5e:ca:30:92:f3:6e:a7:b0:ac:fb:bc: 65:1a:20:03:7a:67:f8:6d:25:44:9c:22:e8:2c:41:8a:af:44: a4:90:88:50:2c:8c:38:ea:b6:97:39:a6:f9:ff:d4:fe:20:30: aa:56:bf:53:67:55:81:a4:89:86:e0:fd:b3:3a:f6:b5:bc:ba: 3e:e9:15:4d:80:6a:56:60:b7:54:3a:f5:72:1a:6d:53:80:93: 5b:c6:3b:0b:be:2c:67:af:6f:99:87:d7:20:e8:ee:17:a4:a3: 81:a7:e6:a1:17:74:46:87:99:d3:ad:67:6c:39:e7:a3:3c:fb: 08:d7:f7:14:f9:1f:3e:6d:22:4d:7c:4c:46:7d:86:e6:fc:2d: 58:33:b9:01:32:fc:a3:5a:3d:94:43:6f:b7:32:9a:f7:db:87: ee:1e:e0:27:8f:c0:8b:08:95:36:c4:b2:c4:5c:59:79:cc:96: c3:32:0d:be:44:f6:4e:e9:44:77:f1:97:e1:f6:34:4d:a8:a4: 96:0f:93:88:96:a7:6c:f4:ca:47:87:eb:10:1d:3e:73:01:0b: a7:52:d6:d7:e8:17:09:4b:a3:ff:b5:6d:49:71:cd:89:4e:64: 09:65:e3:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzNDRDIxMTAvBgNVBAUTKDlBQUMxNTZGQTkxOEI0MzA1NzQxREFFOUQ1REJBMjkz Mzc0NkNFODcwHhcNMjUxMjIxMDEyNzI2WhcNMjUxMjI4MDEyNzI2WjAYMRYwFAYD VQQDDA02OTQ3NGNmZS1hMTQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAicAqMKFi+ibPSWIxNQBFXMkv1wCm8YCvO0hS3iy5X+D4Nc9/oBIWPqUrbSiP bEsHOj9Qrd9vcjQyJ33HtorPmvYhe5HXLWc99Lu8zEHjcbow7wXC4kTvdBDfwHj0 S95IEBDLIyjeOKebw7aDcM1MDRa0VZUTyVho8LbWtuZ28lD9mMexUZMLgBZk8AEE uss7FuHiYPmP2VFkqQNBHJHlWhAF22TZlbN/pMCxXRtnfcHrrSqOwmdXepi5FtsT w4Hsg0SB6hv4W9BF9xv1S6qPmCNRMWAG2bmdPZBdG62VOF0RIv13vjkdxU+QXJae KQHPdTus604g/hNO7KvlN0TtLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNXquJA4 AouuI6ukgOGa93np/W1/MB8GA1UdIwQYMBaAFJqsFW+pGLQwV0Ha6dXbopM3Rs6H MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzM0NEMi80NUYzQUE3RUFD MTYxMUVEQjk0N0I4NjBDNEY5QUUwMi9tcXdWYjZrWXREQlhRZHJwMWR1aWt6ZEd6 b2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21xd1ZiNmtZdERCWFFkcnAxZHVpa3pkR3pvYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz M0NEMi80NUYzQUE3RUFDMTYxMUVEQjk0N0I4NjBDNEY5QUUwMi9tcXdWYjZrWXRE QlhRZHJwMWR1aWt6ZEd6b2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQLhP383xjjl2B21SxeGzePQdPoM5cUgJZXsowkvNup7Cs+7xlGiAD emf4bSVEnCLoLEGKr0SkkIhQLIw46raXOab5/9T+IDCqVr9TZ1WBpImG4P2zOva1 vLo+6RVNgGpWYLdUOvVyGm1TgJNbxjsLvixnr2+Zh9cg6O4XpKOBp+ahF3RGh5nT rWdsOeejPPsI1/cU+R8+bSJNfExGfYbm/C1YM7kBMvyjWj2UQ2+3Mpr324fuHuAn j8CLCJU2xLLEXFl5zJbDMg2+RPZO6UR38Zfh9jRNqKSWD5OIlqds9MpHh+sQHT5z AQunUtbX6BcJS6P/tW1Jcc2JTmQJZePC -----END CERTIFICATE-----Generated at Sun Dec 21 13:09:25 2025 by rpki-client