This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.mft File: QZ8npM_s9GHbgvb5BnZPttZfI88.mft (raw, json) Hash identifier: mV7yxiAe7W94GdutgyIccACkxywG5/3C2qpkOltpITs= Subject key identifier: 53:A9:F1:25:46:6C:CA:99:41:D2:42:5E:A4:9B:A6:41:9F:FF:A3:82 Authority key identifier: 41:9F:27:A4:CF:EC:F4:61:DB:82:F6:F9:06:76:4F:B6:D6:5F:23:CF Certificate issuer: /CN=A9140BED/serialNumber=419F27A4CFECF461DB82F6F906764FB6D65F23CF Certificate serial: 012D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZ8npM_s9GHbgvb5BnZPttZfI88.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.mft Manifest number: 0127 Signing time: Fri 19 Dec 2025 03:50:30 +0000 Manifest this update: Fri 19 Dec 2025 03:50:29 +0000 Manifest next update: Fri 26 Dec 2025 03:50:29 +0000 Files and hashes: 1: QZ8npM_s9GHbgvb5BnZPttZfI88.crl (hash: 6hre9BDUW9+snnrr/yjto3OawLv1IVxoDmOnhEM7pwE=) 2: ED7C0BCC287211EFA1483A2FC4F9AE02.roa (hash: SNdFFgbNj8G/zNTVCnmByHJjfzC5p20PH2d/HShK4p8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.crl rsync://rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZ8npM_s9GHbgvb5BnZPttZfI88.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 03:50:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 301 (0x12d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140BED, serialNumber=419F27A4CFECF461DB82F6F906764FB6D65F23CF Validity Not Before: Dec 19 03:50:29 2025 GMT Not After : Dec 26 03:50:29 2025 GMT Subject: CN=6944cb85-fc79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:c9:33:3f:97:da:a4:05:3b:e6:cb:f7:07:fd: 16:ca:1a:62:6d:e3:8d:12:42:d5:ec:cb:b5:c1:0f: 07:5d:3f:e4:b5:d1:0c:f6:9c:7a:f1:64:31:be:39: 70:7a:82:2a:df:24:37:98:44:3e:55:a7:3c:a9:6f: 00:35:14:8c:35:59:91:d5:7b:da:dd:1c:46:52:a0: 9e:0a:92:7c:30:ed:1f:03:93:64:9b:91:dc:4a:ae: ed:f1:94:7c:7c:4c:b8:72:77:0b:a5:ae:d7:a7:82: 41:0d:4c:62:db:b5:bd:83:20:a9:86:6e:5a:ae:d1: a1:57:8e:a7:77:b2:80:de:f4:17:f9:13:e7:af:11: 6e:6f:29:10:26:a6:70:1b:18:0f:8e:d8:7b:22:4f: 11:02:9d:7d:d6:c6:5d:8e:51:83:d7:3e:62:21:72: 57:ab:74:f3:03:43:a7:c9:9e:0a:83:37:99:ab:40: b7:28:ef:51:e9:47:df:48:40:4f:e3:40:32:33:52: c0:59:a1:5b:6f:73:3e:7f:25:0c:b1:bd:94:37:d2: 35:d8:03:8d:bc:12:ce:77:d4:48:f2:70:54:53:fa: a7:3d:0e:72:10:bb:99:a5:7b:27:f6:4b:39:7f:e0: 8f:70:83:40:bf:9f:58:a2:83:43:1a:69:6b:c9:45: 3a:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:A9:F1:25:46:6C:CA:99:41:D2:42:5E:A4:9B:A6:41:9F:FF:A3:82 X509v3 Authority Key Identifier: keyid:41:9F:27:A4:CF:EC:F4:61:DB:82:F6:F9:06:76:4F:B6:D6:5F:23:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZ8npM_s9GHbgvb5BnZPttZfI88.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:bb:5e:b3:0c:46:19:66:64:35:c9:3d:ea:31:a9:7f:08:ad: 45:7a:2e:1b:8d:59:a0:a3:56:0e:88:2c:ce:77:fd:f4:dd:07: 5a:32:8b:87:17:96:f8:3a:2d:39:4d:5c:50:ed:ea:45:5a:11: fc:59:c8:39:d7:f6:76:40:f2:d4:a9:10:7d:74:f0:98:85:74: 5b:19:6f:07:01:e2:ec:3e:13:58:11:c7:ee:26:72:d1:4f:46: 31:f7:7d:6a:ba:d9:8b:ec:22:c2:41:26:14:3d:7f:0b:9d:ac: d4:a5:7d:f7:c0:d4:ba:61:a3:e4:53:b9:55:a2:0d:8d:59:7c: f5:99:7b:2e:6f:e7:b1:20:e3:95:68:d3:da:bb:ff:4c:7a:dc: 06:fa:b6:d7:f6:9c:26:ce:5e:4e:fa:38:2e:bc:0b:81:35:3c: a7:35:9b:fd:13:ad:e4:41:f8:57:55:06:4c:52:a4:36:57:10: 30:61:90:44:ec:e5:1e:e9:2c:a5:5d:1e:59:55:a2:7a:92:5f: 6b:fa:8d:67:9f:bd:28:68:70:da:0e:0b:99:d2:24:ed:a2:a1: 87:1b:20:a7:11:fa:a4:5b:64:88:a5:29:9a:bc:15:31:1e:fb: 52:ea:1b:1f:21:e0:8b:01:cd:6e:8b:df:24:b0:24:16:fb:b9: ea:51:d3:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAS0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBCRUQxMTAvBgNVBAUTKDQxOUYyN0E0Q0ZFQ0Y0NjFEQjgyRjZGOTA2NzY0RkI2 RDY1RjIzQ0YwHhcNMjUxMjE5MDM1MDI5WhcNMjUxMjI2MDM1MDI5WjAYMRYwFAYD VQQDDA02OTQ0Y2I4NS1mYzc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvckzP5fapAU75sv3B/0WyhpibeONEkLV7Mu1wQ8HXT/ktdEM9px68WQxvjlw eoIq3yQ3mEQ+Vac8qW8ANRSMNVmR1Xva3RxGUqCeCpJ8MO0fA5Nkm5HcSq7t8ZR8 fEy4cncLpa7Xp4JBDUxi27W9gyCphm5artGhV46nd7KA3vQX+RPnrxFubykQJqZw GxgPjth7Ik8RAp191sZdjlGD1z5iIXJXq3TzA0OnyZ4KgzeZq0C3KO9R6UffSEBP 40AyM1LAWaFbb3M+fyUMsb2UN9I12AONvBLOd9RI8nBUU/qnPQ5yELuZpXsn9ks5 f+CPcINAv59YooNDGmlryUU66wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFOp8SVG bMqZQdJCXqSbpkGf/6OCMB8GA1UdIwQYMBaAFEGfJ6TP7PRh24L2+QZ2T7bWXyPP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEJFRC8wOEUwRTA2NjFG MzgxMUVGQjA1OUI2NjVDNEY5QUUwMi9RWjhucE1fczlHSGJndmI1Qm5aUHR0WmZJ ODguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FaOG5wTV9zOUdIYmd2YjVCblpQdHRaZkk4OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MEJFRC8wOEUwRTA2NjFGMzgxMUVGQjA1OUI2NjVDNEY5QUUwMi9RWjhucE1fczlH SGJndmI1Qm5aUHR0WmZJODgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJu16zDEYZZmQ1yT3qMal/CK1Fei4bjVmgo1YOiCzOd/303QdaMouH F5b4Oi05TVxQ7epFWhH8Wcg51/Z2QPLUqRB9dPCYhXRbGW8HAeLsPhNYEcfuJnLR T0Yx931qutmL7CLCQSYUPX8LnazUpX33wNS6YaPkU7lVog2NWXz1mXsub+exIOOV aNPau/9MetwG+rbX9pwmzl5O+jguvAuBNTynNZv9E63kQfhXVQZMUqQ2VxAwYZBE 7OUe6SylXR5ZVaJ6kl9r+o1nn70oaHDaDguZ0iTtoqGHGyCnEfqkW2SIpSmavBUx HvtS6hsfIeCLAc1ui98ksCQW+7nqUdO3 -----END CERTIFICATE-----Generated at Fri Dec 19 22:01:15 2025 by rpki-client