This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9143FC4/B165A3A8295811E2B38D58FB08B02CD2/qafXPj7Y1cRm3LxsIJzUNTzemM8.mft File: qafXPj7Y1cRm3LxsIJzUNTzemM8.mft (raw, json) Hash identifier: eOKT0NAAqBGja8UUvnbIPNwihOweSALjAg/ZhfskqJ0= Subject key identifier: CC:B7:ED:E5:87:18:D4:F6:82:04:8F:30:37:46:BB:C5:BD:6C:C7:0E Authority key identifier: A9:A7:D7:3E:3E:D8:D5:C4:66:DC:BC:6C:20:9C:D4:35:3C:DE:98:CF Certificate issuer: /CN=A9143FC4/serialNumber=A9A7D73E3ED8D5C466DCBC6C209CD4353CDE98CF Certificate serial: 34B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qafXPj7Y1cRm3LxsIJzUNTzemM8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143FC4/B165A3A8295811E2B38D58FB08B02CD2/qafXPj7Y1cRm3LxsIJzUNTzemM8.mft Manifest number: 34AF Signing time: Thu 18 Dec 2025 15:15:02 +0000 Manifest this update: Thu 18 Dec 2025 15:15:02 +0000 Manifest next update: Thu 25 Dec 2025 15:15:02 +0000 Files and hashes: 1: qafXPj7Y1cRm3LxsIJzUNTzemM8.crl (hash: cGHzij84+EnwAlKVC55lc0enVe8ZN0gZ3ZfyYcwJTgo=) 2: FE96F04256EE11F09D243832C4F9AE02.roa (hash: i7V57Dro1PeoCEaseJh0ivldyfQ81BauNS5GWJcFu1M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143FC4/B165A3A8295811E2B38D58FB08B02CD2/qafXPj7Y1cRm3LxsIJzUNTzemM8.crl rsync://rpki.apnic.net/member_repository/A9143FC4/B165A3A8295811E2B38D58FB08B02CD2/qafXPj7Y1cRm3LxsIJzUNTzemM8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qafXPj7Y1cRm3LxsIJzUNTzemM8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 15:15:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13489 (0x34b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143FC4, serialNumber=A9A7D73E3ED8D5C466DCBC6C209CD4353CDE98CF Validity Not Before: Dec 18 15:15:02 2025 GMT Not After : Dec 25 15:15:02 2025 GMT Subject: CN=69441a76-ea8c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:f7:1a:62:72:a7:8a:ed:33:5a:83:bd:67:b1: fc:79:88:14:32:4a:9b:bb:80:26:41:63:9d:21:93: 78:06:0a:e3:66:1a:b5:15:a4:f9:ca:30:e6:ed:91: 33:32:20:b1:ec:ed:f0:8b:f4:34:e8:45:56:22:fb: 79:25:93:35:2f:5d:3a:cc:42:ff:50:3d:fb:79:84: 31:be:04:de:77:ed:e7:0e:6b:95:3e:4b:3b:d1:eb: da:5c:03:9f:3b:70:4c:f0:0a:6f:e6:d2:ed:1b:c6: da:4c:51:cb:c1:2a:1e:1e:9e:82:9b:83:49:4f:e3: 06:ec:ef:76:3b:b7:37:64:9f:db:fa:d0:c5:75:34: 1b:c8:cb:5c:74:08:dc:62:63:77:cb:af:0c:90:2d: 9b:16:1d:31:35:92:e7:a7:a4:51:69:97:c1:55:84: c5:e5:ae:06:5b:7c:f6:9a:65:06:e8:d8:a2:9c:4f: 3a:bf:34:2a:25:77:56:c9:b0:a8:ae:c5:9c:d8:e9: 7b:dd:e9:89:41:65:d0:cc:7e:15:96:3f:b6:32:55: de:c9:f4:a9:b3:ea:81:f5:fb:b5:d7:aa:85:24:d3: 23:d6:3e:12:39:ae:0e:f6:00:3d:10:01:26:c9:bb: 87:2f:45:eb:b0:39:b5:02:15:2a:b3:82:0b:31:27: e6:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:B7:ED:E5:87:18:D4:F6:82:04:8F:30:37:46:BB:C5:BD:6C:C7:0E X509v3 Authority Key Identifier: keyid:A9:A7:D7:3E:3E:D8:D5:C4:66:DC:BC:6C:20:9C:D4:35:3C:DE:98:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143FC4/B165A3A8295811E2B38D58FB08B02CD2/qafXPj7Y1cRm3LxsIJzUNTzemM8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qafXPj7Y1cRm3LxsIJzUNTzemM8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143FC4/B165A3A8295811E2B38D58FB08B02CD2/qafXPj7Y1cRm3LxsIJzUNTzemM8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:49:e0:9e:49:a3:a3:8d:bb:5e:00:ca:7c:43:9b:14:d7:fe: 90:cc:7b:ac:98:30:20:08:27:f5:d0:98:7b:e8:27:d1:d2:1a: cb:a4:b6:f5:8a:5c:0a:ca:08:27:45:39:18:8c:b2:d0:0a:1b: 01:86:6d:55:43:70:92:b9:ff:37:62:f9:5e:37:91:16:3c:48: cc:15:c5:0c:17:79:51:4c:8b:bc:62:82:d8:4d:19:60:ae:a6: 84:a0:a9:30:13:fb:33:ba:a2:f7:c7:89:fd:18:80:14:76:00: d6:1c:a1:34:6a:f4:ef:52:c2:f7:c6:c0:65:72:c2:7a:65:d7: 7a:72:5f:78:48:3a:d8:be:f9:1a:2b:ba:11:97:ce:8f:38:fc: dc:ae:99:af:bc:9b:52:87:88:c3:1c:d8:ee:47:35:b4:2a:04: de:de:e2:e0:42:e0:d8:2d:bc:10:5e:c0:ec:cb:46:ed:8b:29: aa:3e:5a:c5:75:7a:9c:59:7a:92:dc:d8:65:af:04:90:a2:49: 96:69:09:da:06:6c:d3:78:7e:fa:09:58:d3:99:40:50:df:45: 57:25:8a:fb:a6:0b:07:3f:30:0d:49:07:01:58:6f:b6:fc:ed: ef:48:c3:34:fc:c9:cb:54:b5:8e:f5:a7:dd:fc:4e:7a:db:c2: 35:41:a0:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNLEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNGQzQxMTAvBgNVBAUTKEE5QTdENzNFM0VEOEQ1QzQ2NkRDQkM2QzIwOUNENDM1 M0NERTk4Q0YwHhcNMjUxMjE4MTUxNTAyWhcNMjUxMjI1MTUxNTAyWjAYMRYwFAYD VQQDDA02OTQ0MWE3Ni1lYThjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5PcaYnKniu0zWoO9Z7H8eYgUMkqbu4AmQWOdIZN4BgrjZhq1FaT5yjDm7ZEz MiCx7O3wi/Q06EVWIvt5JZM1L106zEL/UD37eYQxvgTed+3nDmuVPks70evaXAOf O3BM8Apv5tLtG8baTFHLwSoeHp6Cm4NJT+MG7O92O7c3ZJ/b+tDFdTQbyMtcdAjc YmN3y68MkC2bFh0xNZLnp6RRaZfBVYTF5a4GW3z2mmUG6NiinE86vzQqJXdWybCo rsWc2Ol73emJQWXQzH4Vlj+2MlXeyfSps+qB9fu116qFJNMj1j4SOa4O9gA9EAEm ybuHL0XrsDm1AhUqs4ILMSfmuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMy37eWH GNT2ggSPMDdGu8W9bMcOMB8GA1UdIwQYMBaAFKmn1z4+2NXEZty8bCCc1DU83pjP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0ZDNC9CMTY1QTNBODI5 NTgxMUUyQjM4RDU4RkIwOEIwMkNEMi9xYWZYUGo3WTFjUm0zTHhzSUp6VU5UemVt TTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FhZlhQajdZMWNSbTNMeHNJSnpVTlR6ZW1NOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0ZDNC9CMTY1QTNBODI5NTgxMUUyQjM4RDU4RkIwOEIwMkNEMi9xYWZYUGo3WTFj Um0zTHhzSUp6VU5UemVtTTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUSeCeSaOjjbteAMp8Q5sU1/6QzHusmDAgCCf10Jh76CfR0hrLpLb1 ilwKyggnRTkYjLLQChsBhm1VQ3CSuf83YvleN5EWPEjMFcUMF3lRTIu8YoLYTRlg rqaEoKkwE/szuqL3x4n9GIAUdgDWHKE0avTvUsL3xsBlcsJ6Zdd6cl94SDrYvvka K7oRl86POPzcrpmvvJtSh4jDHNjuRzW0KgTe3uLgQuDYLbwQXsDsy0btiymqPlrF dXqcWXqS3NhlrwSQokmWaQnaBmzTeH76CVjTmUBQ30VXJYr7pgsHPzANSQcBWG+2 /O3vSMM0/MnLVLWO9afd/E5628I1QaBy -----END CERTIFICATE-----Generated at Fri Dec 19 23:51:11 2025 by rpki-client