This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.mft File: QrsPPBhH5li75BQYSUzonOjjRIg.mft (raw, json) Hash identifier: jEZXuLHdRlImWrtOnqwFL7QfIMsniMy8sLfFgwctcXg= Subject key identifier: C3:38:AA:3F:77:A7:BB:EB:BF:83:F6:29:D9:EA:96:28:CB:C5:55:46 Authority key identifier: 42:BB:0F:3C:18:47:E6:58:BB:E4:14:18:49:4C:E8:9C:E8:E3:44:88 Certificate issuer: /CN=A9172506/serialNumber=42BB0F3C1847E658BBE41418494CE89CE8E34488 Certificate serial: F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QrsPPBhH5li75BQYSUzonOjjRIg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.mft Manifest number: F0 Signing time: Fri 19 Dec 2025 04:27:15 +0000 Manifest this update: Fri 19 Dec 2025 04:27:15 +0000 Manifest next update: Fri 26 Dec 2025 04:27:15 +0000 Files and hashes: 1: QrsPPBhH5li75BQYSUzonOjjRIg.crl (hash: fPbHC6LcGlbEgoElxwx41aiJap5xE3k1mYETAF3DIv4=) 2: DD75C9BC6EDF11EF90C49A5FC4F9AE02.roa (hash: ribPo1yuX+hIqHtl1PCEzGGO/yQznd+mDINBcQhxFF0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.crl rsync://rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QrsPPBhH5li75BQYSUzonOjjRIg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 04:27:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 242 (0xf2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172506, serialNumber=42BB0F3C1847E658BBE41418494CE89CE8E34488 Validity Not Before: Dec 19 04:27:15 2025 GMT Not After : Dec 26 04:27:15 2025 GMT Subject: CN=6944d423-5953 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:fd:0d:7d:d5:8e:9f:5c:08:5a:a1:11:05:fa: 49:bd:5f:ee:5a:e8:45:42:d0:c9:b3:88:71:ab:41: 16:1f:15:4c:1e:bc:49:32:78:f2:2b:3c:96:f0:da: fd:09:21:8d:68:29:77:63:15:a5:40:39:ee:dd:fd: ad:8c:15:0b:18:48:de:57:41:6f:c6:88:9e:ee:85: 21:14:51:e5:2a:0c:c3:2d:a0:60:16:f5:c2:61:d2: e1:7f:70:5c:19:24:4f:55:a1:83:98:45:4b:47:83: 8d:24:07:ab:a0:03:43:57:b4:ad:8b:c4:44:e2:63: 60:19:7c:28:d4:61:82:c5:b3:0a:e3:ad:5f:b1:75: e7:62:51:2d:a7:b3:71:8f:39:6d:62:47:68:26:4c: 1e:3f:a0:30:18:57:00:f3:14:6b:d0:73:a8:f7:f2: 53:a3:b6:71:ac:bf:e6:51:25:f7:02:82:0e:ca:38: 49:7b:8e:87:fa:6f:68:86:33:43:3d:df:bb:31:5c: 95:42:96:8b:d7:06:52:d8:1c:9a:34:4d:53:b4:e1: 80:42:be:37:51:cb:eb:6d:0d:42:38:7c:2b:f6:b9: 93:dc:27:c4:9f:80:0f:2e:6b:c5:af:e3:10:35:f8: ea:50:6c:81:15:c3:d8:5f:dd:ae:84:8e:bf:52:ba: bc:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:38:AA:3F:77:A7:BB:EB:BF:83:F6:29:D9:EA:96:28:CB:C5:55:46 X509v3 Authority Key Identifier: keyid:42:BB:0F:3C:18:47:E6:58:BB:E4:14:18:49:4C:E8:9C:E8:E3:44:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QrsPPBhH5li75BQYSUzonOjjRIg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:15:9f:14:49:f9:62:e4:bd:31:64:e4:4f:c7:40:73:e5:1d: 52:de:f3:9b:e3:3a:86:1f:77:33:46:20:3e:7e:e0:52:f7:ce: 53:54:ff:42:0f:68:47:5a:8b:87:19:75:54:b5:1e:48:ad:b4: 14:d2:8e:ff:c9:ef:72:e7:0c:03:a5:55:67:2e:37:36:a5:c0: 14:ca:24:37:a1:20:08:82:a7:55:5c:6f:99:40:45:1e:53:b6: 45:a0:71:3d:78:f8:f2:14:ab:ee:dd:f1:40:1b:90:4f:34:e1: b0:35:ae:e3:8e:e6:01:cc:f6:e8:6b:3f:f6:a1:44:5b:24:e3: e8:5f:28:0a:42:58:1e:af:34:ca:4d:61:8f:4d:57:42:7e:66: 00:71:99:9b:32:93:59:ae:ba:63:3a:4b:2f:f2:d5:64:ce:87: a1:4e:21:aa:9a:b9:20:a6:bd:82:d0:87:3d:85:39:06:0d:13: 62:ac:96:5d:d4:56:1c:fe:f3:4c:3e:3f:ec:4a:e9:66:8e:bb: 91:c6:74:6c:48:1b:2a:0f:d0:a2:ef:b3:98:c8:6d:5d:fd:2d: a8:66:05:cd:be:45:dd:71:a4:a3:2a:fd:a6:69:88:2f:f5:0a: af:a7:98:50:32:e2:e4:ee:81:58:5b:68:e7:5a:bf:21:55:da: a3:6a:8f:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzI1MDYxMTAvBgNVBAUTKDQyQkIwRjNDMTg0N0U2NThCQkU0MTQxODQ5NENFODlD RThFMzQ0ODgwHhcNMjUxMjE5MDQyNzE1WhcNMjUxMjI2MDQyNzE1WjAYMRYwFAYD VQQDDA02OTQ0ZDQyMy01OTUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuv0NfdWOn1wIWqERBfpJvV/uWuhFQtDJs4hxq0EWHxVMHrxJMnjyKzyW8Nr9 CSGNaCl3YxWlQDnu3f2tjBULGEjeV0Fvxoie7oUhFFHlKgzDLaBgFvXCYdLhf3Bc GSRPVaGDmEVLR4ONJAeroANDV7Sti8RE4mNgGXwo1GGCxbMK461fsXXnYlEtp7Nx jzltYkdoJkweP6AwGFcA8xRr0HOo9/JTo7ZxrL/mUSX3AoIOyjhJe46H+m9ohjND Pd+7MVyVQpaL1wZS2ByaNE1TtOGAQr43UcvrbQ1COHwr9rmT3CfEn4APLmvFr+MQ NfjqUGyBFcPYX92uhI6/Urq87QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMM4qj93 p7vrv4P2KdnqlijLxVVGMB8GA1UdIwQYMBaAFEK7DzwYR+ZYu+QUGElM6Jzo40SI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MjUwNi9CMDQ5MDhDRTZF REUxMUVGQUFDMkNCNURDNEY5QUUwMi9RcnNQUEJoSDVsaTc1QlFZU1V6b25PampS SWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Fyc1BQQmhINWxpNzVCUVlTVXpvbk9qalJJZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MjUwNi9CMDQ5MDhDRTZFREUxMUVGQUFDMkNCNURDNEY5QUUwMi9RcnNQUEJoSDVs aTc1QlFZU1V6b25PampSSWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+FZ8USfli5L0xZORPx0Bz5R1S3vOb4zqGH3czRiA+fuBS985TVP9C D2hHWouHGXVUtR5IrbQU0o7/ye9y5wwDpVVnLjc2pcAUyiQ3oSAIgqdVXG+ZQEUe U7ZFoHE9ePjyFKvu3fFAG5BPNOGwNa7jjuYBzPboaz/2oURbJOPoXygKQlgerzTK TWGPTVdCfmYAcZmbMpNZrrpjOksv8tVkzoehTiGqmrkgpr2C0Ic9hTkGDRNirJZd 1FYc/vNMPj/sSulmjruRxnRsSBsqD9Ci77OYyG1d/S2oZgXNvkXdcaSjKv2maYgv 9Qqvp5hQMuLk7oFYW2jnWr8hVdqjao/j -----END CERTIFICATE-----Generated at Sun Dec 21 00:29:46 2025 by rpki-client