This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91536E1/989F3A0A0EA611EBB2672786C4F9AE02/qWaisn_hSTe-NtJ9tfTXaICEfdc.mft File: qWaisn_hSTe-NtJ9tfTXaICEfdc.mft (raw, json) Hash identifier: ntF2iPq1v+cGeZPjFA4/N8mTdYmbReO5+x32/tnOkqE= Subject key identifier: 42:B4:F4:1F:A2:0B:57:4D:71:08:DC:46:08:A9:F4:B2:AF:04:BC:6B Authority key identifier: A9:66:A2:B2:7F:E1:49:37:BE:36:D2:7D:B5:F4:D7:68:80:84:7D:D7 Certificate issuer: /CN=A91536E1/serialNumber=A966A2B27FE14937BE36D27DB5F4D76880847DD7 Certificate serial: 07F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qWaisn_hSTe-NtJ9tfTXaICEfdc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91536E1/989F3A0A0EA611EBB2672786C4F9AE02/qWaisn_hSTe-NtJ9tfTXaICEfdc.mft Manifest number: 07EE Signing time: Thu 18 Dec 2025 20:36:30 +0000 Manifest this update: Thu 18 Dec 2025 20:36:30 +0000 Manifest next update: Thu 25 Dec 2025 20:36:30 +0000 Files and hashes: 1: qWaisn_hSTe-NtJ9tfTXaICEfdc.crl (hash: vp1+dJQp/XYnKIvfNGDuzZ8RGdCAfCH6QET4uEINARY=) 2: 41C97D600EA811EB8E9A770CC4F9AE02.roa (hash: BTersuR9nT3lEPvuv48IvMBlCU5YGyqezwR+drdWXyU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91536E1/989F3A0A0EA611EBB2672786C4F9AE02/qWaisn_hSTe-NtJ9tfTXaICEfdc.crl rsync://rpki.apnic.net/member_repository/A91536E1/989F3A0A0EA611EBB2672786C4F9AE02/qWaisn_hSTe-NtJ9tfTXaICEfdc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qWaisn_hSTe-NtJ9tfTXaICEfdc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 20:36:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2037 (0x7f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91536E1, serialNumber=A966A2B27FE14937BE36D27DB5F4D76880847DD7 Validity Not Before: Dec 18 20:36:30 2025 GMT Not After : Dec 25 20:36:30 2025 GMT Subject: CN=694465ce-a621 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:25:af:50:e1:33:9b:df:22:5f:bf:ec:95:34: d6:8f:80:7a:bd:f6:93:d3:cd:14:db:1d:ae:af:1f: a7:1b:5a:88:20:d7:a8:49:67:95:9f:81:7f:04:86: a1:b4:a7:8c:b9:61:13:98:90:7d:0d:a4:82:a1:c4: c5:bf:20:16:f4:b4:57:f1:09:77:73:df:33:6b:7f: 87:15:df:93:01:7e:ed:1b:a5:5c:2d:b2:a2:71:c1: e0:d1:1b:43:7b:06:ce:6a:00:9d:90:45:0f:b0:6b: 62:a6:a9:f0:18:23:c4:b1:c3:17:8a:ed:ed:37:a8: ae:f7:0b:b9:37:b4:b5:ea:7d:f8:d9:f3:c5:ff:f3: 12:cd:65:ce:17:60:94:51:31:a2:1f:27:f4:d4:ec: 9c:bf:4f:09:87:b2:26:ee:b5:59:36:76:4c:1a:9d: 68:9d:af:a5:1a:49:eb:80:82:8a:1b:82:a1:df:38: a5:86:f0:46:96:29:94:be:d0:8e:0a:54:17:c6:db: 70:68:66:30:ab:c9:38:7d:71:ca:01:bc:75:5e:89: 62:0a:35:d1:4f:80:73:4f:b1:3f:c6:84:a5:fc:7d: c6:99:5b:4d:17:a2:51:5f:0d:aa:d1:d3:d2:c0:4b: 7d:68:ff:03:49:89:b7:9a:05:b5:7f:33:28:26:a3: 03:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:B4:F4:1F:A2:0B:57:4D:71:08:DC:46:08:A9:F4:B2:AF:04:BC:6B X509v3 Authority Key Identifier: keyid:A9:66:A2:B2:7F:E1:49:37:BE:36:D2:7D:B5:F4:D7:68:80:84:7D:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91536E1/989F3A0A0EA611EBB2672786C4F9AE02/qWaisn_hSTe-NtJ9tfTXaICEfdc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qWaisn_hSTe-NtJ9tfTXaICEfdc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91536E1/989F3A0A0EA611EBB2672786C4F9AE02/qWaisn_hSTe-NtJ9tfTXaICEfdc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:83:85:c5:09:ac:89:9a:2f:8e:0a:aa:38:ac:55:64:1d:3c: 52:05:9f:92:f4:be:2f:cb:7d:ed:8d:02:f5:93:48:62:49:cd: 74:99:cb:d7:0e:cf:86:9f:17:bf:01:a7:53:39:ff:ae:06:76: e5:5d:1e:7a:6b:5f:ad:72:d6:4d:50:d1:86:25:45:f8:24:3c: f2:24:ce:ea:99:67:22:e6:60:3e:8a:7b:c1:cf:da:3b:74:a9: e0:2a:64:5a:9b:da:13:1d:dc:dc:92:4f:c7:99:6e:09:c2:0f: 60:b2:6f:b2:69:77:ee:15:a4:29:6d:c7:c6:8d:ed:be:70:e6: 53:41:66:1a:d1:57:d7:a9:ad:a6:ef:bd:74:a8:b7:0e:40:51: bc:de:a0:3b:93:e2:66:81:6e:46:12:40:66:30:75:25:54:96: bb:6c:02:13:ed:d7:29:ac:92:aa:fc:06:52:51:f8:66:82:a8: 64:45:c8:01:7f:fd:8a:84:ed:04:ee:fb:b8:f2:88:97:63:23: 97:3f:56:36:6b:50:12:38:b8:41:c8:cf:ed:99:71:21:1c:7a: fb:ab:5e:2d:ce:81:76:df:9e:65:7a:58:a2:f6:f5:49:15:28: 01:f5:44:8a:d4:e7:43:36:96:f0:30:55:5d:f8:ed:d6:bd:d3: 33:c7:5a:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB/UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM2RTExMTAvBgNVBAUTKEE5NjZBMkIyN0ZFMTQ5MzdCRTM2RDI3REI1RjRENzY4 ODA4NDdERDcwHhcNMjUxMjE4MjAzNjMwWhcNMjUxMjI1MjAzNjMwWjAYMRYwFAYD VQQDDA02OTQ0NjVjZS1hNjIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtyWvUOEzm98iX7/slTTWj4B6vfaT080U2x2urx+nG1qIINeoSWeVn4F/BIah tKeMuWETmJB9DaSCocTFvyAW9LRX8Ql3c98za3+HFd+TAX7tG6VcLbKiccHg0RtD ewbOagCdkEUPsGtipqnwGCPEscMXiu3tN6iu9wu5N7S16n342fPF//MSzWXOF2CU UTGiHyf01Oycv08Jh7Im7rVZNnZMGp1ona+lGknrgIKKG4Kh3zilhvBGlimUvtCO ClQXxttwaGYwq8k4fXHKAbx1XoliCjXRT4BzT7E/xoSl/H3GmVtNF6JRXw2q0dPS wEt9aP8DSYm3mgW1fzMoJqMD6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEK09B+i C1dNcQjcRgip9LKvBLxrMB8GA1UdIwQYMBaAFKlmorJ/4Uk3vjbSfbX012iAhH3X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzZFMS85ODlGM0EwQTBF QTYxMUVCQjI2NzI3ODZDNEY5QUUwMi9xV2Fpc25faFNUZS1OdEo5dGZUWGFJQ0Vm ZGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FXYWlzbl9oU1RlLU50Sjl0ZlRYYUlDRWZkYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MzZFMS85ODlGM0EwQTBFQTYxMUVCQjI2NzI3ODZDNEY5QUUwMi9xV2Fpc25faFNU ZS1OdEo5dGZUWGFJQ0VmZGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCkg4XFCayJmi+OCqo4rFVkHTxSBZ+S9L4vy33tjQL1k0hiSc10mcvX Ds+Gnxe/AadTOf+uBnblXR56a1+tctZNUNGGJUX4JDzyJM7qmWci5mA+invBz9o7 dKngKmRam9oTHdzckk/HmW4Jwg9gsm+yaXfuFaQpbcfGje2+cOZTQWYa0VfXqa2m 7710qLcOQFG83qA7k+JmgW5GEkBmMHUlVJa7bAIT7dcprJKq/AZSUfhmgqhkRcgB f/2KhO0E7vu48oiXYyOXP1Y2a1ASOLhByM/tmXEhHHr7q14tzoF2355lelii9vVJ FSgB9USK1OdDNpbwMFVd+O3WvdMzx1rB -----END CERTIFICATE-----Generated at Fri Dec 19 23:58:06 2025 by rpki-client