This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.mft File: QIyZnDwewBZElFs0d6nyI061eRw.mft (raw, json) Hash identifier: hgXKdvHP4mqJBAP/qTvxCBr1BaBNUB2LmGuEvW06w6A= Subject key identifier: A4:A8:8E:5D:4E:1D:DA:62:67:DC:D3:88:DB:91:19:36:D4:EA:53:2A Authority key identifier: 40:8C:99:9C:3C:1E:C0:16:44:94:5B:34:77:A9:F2:23:4E:B5:79:1C Certificate issuer: /CN=A91650A5/serialNumber=408C999C3C1EC01644945B3477A9F2234EB5791C Certificate serial: 2519 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QIyZnDwewBZElFs0d6nyI061eRw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.mft Manifest number: 24F6 Signing time: Wed 31 Dec 2025 15:37:31 +0000 Manifest this update: Wed 31 Dec 2025 15:37:30 +0000 Manifest next update: Wed 07 Jan 2026 15:37:30 +0000 Files and hashes: 1: QIyZnDwewBZElFs0d6nyI061eRw.crl (hash: g20eDP8H2niauKedtACX15xSnLD8hneVNFM3yL/ivRg=) 2: 2486E806F0E311EAA1C58D62C4F9AE02.roa (hash: o9TQ5zjWOlGJay3aR5mHzl6v5wxGxk4ue+WpHK/fjik=) 3: 50A2F64264BC11E8ACC7951EC4F9AE02.roa (hash: mzRK3TSpPRAdSBZvLPRDHoBd646mt2gZoJEdzJuirAk=) 4: ABA9F4B8AF8411EABF9F844DC4F9AE02.roa (hash: 0WRpreCZL7KBHEz4o02SUgtVLz3Ou83Qb1HlkXxl+V4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.crl rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QIyZnDwewBZElFs0d6nyI061eRw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 07 Jan 2026 15:37:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9497 (0x2519) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91650A5, serialNumber=408C999C3C1EC01644945B3477A9F2234EB5791C Validity Not Before: Dec 31 15:37:30 2025 GMT Not After : Jan 7 15:37:30 2026 GMT Subject: CN=6955433b-4539 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:52:5a:0a:42:b6:8f:4b:f0:fe:3f:34:64:50: fa:94:83:5c:09:ac:c1:91:46:8d:e9:f1:f4:5e:7f: ac:60:66:97:85:04:d4:cf:bf:08:39:70:70:01:99: b0:64:bd:11:4d:ee:c2:81:be:8a:65:4b:d7:eb:02: cc:cf:2b:30:60:29:ec:93:1d:94:72:1c:d9:33:56: b7:98:79:f1:fc:9b:da:73:f6:67:a7:e8:5a:ff:17: bb:40:24:33:93:c3:0f:d7:11:31:a0:8d:2f:2f:16: 4f:4b:bd:48:a2:dd:59:a4:45:d9:40:87:02:21:31: 73:c5:43:34:97:d0:28:67:ae:00:5e:66:c6:13:e7: ea:8d:c5:70:ce:a1:ad:1b:f0:93:90:77:e5:35:12: 5d:b2:8e:45:32:cc:a8:74:c6:f3:ab:bc:7a:c1:e3: 2c:a9:66:6f:7b:fc:44:23:02:de:5f:2f:81:9b:df: 0b:dd:aa:b4:ff:48:8b:1d:19:54:d3:4d:9a:79:0f: 27:02:c6:53:82:16:bb:8f:d2:ce:c6:28:26:fa:d0: e5:cf:79:60:08:33:35:2f:f5:fd:eb:67:f5:b5:79: 36:de:ea:76:21:56:9c:d0:d2:29:01:ea:1b:93:ee: 5e:73:93:da:e7:3b:75:e9:e5:f5:d2:0f:5b:bc:d6: 20:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:A8:8E:5D:4E:1D:DA:62:67:DC:D3:88:DB:91:19:36:D4:EA:53:2A X509v3 Authority Key Identifier: keyid:40:8C:99:9C:3C:1E:C0:16:44:94:5B:34:77:A9:F2:23:4E:B5:79:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QIyZnDwewBZElFs0d6nyI061eRw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:94:8c:c4:a0:0e:6d:b9:5a:13:7d:27:43:e6:d5:37:6a:c2: fa:b6:56:56:9b:9d:cf:72:a5:8e:8c:dd:f6:1a:83:c9:f6:f8: 2f:5f:c3:c7:7c:fd:01:45:ed:ad:56:b5:0d:ff:88:e2:46:c0: 6d:18:b6:11:4e:d3:c5:6b:71:af:72:7c:e3:f7:3d:0b:7a:f2: f8:1c:0e:ce:57:39:fc:d2:cf:67:01:1b:8c:0a:49:55:a6:b7: 2d:34:75:8b:6b:0b:7f:d5:a1:a1:ee:30:8e:5c:c0:60:84:19: 0c:15:24:35:bd:db:ce:80:f3:76:1b:e8:f8:a5:38:b6:f8:19: 7f:30:58:e9:3a:5b:4f:31:67:e7:42:26:f6:28:05:2d:a8:43: 94:b0:4d:70:81:c3:81:61:ff:f0:20:cc:c9:0c:c8:10:30:1c: 3b:56:32:a5:4f:a1:4e:9d:d4:a1:41:31:b8:18:ed:35:73:18: 80:63:1b:37:e6:b7:c3:14:95:7a:0a:96:5d:2f:e6:b3:9c:7a: 00:01:7a:4e:87:05:47:31:c2:b5:e0:71:41:6e:d8:99:31:3d: 99:cc:bf:a1:e3:4d:4c:e8:38:7c:26:c0:5b:02:d6:bd:2b:0a: b8:7c:02:ff:8c:30:22:f5:6a:63:a5:75:4c:2c:85:76:fc:65: ff:40:ee:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJRkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjUwQTUxMTAvBgNVBAUTKDQwOEM5OTlDM0MxRUMwMTY0NDk0NUIzNDc3QTlGMjIz NEVCNTc5MUMwHhcNMjUxMjMxMTUzNzMwWhcNMjYwMTA3MTUzNzMwWjAYMRYwFAYD VQQDDA02OTU1NDMzYi00NTM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzlJaCkK2j0vw/j80ZFD6lINcCazBkUaN6fH0Xn+sYGaXhQTUz78IOXBwAZmw ZL0RTe7Cgb6KZUvX6wLMzyswYCnskx2UchzZM1a3mHnx/Jvac/Znp+ha/xe7QCQz k8MP1xExoI0vLxZPS71Iot1ZpEXZQIcCITFzxUM0l9AoZ64AXmbGE+fqjcVwzqGt G/CTkHflNRJdso5FMsyodMbzq7x6weMsqWZve/xEIwLeXy+Bm98L3aq0/0iLHRlU 002aeQ8nAsZTgha7j9LOxigm+tDlz3lgCDM1L/X962f1tXk23up2IVac0NIpAeob k+5ec5Pa5zt16eX10g9bvNYgmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKSojl1O HdpiZ9zTiNuRGTbU6lMqMB8GA1UdIwQYMBaAFECMmZw8HsAWRJRbNHep8iNOtXkc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTBBNS8xN0RGQjM1QTQ2 RTYxMUU1QjA4REExN0JDNEY5QUUwMi9RSXlabkR3ZXdCWkVsRnMwZDZueUkwNjFl UncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FJeVpuRHdld0JaRWxGczBkNm55STA2MWVSdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTBBNS8xN0RGQjM1QTQ2RTYxMUU1QjA4REExN0JDNEY5QUUwMi9RSXlabkR3ZXdC WkVsRnMwZDZueUkwNjFlUncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZlIzEoA5tuVoTfSdD5tU3asL6tlZWm53PcqWOjN32GoPJ9vgvX8PH fP0BRe2tVrUN/4jiRsBtGLYRTtPFa3Gvcnzj9z0LevL4HA7OVzn80s9nARuMCklV prctNHWLawt/1aGh7jCOXMBghBkMFSQ1vdvOgPN2G+j4pTi2+Bl/MFjpOltPMWfn Qib2KAUtqEOUsE1wgcOBYf/wIMzJDMgQMBw7VjKlT6FOndShQTG4GO01cxiAYxs3 5rfDFJV6CpZdL+aznHoAAXpOhwVHMcK14HFBbtiZMT2ZzL+h401M6Dh8JsBbAta9 Kwq4fAL/jDAi9WpjpXVMLIV2/GX/QO4F -----END CERTIFICATE-----Generated at Thu Jan 1 07:36:29 2026 by rpki-client