This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.mft File: QIyZnDwewBZElFs0d6nyI061eRw.mft (raw, json) Hash identifier: 4+79X7icWPWzyupymUSj8WuJsx9i23e0dpWUJdq9SVI= Subject key identifier: 99:9E:5C:07:50:AB:A2:B6:E1:6C:74:09:B3:7A:2C:49:A0:5B:A8:76 Authority key identifier: 40:8C:99:9C:3C:1E:C0:16:44:94:5B:34:77:A9:F2:23:4E:B5:79:1C Certificate issuer: /CN=A91650A5/serialNumber=408C999C3C1EC01644945B3477A9F2234EB5791C Certificate serial: 2512 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QIyZnDwewBZElFs0d6nyI061eRw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.mft Manifest number: 24EF Signing time: Thu 18 Dec 2025 15:42:08 +0000 Manifest this update: Thu 18 Dec 2025 15:42:08 +0000 Manifest next update: Thu 25 Dec 2025 15:42:08 +0000 Files and hashes: 1: QIyZnDwewBZElFs0d6nyI061eRw.crl (hash: Ci7E4VqzkOIVrKPED3i78HZgYChcNMDQpJN56DTDyio=) 2: 50A2F64264BC11E8ACC7951EC4F9AE02.roa (hash: mzRK3TSpPRAdSBZvLPRDHoBd646mt2gZoJEdzJuirAk=) 3: ABA9F4B8AF8411EABF9F844DC4F9AE02.roa (hash: 0WRpreCZL7KBHEz4o02SUgtVLz3Ou83Qb1HlkXxl+V4=) 4: 2486E806F0E311EAA1C58D62C4F9AE02.roa (hash: o9TQ5zjWOlGJay3aR5mHzl6v5wxGxk4ue+WpHK/fjik=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.crl rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QIyZnDwewBZElFs0d6nyI061eRw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 15:42:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9490 (0x2512) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91650A5, serialNumber=408C999C3C1EC01644945B3477A9F2234EB5791C Validity Not Before: Dec 18 15:42:08 2025 GMT Not After : Dec 25 15:42:08 2025 GMT Subject: CN=694420d0-3f2a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:65:5b:a6:aa:10:cd:48:bf:0e:33:2a:66:13: e8:a9:e0:f3:db:3b:26:7c:27:95:8c:c3:a7:b0:8c: b2:c0:96:5b:ae:7a:7b:a5:9d:6d:71:ae:8e:e6:67: d1:32:5e:f6:8d:17:4d:ef:35:b7:e9:92:9c:c1:a0: a7:03:de:67:de:1a:66:ad:5c:19:1a:6c:73:99:bf: 6c:23:dc:d2:c6:9d:3c:36:af:34:fb:9c:08:77:c9: ad:48:13:ac:ba:f3:79:04:08:72:ee:8d:e5:59:5d: 51:10:3e:15:6d:d6:a4:35:47:da:80:fd:ad:c9:b7: 17:8b:97:81:32:49:8b:bf:3d:30:c3:f2:0d:b1:ff: e3:61:b4:2c:7b:f4:b4:57:27:d4:0c:ef:fd:18:9b: 1d:97:62:c1:86:65:c2:c6:84:10:2c:52:36:3f:dd: 91:7e:9f:b1:53:5f:ae:24:39:6a:3b:0e:df:85:ac: 7b:57:31:d9:24:30:93:1f:87:4c:45:cd:d1:9e:31: c1:eb:43:92:44:42:ef:35:18:e3:28:4b:98:4b:b2: 79:ff:a8:bc:ae:6d:e7:ec:82:4a:d6:3d:88:3f:19: 10:ef:43:98:1c:99:87:84:d4:e7:fd:f0:39:ef:c3: 4f:37:3e:0a:56:71:52:31:45:fc:32:e5:39:53:41: 35:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:9E:5C:07:50:AB:A2:B6:E1:6C:74:09:B3:7A:2C:49:A0:5B:A8:76 X509v3 Authority Key Identifier: keyid:40:8C:99:9C:3C:1E:C0:16:44:94:5B:34:77:A9:F2:23:4E:B5:79:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QIyZnDwewBZElFs0d6nyI061eRw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c7:24:f8:9f:1e:56:65:bb:42:7f:78:26:d6:ac:de:0b:80:92: b2:da:e7:5b:63:c5:71:d2:19:23:34:c3:cc:65:8a:8a:92:91: 7e:b0:54:1f:de:09:a9:24:9d:87:3f:9a:7f:14:bd:7d:b2:ee: 30:dd:18:93:73:5a:a0:50:a8:51:4c:c5:e3:4e:16:1e:f1:21: eb:bd:db:49:48:e0:49:cb:60:ad:d5:17:2d:0d:bc:4b:ef:d9: 0b:b5:6d:19:c0:ab:49:c9:a3:d9:c6:f1:6d:57:67:87:47:70: 6f:29:2e:40:94:77:5b:40:2a:05:de:a5:b2:15:0b:f6:9b:4c: 98:a2:bf:b8:f6:96:be:40:e1:8c:b9:f8:38:54:b9:da:dd:f6: 06:c7:0f:c1:ec:21:ad:9a:e9:b8:a8:d5:d8:75:c4:9d:4b:37: e6:cc:c1:05:c8:43:4f:fc:1f:91:6a:f6:64:f3:82:80:10:98: b8:d8:15:2e:16:3a:fa:1c:ad:5e:38:2e:82:37:cf:68:e5:fd: c1:e9:0d:fc:82:41:fb:7f:1d:3e:b4:2a:b0:4d:55:79:f0:ae: ec:b0:8c:d2:98:eb:7f:21:50:dc:7b:17:6f:db:7f:1f:29:0a: 55:d4:6e:7d:3e:43:f0:cc:a0:27:69:18:4e:51:5c:b2:0e:f4: 19:8c:ee:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJRIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjUwQTUxMTAvBgNVBAUTKDQwOEM5OTlDM0MxRUMwMTY0NDk0NUIzNDc3QTlGMjIz NEVCNTc5MUMwHhcNMjUxMjE4MTU0MjA4WhcNMjUxMjI1MTU0MjA4WjAYMRYwFAYD VQQDDA02OTQ0MjBkMC0zZjJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAumVbpqoQzUi/DjMqZhPoqeDz2zsmfCeVjMOnsIyywJZbrnp7pZ1tca6O5mfR Ml72jRdN7zW36ZKcwaCnA95n3hpmrVwZGmxzmb9sI9zSxp08Nq80+5wId8mtSBOs uvN5BAhy7o3lWV1RED4VbdakNUfagP2tybcXi5eBMkmLvz0ww/INsf/jYbQse/S0 VyfUDO/9GJsdl2LBhmXCxoQQLFI2P92Rfp+xU1+uJDlqOw7fhax7VzHZJDCTH4dM Rc3RnjHB60OSRELvNRjjKEuYS7J5/6i8rm3n7IJK1j2IPxkQ70OYHJmHhNTn/fA5 78NPNz4KVnFSMUX8MuU5U0E1UQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJmeXAdQ q6K24Wx0CbN6LEmgW6h2MB8GA1UdIwQYMBaAFECMmZw8HsAWRJRbNHep8iNOtXkc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTBBNS8xN0RGQjM1QTQ2 RTYxMUU1QjA4REExN0JDNEY5QUUwMi9RSXlabkR3ZXdCWkVsRnMwZDZueUkwNjFl UncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FJeVpuRHdld0JaRWxGczBkNm55STA2MWVSdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTBBNS8xN0RGQjM1QTQ2RTYxMUU1QjA4REExN0JDNEY5QUUwMi9RSXlabkR3ZXdC WkVsRnMwZDZueUkwNjFlUncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDHJPifHlZlu0J/eCbWrN4LgJKy2udbY8Vx0hkjNMPMZYqKkpF+sFQf 3gmpJJ2HP5p/FL19su4w3RiTc1qgUKhRTMXjThYe8SHrvdtJSOBJy2Ct1RctDbxL 79kLtW0ZwKtJyaPZxvFtV2eHR3BvKS5AlHdbQCoF3qWyFQv2m0yYor+49pa+QOGM ufg4VLna3fYGxw/B7CGtmum4qNXYdcSdSzfmzMEFyENP/B+RavZk84KAEJi42BUu Fjr6HK1eOC6CN89o5f3B6Q38gkH7fx0+tCqwTVV58K7ssIzSmOt/IVDcexdv238f KQpV1G59PkPwzKAnaRhOUVyyDvQZjO6a -----END CERTIFICATE-----Generated at Sat Dec 20 03:23:29 2025 by rpki-client