This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91977F9/2AECE66A27BD11EDB5884D5FC4F9AE02/qleQsPfXYr6TK53GEbfWm5BoWk4.mft File: qleQsPfXYr6TK53GEbfWm5BoWk4.mft (raw, json) Hash identifier: UoYYA7koxgDr9x+EKGt8rOXeP5SUYfCaC69cyoWlfqM= Subject key identifier: 5B:EA:93:E3:53:2E:90:D4:45:B2:89:FB:1C:C7:8D:B7:50:58:91:23 Authority key identifier: AA:57:90:B0:F7:D7:62:BE:93:2B:9D:C6:11:B7:D6:9B:90:68:5A:4E Certificate issuer: /CN=A91977F9/serialNumber=AA5790B0F7D762BE932B9DC611B7D69B90685A4E Certificate serial: 02A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qleQsPfXYr6TK53GEbfWm5BoWk4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91977F9/2AECE66A27BD11EDB5884D5FC4F9AE02/qleQsPfXYr6TK53GEbfWm5BoWk4.mft Manifest number: 029D Signing time: Tue 23 Dec 2025 00:30:27 +0000 Manifest this update: Tue 23 Dec 2025 00:30:27 +0000 Manifest next update: Tue 30 Dec 2025 00:30:27 +0000 Files and hashes: 1: qleQsPfXYr6TK53GEbfWm5BoWk4.crl (hash: zf0aCnjEw9wMS9R+ekaAmMc+wGQNRnzsScS4etPIzi4=) 2: 728286AE27BF11EDA6A02960C4F9AE02.roa (hash: DvV5HozP+sR1ACB5NUpTfiC/G52OiXFRlLclsmTMjHI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91977F9/2AECE66A27BD11EDB5884D5FC4F9AE02/qleQsPfXYr6TK53GEbfWm5BoWk4.crl rsync://rpki.apnic.net/member_repository/A91977F9/2AECE66A27BD11EDB5884D5FC4F9AE02/qleQsPfXYr6TK53GEbfWm5BoWk4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qleQsPfXYr6TK53GEbfWm5BoWk4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 00:30:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 673 (0x2a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91977F9, serialNumber=AA5790B0F7D762BE932B9DC611B7D69B90685A4E Validity Not Before: Dec 23 00:30:27 2025 GMT Not After : Dec 30 00:30:27 2025 GMT Subject: CN=6949e2a3-9bb4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:7f:be:0a:1e:fc:13:db:40:f4:d5:15:27:68: 83:2c:64:75:fe:e3:cc:75:f1:6c:e3:db:42:ac:ea: 08:2f:b6:e5:76:4b:f7:c7:5c:b1:72:37:25:67:f2: de:05:bd:85:c4:b0:21:16:43:c2:18:9f:5f:4d:45: 2d:d6:19:61:c6:b5:61:00:c4:e1:0d:6d:cd:f9:00: 02:b7:ac:cb:29:40:d2:d3:09:67:08:09:e1:c3:e5: e0:9d:97:42:ed:7c:f6:13:35:86:54:62:b8:3d:93: df:56:bc:f1:29:ae:6e:0d:ed:e0:33:72:54:2f:9b: d3:5b:a4:31:99:32:12:99:f3:c4:d2:7e:a4:54:24: 9f:5c:90:4f:03:08:b7:ba:f3:28:14:79:12:d4:c6: 6b:27:28:1c:c3:18:0f:4e:a0:40:7f:1a:a7:a2:a2: ce:d6:9c:d1:af:4b:1f:12:70:7a:b8:6c:9f:dd:8c: 98:a8:9b:5e:d7:a6:eb:88:a6:46:96:19:17:5e:90: 01:e6:f8:43:91:d5:29:ff:b2:b3:f1:9d:53:db:31: 50:b3:03:49:38:c0:c9:dc:da:f9:c6:1f:dd:61:e1: a6:2b:35:21:1b:f7:d1:ca:44:cb:a7:fb:98:a3:9c: bd:05:d4:e0:3a:c3:20:52:bb:f7:df:8a:6e:22:ab: 91:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:EA:93:E3:53:2E:90:D4:45:B2:89:FB:1C:C7:8D:B7:50:58:91:23 X509v3 Authority Key Identifier: keyid:AA:57:90:B0:F7:D7:62:BE:93:2B:9D:C6:11:B7:D6:9B:90:68:5A:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91977F9/2AECE66A27BD11EDB5884D5FC4F9AE02/qleQsPfXYr6TK53GEbfWm5BoWk4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qleQsPfXYr6TK53GEbfWm5BoWk4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91977F9/2AECE66A27BD11EDB5884D5FC4F9AE02/qleQsPfXYr6TK53GEbfWm5BoWk4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:b9:99:6c:be:0e:29:fb:fd:44:65:38:3a:96:62:19:5e:d7: 8b:40:5d:9d:b4:dd:10:50:d1:10:a6:59:a4:9d:4f:63:10:a5: 7b:ac:26:55:39:54:12:e0:69:53:95:f2:6c:6a:a5:36:9a:0e: 2f:71:1e:90:2a:66:36:12:ba:f3:da:75:16:b3:93:9e:24:e1: aa:ec:0c:0b:6e:47:f6:e7:00:88:cf:68:6a:d5:7a:be:90:00: e4:51:90:54:2b:da:ae:c4:37:b5:0b:88:1e:f4:92:81:dc:61: ec:63:82:c6:7b:31:60:a0:1e:e7:c7:93:8f:79:d1:cf:4d:ae: 5a:3a:fd:a2:a8:d7:35:34:da:f6:c8:02:83:a5:3f:85:78:09: f6:4d:55:a1:9b:db:a6:67:7b:b6:e8:f3:b5:3d:89:13:04:49: a2:cf:90:da:8a:54:6a:de:8e:3d:0b:f4:29:c9:41:d1:90:98: 43:59:cb:12:fd:29:7b:0f:52:27:d9:12:22:97:53:77:65:11: 01:0b:6a:80:ff:bf:bd:1f:dc:71:4e:09:bf:de:c6:05:bc:bd: a7:7e:cf:f3:5e:34:4d:17:eb:b0:cd:fb:40:47:cb:f9:52:94: d7:d3:4f:35:ba:89:38:12:15:51:62:a5:52:5d:19:b2:56:a2: 93:cf:3e:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAqEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTc3RjkxMTAvBgNVBAUTKEFBNTc5MEIwRjdENzYyQkU5MzJCOURDNjExQjdENjlC OTA2ODVBNEUwHhcNMjUxMjIzMDAzMDI3WhcNMjUxMjMwMDAzMDI3WjAYMRYwFAYD VQQDDA02OTQ5ZTJhMy05YmI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsX++Ch78E9tA9NUVJ2iDLGR1/uPMdfFs49tCrOoIL7bldkv3x1yxcjclZ/Le Bb2FxLAhFkPCGJ9fTUUt1hlhxrVhAMThDW3N+QACt6zLKUDS0wlnCAnhw+XgnZdC 7Xz2EzWGVGK4PZPfVrzxKa5uDe3gM3JUL5vTW6QxmTISmfPE0n6kVCSfXJBPAwi3 uvMoFHkS1MZrJygcwxgPTqBAfxqnoqLO1pzRr0sfEnB6uGyf3YyYqJte16briKZG lhkXXpAB5vhDkdUp/7Kz8Z1T2zFQswNJOMDJ3Nr5xh/dYeGmKzUhG/fRykTLp/uY o5y9BdTgOsMgUrv334puIquRkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFvqk+NT LpDURbKJ+xzHjbdQWJEjMB8GA1UdIwQYMBaAFKpXkLD312K+kyudxhG31puQaFpO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzdGOS8yQUVDRTY2QTI3 QkQxMUVEQjU4ODRENUZDNEY5QUUwMi9xbGVRc1BmWFlyNlRLNTNHRWJmV201Qm9X azQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FsZVFzUGZYWXI2VEs1M0dFYmZXbTVCb1drNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzdGOS8yQUVDRTY2QTI3QkQxMUVEQjU4ODRENUZDNEY5QUUwMi9xbGVRc1BmWFly NlRLNTNHRWJmV201Qm9XazQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCguZlsvg4p+/1EZTg6lmIZXteLQF2dtN0QUNEQplmknU9jEKV7rCZV OVQS4GlTlfJsaqU2mg4vcR6QKmY2Errz2nUWs5OeJOGq7AwLbkf25wCIz2hq1Xq+ kADkUZBUK9quxDe1C4ge9JKB3GHsY4LGezFgoB7nx5OPedHPTa5aOv2iqNc1NNr2 yAKDpT+FeAn2TVWhm9umZ3u26PO1PYkTBEmiz5DailRq3o49C/QpyUHRkJhDWcsS /Sl7D1In2RIil1N3ZREBC2qA/7+9H9xxTgm/3sYFvL2nfs/zXjRNF+uwzftAR8v5 UpTX0081uok4EhVRYqVSXRmyVqKTzz6j -----END CERTIFICATE-----Generated at Tue Dec 23 14:15:49 2025 by rpki-client