This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1C52/0E5DBFB4C4BC11ED88403A48C4F9AE02/qZDaJc9OAbzrfsdcF4YPuUe-CSo.mft File: qZDaJc9OAbzrfsdcF4YPuUe-CSo.mft (raw, json) Hash identifier: BrYvv7kDX4ks8MhP/TIor0+GGk1VwAuy+um+VkoaPVI= Subject key identifier: 27:F8:64:DA:CE:80:15:A3:23:4F:C3:83:D3:86:09:4E:87:C4:29:A8 Authority key identifier: A9:90:DA:25:CF:4E:01:BC:EB:7E:C7:5C:17:86:0F:B9:47:BE:09:2A Certificate issuer: /CN=A91A1C52/serialNumber=A990DA25CF4E01BCEB7EC75C17860FB947BE092A Certificate serial: 0207 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qZDaJc9OAbzrfsdcF4YPuUe-CSo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1C52/0E5DBFB4C4BC11ED88403A48C4F9AE02/qZDaJc9OAbzrfsdcF4YPuUe-CSo.mft Manifest number: 0204 Signing time: Fri 19 Dec 2025 01:35:38 +0000 Manifest this update: Fri 19 Dec 2025 01:35:37 +0000 Manifest next update: Fri 26 Dec 2025 01:35:37 +0000 Files and hashes: 1: qZDaJc9OAbzrfsdcF4YPuUe-CSo.crl (hash: RNF3DplOv+g/yrUD2zDBWpcoozqQ7/is/tDACoF94yQ=) 2: A40C03B0D3B511EDA2A9DD7BC4F9AE02.roa (hash: qTpurh8+bWpZzwTVZxTLGeJXujwiEOMw1H0kXdqpaC8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1C52/0E5DBFB4C4BC11ED88403A48C4F9AE02/qZDaJc9OAbzrfsdcF4YPuUe-CSo.crl rsync://rpki.apnic.net/member_repository/A91A1C52/0E5DBFB4C4BC11ED88403A48C4F9AE02/qZDaJc9OAbzrfsdcF4YPuUe-CSo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qZDaJc9OAbzrfsdcF4YPuUe-CSo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 01:35:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 519 (0x207) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1C52, serialNumber=A990DA25CF4E01BCEB7EC75C17860FB947BE092A Validity Not Before: Dec 19 01:35:37 2025 GMT Not After : Dec 26 01:35:37 2025 GMT Subject: CN=6944abea-0f14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:8b:d1:08:f8:4d:89:5e:08:d1:ab:55:75:08: f4:69:70:78:34:18:81:60:c7:6a:10:f8:c3:f8:12: 05:6d:e5:dc:38:02:a6:dd:62:d5:d4:7f:b2:f4:a0: ff:c0:a9:28:c4:33:f0:e4:79:e9:37:b5:30:ff:36: 8a:55:3a:70:2e:c1:a6:39:1c:8f:2c:d4:b1:6f:ac: b1:35:28:70:6f:cf:1e:13:77:80:18:6f:19:24:6c: 93:c9:81:3d:50:db:35:4a:26:e0:3c:ff:60:7c:11: 84:f7:26:88:76:49:1a:b5:1a:97:c4:8e:ae:8e:fd: 71:33:73:ab:ff:b5:f3:b6:17:c1:5f:a3:e8:95:60: 92:ff:1b:45:2f:83:7c:ef:ea:82:36:a3:c2:a6:21: 30:a1:65:4a:bc:2c:25:09:78:49:ef:6d:cf:bb:55: b8:d7:29:d9:bd:3c:a1:31:fa:22:c4:02:7d:30:b8: c8:4b:2b:fc:89:a1:4c:bf:2b:a5:59:35:06:69:56: 08:81:28:9a:25:7d:1e:6b:9d:0b:dc:4f:c1:9e:ce: e7:12:2b:23:b0:6d:69:29:f0:12:2b:4f:9b:9e:db: af:61:80:fd:fa:e0:66:54:3d:61:c0:7b:9d:3f:d4: b7:be:ee:5a:29:6d:70:0e:91:29:20:96:82:b1:de: cc:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:F8:64:DA:CE:80:15:A3:23:4F:C3:83:D3:86:09:4E:87:C4:29:A8 X509v3 Authority Key Identifier: keyid:A9:90:DA:25:CF:4E:01:BC:EB:7E:C7:5C:17:86:0F:B9:47:BE:09:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1C52/0E5DBFB4C4BC11ED88403A48C4F9AE02/qZDaJc9OAbzrfsdcF4YPuUe-CSo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qZDaJc9OAbzrfsdcF4YPuUe-CSo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1C52/0E5DBFB4C4BC11ED88403A48C4F9AE02/qZDaJc9OAbzrfsdcF4YPuUe-CSo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:e2:6e:f3:8e:de:1a:4c:9f:c7:c0:3b:d3:e7:ba:ff:9d:26: 64:a0:a6:89:ec:f4:a7:59:f1:a7:30:d2:15:f2:ef:f8:2c:a2: 51:8c:dc:4c:e7:6f:45:5b:a9:6e:a7:19:3c:0a:ef:d9:79:80: da:51:0c:85:62:7f:2b:ee:66:96:00:da:b1:76:68:8b:11:6d: 1e:30:2d:4e:0f:e3:f9:13:d7:b3:e0:b7:1c:15:d2:d0:e1:c0: e0:bd:f0:50:2e:9b:b3:cf:d2:fd:35:a5:98:a7:4c:60:02:a5: 5a:72:64:ac:c7:d7:c4:c5:27:0a:a7:8c:e0:cf:32:5b:e6:b5: 5f:8b:ae:f0:5a:4e:e0:6b:56:db:f6:f1:ba:7f:c4:6c:60:ff: a7:e0:13:61:26:da:5c:d1:f8:69:61:05:4e:4d:48:8d:dc:aa: e5:be:37:6b:c2:6f:a9:97:c2:e4:b0:10:b3:ed:19:2f:3f:00: 67:f5:50:ac:7b:e1:fd:d6:59:06:e0:cc:38:11:72:2f:4c:0f: b7:27:1c:fc:4a:4f:3c:4b:ca:21:da:22:08:4f:51:b3:28:9b: 53:52:37:dc:d2:20:10:f7:79:92:78:25:7b:94:e8:b8:94:9e: 12:0c:20:29:ba:fa:55:9d:9f:47:d6:44:53:eb:70:7a:02:32: 18:3c:b3:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTFDNTIxMTAvBgNVBAUTKEE5OTBEQTI1Q0Y0RTAxQkNFQjdFQzc1QzE3ODYwRkI5 NDdCRTA5MkEwHhcNMjUxMjE5MDEzNTM3WhcNMjUxMjI2MDEzNTM3WjAYMRYwFAYD VQQDDA02OTQ0YWJlYS0wZjE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlovRCPhNiV4I0atVdQj0aXB4NBiBYMdqEPjD+BIFbeXcOAKm3WLV1H+y9KD/ wKkoxDPw5HnpN7Uw/zaKVTpwLsGmORyPLNSxb6yxNShwb88eE3eAGG8ZJGyTyYE9 UNs1SibgPP9gfBGE9yaIdkkatRqXxI6ujv1xM3Or/7XzthfBX6PolWCS/xtFL4N8 7+qCNqPCpiEwoWVKvCwlCXhJ723Pu1W41ynZvTyhMfoixAJ9MLjISyv8iaFMvyul WTUGaVYIgSiaJX0ea50L3E/Bns7nEisjsG1pKfASK0+bntuvYYD9+uBmVD1hwHud P9S3vu5aKW1wDpEpIJaCsd7MbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCf4ZNrO gBWjI0/Dg9OGCU6HxCmoMB8GA1UdIwQYMBaAFKmQ2iXPTgG8637HXBeGD7lHvgkq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMUM1Mi8wRTVEQkZCNEM0 QkMxMUVEODg0MDNBNDhDNEY5QUUwMi9xWkRhSmM5T0FienJmc2RjRjRZUHVVZS1D U28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FaRGFKYzlPQWJ6cmZzZGNGNFlQdVVlLUNTby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MUM1Mi8wRTVEQkZCNEM0QkMxMUVEODg0MDNBNDhDNEY5QUUwMi9xWkRhSmM5T0Fi enJmc2RjRjRZUHVVZS1DU28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBU4m7zjt4aTJ/HwDvT57r/nSZkoKaJ7PSnWfGnMNIV8u/4LKJRjNxM 529FW6lupxk8Cu/ZeYDaUQyFYn8r7maWANqxdmiLEW0eMC1OD+P5E9ez4LccFdLQ 4cDgvfBQLpuzz9L9NaWYp0xgAqVacmSsx9fExScKp4zgzzJb5rVfi67wWk7ga1bb 9vG6f8RsYP+n4BNhJtpc0fhpYQVOTUiN3Krlvjdrwm+pl8LksBCz7RkvPwBn9VCs e+H91lkG4Mw4EXIvTA+3Jxz8Sk88S8oh2iIIT1GzKJtTUjfc0iAQ93mSeCV7lOi4 lJ4SDCApuvpVnZ9H1kRT63B6AjIYPLMU -----END CERTIFICATE-----Generated at Fri Dec 19 13:53:28 2025 by rpki-client