This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A97D0/B89FA3C6303211ED9BDC0A83C4F9AE02/rqbfs2Sis7WSfwB6ToJPMsQI5cg.mft File: rqbfs2Sis7WSfwB6ToJPMsQI5cg.mft (raw, json) Hash identifier: lWXLF7eXpkELJWY/EJBqlJFRu1Rd8ZDepLmXoepkZ50= Subject key identifier: 21:D1:98:FC:2C:93:AE:80:54:46:26:44:C8:AD:44:D7:8C:28:EC:B7 Authority key identifier: AE:A6:DF:B3:64:A2:B3:B5:92:7F:00:7A:4E:82:4F:32:C4:08:E5:C8 Certificate issuer: /CN=A91A97D0/serialNumber=AEA6DFB364A2B3B5927F007A4E824F32C408E5C8 Certificate serial: 0299 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rqbfs2Sis7WSfwB6ToJPMsQI5cg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A97D0/B89FA3C6303211ED9BDC0A83C4F9AE02/rqbfs2Sis7WSfwB6ToJPMsQI5cg.mft Manifest number: 028D Signing time: Sun 21 Dec 2025 00:46:33 +0000 Manifest this update: Sun 21 Dec 2025 00:46:33 +0000 Manifest next update: Sun 28 Dec 2025 00:46:33 +0000 Files and hashes: 1: rqbfs2Sis7WSfwB6ToJPMsQI5cg.crl (hash: bVlGSO/Axoo+4fxGlUshapCfgm8e2uMbEqR646rWQWw=) 2: C31A6BFA717D11EE90B95137C4F9AE02.roa (hash: 7cBmRSUB3GK5yJL7yaxAGg0XDgWGErxNw0g36JGOJzQ=) 3: 28BD1EFC3B4311EDAB5E6382C4F9AE02.roa (hash: uhIrsP1ipJFX3Ct1IhnIwZmCjEIkpTywt0iwOfj/NzQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A97D0/B89FA3C6303211ED9BDC0A83C4F9AE02/rqbfs2Sis7WSfwB6ToJPMsQI5cg.crl rsync://rpki.apnic.net/member_repository/A91A97D0/B89FA3C6303211ED9BDC0A83C4F9AE02/rqbfs2Sis7WSfwB6ToJPMsQI5cg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rqbfs2Sis7WSfwB6ToJPMsQI5cg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 00:46:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 665 (0x299) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A97D0, serialNumber=AEA6DFB364A2B3B5927F007A4E824F32C408E5C8 Validity Not Before: Dec 21 00:46:33 2025 GMT Not After : Dec 28 00:46:33 2025 GMT Subject: CN=69474369-7c64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:c8:e7:52:27:9b:a9:9d:4d:2f:a2:86:db:47: 2f:cc:bc:d6:1a:80:43:f5:c2:31:91:44:c1:c9:29: 73:8d:36:bc:ec:53:70:0f:69:4a:0c:7e:d7:87:03: 17:0e:b4:ce:32:68:07:e8:a2:bc:68:42:28:70:b0: 25:8e:44:3b:16:a3:a1:bf:96:ec:a3:08:30:c5:18: a1:18:a6:7a:db:16:51:e4:16:73:90:4b:65:03:66: 99:1a:98:aa:ac:10:c8:f8:b5:60:58:4b:40:bf:52: 48:0a:7b:6e:59:45:94:34:9e:e7:fb:00:da:59:ac: 49:0e:5f:7d:ce:20:85:bc:06:eb:23:1e:3d:ca:ae: e8:c4:8f:e4:8e:b8:32:6b:04:c1:1b:9f:9e:3d:c1: 57:b8:11:d0:24:f1:9d:6e:bb:69:a7:68:55:c0:d5: f7:f2:23:f1:e3:53:19:b0:d7:c4:d8:d3:46:b5:06: 10:91:34:81:d2:75:53:9e:d8:87:23:83:54:09:84: 32:66:bb:6a:a3:d8:3f:c2:2c:07:0a:e2:2d:6a:76: 0b:d3:0f:b7:0b:b6:37:60:15:8c:ae:87:91:fd:50: f0:c0:93:86:1d:7a:2b:69:fa:28:41:6b:cf:5f:d0: 6d:0d:73:20:e1:b6:a8:67:ae:6c:60:7b:6a:f7:8d: 58:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:D1:98:FC:2C:93:AE:80:54:46:26:44:C8:AD:44:D7:8C:28:EC:B7 X509v3 Authority Key Identifier: keyid:AE:A6:DF:B3:64:A2:B3:B5:92:7F:00:7A:4E:82:4F:32:C4:08:E5:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A97D0/B89FA3C6303211ED9BDC0A83C4F9AE02/rqbfs2Sis7WSfwB6ToJPMsQI5cg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rqbfs2Sis7WSfwB6ToJPMsQI5cg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A97D0/B89FA3C6303211ED9BDC0A83C4F9AE02/rqbfs2Sis7WSfwB6ToJPMsQI5cg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:20:0f:73:0e:0c:f1:79:4b:e5:1e:15:65:45:f3:9c:58:7f: 92:50:20:02:85:22:ad:ce:23:7e:11:5b:a2:2a:e8:ad:e9:d7: c4:32:66:88:95:a3:b4:e7:8a:7a:7e:6d:91:6e:a0:22:d9:99: 95:24:db:a8:4c:18:07:38:a4:ec:8d:e6:0d:96:32:07:27:ef: 3a:3b:57:c1:d7:5b:e7:63:78:f8:65:40:d9:81:f6:26:ee:d9: 0b:95:f1:bc:8b:03:40:b6:32:aa:aa:b1:74:e2:a1:89:0d:0e: 66:fc:1b:c7:dc:00:d6:92:03:88:68:71:9f:0d:e0:f3:7d:27: d3:92:8a:37:fc:e5:38:79:16:59:8f:2b:af:9c:db:69:35:88: f4:b5:65:86:0a:5b:b7:e3:a1:b5:98:83:81:44:f1:b1:8a:0c: a4:cb:9d:98:09:be:fb:55:69:85:94:64:15:12:10:5b:d1:6d: 76:71:41:ce:d6:de:a4:a5:60:82:a8:53:4c:0f:fb:32:3e:18: 4c:c4:ac:35:23:72:35:62:2e:5f:bb:04:0f:e0:2a:ff:cd:4c: fe:1f:1d:99:43:16:cd:d9:50:32:64:5e:98:ca:d9:e8:5c:7f: 71:d4:4a:70:26:3f:82:92:65:10:ea:9b:44:23:e2:00:c4:0b: bf:a0:98:d4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICApkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTk3RDAxMTAvBgNVBAUTKEFFQTZERkIzNjRBMkIzQjU5MjdGMDA3QTRFODI0RjMy QzQwOEU1QzgwHhcNMjUxMjIxMDA0NjMzWhcNMjUxMjI4MDA0NjMzWjAYMRYwFAYD VQQDDA02OTQ3NDM2OS03YzY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuMjnUiebqZ1NL6KG20cvzLzWGoBD9cIxkUTBySlzjTa87FNwD2lKDH7XhwMX DrTOMmgH6KK8aEIocLAljkQ7FqOhv5bsowgwxRihGKZ62xZR5BZzkEtlA2aZGpiq rBDI+LVgWEtAv1JICntuWUWUNJ7n+wDaWaxJDl99ziCFvAbrIx49yq7oxI/kjrgy awTBG5+ePcFXuBHQJPGdbrtpp2hVwNX38iPx41MZsNfE2NNGtQYQkTSB0nVTntiH I4NUCYQyZrtqo9g/wiwHCuItanYL0w+3C7Y3YBWMroeR/VDwwJOGHXorafooQWvP X9BtDXMg4baoZ65sYHtq941YMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCHRmPws k66AVEYmRMitRNeMKOy3MB8GA1UdIwQYMBaAFK6m37NkorO1kn8Aek6CTzLECOXI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTdEMC9CODlGQTNDNjMw MzIxMUVEOUJEQzBBODNDNEY5QUUwMi9ycWJmczJTaXM3V1Nmd0I2VG9KUE1zUUk1 Y2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JxYmZzMlNpczdXU2Z3QjZUb0pQTXNRSTVjZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OTdEMC9CODlGQTNDNjMwMzIxMUVEOUJEQzBBODNDNEY5QUUwMi9ycWJmczJTaXM3 V1Nmd0I2VG9KUE1zUUk1Y2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCcIA9zDgzxeUvlHhVlRfOcWH+SUCAChSKtziN+EVuiKuit6dfEMmaI laO054p6fm2RbqAi2ZmVJNuoTBgHOKTsjeYNljIHJ+86O1fB11vnY3j4ZUDZgfYm 7tkLlfG8iwNAtjKqqrF04qGJDQ5m/BvH3ADWkgOIaHGfDeDzfSfTkoo3/OU4eRZZ jyuvnNtpNYj0tWWGClu346G1mIOBRPGxigyky52YCb77VWmFlGQVEhBb0W12cUHO 1t6kpWCCqFNMD/syPhhMxKw1I3I1Yi5fuwQP4Cr/zUz+Hx2ZQxbN2VAyZF6Yytno XH9x1EpwJj+CkmUQ6ptEI+IAxAu/oJjU -----END CERTIFICATE-----Generated at Sun Dec 21 12:03:08 2025 by rpki-client