This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.mft File: -qIKGvsgkct_URR4g_NkpFMJQTE.mft (raw, json) Hash identifier: WQxm7br8QC+igiLItu+l3WZ9r1nFdKa5IaTPKc5CQ3Q= Subject key identifier: 80:0C:4C:9E:2C:17:DE:4D:68:83:A6:CC:DE:C5:AD:2C:2B:49:AB:69 Authority key identifier: FA:A2:0A:1A:FB:20:91:CB:7F:51:14:78:83:F3:64:A4:53:09:41:31 Certificate issuer: /CN=A91AF0E8/serialNumber=FAA20A1AFB2091CB7F51147883F364A453094131 Certificate serial: 3500 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-qIKGvsgkct_URR4g_NkpFMJQTE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.mft Manifest number: 34F5 Signing time: Thu 18 Dec 2025 15:03:24 +0000 Manifest this update: Thu 18 Dec 2025 15:03:23 +0000 Manifest next update: Thu 25 Dec 2025 15:03:23 +0000 Files and hashes: 1: -qIKGvsgkct_URR4g_NkpFMJQTE.crl (hash: DCLqMQh9Yv3KPfusSYBbtZTbqqHLFkKLdA9mDfn8IV4=) 2: 0A956A80B48711EC83327546C4F9AE02.roa (hash: QTUVJsweaVnNBbhlnpDHj+5m7Q6KujtkGNOkASm6SsM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.crl rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-qIKGvsgkct_URR4g_NkpFMJQTE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 15:03:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13568 (0x3500) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF0E8, serialNumber=FAA20A1AFB2091CB7F51147883F364A453094131 Validity Not Before: Dec 18 15:03:23 2025 GMT Not After : Dec 25 15:03:23 2025 GMT Subject: CN=694417bc-7af8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:27:1d:44:a1:f4:b1:09:64:d5:f7:22:1b:b8: c4:bf:09:9f:2b:cb:89:c1:45:fc:28:6b:e8:8a:f3: 4d:20:6f:20:4d:1a:f9:39:83:75:d9:d6:72:67:3a: dd:77:3d:62:59:51:de:d1:01:e2:6b:4e:99:d1:3b: 1a:bb:ec:55:62:54:56:a9:ca:d0:4b:7c:76:b4:49: 57:99:a2:e9:1f:ca:54:41:0c:94:8f:64:31:49:1d: cf:22:15:bf:fa:95:d8:de:9c:87:f5:a3:c9:17:21: 70:98:f0:a1:51:60:cd:00:5c:3b:48:a8:24:21:9a: c0:68:29:7d:25:eb:44:ed:b4:8f:c5:44:81:19:b3: f4:53:1d:32:ed:45:a2:b5:25:a9:ee:ac:5f:8a:ef: d8:05:10:78:8c:aa:b6:59:d6:bc:fc:65:9e:79:0b: d4:25:da:5f:6c:35:42:4c:fd:77:34:1c:6d:07:cf: f9:22:01:e3:71:5b:ca:71:92:0b:e3:d9:33:40:09: 6e:fe:b6:33:a4:31:28:b8:ec:19:9d:a7:e2:24:42: d1:95:a8:ae:86:d3:5c:6c:fb:8b:eb:27:39:ec:00: 60:1e:ea:f9:94:52:c6:5a:c9:6f:a2:46:c9:a5:53: ae:82:b2:b1:b8:74:9b:bc:61:2e:46:be:1a:c7:f4: aa:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:0C:4C:9E:2C:17:DE:4D:68:83:A6:CC:DE:C5:AD:2C:2B:49:AB:69 X509v3 Authority Key Identifier: keyid:FA:A2:0A:1A:FB:20:91:CB:7F:51:14:78:83:F3:64:A4:53:09:41:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-qIKGvsgkct_URR4g_NkpFMJQTE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:f3:f1:f5:2c:1c:1f:b7:5b:1e:37:82:12:75:42:22:f5:40: 57:7c:f2:3a:a2:c6:8f:e4:4c:09:f9:85:9a:aa:95:c6:6d:e5: 77:b2:84:28:92:3f:7b:bf:3a:c5:9a:6d:2a:36:7e:20:0d:4d: e9:35:0c:8e:47:96:8d:74:0d:3e:24:e3:ba:74:64:7a:3a:a6: a7:98:38:b3:7f:f8:cb:bb:bc:ec:08:92:b2:4f:1d:d9:b6:c7: d7:ea:73:9c:6c:ba:a4:c6:9b:7b:bf:67:68:83:3c:5e:63:c2: 38:0f:bf:ff:9d:43:40:16:c1:ac:9c:2d:b0:f3:e7:26:41:f4: e9:80:25:58:24:20:4b:6e:ff:b2:1f:a0:e5:b3:a8:84:83:34: 31:ba:d2:c1:59:1b:42:9b:0e:e3:6a:3b:36:45:41:6b:1c:eb: 89:00:78:3e:4f:a9:3c:be:74:ec:71:6f:9a:a8:f7:35:2c:81: a5:c6:c4:aa:4b:32:99:40:d8:94:bc:32:84:37:f9:39:ff:67: db:ad:fb:fc:26:df:9a:e9:0b:58:b4:67:a7:ef:76:51:7b:26: ce:8f:36:48:76:ee:fa:27:35:06:02:75:eb:e9:99:2a:6f:f4: d6:ab:08:67:4a:41:04:78:a1:2e:b0:7c:a0:b3:39:65:83:c1: cf:bb:a1:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNQAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUYwRTgxMTAvBgNVBAUTKEZBQTIwQTFBRkIyMDkxQ0I3RjUxMTQ3ODgzRjM2NEE0 NTMwOTQxMzEwHhcNMjUxMjE4MTUwMzIzWhcNMjUxMjI1MTUwMzIzWjAYMRYwFAYD VQQDDA02OTQ0MTdiYy03YWY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzicdRKH0sQlk1fciG7jEvwmfK8uJwUX8KGvoivNNIG8gTRr5OYN12dZyZzrd dz1iWVHe0QHia06Z0Tsau+xVYlRWqcrQS3x2tElXmaLpH8pUQQyUj2QxSR3PIhW/ +pXY3pyH9aPJFyFwmPChUWDNAFw7SKgkIZrAaCl9JetE7bSPxUSBGbP0Ux0y7UWi tSWp7qxfiu/YBRB4jKq2Wda8/GWeeQvUJdpfbDVCTP13NBxtB8/5IgHjcVvKcZIL 49kzQAlu/rYzpDEouOwZnafiJELRlaiuhtNcbPuL6yc57ABgHur5lFLGWslvokbJ pVOugrKxuHSbvGEuRr4ax/SqlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIAMTJ4s F95NaIOmzN7FrSwrSatpMB8GA1UdIwQYMBaAFPqiChr7IJHLf1EUeIPzZKRTCUEx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjBFOC80NTc5NkFEMjFE QTMxMUUyOUZGQjhDOTgwOEIwMkNEMi8tcUlLR3ZzZ2tjdF9VUlI0Z19Oa3BGTUpR VEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1xSUtHdnNna2N0X1VSUjRnX05rcEZNSlFURS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjBFOC80NTc5NkFEMjFEQTMxMUUyOUZGQjhDOTgwOEIwMkNEMi8tcUlLR3ZzZ2tj dF9VUlI0Z19Oa3BGTUpRVEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB88/H1LBwft1seN4ISdUIi9UBXfPI6osaP5EwJ+YWaqpXGbeV3soQo kj97vzrFmm0qNn4gDU3pNQyOR5aNdA0+JOO6dGR6OqanmDizf/jLu7zsCJKyTx3Z tsfX6nOcbLqkxpt7v2dogzxeY8I4D7//nUNAFsGsnC2w8+cmQfTpgCVYJCBLbv+y H6Dls6iEgzQxutLBWRtCmw7jajs2RUFrHOuJAHg+T6k8vnTscW+aqPc1LIGlxsSq SzKZQNiUvDKEN/k5/2fbrfv8Jt+a6QtYtGen73ZReybOjzZIdu76JzUGAnXr6Zkq b/TWqwhnSkEEeKEusHygszllg8HPu6Fj -----END CERTIFICATE-----Generated at Fri Dec 19 19:06:03 2025 by rpki-client