This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB492/2C0B32D8093611F0A2842D57C4F9AE02/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.mft File: QOS9Nq4VB3_lmYXRNw1dZGcKiNk.mft (raw, json) Hash identifier: 1H/8kLiWpkTuuBTGi0MMHnz2Xb8opNfn/XZpp3IhN58= Subject key identifier: 81:9B:64:40:70:F0:3E:09:1F:E3:54:61:9A:CC:3B:70:A9:FE:22:73 Authority key identifier: 40:E4:BD:36:AE:15:07:7F:E5:99:85:D1:37:0D:5D:64:67:0A:88:D9 Certificate issuer: /CN=A91BB492/serialNumber=40E4BD36AE15077FE59985D1370D5D64670A88D9 Certificate serial: 8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB492/2C0B32D8093611F0A2842D57C4F9AE02/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.mft Manifest number: 8A Signing time: Fri 19 Dec 2025 05:38:29 +0000 Manifest this update: Fri 19 Dec 2025 05:38:28 +0000 Manifest next update: Fri 26 Dec 2025 05:38:28 +0000 Files and hashes: 1: QOS9Nq4VB3_lmYXRNw1dZGcKiNk.crl (hash: 4DyJf/QUPl8fS2WuSXHzQVENwfdq9Y56ItDgHGQAsYs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB492/2C0B32D8093611F0A2842D57C4F9AE02/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.crl rsync://rpki.apnic.net/member_repository/A91BB492/2C0B32D8093611F0A2842D57C4F9AE02/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 05:38:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 138 (0x8a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB492, serialNumber=40E4BD36AE15077FE59985D1370D5D64670A88D9 Validity Not Before: Dec 19 05:38:28 2025 GMT Not After : Dec 26 05:38:28 2025 GMT Subject: CN=6944e4d5-6fd5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:0b:74:91:e7:26:62:59:b6:f4:4b:6f:dc:ea: 67:3a:fb:1b:32:b4:b5:be:f0:b5:7d:b8:3b:56:f3: ef:b4:8b:bf:f7:23:d5:fc:98:f9:99:84:48:fd:23: dd:7a:df:c3:fe:1e:12:f6:0b:ba:8a:52:88:c9:ad: e1:10:9d:24:77:04:4e:3e:4f:eb:e7:e5:bf:18:7d: 7b:9e:44:b1:8a:11:6f:0b:46:62:36:b5:5a:de:f2: 06:a7:8a:00:67:6b:ff:c1:cf:a4:3b:a3:5a:7f:2d: 7b:41:15:36:bc:bf:41:be:0f:1d:cd:81:6e:25:1d: 3f:0d:4e:36:16:56:1b:c8:8c:54:84:21:3a:10:9f: 34:ef:4b:70:b8:09:79:a8:80:7d:93:98:07:ff:b4: 93:2c:50:59:84:ea:77:83:b4:32:00:ca:65:77:f1: f1:e0:15:ef:8a:ef:27:57:25:47:f2:05:95:e2:95: 98:7e:d6:94:29:dc:db:cd:87:b7:20:39:af:a2:0d: 85:4e:c8:85:80:38:e4:5b:e2:1f:5b:86:0a:ef:88: 3b:c9:67:b5:4a:3f:3f:62:d8:9b:35:d9:70:f9:39: e8:07:fd:0a:00:d1:db:2f:0b:73:63:7b:2d:6e:27: 9f:20:05:94:b3:68:bd:b5:52:e8:bb:b0:7e:30:83: b0:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:9B:64:40:70:F0:3E:09:1F:E3:54:61:9A:CC:3B:70:A9:FE:22:73 X509v3 Authority Key Identifier: keyid:40:E4:BD:36:AE:15:07:7F:E5:99:85:D1:37:0D:5D:64:67:0A:88:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB492/2C0B32D8093611F0A2842D57C4F9AE02/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB492/2C0B32D8093611F0A2842D57C4F9AE02/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:e1:d5:f4:0e:f8:94:a1:77:3b:16:f9:12:53:0f:1b:bb:28: 04:70:d1:42:b4:db:b2:33:17:81:4a:fb:e7:4c:fe:84:1a:0e: b1:a0:3f:a8:fe:8c:6a:f3:f3:14:1f:73:44:70:eb:9e:60:92: 97:df:d2:57:49:90:13:d0:c3:35:6c:10:7d:dc:21:20:02:b2: 3a:ce:f9:7c:7b:a7:b1:3a:df:a4:83:76:b9:81:2e:cf:20:4a: 80:f2:66:94:0e:ac:f3:b4:b6:d3:ca:a0:42:91:1c:37:5f:88: c0:af:5e:5b:ad:2f:ca:93:08:9b:e4:25:54:9d:00:f2:94:61: a1:af:74:7d:82:e1:d2:28:19:9a:9e:18:ad:f5:46:5e:d1:a0: 57:de:31:84:fa:f0:34:c8:c6:7b:49:29:8c:af:2a:dd:f3:4e: 75:b2:d1:56:00:72:3f:89:24:55:ac:ff:b6:ca:b2:21:c1:f0: 86:69:99:36:c4:21:49:02:37:fc:ef:0d:8b:3b:8d:76:00:8f: 89:dc:08:37:ff:48:75:1d:c8:05:c8:32:26:e5:96:91:ef:f5: 18:3e:74:51:d5:60:ae:e5:43:1a:ab:b5:f8:97:18:55:7d:07: 37:41:9b:14:81:8c:b1:f3:2f:01:14:80:ef:ae:cc:c7:e2:79: bd:5c:cc:ab -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI0OTIxMTAvBgNVBAUTKDQwRTRCRDM2QUUxNTA3N0ZFNTk5ODVEMTM3MEQ1RDY0 NjcwQTg4RDkwHhcNMjUxMjE5MDUzODI4WhcNMjUxMjI2MDUzODI4WjAYMRYwFAYD VQQDDA02OTQ0ZTRkNS02ZmQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAiQt0kecmYlm29Etv3OpnOvsbMrS1vvC1fbg7VvPvtIu/9yPV/Jj5mYRI/SPd et/D/h4S9gu6ilKIya3hEJ0kdwROPk/r5+W/GH17nkSxihFvC0ZiNrVa3vIGp4oA Z2v/wc+kO6Nafy17QRU2vL9Bvg8dzYFuJR0/DU42FlYbyIxUhCE6EJ8070twuAl5 qIB9k5gH/7STLFBZhOp3g7QyAMpld/Hx4BXviu8nVyVH8gWV4pWYftaUKdzbzYe3 IDmvog2FTsiFgDjkW+IfW4YK74g7yWe1Sj8/YtibNdlw+TnoB/0KANHbLwtzY3st biefIAWUs2i9tVLou7B+MIOwiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIGbZEBw 8D4JH+NUYZrMO3Cp/iJzMB8GA1UdIwQYMBaAFEDkvTauFQd/5ZmF0TcNXWRnCojZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjQ5Mi8yQzBCMzJEODA5 MzYxMUYwQTI4NDJENTdDNEY5QUUwMi9RT1M5TnE0VkIzX2xtWVhSTncxZFpHY0tp TmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FPUzlOcTRWQjNfbG1ZWFJOdzFkWkdjS2lOay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjQ5Mi8yQzBCMzJEODA5MzYxMUYwQTI4NDJENTdDNEY5QUUwMi9RT1M5TnE0VkIz X2xtWVhSTncxZFpHY0tpTmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBI4dX0DviUoXc7FvkSUw8buygEcNFCtNuyMxeBSvvnTP6EGg6xoD+o /oxq8/MUH3NEcOueYJKX39JXSZAT0MM1bBB93CEgArI6zvl8e6exOt+kg3a5gS7P IEqA8maUDqzztLbTyqBCkRw3X4jAr15brS/Kkwib5CVUnQDylGGhr3R9guHSKBma nhit9UZe0aBX3jGE+vA0yMZ7SSmMryrd8051stFWAHI/iSRVrP+2yrIhwfCGaZk2 xCFJAjf87w2LO412AI+J3Ag3/0h1HcgFyDIm5ZaR7/UYPnRR1WCu5UMaq7X4lxhV fQc3QZsUgYyx8y8BFIDvrszH4nm9XMyr -----END CERTIFICATE-----Generated at Fri Dec 19 18:50:02 2025 by rpki-client