This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BEA8B/BA08AA424B8111F08F65507EC4F9AE02/QcdXFCmaV43RkP0fcwlVsf2awfQ.mft File: QcdXFCmaV43RkP0fcwlVsf2awfQ.mft (raw, json) Hash identifier: NTYRO03na8M/p3DRngNA3S9AJQfGxMhg3K7OjqgbLvg= Subject key identifier: BE:77:79:C0:B3:08:1D:8B:25:42:D5:AC:F0:92:11:3F:7F:18:DE:90 Authority key identifier: 41:C7:57:14:29:9A:57:8D:D1:90:FD:1F:73:09:55:B1:FD:9A:C1:F4 Certificate issuer: /CN=A91BEA8B/serialNumber=41C75714299A578DD190FD1F730955B1FD9AC1F4 Certificate serial: 72 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QcdXFCmaV43RkP0fcwlVsf2awfQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BEA8B/BA08AA424B8111F08F65507EC4F9AE02/QcdXFCmaV43RkP0fcwlVsf2awfQ.mft Manifest number: 6B Signing time: Fri 19 Dec 2025 06:04:08 +0000 Manifest this update: Fri 19 Dec 2025 06:04:07 +0000 Manifest next update: Fri 26 Dec 2025 06:04:07 +0000 Files and hashes: 1: QcdXFCmaV43RkP0fcwlVsf2awfQ.crl (hash: dbZKjI9lYqUJmhRgFQGZMn1RX+Lu4Xrgs9TsTT025To=) 2: C425CEE64B8211F0A94CFD82C4F9AE02.roa (hash: fil/oQotRM+MIGw/cNqLrz8OgmoOYQq+ywbG5ZxtQK8=) 3: B8F6B5E6889D11F096782036C4F9AE02.roa (hash: /A/rBXc2op08yj3uZittOvl641NY0+V2n8zZ3/LDWUo=) 4: D999F880AF4411F0A866CC48C4F9AE02.roa (hash: egGFXylp1SINEbzgRCNIJHPPft/NT6vkIWCWpdsdfdM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BEA8B/BA08AA424B8111F08F65507EC4F9AE02/QcdXFCmaV43RkP0fcwlVsf2awfQ.crl rsync://rpki.apnic.net/member_repository/A91BEA8B/BA08AA424B8111F08F65507EC4F9AE02/QcdXFCmaV43RkP0fcwlVsf2awfQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QcdXFCmaV43RkP0fcwlVsf2awfQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 06:04:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 114 (0x72) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BEA8B, serialNumber=41C75714299A578DD190FD1F730955B1FD9AC1F4 Validity Not Before: Dec 19 06:04:07 2025 GMT Not After : Dec 26 06:04:07 2025 GMT Subject: CN=6944ead8-096b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:a6:b9:da:f1:5c:50:36:8d:95:e3:32:76:70: bc:7f:f4:4e:e5:d5:00:56:57:96:c4:af:bd:7d:3f: 77:4e:33:9f:9b:50:81:29:a9:0b:88:8c:82:85:9c: 35:16:bb:69:bc:af:70:7d:c4:39:be:68:d5:e2:6b: c6:6b:db:53:f5:f9:6a:05:6d:15:8e:d7:b7:91:4a: 0c:ce:6a:e9:82:4d:09:a4:26:47:ca:8c:3c:62:11: 55:98:67:61:3f:e1:03:8f:83:04:51:44:c1:d9:90: c4:9b:fc:9b:e7:f4:50:77:84:6e:73:16:6f:fd:70: 6c:75:3e:62:76:30:18:48:25:a0:2c:f3:d4:5b:34: 04:8c:c5:6c:8f:c1:99:c7:b4:f9:c4:01:2f:ba:20: 54:ca:2a:08:7b:83:37:6a:3b:f8:58:d8:a5:0f:62: 70:e8:bc:7d:fe:c4:76:b3:68:13:d8:2e:f8:ec:2e: a2:aa:eb:ca:12:a9:2b:21:f5:10:75:4d:dd:9b:8e: 10:72:0f:db:46:35:df:12:87:a2:f8:dd:76:87:24: da:5a:23:19:0f:16:33:0e:a9:e9:64:ab:63:aa:f0: b4:ec:dc:b1:fb:fc:a2:a9:0a:24:d0:76:e6:75:cd: 51:a3:e0:0c:3a:c1:fb:d5:48:26:16:4c:0e:b9:12: 4e:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:77:79:C0:B3:08:1D:8B:25:42:D5:AC:F0:92:11:3F:7F:18:DE:90 X509v3 Authority Key Identifier: keyid:41:C7:57:14:29:9A:57:8D:D1:90:FD:1F:73:09:55:B1:FD:9A:C1:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BEA8B/BA08AA424B8111F08F65507EC4F9AE02/QcdXFCmaV43RkP0fcwlVsf2awfQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QcdXFCmaV43RkP0fcwlVsf2awfQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BEA8B/BA08AA424B8111F08F65507EC4F9AE02/QcdXFCmaV43RkP0fcwlVsf2awfQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:2f:6c:c2:af:19:41:e4:0e:71:2b:25:b3:3e:96:ad:96:e2: 83:4f:26:a7:a1:67:64:45:bb:f7:ec:a4:ec:1e:f9:ce:96:7f: c0:1f:1c:bd:fa:d3:fe:66:0d:91:c4:7f:36:84:85:b7:1c:4b: 1f:21:94:8e:d6:45:05:9d:d1:77:c7:e5:7c:a9:aa:b0:e6:52: c3:cb:d0:9c:a0:4e:58:36:2a:4b:49:6b:84:27:b4:79:ab:7a: 9d:97:a4:aa:dc:db:c5:7c:21:41:7e:6e:8e:7e:b2:76:9b:7a: 5d:f3:f7:10:89:0e:b9:6d:a9:b7:dc:4e:ed:02:78:95:2f:a1: 22:1a:97:30:3e:8e:fe:28:78:df:82:82:f1:63:03:7a:e4:ef: ab:98:ae:a2:ba:00:2b:0a:8f:f9:0a:78:5f:e2:6b:7a:02:e8: 23:a3:c8:7f:0a:31:40:02:a2:b6:1e:26:1c:3b:d1:ad:b8:8c: cd:43:46:b6:97:d3:23:9e:85:f7:5b:94:12:d3:42:89:eb:53: 2d:f5:b1:b9:d5:db:c8:dc:02:96:fd:15:27:a8:01:f1:fe:ca: ab:eb:8a:a3:d2:3c:d2:41:8a:80:03:40:c5:fd:50:81:01:c4: 3b:62:c5:f2:f6:6b:25:00:62:55:d6:a6:c8:f3:0e:21:1e:17: 61:b0:2f:4a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBcjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC RUE4QjExMC8GA1UEBRMoNDFDNzU3MTQyOTlBNTc4REQxOTBGRDFGNzMwOTU1QjFG RDlBQzFGNDAeFw0yNTEyMTkwNjA0MDdaFw0yNTEyMjYwNjA0MDdaMBgxFjAUBgNV BAMMDTY5NDRlYWQ4LTA5NmIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD1prna8VxQNo2V4zJ2cLx/9E7l1QBWV5bEr719P3dOM5+bUIEpqQuIjIKFnDUW u2m8r3B9xDm+aNXia8Zr21P1+WoFbRWO17eRSgzOaumCTQmkJkfKjDxiEVWYZ2E/ 4QOPgwRRRMHZkMSb/Jvn9FB3hG5zFm/9cGx1PmJ2MBhIJaAs89RbNASMxWyPwZnH tPnEAS+6IFTKKgh7gzdqO/hY2KUPYnDovH3+xHazaBPYLvjsLqKq68oSqSsh9RB1 Td2bjhByD9tGNd8Sh6L43XaHJNpaIxkPFjMOqelkq2Oq8LTs3LH7/KKpCiTQduZ1 zVGj4Aw6wfvVSCYWTA65Ek7XAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUvnd5wLMI HYslQtWs8JIRP38Y3pAwHwYDVR0jBBgwFoAUQcdXFCmaV43RkP0fcwlVsf2awfQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJFQThCL0JBMDhBQTQyNEI4 MTExRjA4RjY1NTA3RUM0RjlBRTAyL1FjZFhGQ21hVjQzUmtQMGZjd2xWc2YyYXdm US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUWNkWEZDbWFWNDNSa1AwZmN3bFZzZjJhd2ZRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJF QThCL0JBMDhBQTQyNEI4MTExRjA4RjY1NTA3RUM0RjlBRTAyL1FjZFhGQ21hVjQz UmtQMGZjd2xWc2YyYXdmUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGovbMKvGUHkDnErJbM+lq2W4oNPJqehZ2RFu/fspOwe+c6Wf8AfHL36 0/5mDZHEfzaEhbccSx8hlI7WRQWd0XfH5XypqrDmUsPL0JygTlg2KktJa4QntHmr ep2XpKrc28V8IUF+bo5+snabel3z9xCJDrltqbfcTu0CeJUvoSIalzA+jv4oeN+C gvFjA3rk76uYrqK6ACsKj/kKeF/ia3oC6COjyH8KMUACorYeJhw70a24jM1DRraX 0yOehfdblBLTQonrUy31sbnV28jcApb9FSeoAfH+yqvriqPSPNJBioADQMX9UIEB xDtixfL2ayUAYlXWpsjzDiEeF2GwL0o= -----END CERTIFICATE-----Generated at Sat Dec 20 00:53:30 2025 by rpki-client