This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0BE1/E46FF490AE2B11EB95627F82C4F9AE02/qiG2kMHWPL9EGqO9EX7Yt4aIIik.mft File: qiG2kMHWPL9EGqO9EX7Yt4aIIik.mft (raw, json) Hash identifier: VxJ14kuvCLn/S/ylE0HFE8XJjkUAraS15F6BwIXkJYo= Subject key identifier: CE:B5:3D:C7:97:83:1F:29:B7:06:32:BF:27:09:B1:F9:8A:D3:5C:B5 Authority key identifier: AA:21:B6:90:C1:D6:3C:BF:44:1A:A3:BD:11:7E:D8:B7:86:88:22:29 Certificate issuer: /CN=A91C0BE1/serialNumber=AA21B690C1D63CBF441AA3BD117ED8B786882229 Certificate serial: 065E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qiG2kMHWPL9EGqO9EX7Yt4aIIik.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0BE1/E46FF490AE2B11EB95627F82C4F9AE02/qiG2kMHWPL9EGqO9EX7Yt4aIIik.mft Manifest number: 0659 Signing time: Sat 20 Dec 2025 21:56:26 +0000 Manifest this update: Sat 20 Dec 2025 21:56:25 +0000 Manifest next update: Sat 27 Dec 2025 21:56:25 +0000 Files and hashes: 1: qiG2kMHWPL9EGqO9EX7Yt4aIIik.crl (hash: Brp2p7EdOBS/MWNQ0lR1QynUTMjlOhG7FruKzcRXevk=) 2: 0C3EAFF6F84111EC926CBF53C4F9AE02.roa (hash: QP4syOi96y5XvL9Sdw2J+adgOyFXDCa3foh8bqHg19c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0BE1/E46FF490AE2B11EB95627F82C4F9AE02/qiG2kMHWPL9EGqO9EX7Yt4aIIik.crl rsync://rpki.apnic.net/member_repository/A91C0BE1/E46FF490AE2B11EB95627F82C4F9AE02/qiG2kMHWPL9EGqO9EX7Yt4aIIik.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qiG2kMHWPL9EGqO9EX7Yt4aIIik.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 21:56:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1630 (0x65e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0BE1, serialNumber=AA21B690C1D63CBF441AA3BD117ED8B786882229 Validity Not Before: Dec 20 21:56:25 2025 GMT Not After : Dec 27 21:56:25 2025 GMT Subject: CN=69471b8a-d469 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:e3:32:5a:f2:2f:72:da:9b:eb:a4:0f:e0:93: e8:a1:5e:f3:8d:34:ba:14:61:1e:78:20:d7:b0:72: 35:e7:16:2c:a4:05:f6:d4:b0:df:0a:fd:2c:28:d7: bd:67:d0:bb:bb:43:b3:34:eb:8e:82:20:09:6e:42: ea:1b:20:e2:64:6d:47:54:2d:3c:1b:2d:90:31:ee: ba:52:55:21:17:0c:e7:6a:03:75:71:04:d7:19:eb: 67:79:08:4b:d6:a9:56:32:0f:d6:d0:cc:b2:04:aa: 94:d1:ef:fe:82:f8:73:3b:23:7a:fa:de:c4:3d:ef: dd:a2:12:86:68:1f:47:97:3f:5b:4d:2b:96:06:cd: 1c:54:a4:b9:cc:84:6c:b0:c3:79:be:b9:51:a7:6d: 05:cd:72:12:71:0d:9f:45:f8:f8:57:81:70:a8:78: 33:6e:34:35:88:38:f7:6b:d5:51:d7:7a:a0:1a:79: d1:44:98:77:a6:ff:89:c8:d6:50:04:be:c3:c2:a3: 00:9e:81:77:0b:17:be:03:05:d8:f0:90:7a:1a:49: e1:7c:2b:40:d2:3a:79:14:d5:3e:24:0d:e7:3f:22: 9b:51:75:30:25:66:60:93:74:a9:52:cf:e4:c5:a1: f8:c3:67:34:bd:36:e9:20:27:e4:4a:fc:f8:de:7b: 04:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:B5:3D:C7:97:83:1F:29:B7:06:32:BF:27:09:B1:F9:8A:D3:5C:B5 X509v3 Authority Key Identifier: keyid:AA:21:B6:90:C1:D6:3C:BF:44:1A:A3:BD:11:7E:D8:B7:86:88:22:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0BE1/E46FF490AE2B11EB95627F82C4F9AE02/qiG2kMHWPL9EGqO9EX7Yt4aIIik.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qiG2kMHWPL9EGqO9EX7Yt4aIIik.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0BE1/E46FF490AE2B11EB95627F82C4F9AE02/qiG2kMHWPL9EGqO9EX7Yt4aIIik.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:28:29:b9:01:84:18:5b:38:78:86:c7:e9:67:87:2a:88:2f: cf:27:df:0a:c4:11:cd:04:ea:d3:ac:f2:a6:c2:6b:93:4d:6c: ad:9c:44:53:d6:43:5c:80:b4:c6:1a:2a:78:a1:4f:4b:e6:26: f3:18:8f:3a:33:ad:c1:f7:d5:19:8a:05:24:e5:6b:0b:c5:7a: 6a:7f:19:be:ea:29:5a:78:d7:8c:5e:ca:b9:f9:0d:be:0c:67: 13:b8:4c:3a:c2:00:cd:e4:fc:27:c3:74:8e:15:6b:99:aa:74: 00:73:dd:f7:b7:61:1d:53:78:9b:ec:a3:2e:e1:49:aa:31:72: 9e:1d:7d:7f:73:22:5b:7b:69:71:8c:67:2e:d7:61:60:65:41: a9:79:86:93:00:18:fc:4c:b9:40:da:25:99:f6:25:14:70:8c: 71:f0:c0:02:0e:d9:c1:f8:8d:1d:6b:99:bd:ee:cf:b8:96:f2: 52:4e:a5:91:a0:54:21:1c:cd:df:38:da:7a:01:77:15:0c:4e: e3:bc:d4:8a:7c:0b:80:0e:f0:f5:5c:c3:62:96:9a:88:1c:ff: 3b:66:fd:3a:ca:c9:a8:6c:b3:f5:62:db:c4:8c:87:ad:71:cf: bd:87:c0:82:9f:85:c1:bb:a7:04:a3:70:04:c8:c1:e4:37:ce: da:1c:6a:6f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBl4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBCRTExMTAvBgNVBAUTKEFBMjFCNjkwQzFENjNDQkY0NDFBQTNCRDExN0VEOEI3 ODY4ODIyMjkwHhcNMjUxMjIwMjE1NjI1WhcNMjUxMjI3MjE1NjI1WjAYMRYwFAYD VQQDDA02OTQ3MWI4YS1kNDY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr+MyWvIvctqb66QP4JPooV7zjTS6FGEeeCDXsHI15xYspAX21LDfCv0sKNe9 Z9C7u0OzNOuOgiAJbkLqGyDiZG1HVC08Gy2QMe66UlUhFwznagN1cQTXGetneQhL 1qlWMg/W0MyyBKqU0e/+gvhzOyN6+t7EPe/dohKGaB9Hlz9bTSuWBs0cVKS5zIRs sMN5vrlRp20FzXIScQ2fRfj4V4FwqHgzbjQ1iDj3a9VR13qgGnnRRJh3pv+JyNZQ BL7DwqMAnoF3Cxe+AwXY8JB6GknhfCtA0jp5FNU+JA3nPyKbUXUwJWZgk3SpUs/k xaH4w2c0vTbpICfkSvz43nsEuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM61PceX gx8ptwYyvycJsfmK01y1MB8GA1UdIwQYMBaAFKohtpDB1jy/RBqjvRF+2LeGiCIp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEJFMS9FNDZGRjQ5MEFF MkIxMUVCOTU2MjdGODJDNEY5QUUwMi9xaUcya01IV1BMOUVHcU85RVg3WXQ0YUlJ aWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FpRzJrTUhXUEw5RUdxTzlFWDdZdDRhSUlpay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MEJFMS9FNDZGRjQ5MEFFMkIxMUVCOTU2MjdGODJDNEY5QUUwMi9xaUcya01IV1BM OUVHcU85RVg3WXQ0YUlJaWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfKCm5AYQYWzh4hsfpZ4cqiC/PJ98KxBHNBOrTrPKmwmuTTWytnERT 1kNcgLTGGip4oU9L5ibzGI86M63B99UZigUk5WsLxXpqfxm+6ilaeNeMXsq5+Q2+ DGcTuEw6wgDN5Pwnw3SOFWuZqnQAc933t2EdU3ib7KMu4UmqMXKeHX1/cyJbe2lx jGcu12FgZUGpeYaTABj8TLlA2iWZ9iUUcIxx8MACDtnB+I0da5m97s+4lvJSTqWR oFQhHM3fONp6AXcVDE7jvNSKfAuADvD1XMNilpqIHP87Zv06ysmobLP1YtvEjIet cc+9h8CCn4XBu6cEo3AEyMHkN87aHGpv -----END CERTIFICATE-----Generated at Sun Dec 21 22:56:28 2025 by rpki-client