This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5ED0/153A550A997311E8866F0060C4F9AE02/qVBr_Nym0SxcNyUDFHD30eBncFI.mft File: qVBr_Nym0SxcNyUDFHD30eBncFI.mft (raw, json) Hash identifier: nwNslWFQL2KFe7uMm6xY7bf2ZB74UTX5iK0JxCCFeW4= Subject key identifier: 59:00:14:9F:1E:1C:72:10:41:06:01:D4:AF:B1:1A:F8:FB:14:E0:E0 Authority key identifier: A9:50:6B:FC:DC:A6:D1:2C:5C:37:25:03:14:70:F7:D1:E0:67:70:52 Certificate issuer: /CN=A91C5ED0/serialNumber=A9506BFCDCA6D12C5C3725031470F7D1E0677052 Certificate serial: 13E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qVBr_Nym0SxcNyUDFHD30eBncFI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5ED0/153A550A997311E8866F0060C4F9AE02/qVBr_Nym0SxcNyUDFHD30eBncFI.mft Manifest number: 2AEA Signing time: Thu 18 Dec 2025 16:47:44 +0000 Manifest this update: Thu 18 Dec 2025 16:47:44 +0000 Manifest next update: Thu 25 Dec 2025 16:47:44 +0000 Files and hashes: 1: qVBr_Nym0SxcNyUDFHD30eBncFI.crl (hash: mhTQsL6hEDr7jZc7JjOqy788114sD9/05akDFst6WsY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5ED0/153A550A997311E8866F0060C4F9AE02/qVBr_Nym0SxcNyUDFHD30eBncFI.crl rsync://rpki.apnic.net/member_repository/A91C5ED0/153A550A997311E8866F0060C4F9AE02/qVBr_Nym0SxcNyUDFHD30eBncFI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qVBr_Nym0SxcNyUDFHD30eBncFI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 16:47:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5095 (0x13e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5ED0, serialNumber=A9506BFCDCA6D12C5C3725031470F7D1E0677052 Validity Not Before: Dec 18 16:47:44 2025 GMT Not After : Dec 25 16:47:44 2025 GMT Subject: CN=69443030-81d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:51:f6:f6:05:de:76:cc:2d:9a:61:e1:53:38: b2:5c:32:e8:e0:3c:ec:3b:41:9b:75:19:7c:de:c8: 11:6f:a6:1b:e4:63:66:22:df:a6:ce:fc:93:39:7a: 6f:ad:5c:cd:5c:10:0e:ea:8f:f2:d7:c6:fb:8a:f2: ab:48:b2:42:3a:ca:30:d9:8e:20:1c:6c:7d:b7:cf: 4e:f2:f6:c8:11:e7:36:87:61:91:fa:0b:7e:6b:48: 19:43:b1:fa:d2:93:8f:c7:d1:bb:ba:99:3f:da:18: ea:c1:b3:a7:de:9c:50:ae:f9:e8:11:3a:00:ca:a8: f5:0f:c1:ae:26:0d:59:27:24:26:70:a6:23:c5:55: bc:a2:4a:ca:d5:19:5d:42:24:45:68:9f:57:71:2d: 8b:15:8c:a2:70:3b:12:11:78:c1:0d:4e:90:1c:6b: 6d:77:f7:92:81:8b:c5:4a:1a:7f:9e:8b:58:73:ca: 60:a0:d5:95:91:08:eb:ef:8e:31:c0:f9:59:c5:d9: 3b:ff:24:79:bb:0a:1b:1a:97:c5:3c:3e:9c:72:65: a4:f2:8d:23:b5:a1:48:0c:9b:09:1f:7b:48:c2:b8: 6e:5d:66:a3:24:6c:0d:86:a7:70:4a:de:29:0a:b4: ac:62:ca:5d:ba:ff:fc:27:65:95:b7:e1:ab:26:1f: fe:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:00:14:9F:1E:1C:72:10:41:06:01:D4:AF:B1:1A:F8:FB:14:E0:E0 X509v3 Authority Key Identifier: keyid:A9:50:6B:FC:DC:A6:D1:2C:5C:37:25:03:14:70:F7:D1:E0:67:70:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5ED0/153A550A997311E8866F0060C4F9AE02/qVBr_Nym0SxcNyUDFHD30eBncFI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qVBr_Nym0SxcNyUDFHD30eBncFI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5ED0/153A550A997311E8866F0060C4F9AE02/qVBr_Nym0SxcNyUDFHD30eBncFI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:cf:61:7b:2f:8b:a5:e2:ab:63:e3:c0:c4:c7:61:ba:f8:b8: 7e:12:82:ad:46:29:74:1f:29:0d:56:5b:6c:36:a6:46:07:91: a9:dc:22:e5:1f:d6:32:06:bb:be:63:c0:0a:61:53:ee:9a:87: d6:ae:17:bd:d2:a5:58:15:6b:26:98:34:3a:13:0d:b8:b8:83: 2f:af:59:e6:18:b8:62:8f:da:0f:e3:04:24:f2:1e:66:33:76: 17:d9:d5:c3:b8:61:d8:e4:bc:ea:d9:2e:28:44:15:1a:f2:e4: 4a:fc:f7:4c:8d:3e:a8:69:55:92:51:ad:84:96:54:d5:d3:66: e6:ba:a7:73:a5:5d:1c:a1:ce:6a:32:4f:e1:6b:90:bc:a8:25: 10:93:77:5f:ec:68:a4:a4:3d:41:54:6e:2a:e2:88:43:65:52: f6:75:ca:4c:89:77:0b:48:1d:01:d6:09:46:ea:8e:c5:bd:74: bc:98:fd:7d:62:36:62:f0:bc:a7:0f:f9:27:36:b2:e0:4d:ce: c5:22:93:07:91:70:84:4f:07:3e:53:30:17:8b:90:b5:ff:23: 4f:dd:b5:17:f8:53:94:55:b0:8b:ef:0e:22:7c:22:9d:a7:09: fc:75:d3:b4:d0:2b:c2:2f:12:91:ed:2c:1c:65:60:ac:5f:82: 28:49:80:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE+cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzVFRDAxMTAvBgNVBAUTKEE5NTA2QkZDRENBNkQxMkM1QzM3MjUwMzE0NzBGN0Qx RTA2NzcwNTIwHhcNMjUxMjE4MTY0NzQ0WhcNMjUxMjI1MTY0NzQ0WjAYMRYwFAYD VQQDDA02OTQ0MzAzMC04MWQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA81H29gXedswtmmHhUziyXDLo4DzsO0GbdRl83sgRb6Yb5GNmIt+mzvyTOXpv rVzNXBAO6o/y18b7ivKrSLJCOsow2Y4gHGx9t89O8vbIEec2h2GR+gt+a0gZQ7H6 0pOPx9G7upk/2hjqwbOn3pxQrvnoEToAyqj1D8GuJg1ZJyQmcKYjxVW8okrK1Rld QiRFaJ9XcS2LFYyicDsSEXjBDU6QHGttd/eSgYvFShp/notYc8pgoNWVkQjr744x wPlZxdk7/yR5uwobGpfFPD6ccmWk8o0jtaFIDJsJH3tIwrhuXWajJGwNhqdwSt4p CrSsYspduv/8J2WVt+GrJh/+NQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFkAFJ8e HHIQQQYB1K+xGvj7FODgMB8GA1UdIwQYMBaAFKlQa/zcptEsXDclAxRw99HgZ3BS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNUVEMC8xNTNBNTUwQTk5 NzMxMUU4ODY2RjAwNjBDNEY5QUUwMi9xVkJyX055bTBTeGNOeVVERkhEMzBlQm5j RkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FWQnJfTnltMFN4Y055VURGSEQzMGVCbmNGSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NUVEMC8xNTNBNTUwQTk5NzMxMUU4ODY2RjAwNjBDNEY5QUUwMi9xVkJyX055bTBT eGNOeVVERkhEMzBlQm5jRkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8z2F7L4ul4qtj48DEx2G6+Lh+EoKtRil0HykNVltsNqZGB5Gp3CLl H9YyBru+Y8AKYVPumofWrhe90qVYFWsmmDQ6Ew24uIMvr1nmGLhij9oP4wQk8h5m M3YX2dXDuGHY5Lzq2S4oRBUa8uRK/PdMjT6oaVWSUa2EllTV02bmuqdzpV0coc5q Mk/ha5C8qCUQk3df7GikpD1BVG4q4ohDZVL2dcpMiXcLSB0B1glG6o7FvXS8mP19 YjZi8LynD/knNrLgTc7FIpMHkXCETwc+UzAXi5C1/yNP3bUX+FOUVbCL7w4ifCKd pwn8ddO00CvCLxKR7SwcZWCsX4IoSYDR -----END CERTIFICATE-----Generated at Fri Dec 19 23:57:39 2025 by rpki-client