This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5ED0/153A550A997311E8866F0060C4F9AE02/qVBr_Nym0SxcNyUDFHD30eBncFI.mft File: qVBr_Nym0SxcNyUDFHD30eBncFI.mft (raw, json) Hash identifier: hvUlrimudwl6exskRWdMXlmIUluqFpZrYfRQ1NFqIbk= Subject key identifier: F5:A6:03:4C:1C:8D:0E:23:1E:8A:52:B6:C1:87:BF:CE:A9:CB:CE:DC Authority key identifier: A9:50:6B:FC:DC:A6:D1:2C:5C:37:25:03:14:70:F7:D1:E0:67:70:52 Certificate issuer: /CN=A91C5ED0/serialNumber=A9506BFCDCA6D12C5C3725031470F7D1E0677052 Certificate serial: 13EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qVBr_Nym0SxcNyUDFHD30eBncFI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5ED0/153A550A997311E8866F0060C4F9AE02/qVBr_Nym0SxcNyUDFHD30eBncFI.mft Manifest number: 2AF9 Signing time: Sun 28 Dec 2025 16:39:55 +0000 Manifest this update: Sun 28 Dec 2025 16:39:55 +0000 Manifest next update: Sun 04 Jan 2026 16:39:55 +0000 Files and hashes: 1: qVBr_Nym0SxcNyUDFHD30eBncFI.crl (hash: B4rq25hqQBlwnnp4lQKj8r+GJTbt+HLmpktUyAjf3fU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5ED0/153A550A997311E8866F0060C4F9AE02/qVBr_Nym0SxcNyUDFHD30eBncFI.crl rsync://rpki.apnic.net/member_repository/A91C5ED0/153A550A997311E8866F0060C4F9AE02/qVBr_Nym0SxcNyUDFHD30eBncFI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qVBr_Nym0SxcNyUDFHD30eBncFI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 Jan 2026 16:39:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5100 (0x13ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5ED0, serialNumber=A9506BFCDCA6D12C5C3725031470F7D1E0677052 Validity Not Before: Dec 28 16:39:55 2025 GMT Not After : Jan 4 16:39:55 2026 GMT Subject: CN=69515d5b-325f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:9d:ba:b1:15:7e:99:ca:68:4d:d0:d9:2b:2c: 09:00:05:b9:fa:ca:cd:b3:9f:d1:09:f9:aa:1e:1e: 25:bd:ab:36:a3:e8:3f:99:9e:c6:2f:6b:0a:c1:ba: 05:f8:55:88:c8:3f:c3:8f:06:2a:27:d0:1d:46:da: b9:2e:f7:27:e5:48:9f:8e:6e:c3:88:85:98:36:d6: f3:81:bc:14:eb:57:45:1b:8a:7f:a1:36:ab:d4:ec: 00:6b:60:fe:72:cc:48:00:8c:59:e7:f4:6f:37:47: e0:d1:87:12:92:54:ed:d4:6d:d6:63:81:92:f1:80: 0c:9a:bd:e9:45:16:1e:27:b5:72:76:1a:55:0f:e3: ad:39:32:ba:25:31:b0:53:68:64:6c:77:4d:59:64: 89:45:f5:1e:e5:c8:de:0a:7d:04:5e:3f:35:05:ee: 48:66:a4:ec:50:45:7d:76:ed:ea:52:0e:b3:10:e4: f7:94:67:3c:9a:a4:90:31:8c:87:e8:4b:77:32:3e: 38:30:70:3e:4c:ec:fe:de:51:ae:53:42:fb:89:50: e8:7e:0a:6a:d6:bd:f3:ff:6e:4b:64:63:80:92:e6: 83:f6:76:25:14:3f:c6:ae:d6:f1:db:e6:9f:33:4a: da:39:7a:3d:bd:89:74:c5:4e:0b:f6:13:b8:e4:6b: d2:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:A6:03:4C:1C:8D:0E:23:1E:8A:52:B6:C1:87:BF:CE:A9:CB:CE:DC X509v3 Authority Key Identifier: keyid:A9:50:6B:FC:DC:A6:D1:2C:5C:37:25:03:14:70:F7:D1:E0:67:70:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5ED0/153A550A997311E8866F0060C4F9AE02/qVBr_Nym0SxcNyUDFHD30eBncFI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qVBr_Nym0SxcNyUDFHD30eBncFI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5ED0/153A550A997311E8866F0060C4F9AE02/qVBr_Nym0SxcNyUDFHD30eBncFI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:c2:56:fa:1f:4d:41:27:84:1b:fb:ba:9d:0c:a9:bb:2c:93: b5:f4:01:a5:b0:ee:7e:63:71:09:55:75:5a:b5:eb:da:8d:e2: 08:91:9e:5e:0b:1e:bb:dd:e2:cd:ba:1e:59:da:c1:9f:69:6b: d6:b2:a0:34:19:b0:51:20:23:66:3e:83:df:ca:d7:ee:fd:93: fb:48:94:47:42:78:d3:36:7f:4a:dc:55:be:eb:e4:90:00:8f: e6:fa:fe:2b:fc:0a:8d:23:0b:4b:ab:3a:e7:f7:3e:2a:4a:ea: c4:45:97:36:51:fc:95:b2:11:7f:ad:d3:14:ca:41:ff:c7:99: c0:2e:8c:45:9c:f4:2e:60:0f:72:0f:81:82:ae:55:4a:e9:35: 44:bb:c5:a9:e8:c2:6e:c3:9c:09:46:3d:55:e7:ae:57:86:29: 62:ea:64:dc:46:b6:67:72:94:73:d4:cb:4d:ca:c1:10:ba:a1: e0:f3:04:be:b1:8c:25:b4:62:64:a0:bb:fb:fe:47:c2:a4:e5: 6c:a7:44:11:30:55:41:9b:85:35:a2:98:53:9a:45:e8:0c:64: f9:f6:42:92:5f:80:8c:d9:87:6e:c4:95:f8:43:52:3c:ec:87: f4:13:3d:a9:7c:ce:c9:1e:95:30:1d:c6:d6:cc:0e:10:12:74: 6f:b8:fa:16 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE+wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzVFRDAxMTAvBgNVBAUTKEE5NTA2QkZDRENBNkQxMkM1QzM3MjUwMzE0NzBGN0Qx RTA2NzcwNTIwHhcNMjUxMjI4MTYzOTU1WhcNMjYwMTA0MTYzOTU1WjAYMRYwFAYD VQQDDA02OTUxNWQ1Yi0zMjVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsZ26sRV+mcpoTdDZKywJAAW5+srNs5/RCfmqHh4lvas2o+g/mZ7GL2sKwboF +FWIyD/DjwYqJ9AdRtq5Lvcn5Uifjm7DiIWYNtbzgbwU61dFG4p/oTar1OwAa2D+ csxIAIxZ5/RvN0fg0YcSklTt1G3WY4GS8YAMmr3pRRYeJ7VydhpVD+OtOTK6JTGw U2hkbHdNWWSJRfUe5cjeCn0EXj81Be5IZqTsUEV9du3qUg6zEOT3lGc8mqSQMYyH 6Et3Mj44MHA+TOz+3lGuU0L7iVDofgpq1r3z/25LZGOAkuaD9nYlFD/Grtbx2+af M0raOXo9vYl0xU4L9hO45GvStwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPWmA0wc jQ4jHopStsGHv86py87cMB8GA1UdIwQYMBaAFKlQa/zcptEsXDclAxRw99HgZ3BS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNUVEMC8xNTNBNTUwQTk5 NzMxMUU4ODY2RjAwNjBDNEY5QUUwMi9xVkJyX055bTBTeGNOeVVERkhEMzBlQm5j RkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FWQnJfTnltMFN4Y055VURGSEQzMGVCbmNGSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NUVEMC8xNTNBNTUwQTk5NzMxMUU4ODY2RjAwNjBDNEY5QUUwMi9xVkJyX055bTBT eGNOeVVERkhEMzBlQm5jRkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKwlb6H01BJ4Qb+7qdDKm7LJO19AGlsO5+Y3EJVXVatevajeIIkZ5e Cx673eLNuh5Z2sGfaWvWsqA0GbBRICNmPoPfytfu/ZP7SJRHQnjTNn9K3FW+6+SQ AI/m+v4r/AqNIwtLqzrn9z4qSurERZc2UfyVshF/rdMUykH/x5nALoxFnPQuYA9y D4GCrlVK6TVEu8Wp6MJuw5wJRj1V565Xhili6mTcRrZncpRz1MtNysEQuqHg8wS+ sYwltGJkoLv7/kfCpOVsp0QRMFVBm4U1ophTmkXoDGT59kKSX4CM2YduxJX4Q1I8 7If0Ez2pfM7JHpUwHcbWzA4QEnRvuPoW -----END CERTIFICATE-----Generated at Tue Dec 30 07:17:35 2025 by rpki-client