This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7E5B/D84E7BF23C6E11F09D76A24DC4F9AE02/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.mft File: q1PZkoECuRnbfFRlyN1f8mZ0Q7M.mft (raw, json) Hash identifier: c72jJ2VvQtaSMTWI0lRgLEN2NaOJcpfu3w4HbLoQU94= Subject key identifier: 54:72:55:9E:81:C3:26:37:95:9E:6B:EA:3E:C9:FD:52:BD:17:2B:E1 Authority key identifier: AB:53:D9:92:81:02:B9:19:DB:7C:54:65:C8:DD:5F:F2:66:74:43:B3 Certificate issuer: /CN=A91C7E5B/serialNumber=AB53D9928102B919DB7C5465C8DD5FF2667443B3 Certificate serial: 75 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7E5B/D84E7BF23C6E11F09D76A24DC4F9AE02/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.mft Manifest number: 70 Signing time: Fri 19 Dec 2025 05:58:14 +0000 Manifest this update: Fri 19 Dec 2025 05:58:13 +0000 Manifest next update: Fri 26 Dec 2025 05:58:13 +0000 Files and hashes: 1: q1PZkoECuRnbfFRlyN1f8mZ0Q7M.crl (hash: 7JaXsi10ehqxXHCyU/nJFEuMQ9jgGw3uEgN6fZpKH0I=) 2: 35CA66BABC2111F0A08A6F79C4F9AE02.roa (hash: rpmrXdQJLd8mWrJCCVBclKAPg3Mu6Bj/cHb9ZSARUHQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7E5B/D84E7BF23C6E11F09D76A24DC4F9AE02/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.crl rsync://rpki.apnic.net/member_repository/A91C7E5B/D84E7BF23C6E11F09D76A24DC4F9AE02/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 05:58:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 117 (0x75) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7E5B, serialNumber=AB53D9928102B919DB7C5465C8DD5FF2667443B3 Validity Not Before: Dec 19 05:58:13 2025 GMT Not After : Dec 26 05:58:13 2025 GMT Subject: CN=6944e976-ce7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:07:03:de:0c:bc:15:29:4d:84:c1:34:95:be: 92:ec:65:1b:2a:e5:6b:5a:d1:57:fc:ba:26:fb:51: 01:b7:97:29:d0:bc:7f:24:0e:7e:d9:b7:a8:8e:93: 7f:51:2f:f6:b7:58:3b:90:8b:c9:8f:18:68:64:ea: 4a:32:5f:ea:4a:d4:21:56:3e:89:8e:67:2d:ae:60: d8:95:41:75:f0:ff:f6:1d:83:69:2b:80:9e:13:90: 52:35:23:0f:42:ba:d6:21:8c:9b:57:65:83:e2:fe: 9b:d1:c8:a9:61:c0:f1:b3:11:d4:65:70:8e:fd:31: 5e:33:d5:b2:c5:90:b3:34:a7:9f:f1:e4:92:2e:91: 11:30:32:5d:04:11:ac:53:6d:b3:c8:42:9f:38:88: fc:f6:86:36:87:be:a8:9a:fb:9b:4d:5a:19:bf:77: 54:37:c1:81:73:7a:82:46:fa:ad:7b:a5:4b:da:ab: f6:28:d8:54:dc:fe:7b:a9:a0:1f:a9:5b:23:e7:b1: 7a:90:88:21:03:ef:ab:9d:e5:9d:cb:28:1c:95:9f: ca:f3:24:94:85:41:58:7e:39:61:d9:7e:fd:78:44: 2b:67:2c:3d:82:82:ef:ab:44:cc:3a:39:f1:23:7f: 2e:a0:56:73:99:a3:24:27:9b:ea:f2:79:05:c3:28: cc:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:72:55:9E:81:C3:26:37:95:9E:6B:EA:3E:C9:FD:52:BD:17:2B:E1 X509v3 Authority Key Identifier: keyid:AB:53:D9:92:81:02:B9:19:DB:7C:54:65:C8:DD:5F:F2:66:74:43:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7E5B/D84E7BF23C6E11F09D76A24DC4F9AE02/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7E5B/D84E7BF23C6E11F09D76A24DC4F9AE02/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:3b:7c:08:ca:3f:f7:da:c0:2b:1f:53:9b:e6:d9:83:0d:bf: 01:b1:c7:ad:a8:dc:45:23:45:5f:fa:96:93:47:5d:15:87:ee: 38:fa:46:5f:ce:6c:d7:73:c7:ad:7e:68:64:14:6e:8a:43:41: 22:27:48:e9:60:4e:41:89:23:e3:e9:eb:00:92:f0:09:f7:0d: c8:c6:4d:a3:cd:12:5c:f2:b5:f4:2e:de:5c:32:9f:74:fc:d5: e9:09:b2:9f:a1:7e:2e:e0:8d:b2:ae:63:10:df:16:16:e0:2c: 7c:2e:5c:14:8c:51:cc:38:97:69:ed:12:3f:b5:50:04:3e:a1: df:1e:19:4c:3c:64:af:ad:6b:2c:82:c8:c9:d2:d0:d0:eb:41: a6:03:1f:53:d6:83:6b:68:75:80:52:23:ca:97:cd:d5:fd:64: a5:41:41:fe:b6:50:9c:7c:8c:7e:a1:b1:c2:0f:b3:bd:f7:22: ea:ee:17:bd:a9:45:66:45:ff:5f:63:13:8e:74:1c:1c:df:59: a2:80:29:b7:f3:8e:92:ce:40:9a:8f:2c:36:da:0c:40:69:0d: 5c:f9:17:05:be:99:b8:49:1c:b7:a9:0f:81:be:df:6f:0c:76: f7:a1:e3:14:1f:e7:9a:5f:fd:d3:a6:97:5c:b9:0a:6f:23:38: 52:78:cf:ad -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD N0U1QjExMC8GA1UEBRMoQUI1M0Q5OTI4MTAyQjkxOURCN0M1NDY1QzhERDVGRjI2 Njc0NDNCMzAeFw0yNTEyMTkwNTU4MTNaFw0yNTEyMjYwNTU4MTNaMBgxFjAUBgNV BAMMDTY5NDRlOTc2LWNlN2IwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQChBwPeDLwVKU2EwTSVvpLsZRsq5Wta0Vf8uib7UQG3lynQvH8kDn7Zt6iOk39R L/a3WDuQi8mPGGhk6koyX+pK1CFWPomOZy2uYNiVQXXw//Ydg2krgJ4TkFI1Iw9C utYhjJtXZYPi/pvRyKlhwPGzEdRlcI79MV4z1bLFkLM0p5/x5JIukREwMl0EEaxT bbPIQp84iPz2hjaHvqia+5tNWhm/d1Q3wYFzeoJG+q17pUvaq/Yo2FTc/nupoB+p WyPnsXqQiCED76ud5Z3LKByVn8rzJJSFQVh+OWHZfv14RCtnLD2Cgu+rRMw6OfEj fy6gVnOZoyQnm+ryeQXDKMz/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUVHJVnoHD JjeVnmvqPsn9Ur0XK+EwHwYDVR0jBBgwFoAUq1PZkoECuRnbfFRlyN1f8mZ0Q7Mw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM3RTVCL0Q4NEU3QkYyM0M2 RTExRjA5RDc2QTI0REM0RjlBRTAyL3ExUFprb0VDdVJuYmZGUmx5TjFmOG1aMFE3 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvcTFQWmtvRUN1Um5iZkZSbHlOMWY4bVowUTdNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM3 RTVCL0Q4NEU3QkYyM0M2RTExRjA5RDc2QTI0REM0RjlBRTAyL3ExUFprb0VDdVJu YmZGUmx5TjFmOG1aMFE3TS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJg7fAjKP/fawCsfU5vm2YMNvwGxx62o3EUjRV/6lpNHXRWH7jj6Rl/O bNdzx61+aGQUbopDQSInSOlgTkGJI+Pp6wCS8An3DcjGTaPNElzytfQu3lwyn3T8 1ekJsp+hfi7gjbKuYxDfFhbgLHwuXBSMUcw4l2ntEj+1UAQ+od8eGUw8ZK+tayyC yMnS0NDrQaYDH1PWg2todYBSI8qXzdX9ZKVBQf62UJx8jH6hscIPs733IuruF72p RWZF/19jE450HBzfWaKAKbfzjpLOQJqPLDbaDEBpDVz5FwW+mbhJHLepD4G+328M dveh4xQf55pf/dOml1y5Cm8jOFJ4z60= -----END CERTIFICATE-----Generated at Sat Dec 20 03:35:42 2025 by rpki-client