This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.mft File: QNueLLrezam5cjUQIVB63NGlYn8.mft (raw, json) Hash identifier: isj2kfYY8FDJ1Rt52WbJRJZNPquYrwqH4y+TWkqRXTc= Subject key identifier: AE:27:9C:EE:E9:81:D1:45:3A:A1:BF:CE:0F:3D:35:F1:EB:D0:DD:D3 Authority key identifier: 40:DB:9E:2C:BA:DE:CD:A9:B9:72:35:10:21:50:7A:DC:D1:A5:62:7F Certificate issuer: /CN=A91C8B4F/serialNumber=40DB9E2CBADECDA9B972351021507ADCD1A5627F Certificate serial: 0498 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QNueLLrezam5cjUQIVB63NGlYn8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.mft Manifest number: 048D Signing time: Tue 30 Dec 2025 23:13:48 +0000 Manifest this update: Tue 30 Dec 2025 23:13:47 +0000 Manifest next update: Tue 06 Jan 2026 23:13:47 +0000 Files and hashes: 1: QNueLLrezam5cjUQIVB63NGlYn8.crl (hash: kNl4lmVQA2vcLwto97C3g0CKzo1A0QogyLCXEAp8f1w=) 2: 18E79956BAA811ECB07DA44BC4F9AE02.roa (hash: C2+RZmYoetqMpTEvEp2UgZ/k5COwbQ6X5aMLB79x36Q=) 3: 43540B7A0EE311EF9E24862BC4F9AE02.roa (hash: mV4y857QRPSQMJQogVNfC/t4weo9OVDbm55M2NQZyIc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.crl rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QNueLLrezam5cjUQIVB63NGlYn8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 06 Jan 2026 23:13:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1176 (0x498) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8B4F, serialNumber=40DB9E2CBADECDA9B972351021507ADCD1A5627F Validity Not Before: Dec 30 23:13:47 2025 GMT Not After : Jan 6 23:13:47 2026 GMT Subject: CN=69545cac-8a4a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:7b:e9:b5:45:ee:d2:c5:76:9b:69:87:0f:e5: 75:2c:9d:93:85:89:bb:d9:af:e8:9f:42:2a:87:10: 4e:4f:c1:aa:d5:a7:21:0d:5e:e5:b6:26:be:9b:b0: cb:f1:e9:a9:24:ee:4f:01:ed:6f:d4:67:1b:13:ee: 94:24:94:50:e2:4b:39:45:80:fa:38:bd:19:e4:60: ab:e2:f8:4c:e3:ff:28:de:9b:e9:17:41:05:ea:41: a6:c0:95:03:30:7d:26:35:7e:38:f6:d0:63:c0:f8: af:9f:d0:ed:12:ec:43:cf:b7:1b:a9:37:59:db:e0: 3f:62:60:c5:e0:2e:cf:e2:c8:63:7a:c4:d4:42:2c: e6:ca:46:00:ff:f3:e5:40:5e:f7:52:e0:69:45:7e: b4:11:80:c4:47:e1:9c:ef:ab:fe:fa:cb:3d:9d:8a: 8b:66:98:25:da:b6:ce:7f:9a:8e:fa:49:15:c8:57: 73:bd:79:73:ad:6e:02:b6:df:8f:df:2e:e7:10:9f: 35:ed:1b:cc:fa:3a:d0:fc:1f:b3:37:ca:c8:06:ac: 6c:f3:4f:c4:1d:aa:9e:3c:1d:9f:60:5e:39:d6:57: bd:86:fd:58:c4:43:83:27:3c:c0:27:03:0e:4d:61: c4:38:a0:0a:63:bf:f8:24:5a:2d:14:33:9f:95:15: 61:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:27:9C:EE:E9:81:D1:45:3A:A1:BF:CE:0F:3D:35:F1:EB:D0:DD:D3 X509v3 Authority Key Identifier: keyid:40:DB:9E:2C:BA:DE:CD:A9:B9:72:35:10:21:50:7A:DC:D1:A5:62:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QNueLLrezam5cjUQIVB63NGlYn8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:4a:96:63:2f:13:dd:81:f6:fd:06:86:e4:f1:1f:d2:3b:cc: ac:c8:e8:d0:1a:f5:cf:9e:88:29:9d:95:e7:df:c3:c3:e4:7e: 54:5d:25:32:cc:d0:6e:3b:39:4a:b6:5b:b0:a7:1c:54:b4:c2: a7:6f:69:e4:4f:f6:57:08:0f:e2:9e:31:e7:79:51:c6:9e:6e: b7:92:7a:0c:86:f4:ca:37:95:43:9a:3d:f5:2c:38:fd:51:d5: 7f:66:03:f7:11:43:4d:3a:e3:62:82:2d:29:96:f2:51:cc:79: 78:82:72:7f:d8:1d:da:e7:97:29:6b:6b:a5:83:27:3a:2e:9a: b5:4d:43:fa:45:37:30:c6:21:55:c6:28:60:de:ad:79:5a:04: 1b:aa:78:b6:b5:c8:12:da:80:84:f1:52:88:eb:bc:75:13:60: 47:66:e6:31:69:71:70:c2:68:df:3f:ee:94:e0:1a:35:c9:f4: 92:ac:92:51:1b:3e:3a:13:04:f5:c0:64:5c:b1:f5:9c:00:41: 8e:a6:6c:f2:23:7b:53:e0:e7:0c:02:69:44:ec:e9:a6:86:c9: 8c:68:99:96:88:ca:0a:b2:99:99:cd:7d:95:dc:bf:a7:ae:0a: 31:33:9f:38:b2:f4:60:d6:99:32:32:f0:6b:b3:1e:1a:5d:d3: fb:a7:0a:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBJgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhCNEYxMTAvBgNVBAUTKDQwREI5RTJDQkFERUNEQTlCOTcyMzUxMDIxNTA3QURD RDFBNTYyN0YwHhcNMjUxMjMwMjMxMzQ3WhcNMjYwMTA2MjMxMzQ3WjAYMRYwFAYD VQQDDA02OTU0NWNhYy04YTRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsHvptUXu0sV2m2mHD+V1LJ2ThYm72a/on0IqhxBOT8Gq1achDV7ltia+m7DL 8empJO5PAe1v1GcbE+6UJJRQ4ks5RYD6OL0Z5GCr4vhM4/8o3pvpF0EF6kGmwJUD MH0mNX449tBjwPivn9DtEuxDz7cbqTdZ2+A/YmDF4C7P4shjesTUQizmykYA//Pl QF73UuBpRX60EYDER+Gc76v++ss9nYqLZpgl2rbOf5qO+kkVyFdzvXlzrW4Ctt+P 3y7nEJ817RvM+jrQ/B+zN8rIBqxs80/EHaqePB2fYF451le9hv1YxEODJzzAJwMO TWHEOKAKY7/4JFotFDOflRVhhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK4nnO7p gdFFOqG/zg89NfHr0N3TMB8GA1UdIwQYMBaAFEDbniy63s2puXI1ECFQetzRpWJ/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEI0Ri9ERDczMjY0ODY4 QkMxMUVDODc4MDc5NDhDNEY5QUUwMi9RTnVlTExyZXphbTVjalVRSVZCNjNOR2xZ bjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FOdWVMTHJlemFtNWNqVVFJVkI2M05HbFluOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OEI0Ri9ERDczMjY0ODY4QkMxMUVDODc4MDc5NDhDNEY5QUUwMi9RTnVlTExyZXph bTVjalVRSVZCNjNOR2xZbjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBpSpZjLxPdgfb9Bobk8R/SO8ysyOjQGvXPnogpnZXn38PD5H5UXSUy zNBuOzlKtluwpxxUtMKnb2nkT/ZXCA/injHneVHGnm63knoMhvTKN5VDmj31LDj9 UdV/ZgP3EUNNOuNigi0plvJRzHl4gnJ/2B3a55cpa2ulgyc6Lpq1TUP6RTcwxiFV xihg3q15WgQbqni2tcgS2oCE8VKI67x1E2BHZuYxaXFwwmjfP+6U4Bo1yfSSrJJR Gz46EwT1wGRcsfWcAEGOpmzyI3tT4OcMAmlE7OmmhsmMaJmWiMoKspmZzX2V3L+n rgoxM584svRg1pkyMvBrsx4aXdP7pwoA -----END CERTIFICATE-----Generated at Wed Dec 31 07:58:57 2025 by rpki-client