This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.mft File: QNueLLrezam5cjUQIVB63NGlYn8.mft (raw, json) Hash identifier: nlOwZIdOMTPdWPuG3ILx2o8U1rAkKPVqWRVp09ROaeM= Subject key identifier: D8:8E:AB:FF:78:01:5E:DA:EA:B6:FA:93:BC:83:B3:3F:EA:EF:31:28 Authority key identifier: 40:DB:9E:2C:BA:DE:CD:A9:B9:72:35:10:21:50:7A:DC:D1:A5:62:7F Certificate issuer: /CN=A91C8B4F/serialNumber=40DB9E2CBADECDA9B972351021507ADCD1A5627F Certificate serial: 0493 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QNueLLrezam5cjUQIVB63NGlYn8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.mft Manifest number: 0488 Signing time: Sat 20 Dec 2025 23:20:27 +0000 Manifest this update: Sat 20 Dec 2025 23:20:27 +0000 Manifest next update: Sat 27 Dec 2025 23:20:27 +0000 Files and hashes: 1: QNueLLrezam5cjUQIVB63NGlYn8.crl (hash: vxihGcvLgmqqKNGAoCbiPwsPs07KFS+3IBSceGr7Sw8=) 2: 43540B7A0EE311EF9E24862BC4F9AE02.roa (hash: mV4y857QRPSQMJQogVNfC/t4weo9OVDbm55M2NQZyIc=) 3: 18E79956BAA811ECB07DA44BC4F9AE02.roa (hash: C2+RZmYoetqMpTEvEp2UgZ/k5COwbQ6X5aMLB79x36Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.crl rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QNueLLrezam5cjUQIVB63NGlYn8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 23:20:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1171 (0x493) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8B4F, serialNumber=40DB9E2CBADECDA9B972351021507ADCD1A5627F Validity Not Before: Dec 20 23:20:27 2025 GMT Not After : Dec 27 23:20:27 2025 GMT Subject: CN=69472f3b-5ee3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fc:7f:8d:c1:bf:04:c8:d4:9a:52:16:42:5b:9e: 30:e6:9d:8e:65:b5:d7:ec:2f:31:6a:8b:97:ad:73: 63:ac:6f:c5:96:a4:ea:e9:01:75:83:a5:2b:66:f9: 65:ec:0b:38:2b:12:60:dd:05:39:4d:c9:10:bb:a3: 2f:93:f6:79:09:6e:e7:40:63:5e:3b:cf:70:23:ee: ab:8c:12:1e:ae:75:14:44:55:fe:30:25:cb:b4:74: 36:2a:d0:d7:ed:31:21:cf:60:a5:8d:41:25:a0:6a: 3b:90:3c:dc:eb:ba:cc:6d:f3:d0:42:94:84:03:d6: fd:4b:10:d6:af:7f:42:29:a3:a1:61:25:d0:41:8c: 66:a3:3c:bf:75:17:f8:27:8a:e5:52:98:dd:15:c6: 41:c7:59:90:51:22:68:07:1c:b2:e2:f6:7c:0e:29: 48:d9:22:9e:b3:90:60:f4:0e:d5:f8:10:c0:01:37: 4a:6f:97:3c:88:97:06:ef:ab:d0:fd:a4:1f:ea:3b: 9d:8a:87:67:f0:bb:04:34:89:e5:e5:7b:16:78:d8: e6:90:71:19:47:b5:f6:27:47:90:37:60:3c:9d:bc: 5b:f3:69:f5:14:e2:5f:18:7f:f5:1f:19:86:40:36: 21:73:b1:4b:20:39:c7:e5:63:68:64:0a:99:35:9c: e4:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:8E:AB:FF:78:01:5E:DA:EA:B6:FA:93:BC:83:B3:3F:EA:EF:31:28 X509v3 Authority Key Identifier: keyid:40:DB:9E:2C:BA:DE:CD:A9:B9:72:35:10:21:50:7A:DC:D1:A5:62:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QNueLLrezam5cjUQIVB63NGlYn8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:03:26:54:da:c9:78:9b:07:57:5d:be:43:d7:b1:7e:28:69: 0a:4b:f7:d5:1a:b4:54:19:9c:b3:e1:19:7c:64:71:1c:89:55: b7:50:48:06:aa:3f:d4:d2:b7:e1:08:5d:1d:d1:64:67:35:c0: 3d:01:dd:6d:f4:5c:bc:00:81:ec:49:4e:97:0d:9b:a5:14:ba: c6:a3:db:f8:c8:9c:d5:ba:ef:81:7e:87:fb:66:d4:ba:9a:c6: d2:ec:1c:24:cd:2f:d7:15:d4:55:c8:12:10:cc:9c:82:8e:9d: ec:d4:13:7a:38:88:27:44:d8:f2:ec:2a:c2:47:b4:4f:58:5b: 6e:94:5d:08:67:24:f3:9b:6b:98:43:10:66:f2:0a:11:f3:6a: d1:38:e0:c2:b9:08:b4:5f:2b:07:3a:af:0f:30:42:45:d4:09: d7:a0:bd:af:bc:0c:e7:b3:d3:c1:80:2a:fb:4c:5f:dc:e7:6b: fa:0b:ff:87:0f:18:a9:76:a8:56:e3:7d:7c:df:7d:1d:b0:ce: 76:b4:37:6c:9e:bf:97:0a:90:d4:45:7f:e6:2b:72:75:94:0b: f5:ce:1e:37:b6:db:3f:fe:19:85:7a:99:9b:b3:43:90:37:37: 85:a4:ac:34:f7:40:0c:58:74:d9:d7:b3:58:41:86:76:e9:51: e6:b0:a5:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBJMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhCNEYxMTAvBgNVBAUTKDQwREI5RTJDQkFERUNEQTlCOTcyMzUxMDIxNTA3QURD RDFBNTYyN0YwHhcNMjUxMjIwMjMyMDI3WhcNMjUxMjI3MjMyMDI3WjAYMRYwFAYD VQQDDA02OTQ3MmYzYi01ZWUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA/H+Nwb8EyNSaUhZCW54w5p2OZbXX7C8xaouXrXNjrG/FlqTq6QF1g6UrZvll 7As4KxJg3QU5TckQu6Mvk/Z5CW7nQGNeO89wI+6rjBIernUURFX+MCXLtHQ2KtDX 7TEhz2CljUEloGo7kDzc67rMbfPQQpSEA9b9SxDWr39CKaOhYSXQQYxmozy/dRf4 J4rlUpjdFcZBx1mQUSJoBxyy4vZ8DilI2SKes5Bg9A7V+BDAATdKb5c8iJcG76vQ /aQf6judiodn8LsENInl5XsWeNjmkHEZR7X2J0eQN2A8nbxb82n1FOJfGH/1HxmG QDYhc7FLIDnH5WNoZAqZNZzk3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNiOq/94 AV7a6rb6k7yDsz/q7zEoMB8GA1UdIwQYMBaAFEDbniy63s2puXI1ECFQetzRpWJ/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEI0Ri9ERDczMjY0ODY4 QkMxMUVDODc4MDc5NDhDNEY5QUUwMi9RTnVlTExyZXphbTVjalVRSVZCNjNOR2xZ bjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FOdWVMTHJlemFtNWNqVVFJVkI2M05HbFluOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OEI0Ri9ERDczMjY0ODY4QkMxMUVDODc4MDc5NDhDNEY5QUUwMi9RTnVlTExyZXph bTVjalVRSVZCNjNOR2xZbjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9AyZU2sl4mwdXXb5D17F+KGkKS/fVGrRUGZyz4Rl8ZHEciVW3UEgG qj/U0rfhCF0d0WRnNcA9Ad1t9Fy8AIHsSU6XDZulFLrGo9v4yJzVuu+Bfof7ZtS6 msbS7BwkzS/XFdRVyBIQzJyCjp3s1BN6OIgnRNjy7CrCR7RPWFtulF0IZyTzm2uY QxBm8goR82rROODCuQi0XysHOq8PMEJF1AnXoL2vvAzns9PBgCr7TF/c52v6C/+H DxipdqhW4318330dsM52tDdsnr+XCpDURX/mK3J1lAv1zh43tts//hmFepmbs0OQ NzeFpKw090AMWHTZ17NYQYZ26VHmsKWd -----END CERTIFICATE-----Generated at Sun Dec 21 06:44:25 2025 by rpki-client