This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1E4C/7DADA56CD94D11EAA604AC53C4F9AE02/q2foL8hqrKgqz_jcNkXNcWEBP3Y.mft File: q2foL8hqrKgqz_jcNkXNcWEBP3Y.mft (raw, json) Hash identifier: lkTH3fiNiyrekZip9mR4GCkgdrJfpLHaE0ly2ORrqkg= Subject key identifier: AB:EF:C5:74:41:63:90:F5:7C:3C:D8:2D:71:60:92:B5:68:9F:27:57 Authority key identifier: AB:67:E8:2F:C8:6A:AC:A8:2A:CF:F8:DC:36:45:CD:71:61:01:3F:76 Certificate issuer: /CN=A91D1E4C/serialNumber=AB67E82FC86AACA82ACFF8DC3645CD7161013F76 Certificate serial: 0363 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2foL8hqrKgqz_jcNkXNcWEBP3Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1E4C/7DADA56CD94D11EAA604AC53C4F9AE02/q2foL8hqrKgqz_jcNkXNcWEBP3Y.mft Manifest number: 0BCB Signing time: Sat 20 Dec 2025 19:59:02 +0000 Manifest this update: Sat 20 Dec 2025 19:59:02 +0000 Manifest next update: Sat 27 Dec 2025 19:59:02 +0000 Files and hashes: 1: q2foL8hqrKgqz_jcNkXNcWEBP3Y.crl (hash: uocc38OZTGEZOS6Lx9BOkYqgAZO9XTOMjxgWuLgJtw8=) 2: 2AD1C746940111F0B07D7068C4F9AE02.roa (hash: UEvIJGCtIPViKlp9oF2IdyQbfjX5CIRMn68xHUdCFM0=) 3: FC358296CFA011EDA4AC5B18C4F9AE02.roa (hash: leiC+N+7T7KBF8xTueIqh0RjFttyTRTBR+jUcxpvEWs=) 4: 3DD8C628940111F09204AF71C4F9AE02.roa (hash: IIG8gh+kO7sLLkwwytxU4QMUTZ/JBKDzSudE/wC+tc8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1E4C/7DADA56CD94D11EAA604AC53C4F9AE02/q2foL8hqrKgqz_jcNkXNcWEBP3Y.crl rsync://rpki.apnic.net/member_repository/A91D1E4C/7DADA56CD94D11EAA604AC53C4F9AE02/q2foL8hqrKgqz_jcNkXNcWEBP3Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2foL8hqrKgqz_jcNkXNcWEBP3Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 19:59:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 867 (0x363) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1E4C, serialNumber=AB67E82FC86AACA82ACFF8DC3645CD7161013F76 Validity Not Before: Dec 20 19:59:02 2025 GMT Not After : Dec 27 19:59:02 2025 GMT Subject: CN=69470006-7210 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:ad:4a:61:6b:6f:50:f3:d2:a2:75:fb:4d:9a: 2f:16:19:34:f6:82:88:00:11:ea:64:73:f3:60:b2: d0:0c:de:e8:4c:bb:fc:33:da:1a:c4:58:87:5d:27: e9:b0:21:2b:5e:93:c1:b8:e8:80:af:ef:ea:f9:ec: b5:c0:7f:fe:ab:f8:70:09:c7:f4:c0:c2:45:3c:41: e3:ad:d6:19:59:81:f7:16:36:f9:5e:85:8c:bb:7b: c8:56:31:d0:74:8d:e1:72:19:35:db:ba:39:61:20: ec:03:9b:60:89:f9:d4:de:f0:37:c1:cb:b4:d1:00: 64:e2:44:81:74:bd:38:45:6a:62:3a:85:d6:d4:2d: 5a:09:a3:78:15:42:c9:dd:7b:7d:0a:70:ad:63:5f: dc:b2:d5:33:ed:a5:92:13:64:e9:a6:9b:48:65:f0: 3b:29:b1:eb:c0:af:cc:74:2e:af:56:9f:cf:a8:ab: fd:c0:28:75:4d:b0:41:c1:b6:2d:a6:7b:26:27:de: d6:e5:fb:f0:da:3d:58:94:08:0e:3d:e5:a4:d0:de: 2f:5c:2a:fe:d3:96:c3:d5:b2:c9:3b:88:33:44:3d: 16:45:3d:be:70:4a:1e:f7:67:72:ff:0a:a6:33:37: 67:d9:9d:b8:b8:84:30:e2:51:b4:8e:21:48:16:e6: ea:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:EF:C5:74:41:63:90:F5:7C:3C:D8:2D:71:60:92:B5:68:9F:27:57 X509v3 Authority Key Identifier: keyid:AB:67:E8:2F:C8:6A:AC:A8:2A:CF:F8:DC:36:45:CD:71:61:01:3F:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1E4C/7DADA56CD94D11EAA604AC53C4F9AE02/q2foL8hqrKgqz_jcNkXNcWEBP3Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2foL8hqrKgqz_jcNkXNcWEBP3Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1E4C/7DADA56CD94D11EAA604AC53C4F9AE02/q2foL8hqrKgqz_jcNkXNcWEBP3Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:53:e3:60:fd:99:8e:75:57:b7:47:ac:bc:65:03:b3:86:db: 3a:3d:6e:87:f5:02:71:e5:4b:10:71:69:da:ee:d1:a5:74:88: 01:ae:18:00:8f:f1:71:51:28:0f:ba:54:70:47:d0:c4:7b:be: 00:f4:72:36:68:af:c5:16:65:5f:a0:07:c8:2f:66:ae:9a:c5: d7:13:fc:ca:b8:4b:6f:2d:21:dc:d3:fd:98:7c:04:fb:ea:d1: 83:04:ff:e3:8f:c5:b0:ac:b4:9c:97:56:fa:ad:e3:aa:cc:48: 46:48:61:cb:0d:98:fb:b4:8e:41:b9:a0:ed:f7:94:de:0e:ba: af:1f:67:54:a3:14:d4:89:17:93:56:aa:d4:64:4e:34:18:b4: c5:6b:50:bd:17:6f:f4:03:20:91:32:7f:86:26:3f:59:41:78: 63:1a:a6:cf:83:26:f9:f2:b9:4f:2a:75:8a:2d:91:a5:d2:0f: 28:96:99:aa:ae:59:bc:41:20:58:52:0b:33:41:34:24:2b:60: fc:d9:ba:9a:1b:43:20:f8:a8:91:85:1e:fb:b9:b8:47:5c:e0: 46:b1:9b:cf:05:c0:f1:bb:d7:b8:09:e7:47:8a:04:76:52:a7: ad:1d:6a:1a:51:d0:76:33:8d:b7:88:d9:48:67:b0:33:79:01: c1:92:f2:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA2MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDFFNEMxMTAvBgNVBAUTKEFCNjdFODJGQzg2QUFDQTgyQUNGRjhEQzM2NDVDRDcx NjEwMTNGNzYwHhcNMjUxMjIwMTk1OTAyWhcNMjUxMjI3MTk1OTAyWjAYMRYwFAYD VQQDDA02OTQ3MDAwNi03MjEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwa1KYWtvUPPSonX7TZovFhk09oKIABHqZHPzYLLQDN7oTLv8M9oaxFiHXSfp sCErXpPBuOiAr+/q+ey1wH/+q/hwCcf0wMJFPEHjrdYZWYH3Fjb5XoWMu3vIVjHQ dI3hchk127o5YSDsA5tgifnU3vA3wcu00QBk4kSBdL04RWpiOoXW1C1aCaN4FULJ 3Xt9CnCtY1/cstUz7aWSE2TppptIZfA7KbHrwK/MdC6vVp/PqKv9wCh1TbBBwbYt pnsmJ97W5fvw2j1YlAgOPeWk0N4vXCr+05bD1bLJO4gzRD0WRT2+cEoe92dy/wqm Mzdn2Z24uIQw4lG0jiFIFubqSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKvvxXRB Y5D1fDzYLXFgkrVonydXMB8GA1UdIwQYMBaAFKtn6C/IaqyoKs/43DZFzXFhAT92 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMUU0Qy83REFEQTU2Q0Q5 NEQxMUVBQTYwNEFDNTNDNEY5QUUwMi9xMmZvTDhocXJLZ3F6X2pjTmtYTmNXRUJQ M1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3EyZm9MOGhxcktncXpfamNOa1hOY1dFQlAzWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MUU0Qy83REFEQTU2Q0Q5NEQxMUVBQTYwNEFDNTNDNEY5QUUwMi9xMmZvTDhocXJL Z3F6X2pjTmtYTmNXRUJQM1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAfU+Ng/ZmOdVe3R6y8ZQOzhts6PW6H9QJx5UsQcWna7tGldIgBrhgA j/FxUSgPulRwR9DEe74A9HI2aK/FFmVfoAfIL2aumsXXE/zKuEtvLSHc0/2YfAT7 6tGDBP/jj8WwrLScl1b6reOqzEhGSGHLDZj7tI5BuaDt95TeDrqvH2dUoxTUiReT VqrUZE40GLTFa1C9F2/0AyCRMn+GJj9ZQXhjGqbPgyb58rlPKnWKLZGl0g8olpmq rlm8QSBYUgszQTQkK2D82bqaG0Mg+KiRhR77ubhHXOBGsZvPBcDxu9e4CedHigR2 UqetHWoaUdB2M423iNlIZ7AzeQHBkvIn -----END CERTIFICATE-----Generated at Mon Dec 22 05:30:25 2025 by rpki-client