This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4803/80F034BEF9E111EBA32CE21BC4F9AE02/Qql4rYPdXtKaTl3bYbVvExelpaQ.mft File: Qql4rYPdXtKaTl3bYbVvExelpaQ.mft (raw, json) Hash identifier: H5akQpOH5FKAWTXhWe4rOxmr5ZuHl3FIIkaOYqQRLWs= Subject key identifier: DB:4B:4D:B0:A6:36:5D:CF:2A:49:0B:38:4C:16:10:02:BA:2C:E1:60 Authority key identifier: 42:A9:78:AD:83:DD:5E:D2:9A:4E:5D:DB:61:B5:6F:13:17:A5:A5:A4 Certificate issuer: /CN=A91D4803/serialNumber=42A978AD83DD5ED29A4E5DDB61B56F1317A5A5A4 Certificate serial: 05A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qql4rYPdXtKaTl3bYbVvExelpaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4803/80F034BEF9E111EBA32CE21BC4F9AE02/Qql4rYPdXtKaTl3bYbVvExelpaQ.mft Manifest number: 059A Signing time: Thu 18 Dec 2025 22:32:04 +0000 Manifest this update: Thu 18 Dec 2025 22:32:03 +0000 Manifest next update: Thu 25 Dec 2025 22:32:03 +0000 Files and hashes: 1: Qql4rYPdXtKaTl3bYbVvExelpaQ.crl (hash: oZI6iGm1nOxppfN6PJzvDaumwNYFNTOof31w043Eu+0=) 2: 2B1B8C92F9E511EBBB9B5D22C4F9AE02.roa (hash: /ckEG51NBhBYEZtZSbLBPmavN3UuTjHbEpYTSHsiIm0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4803/80F034BEF9E111EBA32CE21BC4F9AE02/Qql4rYPdXtKaTl3bYbVvExelpaQ.crl rsync://rpki.apnic.net/member_repository/A91D4803/80F034BEF9E111EBA32CE21BC4F9AE02/Qql4rYPdXtKaTl3bYbVvExelpaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qql4rYPdXtKaTl3bYbVvExelpaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 22:32:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1442 (0x5a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4803, serialNumber=42A978AD83DD5ED29A4E5DDB61B56F1317A5A5A4 Validity Not Before: Dec 18 22:32:03 2025 GMT Not After : Dec 25 22:32:03 2025 GMT Subject: CN=694480e4-3fb6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:7d:65:cd:cd:87:5c:69:9d:e0:63:9d:c0:4d: 05:5b:85:e8:86:31:fb:42:cc:e7:1c:34:2c:db:65: ce:00:a2:8c:25:99:27:a4:9b:e8:76:72:c4:fc:79: 9d:b4:eb:bf:30:3b:e7:7e:3d:b4:82:6f:6d:45:e7: 6d:c1:04:9c:d3:45:29:37:e0:08:64:19:ed:5f:75: 08:30:75:aa:a8:84:7c:84:0c:78:c5:27:8a:1b:37: 03:c3:08:d1:c8:f9:56:42:e7:dd:f6:41:b0:c8:5c: a3:fe:d1:5e:77:77:a9:4b:8c:e1:47:23:66:41:0d: 5b:0d:de:d2:84:e9:3b:94:84:c6:50:68:53:84:eb: f6:8d:9e:5f:57:57:5c:2a:56:4c:f7:f5:27:84:1f: 62:57:81:60:9f:73:2f:65:08:23:a8:77:f4:31:d7: 5c:7c:e6:bb:f5:da:9d:0b:8b:6d:14:10:a3:38:50: 34:24:6f:95:32:20:9a:71:04:4a:fb:0a:8e:ed:5d: a4:01:7d:4b:9c:0c:c6:bc:07:10:fc:33:04:2d:97: 01:ec:e8:bc:52:5c:83:d2:0b:ca:44:9c:a7:b9:61: 2c:93:cf:1d:af:74:08:d3:b1:e1:68:e3:89:bf:b2: ab:09:56:12:ba:7a:7c:4d:13:9c:e4:22:4d:b1:60: ce:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:4B:4D:B0:A6:36:5D:CF:2A:49:0B:38:4C:16:10:02:BA:2C:E1:60 X509v3 Authority Key Identifier: keyid:42:A9:78:AD:83:DD:5E:D2:9A:4E:5D:DB:61:B5:6F:13:17:A5:A5:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4803/80F034BEF9E111EBA32CE21BC4F9AE02/Qql4rYPdXtKaTl3bYbVvExelpaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qql4rYPdXtKaTl3bYbVvExelpaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4803/80F034BEF9E111EBA32CE21BC4F9AE02/Qql4rYPdXtKaTl3bYbVvExelpaQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:c9:2b:20:7e:8c:a8:d2:d9:8b:4a:a5:84:c3:21:a3:7d:a8: 73:d6:27:25:b3:96:e9:28:e6:6f:75:cd:af:f3:8c:67:fb:2f: 41:aa:ff:ba:f5:aa:b7:25:cd:6d:29:bf:94:bb:b6:f4:bd:6b: ed:5f:f1:53:e1:a1:26:3b:93:17:74:75:a0:93:26:59:8f:da: 50:21:99:ea:71:b7:0f:bd:f1:8c:a4:74:04:0a:20:63:6a:ff: 82:7c:71:5c:60:2d:d0:aa:57:25:90:06:bd:36:ac:92:95:64: 0e:d2:32:59:49:f9:85:34:8f:d3:c9:b6:71:80:61:9d:14:ea: 4c:8f:db:2b:67:be:d5:ab:6e:19:00:ab:20:2d:c8:d0:dc:98: ce:24:cb:57:7b:be:ac:2d:59:70:21:8d:3f:e7:a0:6f:24:a2: 84:0b:87:68:69:a2:2e:8c:c4:f9:a7:39:0a:a7:f1:f6:06:36: 8d:0f:34:34:f5:0c:4a:c6:6e:d2:5d:46:35:d6:69:74:df:8f: fc:66:48:76:d3:6d:a1:6e:c6:52:36:03:1a:ee:f5:59:f9:c6: cf:a8:9a:d9:39:a2:bb:1b:49:68:2b:02:99:85:46:bf:31:fa: 2f:48:04:23:cf:bf:68:f3:77:f3:df:4d:63:ae:0b:85:f0:c4: 8b:aa:13:06 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBaIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ4MDMxMTAvBgNVBAUTKDQyQTk3OEFEODNERDVFRDI5QTRFNUREQjYxQjU2RjEz MTdBNUE1QTQwHhcNMjUxMjE4MjIzMjAzWhcNMjUxMjI1MjIzMjAzWjAYMRYwFAYD VQQDDA02OTQ0ODBlNC0zZmI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsn1lzc2HXGmd4GOdwE0FW4XohjH7QsznHDQs22XOAKKMJZknpJvodnLE/Hmd tOu/MDvnfj20gm9tRedtwQSc00UpN+AIZBntX3UIMHWqqIR8hAx4xSeKGzcDwwjR yPlWQufd9kGwyFyj/tFed3epS4zhRyNmQQ1bDd7ShOk7lITGUGhThOv2jZ5fV1dc KlZM9/UnhB9iV4Fgn3MvZQgjqHf0MddcfOa79dqdC4ttFBCjOFA0JG+VMiCacQRK +wqO7V2kAX1LnAzGvAcQ/DMELZcB7Oi8UlyD0gvKRJynuWEsk88dr3QI07HhaOOJ v7KrCVYSunp8TROc5CJNsWDOnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNtLTbCm Nl3PKkkLOEwWEAK6LOFgMB8GA1UdIwQYMBaAFEKpeK2D3V7Smk5d22G1bxMXpaWk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDgwMy84MEYwMzRCRUY5 RTExMUVCQTMyQ0UyMUJDNEY5QUUwMi9RcWw0cllQZFh0S2FUbDNiWWJWdkV4ZWxw YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FxbDRyWVBkWHRLYVRsM2JZYlZ2RXhlbHBhUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDgwMy84MEYwMzRCRUY5RTExMUVCQTMyQ0UyMUJDNEY5QUUwMi9RcWw0cllQZFh0 S2FUbDNiWWJWdkV4ZWxwYVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBdySsgfoyo0tmLSqWEwyGjfahz1icls5bpKOZvdc2v84xn+y9Bqv+6 9aq3Jc1tKb+Uu7b0vWvtX/FT4aEmO5MXdHWgkyZZj9pQIZnqcbcPvfGMpHQECiBj av+CfHFcYC3QqlclkAa9NqySlWQO0jJZSfmFNI/TybZxgGGdFOpMj9srZ77Vq24Z AKsgLcjQ3JjOJMtXe76sLVlwIY0/56BvJKKEC4doaaIujMT5pzkKp/H2BjaNDzQ0 9QxKxm7SXUY11ml034/8Zkh2022hbsZSNgMa7vVZ+cbPqJrZOaK7G0loKwKZhUa/ MfovSAQjz79o83fz301jrguF8MSLqhMG -----END CERTIFICATE-----Generated at Fri Dec 19 19:24:35 2025 by rpki-client