This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5D61/2A7C7D981D7911E2879E38C508B02CD2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.mft File: QW1s1gOQ-3yW7XnXjOdvVK_PRFg.mft (raw, json) Hash identifier: BbaoTjQER+9M4MkQ16uj0WvBi6n0NAHxaRYeTNzPL14= Subject key identifier: 8C:AA:8A:7A:40:B1:5B:46:A0:1E:F6:8E:E2:6A:49:91:EE:79:D7:33 Authority key identifier: 41:6D:6C:D6:03:90:FB:7C:96:ED:79:D7:8C:E7:6F:54:AF:CF:44:58 Certificate issuer: /CN=A91E5D61/serialNumber=416D6CD60390FB7C96ED79D78CE76F54AFCF4458 Certificate serial: 1307 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5D61/2A7C7D981D7911E2879E38C508B02CD2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.mft Manifest number: 4821 Signing time: Wed 24 Dec 2025 14:20:42 +0000 Manifest this update: Wed 24 Dec 2025 14:20:41 +0000 Manifest next update: Wed 31 Dec 2025 14:20:41 +0000 Files and hashes: 1: QW1s1gOQ-3yW7XnXjOdvVK_PRFg.crl (hash: O/KUcZE5YpQzZaE2CXm5rJTfeaYnk2gkGTnbHc8GM9s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5D61/2A7C7D981D7911E2879E38C508B02CD2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.crl rsync://rpki.apnic.net/member_repository/A91E5D61/2A7C7D981D7911E2879E38C508B02CD2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Dec 2025 14:20:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4871 (0x1307) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D61, serialNumber=416D6CD60390FB7C96ED79D78CE76F54AFCF4458 Validity Not Before: Dec 24 14:20:41 2025 GMT Not After : Dec 31 14:20:41 2025 GMT Subject: CN=694bf6ba-2958 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:3e:e3:75:e2:2a:ec:9e:25:98:c5:d5:0f:9e: ee:4f:4f:11:27:2c:75:b7:a4:35:f6:0b:66:c2:95: fc:4d:31:d8:24:a0:79:b7:fd:6f:0b:53:82:e6:62: 2b:b5:0f:32:96:15:15:4b:bf:a2:07:e7:f7:13:40: 37:16:bf:74:90:e8:60:7c:d6:b8:ee:c3:3d:71:bc: 22:45:52:ab:ab:f9:5d:62:ff:ba:17:70:62:e8:cf: f8:a7:f7:1b:d9:9e:5f:09:2c:33:ba:52:fd:0c:45: 81:c6:e6:e7:67:37:0d:e0:f6:45:ee:a9:37:1a:45: 40:bd:58:3f:3e:7a:27:a6:e7:a2:c8:da:74:52:3d: 07:9f:62:ba:ea:17:1e:4b:83:4b:d6:5c:3f:19:90: 24:0a:ab:94:08:09:d0:5d:76:37:d0:57:61:6c:60: 4b:32:6d:4d:c6:a2:fc:b3:81:5d:8b:0c:e0:86:49: 50:33:f5:2b:d5:d6:d0:d4:07:92:9c:ff:b8:36:4c: 1e:3c:53:af:a7:f5:ea:14:42:d4:73:64:8d:f3:9b: 24:9c:af:c8:41:2d:db:72:c5:0e:3d:9c:24:ee:4e: 33:04:00:e8:85:a3:86:d7:67:91:23:c9:14:61:2e: 36:da:55:af:95:c0:4a:4f:ec:5a:64:cd:b3:f4:63: 95:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:AA:8A:7A:40:B1:5B:46:A0:1E:F6:8E:E2:6A:49:91:EE:79:D7:33 X509v3 Authority Key Identifier: keyid:41:6D:6C:D6:03:90:FB:7C:96:ED:79:D7:8C:E7:6F:54:AF:CF:44:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5D61/2A7C7D981D7911E2879E38C508B02CD2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5D61/2A7C7D981D7911E2879E38C508B02CD2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:a7:9a:cc:46:cc:b4:23:eb:3f:43:97:ba:05:bc:0d:9f:fd: 63:33:09:f0:6f:83:56:45:04:58:3d:7c:ac:16:0b:b7:6d:44: cc:4a:7a:8d:1c:01:05:0f:bf:bb:f3:f2:17:b7:50:7f:d8:20: 86:c0:27:a9:92:56:02:eb:13:97:aa:a7:f0:fa:a5:ce:c9:81: 92:e4:4c:c3:1f:34:b9:6b:22:43:33:0b:1a:70:47:c6:56:df: 67:1d:9c:80:32:fb:31:a8:db:56:b8:1b:28:46:45:de:5e:9f: df:15:6c:98:e8:ef:79:0e:d0:7b:ff:6d:58:2b:14:a7:9d:62: 85:c2:4b:00:79:11:79:21:0b:31:09:ba:bd:9d:54:16:d0:7d: 9c:fb:8b:f9:23:a0:b7:00:82:2f:d1:91:8d:be:c6:d4:e0:91: f2:2b:b7:48:35:62:38:61:a2:ec:22:a6:3c:40:ed:95:b7:a6: e9:49:91:c9:3d:c2:9d:e9:00:2a:07:71:a7:dd:63:e8:b5:34: c1:ce:9d:9b:9e:d2:10:7d:1a:1e:10:45:57:61:de:31:79:d4: b6:64:70:d2:88:56:e1:eb:74:16:14:94:43:74:b3:ff:f3:d0: 59:ae:f8:f9:f3:0f:f2:49:4c:32:d3:b4:a1:24:51:9c:5c:79: 0e:ef:67:af -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEwcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTVENjExMTAvBgNVBAUTKDQxNkQ2Q0Q2MDM5MEZCN0M5NkVENzlENzhDRTc2RjU0 QUZDRjQ0NTgwHhcNMjUxMjI0MTQyMDQxWhcNMjUxMjMxMTQyMDQxWjAYMRYwFAYD VQQDDA02OTRiZjZiYS0yOTU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5j7jdeIq7J4lmMXVD57uT08RJyx1t6Q19gtmwpX8TTHYJKB5t/1vC1OC5mIr tQ8ylhUVS7+iB+f3E0A3Fr90kOhgfNa47sM9cbwiRVKrq/ldYv+6F3Bi6M/4p/cb 2Z5fCSwzulL9DEWBxubnZzcN4PZF7qk3GkVAvVg/PnonpueiyNp0Uj0Hn2K66hce S4NL1lw/GZAkCquUCAnQXXY30FdhbGBLMm1NxqL8s4FdiwzghklQM/Ur1dbQ1AeS nP+4NkwePFOvp/XqFELUc2SN85sknK/IQS3bcsUOPZwk7k4zBADohaOG12eRI8kU YS422lWvlcBKT+xaZM2z9GOVcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIyqinpA sVtGoB72juJqSZHuedczMB8GA1UdIwQYMBaAFEFtbNYDkPt8lu1514znb1Svz0RY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNUQ2MS8yQTdDN0Q5ODFE NzkxMUUyODc5RTM4QzUwOEIwMkNEMi9RVzFzMWdPUS0zeVc3WG5Yak9kdlZLX1BS RmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1FXMXMxZ09RLTN5VzdYblhqT2R2VktfUFJGZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NUQ2MS8yQTdDN0Q5ODFENzkxMUUyODc5RTM4QzUwOEIwMkNEMi9RVzFzMWdPUS0z eVc3WG5Yak9kdlZLX1BSRmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8p5rMRsy0I+s/Q5e6BbwNn/1jMwnwb4NWRQRYPXysFgu3bUTMSnqN HAEFD7+78/IXt1B/2CCGwCepklYC6xOXqqfw+qXOyYGS5EzDHzS5ayJDMwsacEfG Vt9nHZyAMvsxqNtWuBsoRkXeXp/fFWyY6O95DtB7/21YKxSnnWKFwksAeRF5IQsx Cbq9nVQW0H2c+4v5I6C3AIIv0ZGNvsbU4JHyK7dINWI4YaLsIqY8QO2Vt6bpSZHJ PcKd6QAqB3Gn3WPotTTBzp2bntIQfRoeEEVXYd4xedS2ZHDSiFbh63QWFJRDdLP/ 89BZrvj58w/ySUwy07ShJFGcXHkO72ev -----END CERTIFICATE-----Generated at Thu Dec 25 11:22:06 2025 by rpki-client