This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBBD7/F93219126CB911EA80832E2EC4F9AE02/qbsN-21P9jtyiDO-CtZiN5bsihk.mft File: qbsN-21P9jtyiDO-CtZiN5bsihk.mft (raw, json) Hash identifier: NJXW4GJeWBdDjxPhb5HjOVYSYX3LeUq72psrul9nlRY= Subject key identifier: DD:93:CC:ED:8B:AB:C2:49:E1:C2:AF:38:70:25:EF:1A:DF:54:A6:43 Authority key identifier: A9:BB:0D:FB:6D:4F:F6:3B:72:88:33:BE:0A:D6:62:37:96:EC:8A:19 Certificate issuer: /CN=A91EBBD7/serialNumber=A9BB0DFB6D4FF63B728833BE0AD6623796EC8A19 Certificate serial: 0AA4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qbsN-21P9jtyiDO-CtZiN5bsihk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBBD7/F93219126CB911EA80832E2EC4F9AE02/qbsN-21P9jtyiDO-CtZiN5bsihk.mft Manifest number: 0A9D Signing time: Wed 31 Dec 2025 19:14:32 +0000 Manifest this update: Wed 31 Dec 2025 19:14:32 +0000 Manifest next update: Wed 07 Jan 2026 19:14:32 +0000 Files and hashes: 1: qbsN-21P9jtyiDO-CtZiN5bsihk.crl (hash: BT+o7YYgmzdiqwAXNjaNHrf4YV0A3QIwfRkvfPtMH2I=) 2: 651072686CBB11EA95256D30C4F9AE02.roa (hash: 6Cva/MAM9NxBoaAYG/HBqjbHLWksXNLd6d8hzeYffrs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBBD7/F93219126CB911EA80832E2EC4F9AE02/qbsN-21P9jtyiDO-CtZiN5bsihk.crl rsync://rpki.apnic.net/member_repository/A91EBBD7/F93219126CB911EA80832E2EC4F9AE02/qbsN-21P9jtyiDO-CtZiN5bsihk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qbsN-21P9jtyiDO-CtZiN5bsihk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 07 Jan 2026 19:14:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2724 (0xaa4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBBD7, serialNumber=A9BB0DFB6D4FF63B728833BE0AD6623796EC8A19 Validity Not Before: Dec 31 19:14:32 2025 GMT Not After : Jan 7 19:14:32 2026 GMT Subject: CN=69557618-badb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:7d:36:c3:d9:43:fe:74:df:d8:84:d6:11:4e: a5:97:03:de:10:de:fb:d2:ae:39:9a:6d:b9:09:cb: df:bc:89:f1:2d:90:1a:66:c6:c5:da:9e:b5:51:2b: be:5e:d4:37:a6:f7:62:a1:0a:1e:aa:28:1c:ea:fa: 49:bd:ef:73:26:43:39:1a:e8:dd:28:17:68:58:dd: 13:94:9d:5b:c3:ba:3d:e4:77:c0:96:0d:5c:ca:f5: 3a:17:48:9e:eb:8a:00:66:5d:c6:0f:8f:2b:3f:90: 08:22:1c:e6:52:06:fb:14:d2:e8:50:40:be:d8:26: 3d:05:46:14:39:cd:ab:ec:4f:a4:13:a5:cb:0b:16: d8:9f:70:08:e9:24:44:2b:44:db:50:38:bb:91:7e: 15:8f:02:86:51:42:0d:bf:7e:0c:4d:e8:c4:34:9c: 87:43:1a:f5:10:1b:62:33:1b:59:76:2e:12:3f:97: 03:8b:ff:7b:f8:78:8d:97:3d:38:56:c2:f4:8a:0f: 48:ce:78:6a:24:cc:59:e9:33:ba:54:6f:a1:fc:14: 70:b2:c1:d5:5a:2b:ab:a2:8e:d6:b8:82:7f:45:5a: 06:20:96:ff:e8:56:34:21:b4:48:3c:f0:71:bf:b9: 9f:5c:a1:65:32:32:f6:bf:76:85:a7:d4:56:1c:69: 21:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:93:CC:ED:8B:AB:C2:49:E1:C2:AF:38:70:25:EF:1A:DF:54:A6:43 X509v3 Authority Key Identifier: keyid:A9:BB:0D:FB:6D:4F:F6:3B:72:88:33:BE:0A:D6:62:37:96:EC:8A:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBBD7/F93219126CB911EA80832E2EC4F9AE02/qbsN-21P9jtyiDO-CtZiN5bsihk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qbsN-21P9jtyiDO-CtZiN5bsihk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBBD7/F93219126CB911EA80832E2EC4F9AE02/qbsN-21P9jtyiDO-CtZiN5bsihk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:1b:64:53:f2:48:b1:ee:1c:3f:d7:f1:95:86:fe:23:84:0c: f2:02:f2:4b:c3:bb:e4:44:c1:6a:ab:6f:06:1c:36:70:64:d5: 52:fd:3d:91:59:4c:5c:e2:c2:3a:ed:70:9f:f3:52:d4:b6:85: e4:bd:43:17:5f:d5:d5:5a:ae:2d:17:78:40:9f:72:51:bd:71: f8:19:5e:07:f7:75:ea:eb:39:d4:78:d4:e4:6d:eb:24:47:94: 35:55:66:e9:6f:91:05:08:cc:79:2a:74:04:53:d1:e1:5a:d0: 06:3e:22:76:bc:f4:95:ea:ef:47:f1:7f:a1:39:d9:91:2b:9e: 7f:31:ab:1d:0d:0b:86:a2:ac:e0:aa:9e:19:cc:a4:b0:ab:b7: 05:a0:a6:1a:76:fd:fe:b1:e4:a2:66:eb:10:7e:9e:3c:b8:c4: e1:b6:d3:e6:c1:8d:0b:d7:c3:f8:50:79:ab:b9:09:2b:6f:ea: a6:0f:06:1c:a2:03:67:90:53:1d:1c:d0:3f:4f:d3:b4:83:a7: 05:d8:73:9e:1c:c1:be:b0:1d:6c:cb:04:8a:1d:f2:d0:1d:78: ba:69:15:aa:63:b3:60:47:4f:84:73:57:2d:cb:7c:4d:ec:6d: 65:f6:b2:3d:c2:71:18:f7:b4:12:31:e0:dd:ce:5c:32:2d:a3: 96:29:be:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCqQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJCRDcxMTAvBgNVBAUTKEE5QkIwREZCNkQ0RkY2M0I3Mjg4MzNCRTBBRDY2MjM3 OTZFQzhBMTkwHhcNMjUxMjMxMTkxNDMyWhcNMjYwMTA3MTkxNDMyWjAYMRYwFAYD VQQDDA02OTU1NzYxOC1iYWRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArH02w9lD/nTf2ITWEU6llwPeEN770q45mm25CcvfvInxLZAaZsbF2p61USu+ XtQ3pvdioQoeqigc6vpJve9zJkM5GujdKBdoWN0TlJ1bw7o95HfAlg1cyvU6F0ie 64oAZl3GD48rP5AIIhzmUgb7FNLoUEC+2CY9BUYUOc2r7E+kE6XLCxbYn3AI6SRE K0TbUDi7kX4VjwKGUUINv34MTejENJyHQxr1EBtiMxtZdi4SP5cDi/97+HiNlz04 VsL0ig9IznhqJMxZ6TO6VG+h/BRwssHVWiuroo7WuIJ/RVoGIJb/6FY0IbRIPPBx v7mfXKFlMjL2v3aFp9RWHGkhwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN2TzO2L q8JJ4cKvOHAl7xrfVKZDMB8GA1UdIwQYMBaAFKm7DfttT/Y7cogzvgrWYjeW7IoZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkJENy9GOTMyMTkxMjZD QjkxMUVBODA4MzJFMkVDNEY5QUUwMi9xYnNOLTIxUDlqdHlpRE8tQ3RaaU41YnNp aGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Fic04tMjFQOWp0eWlETy1DdFppTjVic2loay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkJENy9GOTMyMTkxMjZDQjkxMUVBODA4MzJFMkVDNEY5QUUwMi9xYnNOLTIxUDlq dHlpRE8tQ3RaaU41YnNpaGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxG2RT8kix7hw/1/GVhv4jhAzyAvJLw7vkRMFqq28GHDZwZNVS/T2R WUxc4sI67XCf81LUtoXkvUMXX9XVWq4tF3hAn3JRvXH4GV4H93Xq6znUeNTkbesk R5Q1VWbpb5EFCMx5KnQEU9HhWtAGPiJ2vPSV6u9H8X+hOdmRK55/MasdDQuGoqzg qp4ZzKSwq7cFoKYadv3+seSiZusQfp48uMThttPmwY0L18P4UHmruQkrb+qmDwYc ogNnkFMdHNA/T9O0g6cF2HOeHMG+sB1sywSKHfLQHXi6aRWqY7NgR0+Ec1cty3xN 7G1l9rI9wnEY97QSMeDdzlwyLaOWKb5y -----END CERTIFICATE-----Generated at Thu Jan 1 07:36:38 2026 by rpki-client