This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91ECD98/7802048A66A411EA8FCB2B6FC4F9AE02/QcZcAPCmsH08D2sSkFZPv4OC2nM.mft File: QcZcAPCmsH08D2sSkFZPv4OC2nM.mft (raw, json) Hash identifier: c7Vu/4zuTmrLKLF+ixt3EyCbZuwyUNM8cji8Sqq9obQ= Subject key identifier: 9D:B0:C9:2E:15:3C:B8:0B:15:35:BB:15:B2:CE:34:4B:F7:5B:C6:08 Authority key identifier: 41:C6:5C:00:F0:A6:B0:7D:3C:0F:6B:12:90:56:4F:BF:83:82:DA:73 Certificate issuer: /CN=A91ECD98/serialNumber=41C65C00F0A6B07D3C0F6B1290564FBF8382DA73 Certificate serial: 0AC0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QcZcAPCmsH08D2sSkFZPv4OC2nM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ECD98/7802048A66A411EA8FCB2B6FC4F9AE02/QcZcAPCmsH08D2sSkFZPv4OC2nM.mft Manifest number: 0AB8 Signing time: Sat 20 Dec 2025 18:59:40 +0000 Manifest this update: Sat 20 Dec 2025 18:59:39 +0000 Manifest next update: Sat 27 Dec 2025 18:59:39 +0000 Files and hashes: 1: QcZcAPCmsH08D2sSkFZPv4OC2nM.crl (hash: k25Q87OUn9zuJh+IiBRS6g82ufVV8iTlKR6jS+YRXkg=) 2: F760C48ACE0111EB980FBD53C4F9AE02.roa (hash: lEjGikQ+ii4jtTGbAoJ/KSsQ3VS5/CajiRstqwCSiwQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ECD98/7802048A66A411EA8FCB2B6FC4F9AE02/QcZcAPCmsH08D2sSkFZPv4OC2nM.crl rsync://rpki.apnic.net/member_repository/A91ECD98/7802048A66A411EA8FCB2B6FC4F9AE02/QcZcAPCmsH08D2sSkFZPv4OC2nM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QcZcAPCmsH08D2sSkFZPv4OC2nM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 18:59:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2752 (0xac0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ECD98, serialNumber=41C65C00F0A6B07D3C0F6B1290564FBF8382DA73 Validity Not Before: Dec 20 18:59:39 2025 GMT Not After : Dec 27 18:59:39 2025 GMT Subject: CN=6946f21c-bb5e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:ee:fe:7c:28:f6:04:33:e0:67:93:29:f8:dd: de:a0:32:6a:60:0d:5b:94:11:56:ba:44:98:f7:b5: 39:ae:39:bc:6d:cf:ae:63:45:41:b6:5d:27:79:48: 81:f7:88:6e:ea:30:f9:45:fd:70:9d:d0:7c:9f:66: 3e:cb:84:fc:42:9e:a1:fa:3a:82:ab:6e:6c:a1:3d: c5:2c:f0:5f:f7:1a:eb:1d:1d:75:3d:be:03:2c:12: ce:4b:c4:b2:97:d5:05:13:46:e4:5f:6a:29:e8:7e: 93:ed:a4:47:8f:25:94:51:b7:0c:f8:74:4b:32:15: eb:b5:0f:c0:55:e9:0f:ba:a7:02:d1:b7:aa:aa:29: 94:47:84:39:45:7d:08:5f:c5:2e:4f:e6:7f:2e:07: 43:e4:11:23:ed:24:09:5f:51:1c:a3:af:ee:5e:c3: b7:0c:88:6a:38:f8:24:dc:ef:0c:39:27:44:af:7b: 0e:45:51:68:41:90:18:d2:a6:18:6b:aa:08:7f:67: be:af:01:72:96:61:b3:1c:f4:5d:03:1b:b1:0a:4e: b5:4c:bf:97:49:9d:f4:94:5c:84:38:b7:6d:73:c9: a7:dd:cc:c5:ba:39:79:57:51:6c:ad:28:57:48:9b: e2:70:40:05:69:30:6a:af:aa:ae:aa:ea:72:26:ea: e6:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:B0:C9:2E:15:3C:B8:0B:15:35:BB:15:B2:CE:34:4B:F7:5B:C6:08 X509v3 Authority Key Identifier: keyid:41:C6:5C:00:F0:A6:B0:7D:3C:0F:6B:12:90:56:4F:BF:83:82:DA:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ECD98/7802048A66A411EA8FCB2B6FC4F9AE02/QcZcAPCmsH08D2sSkFZPv4OC2nM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QcZcAPCmsH08D2sSkFZPv4OC2nM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ECD98/7802048A66A411EA8FCB2B6FC4F9AE02/QcZcAPCmsH08D2sSkFZPv4OC2nM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cd:62:f5:ec:8d:77:58:a7:0e:a6:4e:c0:6f:89:67:f8:f3:f0: 68:6e:ee:b0:0c:d0:f1:e8:27:a8:90:4e:f1:81:ad:1f:b7:4d: ed:83:1d:31:72:57:78:9c:51:6d:d1:4f:2b:c7:2f:05:87:5b: ac:58:61:ec:06:85:ef:83:a3:f4:09:cb:19:27:d3:f2:36:cb: ad:9d:cb:8e:cd:6b:f2:d3:a4:aa:91:fb:35:62:2f:a1:28:fb: 86:76:36:c7:c3:43:87:1b:bc:ba:91:83:d2:9b:b9:31:3a:fc: dc:95:a6:fc:b3:83:94:ad:4a:e9:76:dd:ec:29:88:1d:f1:ba: ba:27:2a:90:c0:44:14:eb:46:af:63:94:c7:c3:04:7e:23:c1: f4:23:bf:ac:65:5f:38:08:86:6e:73:7f:58:e7:16:bc:2b:2b: b7:c3:59:e9:b5:d9:f8:8e:1b:55:a2:ea:0a:41:96:86:4e:00: bc:93:c0:a1:a2:ab:d4:7c:ad:d8:01:3d:3b:b4:1f:ad:53:05: 45:b3:c2:99:12:4f:0b:92:24:dd:e2:f0:21:55:d5:05:ea:43: 2b:d1:a9:61:f9:aa:f0:4a:41:fa:e8:ec:5b:d8:4d:87:46:28: ba:f3:f3:ff:a3:ca:b8:68:58:04:1b:f3:ea:75:26:e5:80:83: b1:31:ca:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCsAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUNEOTgxMTAvBgNVBAUTKDQxQzY1QzAwRjBBNkIwN0QzQzBGNkIxMjkwNTY0RkJG ODM4MkRBNzMwHhcNMjUxMjIwMTg1OTM5WhcNMjUxMjI3MTg1OTM5WjAYMRYwFAYD VQQDDA02OTQ2ZjIxYy1iYjVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApu7+fCj2BDPgZ5Mp+N3eoDJqYA1blBFWukSY97U5rjm8bc+uY0VBtl0neUiB 94hu6jD5Rf1wndB8n2Y+y4T8Qp6h+jqCq25soT3FLPBf9xrrHR11Pb4DLBLOS8Sy l9UFE0bkX2op6H6T7aRHjyWUUbcM+HRLMhXrtQ/AVekPuqcC0beqqimUR4Q5RX0I X8UuT+Z/LgdD5BEj7SQJX1Eco6/uXsO3DIhqOPgk3O8MOSdEr3sORVFoQZAY0qYY a6oIf2e+rwFylmGzHPRdAxuxCk61TL+XSZ30lFyEOLdtc8mn3czFujl5V1FsrShX SJvicEAFaTBqr6ququpyJurmtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ2wyS4V PLgLFTW7FbLONEv3W8YIMB8GA1UdIwQYMBaAFEHGXADwprB9PA9rEpBWT7+Dgtpz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQ0Q5OC83ODAyMDQ4QTY2 QTQxMUVBOEZDQjJCNkZDNEY5QUUwMi9RY1pjQVBDbXNIMDhEMnNTa0ZaUHY0T0My bk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FjWmNBUENtc0gwOEQyc1NrRlpQdjRPQzJuTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF Q0Q5OC83ODAyMDQ4QTY2QTQxMUVBOEZDQjJCNkZDNEY5QUUwMi9RY1pjQVBDbXNI MDhEMnNTa0ZaUHY0T0Mybk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDNYvXsjXdYpw6mTsBviWf48/Bobu6wDNDx6CeokE7xga0ft03tgx0x cld4nFFt0U8rxy8Fh1usWGHsBoXvg6P0CcsZJ9PyNsutncuOzWvy06Sqkfs1Yi+h KPuGdjbHw0OHG7y6kYPSm7kxOvzclab8s4OUrUrpdt3sKYgd8bq6JyqQwEQU60av Y5THwwR+I8H0I7+sZV84CIZuc39Y5xa8Kyu3w1nptdn4jhtVouoKQZaGTgC8k8Ch oqvUfK3YAT07tB+tUwVFs8KZEk8LkiTd4vAhVdUF6kMr0alh+arwSkH66Oxb2E2H Rii68/P/o8q4aFgEG/PqdSblgIOxMcqF -----END CERTIFICATE-----Generated at Mon Dec 22 08:07:50 2025 by rpki-client