This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EFBA1/2AD51F4C990311E7A5E95C6FC4F9AE02/QVQG7YC02Sekeai6BCEWri0RoaY.mft File: QVQG7YC02Sekeai6BCEWri0RoaY.mft (raw, json) Hash identifier: Lw9+woNZSudZW8kkpFFT9sf/V1na0nW5JYjqGiPJXDE= Subject key identifier: 4D:8F:57:0E:3B:E1:27:F4:B7:88:AE:97:C0:C0:82:7A:23:1B:F2:E8 Authority key identifier: 41:54:06:ED:80:B4:D9:27:A4:79:A8:BA:04:21:16:AE:2D:11:A1:A6 Certificate issuer: /CN=A91EFBA1/serialNumber=415406ED80B4D927A479A8BA042116AE2D11A1A6 Certificate serial: 1950 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QVQG7YC02Sekeai6BCEWri0RoaY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EFBA1/2AD51F4C990311E7A5E95C6FC4F9AE02/QVQG7YC02Sekeai6BCEWri0RoaY.mft Manifest number: 1925 Signing time: Sat 20 Dec 2025 16:15:04 +0000 Manifest this update: Sat 20 Dec 2025 16:15:03 +0000 Manifest next update: Sat 27 Dec 2025 16:15:03 +0000 Files and hashes: 1: QVQG7YC02Sekeai6BCEWri0RoaY.crl (hash: wzyw51No8RzxDq8KL1Z8lGMQ5JLiZK903vpGyQ1RYvM=) 2: 215F871ECF5E11F0872AA04EC4F9AE02.roa (hash: wXQTHLnxlobISfO/uP19l950cYfOxZoHNCPztVyG7Ow=) 3: 43E9842C185A11EF9D0C4338C4F9AE02.roa (hash: irpR0h3jscaijLl59Cc3m/8UUXHvczEBFVSowrAT4Uk=) 4: 62C9C1CEE03111EEBECE581EC4F9AE02.roa (hash: /HjqJb3HeVbYY01kD6wIaTbG/Ekr2hN/Y4VOZSnVUZ8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EFBA1/2AD51F4C990311E7A5E95C6FC4F9AE02/QVQG7YC02Sekeai6BCEWri0RoaY.crl rsync://rpki.apnic.net/member_repository/A91EFBA1/2AD51F4C990311E7A5E95C6FC4F9AE02/QVQG7YC02Sekeai6BCEWri0RoaY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QVQG7YC02Sekeai6BCEWri0RoaY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 16:15:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6480 (0x1950) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EFBA1, serialNumber=415406ED80B4D927A479A8BA042116AE2D11A1A6 Validity Not Before: Dec 20 16:15:03 2025 GMT Not After : Dec 27 16:15:03 2025 GMT Subject: CN=6946cb88-8ded Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:d7:5c:ea:17:b2:f1:1f:b6:29:89:d9:de:b7: 8c:81:a9:85:ef:f3:6c:f4:e2:7b:62:1d:fb:d0:73: 5c:dc:85:a8:b7:82:72:a8:a6:2f:4f:dc:b7:c5:b9: 2c:6f:8f:1a:f0:42:39:a2:c0:7b:31:7b:bc:f3:fb: 2c:fd:d2:1d:01:96:40:ab:d0:5c:d3:98:e9:8a:7e: 1f:f0:36:6c:fb:03:8e:95:db:4c:df:75:cb:a9:c5: 06:4c:b8:43:6b:8b:9d:b2:f7:59:a1:0b:65:3f:47: ad:fc:a2:ef:c2:75:78:5e:bd:92:05:40:03:9c:12: a5:80:c0:7e:24:a4:0d:24:9a:b0:9a:7c:44:d3:b3: bb:56:2c:ba:da:9c:d9:b9:08:e1:a2:39:83:d3:e2: c6:f3:51:18:af:6e:1b:da:81:e7:2c:8d:54:e0:3f: 7c:2f:96:b0:89:d3:0b:2f:d2:4d:51:51:1c:05:96: 46:e2:05:7c:21:1f:2c:8c:a4:f4:40:79:f8:06:88: 4a:a8:a3:38:49:ab:e4:1e:fe:22:af:92:34:57:b8: 10:b2:b7:9d:e9:39:82:78:5c:3c:1f:d4:d9:75:14: cc:49:1d:8d:b4:31:40:a6:05:9c:9e:e6:e9:ed:53: 38:99:14:ad:11:89:3d:9b:97:59:ca:aa:2f:24:83: 73:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:8F:57:0E:3B:E1:27:F4:B7:88:AE:97:C0:C0:82:7A:23:1B:F2:E8 X509v3 Authority Key Identifier: keyid:41:54:06:ED:80:B4:D9:27:A4:79:A8:BA:04:21:16:AE:2D:11:A1:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EFBA1/2AD51F4C990311E7A5E95C6FC4F9AE02/QVQG7YC02Sekeai6BCEWri0RoaY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QVQG7YC02Sekeai6BCEWri0RoaY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EFBA1/2AD51F4C990311E7A5E95C6FC4F9AE02/QVQG7YC02Sekeai6BCEWri0RoaY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:b8:31:cb:3f:e2:06:d3:14:03:65:d9:7a:25:12:ef:1e:33: 91:65:b2:9e:84:82:c6:54:e4:28:0b:76:f4:09:41:bf:70:ca: d8:a8:4d:2b:eb:fe:a7:8f:6c:ed:fa:ec:9f:9c:32:08:9a:c8: f1:44:f2:fc:b4:b8:0a:53:90:f5:6c:4c:61:94:de:06:57:0c: 43:59:39:65:a3:18:d1:47:7a:2f:88:4d:ec:3a:42:e9:2d:ae: 3b:a6:81:f3:e1:1f:2c:3d:3d:b7:ec:3c:d3:a9:27:f0:e1:94: 4e:c9:d0:84:c8:24:17:80:e6:44:df:6d:d2:c7:3e:32:6a:3a: 7a:f4:be:1b:a6:86:89:fd:05:7d:95:1d:02:2d:b6:9e:67:eb: 3a:2c:ea:cc:76:dd:81:17:77:bd:c3:8e:0a:b2:ce:73:12:00: ff:2e:b4:e2:80:36:a5:93:bf:07:e1:3c:0e:06:e9:22:c8:65: b9:c2:70:d3:a0:c7:52:f5:fe:e3:c7:8e:a2:24:64:50:35:b5: d6:de:6e:28:67:f8:83:73:5b:d3:fb:c0:a8:24:79:59:e6:e5: 70:47:e2:36:c4:bf:1c:a7:6e:7c:17:db:58:f9:af:0a:63:63: 94:5f:54:b5:cb:79:88:12:77:1c:ab:ef:35:72:c8:82:5b:e8: 00:05:0a:04 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGVAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUZCQTExMTAvBgNVBAUTKDQxNTQwNkVEODBCNEQ5MjdBNDc5QThCQTA0MjExNkFF MkQxMUExQTYwHhcNMjUxMjIwMTYxNTAzWhcNMjUxMjI3MTYxNTAzWjAYMRYwFAYD VQQDDA02OTQ2Y2I4OC04ZGVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA39dc6hey8R+2KYnZ3reMgamF7/Ns9OJ7Yh370HNc3IWot4JyqKYvT9y3xbks b48a8EI5osB7MXu88/ss/dIdAZZAq9Bc05jpin4f8DZs+wOOldtM33XLqcUGTLhD a4udsvdZoQtlP0et/KLvwnV4Xr2SBUADnBKlgMB+JKQNJJqwmnxE07O7Viy62pzZ uQjhojmD0+LG81EYr24b2oHnLI1U4D98L5awidMLL9JNUVEcBZZG4gV8IR8sjKT0 QHn4BohKqKM4SavkHv4ir5I0V7gQsred6TmCeFw8H9TZdRTMSR2NtDFApgWcnubp 7VM4mRStEYk9m5dZyqovJINzgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE2PVw47 4Sf0t4iul8DAgnojG/LoMB8GA1UdIwQYMBaAFEFUBu2AtNknpHmougQhFq4tEaGm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRkJBMS8yQUQ1MUY0Qzk5 MDMxMUU3QTVFOTVDNkZDNEY5QUUwMi9RVlFHN1lDMDJTZWtlYWk2QkNFV3JpMFJv YVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FWUUc3WUMwMlNla2VhaTZCQ0VXcmkwUm9hWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RkJBMS8yQUQ1MUY0Qzk5MDMxMUU3QTVFOTVDNkZDNEY5QUUwMi9RVlFHN1lDMDJT ZWtlYWk2QkNFV3JpMFJvYVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAouDHLP+IG0xQDZdl6JRLvHjORZbKehILGVOQoC3b0CUG/cMrYqE0r 6/6nj2zt+uyfnDIImsjxRPL8tLgKU5D1bExhlN4GVwxDWTlloxjRR3oviE3sOkLp La47poHz4R8sPT237DzTqSfw4ZROydCEyCQXgOZE323Sxz4yajp69L4bpoaJ/QV9 lR0CLbaeZ+s6LOrMdt2BF3e9w44Kss5zEgD/LrTigDalk78H4TwOBukiyGW5wnDT oMdS9f7jx46iJGRQNbXW3m4oZ/iDc1vT+8CoJHlZ5uVwR+I2xL8cp258F9tY+a8K Y2OUX1S1y3mIEnccq+81csiCW+gABQoE -----END CERTIFICATE-----Generated at Mon Dec 22 16:38:16 2025 by rpki-client