This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91275A6/CA86944A9C5D11ED97B3F548C4F9AE02/WQ-jxnAA6WmFeR5jVa0fba1cGHY.mft File: WQ-jxnAA6WmFeR5jVa0fba1cGHY.mft (raw, json) Hash identifier: vBFMh1qjmE4tlWNTRXEuOA6b8VhqJz8BdM9pUxEdVl0= Subject key identifier: 2E:70:4F:53:2F:7F:74:7A:FD:CF:B4:6E:7A:48:84:D8:F2:69:AA:1D Authority key identifier: 59:0F:A3:C6:70:00:E9:69:85:79:1E:63:55:AD:1F:6D:AD:5C:18:76 Certificate issuer: /CN=A91275A6/serialNumber=590FA3C67000E96985791E6355AD1F6DAD5C1876 Certificate serial: 0224 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WQ-jxnAA6WmFeR5jVa0fba1cGHY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91275A6/CA86944A9C5D11ED97B3F548C4F9AE02/WQ-jxnAA6WmFeR5jVa0fba1cGHY.mft Manifest number: 0221 Signing time: Tue 23 Dec 2025 01:10:27 +0000 Manifest this update: Tue 23 Dec 2025 01:10:26 +0000 Manifest next update: Tue 30 Dec 2025 01:10:26 +0000 Files and hashes: 1: WQ-jxnAA6WmFeR5jVa0fba1cGHY.crl (hash: MWlo2iQWPxZmqGQI1B3TFBuobsMFUjLO5gr8bvUoCgA=) 2: 8FA08DC29C8511EDB3506E5AC4F9AE02.roa (hash: Op5FiTtFCqiSuAmQrIrvzBwaHPhkdRDyeJuZKNddGfc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91275A6/CA86944A9C5D11ED97B3F548C4F9AE02/WQ-jxnAA6WmFeR5jVa0fba1cGHY.crl rsync://rpki.apnic.net/member_repository/A91275A6/CA86944A9C5D11ED97B3F548C4F9AE02/WQ-jxnAA6WmFeR5jVa0fba1cGHY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WQ-jxnAA6WmFeR5jVa0fba1cGHY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 01:10:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 548 (0x224) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91275A6, serialNumber=590FA3C67000E96985791E6355AD1F6DAD5C1876 Validity Not Before: Dec 23 01:10:26 2025 GMT Not After : Dec 30 01:10:26 2025 GMT Subject: CN=6949ec02-960a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:94:61:e2:bb:a2:57:32:67:95:5b:c1:87:b0: c4:6c:23:37:3c:ba:2e:ce:1e:f4:04:4d:bd:0a:fc: ff:df:b9:20:13:67:d3:77:84:ab:41:82:72:57:1a: 1f:e9:a3:b6:57:6a:2e:15:73:2f:01:56:13:ba:77: 1e:18:9d:b4:67:7f:4a:83:ea:5f:1a:92:68:c9:7a: 33:03:8f:b7:d8:c6:62:e8:8e:d7:58:aa:3f:f2:d5: ef:30:2a:20:0c:2e:34:0a:f0:54:8e:cd:32:f2:44: 5a:6a:13:b0:e0:f1:6d:ba:f9:2e:57:59:80:1a:7c: e5:f3:7d:41:fb:22:52:64:e3:dc:20:99:e6:07:32: 33:c7:ef:43:f6:b2:e8:68:c8:40:f9:c7:9c:50:05: 3f:29:36:ad:26:0f:0c:e2:96:7b:ff:97:97:ee:e4: 53:42:a6:99:97:06:ef:cf:2f:93:a1:55:73:73:13: 76:d9:4f:59:22:aa:dc:9a:2b:47:cf:ee:ef:48:e0: a1:bd:12:b8:22:ad:d8:60:76:21:ba:c5:90:64:08: ce:1c:8a:db:ac:5d:b5:60:33:1d:08:96:0a:89:3a: ea:82:64:04:d2:9a:2a:ee:72:4a:3e:e2:d9:d1:a6: 08:56:b4:24:e1:ee:c4:af:9b:a7:a8:9a:ce:57:5f: 04:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:70:4F:53:2F:7F:74:7A:FD:CF:B4:6E:7A:48:84:D8:F2:69:AA:1D X509v3 Authority Key Identifier: keyid:59:0F:A3:C6:70:00:E9:69:85:79:1E:63:55:AD:1F:6D:AD:5C:18:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91275A6/CA86944A9C5D11ED97B3F548C4F9AE02/WQ-jxnAA6WmFeR5jVa0fba1cGHY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WQ-jxnAA6WmFeR5jVa0fba1cGHY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91275A6/CA86944A9C5D11ED97B3F548C4F9AE02/WQ-jxnAA6WmFeR5jVa0fba1cGHY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:9d:cc:aa:3e:96:9e:31:2c:aa:52:10:75:ba:6e:c7:45:5f: 87:ea:e4:23:4c:17:c4:15:1e:ee:bc:35:a0:ee:77:76:58:ad: 4c:23:6f:67:18:4d:84:72:7d:48:76:42:d1:2b:99:5d:42:18: 11:8d:cc:bf:e9:de:89:90:7c:8a:c9:6f:86:9a:d8:ee:2f:5d: 26:ac:bf:1d:61:90:c1:bd:99:8c:09:10:8f:05:c9:2e:4f:a0: 8c:37:52:70:41:29:ef:54:78:b1:98:e2:06:2f:15:bf:ae:3e: 71:52:48:93:1f:8f:f2:fb:e8:17:8a:88:1e:4a:c3:c1:a6:1f: 12:38:64:2b:fd:a2:f5:57:49:84:4f:fb:3b:96:48:1d:56:80: 2a:a7:9c:fe:77:e2:04:66:59:dc:0e:b5:6e:69:c6:0f:a2:a2: ff:2b:0d:a1:71:d2:cd:bc:5e:11:6a:bb:e3:b8:cd:74:e9:01: a6:b2:fb:36:f8:76:40:ad:23:03:2d:98:65:a3:1b:e3:aa:d9: 52:ba:94:72:1a:80:74:6b:ba:13:4f:8b:4a:16:3b:81:94:95: 2f:4d:9c:9d:46:e3:71:38:13:2e:bc:fa:40:ec:c2:6a:33:6d: 00:b0:20:1d:00:f2:86:69:8f:20:ef:91:11:32:3d:e0:66:53: 19:97:b0:fd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc1QTYxMTAvBgNVBAUTKDU5MEZBM0M2NzAwMEU5Njk4NTc5MUU2MzU1QUQxRjZE QUQ1QzE4NzYwHhcNMjUxMjIzMDExMDI2WhcNMjUxMjMwMDExMDI2WjAYMRYwFAYD VQQDDA02OTQ5ZWMwMi05NjBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn5Rh4ruiVzJnlVvBh7DEbCM3PLouzh70BE29Cvz/37kgE2fTd4SrQYJyVxof 6aO2V2ouFXMvAVYTunceGJ20Z39Kg+pfGpJoyXozA4+32MZi6I7XWKo/8tXvMCog DC40CvBUjs0y8kRaahOw4PFtuvkuV1mAGnzl831B+yJSZOPcIJnmBzIzx+9D9rLo aMhA+cecUAU/KTatJg8M4pZ7/5eX7uRTQqaZlwbvzy+ToVVzcxN22U9ZIqrcmitH z+7vSOChvRK4Iq3YYHYhusWQZAjOHIrbrF21YDMdCJYKiTrqgmQE0poq7nJKPuLZ 0aYIVrQk4e7Er5unqJrOV18EVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC5wT1Mv f3R6/c+0bnpIhNjyaaodMB8GA1UdIwQYMBaAFFkPo8ZwAOlphXkeY1WtH22tXBh2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzVBNi9DQTg2OTQ0QTlD NUQxMUVEOTdCM0Y1NDhDNEY5QUUwMi9XUS1qeG5BQTZXbUZlUjVqVmEwZmJhMWNH SFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dRLWp4bkFBNldtRmVSNWpWYTBmYmExY0dIWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzVBNi9DQTg2OTQ0QTlDNUQxMUVEOTdCM0Y1NDhDNEY5QUUwMi9XUS1qeG5BQTZX bUZlUjVqVmEwZmJhMWNHSFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCrncyqPpaeMSyqUhB1um7HRV+H6uQjTBfEFR7uvDWg7nd2WK1MI29n GE2Ecn1IdkLRK5ldQhgRjcy/6d6JkHyKyW+GmtjuL10mrL8dYZDBvZmMCRCPBcku T6CMN1JwQSnvVHixmOIGLxW/rj5xUkiTH4/y++gXiogeSsPBph8SOGQr/aL1V0mE T/s7lkgdVoAqp5z+d+IEZlncDrVuacYPoqL/Kw2hcdLNvF4RarvjuM106QGmsvs2 +HZArSMDLZhloxvjqtlSupRyGoB0a7oTT4tKFjuBlJUvTZydRuNxOBMuvPpA7MJq M20AsCAdAPKGaY8g75ERMj3gZlMZl7D9 -----END CERTIFICATE-----Generated at Wed Dec 24 17:35:03 2025 by rpki-client