This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91501FC/304A89DCDE3411EC9640563DC4F9AE02/QV0e9X3aeKX8lSQFQkhAAozUfZk.mft File: QV0e9X3aeKX8lSQFQkhAAozUfZk.mft (raw, json) Hash identifier: kTjtcK4aIKOZHvJ7p0uua0X2JzfMXySa06Od6seuOik= Subject key identifier: BA:90:03:5E:58:97:D4:26:0A:8C:EF:D1:D7:5B:B3:C6:E0:99:90:0D Authority key identifier: 41:5D:1E:F5:7D:DA:78:A5:FC:95:24:05:42:48:40:02:8C:D4:7D:99 Certificate issuer: /CN=A91501FC/serialNumber=415D1EF57DDA78A5FC952405424840028CD47D99 Certificate serial: 035F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QV0e9X3aeKX8lSQFQkhAAozUfZk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91501FC/304A89DCDE3411EC9640563DC4F9AE02/QV0e9X3aeKX8lSQFQkhAAozUfZk.mft Manifest number: 035B Signing time: Mon 22 Dec 2025 23:57:43 +0000 Manifest this update: Mon 22 Dec 2025 23:57:43 +0000 Manifest next update: Mon 29 Dec 2025 23:57:43 +0000 Files and hashes: 1: QV0e9X3aeKX8lSQFQkhAAozUfZk.crl (hash: f7ZGvc9eh+315yYyJPm4zrOgqwCYHIoXMcaTWSHz6Mw=) 2: 09513072DE3B11EC9F25BA5FC4F9AE02.roa (hash: WES9ucDGz8CEKO/wZoNG/u047WdQevrcBNglpR6DHnI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91501FC/304A89DCDE3411EC9640563DC4F9AE02/QV0e9X3aeKX8lSQFQkhAAozUfZk.crl rsync://rpki.apnic.net/member_repository/A91501FC/304A89DCDE3411EC9640563DC4F9AE02/QV0e9X3aeKX8lSQFQkhAAozUfZk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QV0e9X3aeKX8lSQFQkhAAozUfZk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 23:57:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 863 (0x35f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91501FC, serialNumber=415D1EF57DDA78A5FC952405424840028CD47D99 Validity Not Before: Dec 22 23:57:43 2025 GMT Not After : Dec 29 23:57:43 2025 GMT Subject: CN=6949daf7-4027 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:22:28:70:b6:c8:43:5f:ff:a1:32:b6:09:5e: 1a:80:3f:6d:d6:ac:1a:0b:ad:bc:6b:75:3d:d3:1e: 40:5f:01:dd:15:18:01:2d:96:bc:a8:3c:28:7f:91: 85:2e:af:b8:0f:bf:56:84:28:98:d3:ff:a6:1f:fc: 74:ff:92:48:2a:62:c1:37:1a:20:a7:d3:34:4c:cf: 16:78:d4:0f:d4:f4:94:40:fc:1b:19:0c:bf:50:86: bb:e8:4d:de:65:62:c8:25:97:fc:78:63:15:36:a4: ed:5d:92:a2:bc:0e:42:fb:36:43:6a:ef:44:42:ba: 31:29:d3:8b:fe:40:57:65:92:7f:e5:cb:b3:42:ac: 22:93:d3:8a:ea:f0:af:63:89:4b:8a:b0:1e:01:9c: 28:10:60:65:bf:b3:89:29:db:7f:3b:a6:16:84:a0: ba:b3:4a:4f:32:89:cc:3e:48:87:59:07:6e:f2:ef: 37:49:05:1f:1d:7f:67:c1:35:c1:7c:25:6e:fa:6b: d2:cd:5c:7a:3e:7e:05:bd:8a:6d:23:86:d7:2e:41: 58:95:96:f8:85:48:16:be:14:d5:e1:f9:5f:45:ec: 89:89:60:52:a7:0d:8a:8d:56:2a:ed:b6:c1:92:05: 2f:f2:2c:e0:44:5a:14:5b:b5:19:18:ed:a9:55:7a: cc:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:90:03:5E:58:97:D4:26:0A:8C:EF:D1:D7:5B:B3:C6:E0:99:90:0D X509v3 Authority Key Identifier: keyid:41:5D:1E:F5:7D:DA:78:A5:FC:95:24:05:42:48:40:02:8C:D4:7D:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91501FC/304A89DCDE3411EC9640563DC4F9AE02/QV0e9X3aeKX8lSQFQkhAAozUfZk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QV0e9X3aeKX8lSQFQkhAAozUfZk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91501FC/304A89DCDE3411EC9640563DC4F9AE02/QV0e9X3aeKX8lSQFQkhAAozUfZk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:bb:ef:b0:47:65:01:ce:8c:4a:4d:69:96:11:05:fa:bd:f6: 59:57:23:8a:f5:ce:7d:f4:0d:33:03:8c:a5:d7:f1:28:33:8b: ba:0d:99:f6:70:a9:d8:ca:f6:b0:bd:d1:1f:64:90:6b:ab:80: 92:32:e6:7e:0c:e4:76:cf:60:fe:f3:c2:19:d2:01:dc:47:42: 72:21:55:10:a3:99:25:ad:2b:6b:94:f8:6a:56:c3:04:db:e1: 0e:ec:50:a7:1d:90:22:d2:d8:73:b9:85:e6:f5:5e:9a:8d:44: 5e:16:8a:32:6e:7a:9f:d1:55:d6:7d:2e:23:cc:eb:38:02:9f: 42:37:dc:a5:48:0b:0d:9e:9a:47:07:18:8c:f5:79:b7:e2:74: dc:64:b4:2f:6c:ef:17:58:9e:20:3e:33:b9:8c:bb:41:07:0b: 42:ff:4c:de:f1:b5:dd:8b:34:9f:e4:18:59:5c:a3:2a:07:9e: 80:58:b2:df:23:a8:e2:37:42:1b:47:f1:36:a5:d0:e4:0b:87: 9b:1e:66:10:6d:d0:17:0c:d4:4d:23:15:cc:d1:cb:87:ff:76: 66:c5:df:63:54:b5:bb:de:93:0d:f1:fc:9d:ff:e8:8a:b8:75: 18:32:b2:b0:e8:60:18:13:57:95:f4:8d:67:84:f0:94:3d:8e: 02:20:ac:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA18wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTAxRkMxMTAvBgNVBAUTKDQxNUQxRUY1N0REQTc4QTVGQzk1MjQwNTQyNDg0MDAy OENENDdEOTkwHhcNMjUxMjIyMjM1NzQzWhcNMjUxMjI5MjM1NzQzWjAYMRYwFAYD VQQDDA02OTQ5ZGFmNy00MDI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3SIocLbIQ1//oTK2CV4agD9t1qwaC628a3U90x5AXwHdFRgBLZa8qDwof5GF Lq+4D79WhCiY0/+mH/x0/5JIKmLBNxogp9M0TM8WeNQP1PSUQPwbGQy/UIa76E3e ZWLIJZf8eGMVNqTtXZKivA5C+zZDau9EQroxKdOL/kBXZZJ/5cuzQqwik9OK6vCv Y4lLirAeAZwoEGBlv7OJKdt/O6YWhKC6s0pPMonMPkiHWQdu8u83SQUfHX9nwTXB fCVu+mvSzVx6Pn4FvYptI4bXLkFYlZb4hUgWvhTV4flfReyJiWBSpw2KjVYq7bbB kgUv8izgRFoUW7UZGO2pVXrMQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLqQA15Y l9QmCozv0ddbs8bgmZANMB8GA1UdIwQYMBaAFEFdHvV92nil/JUkBUJIQAKM1H2Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MDFGQy8zMDRBODlEQ0RF MzQxMUVDOTY0MDU2M0RDNEY5QUUwMi9RVjBlOVgzYWVLWDhsU1FGUWtoQUFvelVm WmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FWMGU5WDNhZUtYOGxTUUZRa2hBQW96VWZaay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MDFGQy8zMDRBODlEQ0RFMzQxMUVDOTY0MDU2M0RDNEY5QUUwMi9RVjBlOVgzYWVL WDhsU1FGUWtoQUFvelVmWmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWu++wR2UBzoxKTWmWEQX6vfZZVyOK9c599A0zA4yl1/EoM4u6DZn2 cKnYyvawvdEfZJBrq4CSMuZ+DOR2z2D+88IZ0gHcR0JyIVUQo5klrStrlPhqVsME 2+EO7FCnHZAi0thzuYXm9V6ajUReFooybnqf0VXWfS4jzOs4Ap9CN9ylSAsNnppH BxiM9Xm34nTcZLQvbO8XWJ4gPjO5jLtBBwtC/0ze8bXdizSf5BhZXKMqB56AWLLf I6jiN0IbR/E2pdDkC4ebHmYQbdAXDNRNIxXM0cuH/3Zmxd9jVLW73pMN8fyd/+iK uHUYMrKw6GAYE1eV9I1nhPCUPY4CIKy7 -----END CERTIFICATE-----Generated at Wed Dec 24 14:09:49 2025 by rpki-client