This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91580A1/92560A6A374D11EAA0A3BE55C4F9AE02/Q3_zTue8cFDJyEiGqpTOjPUMJPk.mft File: Q3_zTue8cFDJyEiGqpTOjPUMJPk.mft (raw, json) Hash identifier: YwRRYgVXiGxxkFc//yon/IaT9ZK7fr9IQ5oDr9hyOIY= Subject key identifier: 15:01:DD:40:6B:6F:3E:A1:DB:AC:0E:9F:68:91:45:58:BE:FF:C9:9E Authority key identifier: 43:7F:F3:4E:E7:BC:70:50:C9:C8:48:86:AA:94:CE:8C:F5:0C:24:F9 Certificate issuer: /CN=A91580A1/serialNumber=437FF34EE7BC7050C9C84886AA94CE8CF50C24F9 Certificate serial: 087E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q3_zTue8cFDJyEiGqpTOjPUMJPk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91580A1/92560A6A374D11EAA0A3BE55C4F9AE02/Q3_zTue8cFDJyEiGqpTOjPUMJPk.mft Manifest number: 1410 Signing time: Mon 22 Dec 2025 18:29:39 +0000 Manifest this update: Mon 22 Dec 2025 18:29:39 +0000 Manifest next update: Mon 29 Dec 2025 18:29:39 +0000 Files and hashes: 1: Q3_zTue8cFDJyEiGqpTOjPUMJPk.crl (hash: KVrhGpQeM1D+2So5yFyV+DIx12T/F0mLkmixPwZXz/I=) 2: B65A4FACE18C11ECB1697F55C4F9AE02.roa (hash: 5zkE6RPNVvetKuzik8vsy3mHeLDd3Wj/ciaGchVH9po=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91580A1/92560A6A374D11EAA0A3BE55C4F9AE02/Q3_zTue8cFDJyEiGqpTOjPUMJPk.crl rsync://rpki.apnic.net/member_repository/A91580A1/92560A6A374D11EAA0A3BE55C4F9AE02/Q3_zTue8cFDJyEiGqpTOjPUMJPk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q3_zTue8cFDJyEiGqpTOjPUMJPk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 18:29:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2174 (0x87e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91580A1, serialNumber=437FF34EE7BC7050C9C84886AA94CE8CF50C24F9 Validity Not Before: Dec 22 18:29:39 2025 GMT Not After : Dec 29 18:29:39 2025 GMT Subject: CN=69498e13-9579 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:7c:6b:2a:03:a1:07:0d:94:ab:8b:6f:5d:3e: 82:fd:4f:04:a7:87:97:c3:c1:a9:de:ea:91:ab:d1: 70:f2:08:c0:81:2d:ea:75:21:41:17:10:93:cb:1e: 96:ab:d5:b2:f8:06:8f:4c:90:94:02:27:52:fe:0a: 75:2f:3b:0c:ac:61:ea:e2:09:f9:0d:27:f2:04:6a: 6f:8e:3f:45:9f:35:ab:21:62:ef:db:c4:a6:03:b1: ab:af:c2:ff:50:50:4c:26:70:84:88:6b:ba:ee:da: 39:d1:b2:1c:20:66:e8:da:44:f5:2f:c4:81:95:67: 1d:81:b8:8f:9a:7e:02:b6:4a:06:3d:b0:dc:cb:f0: ee:a3:0c:34:79:91:88:f4:9c:ce:6f:0b:83:c3:60: 36:f3:c1:5b:17:63:6d:53:64:9f:ce:27:e6:81:71: 00:b4:73:54:d9:ca:fb:23:15:7f:a8:61:8d:3f:3c: 54:92:14:a9:7b:58:15:ee:38:6f:27:f7:ec:1b:f9: 4e:b3:db:fc:89:5a:67:90:5a:83:08:8d:f3:cb:be: 0c:33:a5:68:34:3b:44:f3:86:c7:13:6b:7f:92:31: 94:93:e9:42:f1:82:7f:47:b7:a7:75:37:c2:61:ad: d7:73:33:bb:01:86:65:d9:da:d0:66:4f:f0:9a:74: 22:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:01:DD:40:6B:6F:3E:A1:DB:AC:0E:9F:68:91:45:58:BE:FF:C9:9E X509v3 Authority Key Identifier: keyid:43:7F:F3:4E:E7:BC:70:50:C9:C8:48:86:AA:94:CE:8C:F5:0C:24:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91580A1/92560A6A374D11EAA0A3BE55C4F9AE02/Q3_zTue8cFDJyEiGqpTOjPUMJPk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q3_zTue8cFDJyEiGqpTOjPUMJPk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91580A1/92560A6A374D11EAA0A3BE55C4F9AE02/Q3_zTue8cFDJyEiGqpTOjPUMJPk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:b9:3e:64:cd:dd:23:2a:a8:54:04:b0:d2:44:19:e5:82:61: 17:fc:1e:73:76:41:63:80:3c:d8:ca:53:36:fc:d7:ef:61:bb: 2c:4f:c2:3f:b0:2b:c5:43:d5:10:de:79:44:15:b1:80:4d:43: fb:5c:af:48:22:f7:15:cc:85:8d:e8:ac:a9:2c:33:4b:86:e9: 97:d0:22:38:1b:0f:54:6e:c8:be:2c:c8:9d:d8:f9:4a:56:bc: 1e:90:ed:ec:67:c5:1c:23:ce:1f:af:25:9b:9d:47:d2:71:e8: 68:39:48:56:29:79:93:4c:be:06:96:71:20:31:6a:cd:f5:a8: 85:7a:a9:39:6f:28:35:cf:0f:71:a3:51:4f:45:2c:9b:bc:af: 9b:92:6c:70:64:f0:f9:1d:cf:43:99:71:4b:20:57:27:b5:f7: d4:bb:f9:88:82:16:a5:3d:ba:48:d9:94:67:21:21:e3:e8:2f: 7b:63:8a:09:03:df:0c:66:39:51:77:a4:0c:f8:47:78:a6:da: 4a:b5:d1:eb:46:1d:0e:f6:07:2c:64:40:24:f5:b4:ed:13:c8: 9c:e2:b1:0d:f4:33:a5:74:8c:69:f0:08:3a:b3:25:f2:68:02: 80:3b:9d:f0:f1:48:a1:30:27:5b:98:95:c8:86:c0:0f:e0:72: 08:0b:39:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCH4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTgwQTExMTAvBgNVBAUTKDQzN0ZGMzRFRTdCQzcwNTBDOUM4NDg4NkFBOTRDRThD RjUwQzI0RjkwHhcNMjUxMjIyMTgyOTM5WhcNMjUxMjI5MTgyOTM5WjAYMRYwFAYD VQQDDA02OTQ5OGUxMy05NTc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyHxrKgOhBw2Uq4tvXT6C/U8Ep4eXw8Gp3uqRq9Fw8gjAgS3qdSFBFxCTyx6W q9Wy+AaPTJCUAidS/gp1LzsMrGHq4gn5DSfyBGpvjj9FnzWrIWLv28SmA7Grr8L/ UFBMJnCEiGu67to50bIcIGbo2kT1L8SBlWcdgbiPmn4CtkoGPbDcy/Duoww0eZGI 9JzObwuDw2A288FbF2NtU2SfzifmgXEAtHNU2cr7IxV/qGGNPzxUkhSpe1gV7jhv J/fsG/lOs9v8iVpnkFqDCI3zy74MM6VoNDtE84bHE2t/kjGUk+lC8YJ/R7endTfC Ya3XczO7AYZl2drQZk/wmnQiLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBUB3UBr bz6h26wOn2iRRVi+/8meMB8GA1UdIwQYMBaAFEN/807nvHBQychIhqqUzoz1DCT5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODBBMS85MjU2MEE2QTM3 NEQxMUVBQTBBM0JFNTVDNEY5QUUwMi9RM196VHVlOGNGREp5RWlHcXBUT2pQVU1K UGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1EzX3pUdWU4Y0ZESnlFaUdxcFRPalBVTUpQay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODBBMS85MjU2MEE2QTM3NEQxMUVBQTBBM0JFNTVDNEY5QUUwMi9RM196VHVlOGNG REp5RWlHcXBUT2pQVU1KUGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJuT5kzd0jKqhUBLDSRBnlgmEX/B5zdkFjgDzYylM2/NfvYbssT8I/ sCvFQ9UQ3nlEFbGATUP7XK9IIvcVzIWN6KypLDNLhumX0CI4Gw9Ubsi+LMid2PlK VrwekO3sZ8UcI84fryWbnUfScehoOUhWKXmTTL4GlnEgMWrN9aiFeqk5byg1zw9x o1FPRSybvK+bkmxwZPD5Hc9DmXFLIFcntffUu/mIghalPbpI2ZRnISHj6C97Y4oJ A98MZjlRd6QM+Ed4ptpKtdHrRh0O9gcsZEAk9bTtE8ic4rEN9DOldIxp8Ag6syXy aAKAO53w8UihMCdbmJXIhsAP4HIICzkK -----END CERTIFICATE-----Generated at Wed Dec 24 14:12:34 2025 by rpki-client