This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.mft File: QIyZnDwewBZElFs0d6nyI061eRw.mft (raw, json) Hash identifier: ZwWoRC+VHLT5ZiyNXCPF+sA51MaAKcn9Nf5l2cwSXk0= Subject key identifier: F2:D1:4B:14:16:EE:31:C3:CD:08:39:E1:2E:78:0E:80:56:B5:F3:19 Authority key identifier: 40:8C:99:9C:3C:1E:C0:16:44:94:5B:34:77:A9:F2:23:4E:B5:79:1C Certificate issuer: /CN=A91650A5/serialNumber=408C999C3C1EC01644945B3477A9F2234EB5791C Certificate serial: 2513 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QIyZnDwewBZElFs0d6nyI061eRw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.mft Manifest number: 24F0 Signing time: Sat 20 Dec 2025 15:37:40 +0000 Manifest this update: Sat 20 Dec 2025 15:37:40 +0000 Manifest next update: Sat 27 Dec 2025 15:37:40 +0000 Files and hashes: 1: QIyZnDwewBZElFs0d6nyI061eRw.crl (hash: A+U2Iia+MUtPHv4CpzyYboPu867V+jGumako0crpWF0=) 2: ABA9F4B8AF8411EABF9F844DC4F9AE02.roa (hash: 0WRpreCZL7KBHEz4o02SUgtVLz3Ou83Qb1HlkXxl+V4=) 3: 2486E806F0E311EAA1C58D62C4F9AE02.roa (hash: o9TQ5zjWOlGJay3aR5mHzl6v5wxGxk4ue+WpHK/fjik=) 4: 50A2F64264BC11E8ACC7951EC4F9AE02.roa (hash: mzRK3TSpPRAdSBZvLPRDHoBd646mt2gZoJEdzJuirAk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.crl rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QIyZnDwewBZElFs0d6nyI061eRw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 15:37:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9491 (0x2513) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91650A5, serialNumber=408C999C3C1EC01644945B3477A9F2234EB5791C Validity Not Before: Dec 20 15:37:40 2025 GMT Not After : Dec 27 15:37:40 2025 GMT Subject: CN=6946c2c4-cc29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:31:df:ae:41:8b:74:78:e4:7f:02:b4:a1:49: 43:33:33:12:3b:3b:fc:39:c2:50:10:f6:64:4c:8c: e8:79:57:83:e8:8d:d8:5b:44:94:ac:a5:e3:e2:b6: 60:19:e1:c2:78:bc:4a:57:13:04:55:20:3e:44:d2: cb:39:2d:40:d0:fc:6f:54:db:5e:a7:c1:5f:e2:04: da:6b:76:84:b2:f6:24:f7:2a:ea:9c:0f:e8:8e:95: b0:60:b4:76:b5:ae:bb:90:a0:59:2c:06:2f:c5:c9: ac:27:4b:3d:90:f9:d7:c5:f0:e2:df:1f:ee:3e:c7: e4:44:89:ea:3a:dd:0f:f0:64:17:58:f1:01:5d:46: ba:b3:ee:ca:8a:8b:3d:43:d3:cd:61:02:c6:ee:3b: b7:5a:9f:fa:e1:89:3d:a0:b1:98:51:cf:76:40:9f: 8f:48:60:c9:81:e7:54:49:d7:e8:5a:40:76:a2:b7: 3e:fb:56:7d:7d:44:45:e8:86:9e:7a:d4:b2:1c:37: 39:ea:5a:c4:55:ef:6b:be:ea:de:99:12:45:df:90: b6:d4:a4:a6:26:9b:ee:3c:75:dc:d4:cc:a6:8f:39: 54:4d:01:2f:b1:02:a8:0a:4c:85:76:18:c6:ef:81: b8:b4:a8:1f:ab:b9:98:dc:3a:35:46:b5:66:7f:a2: 35:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:D1:4B:14:16:EE:31:C3:CD:08:39:E1:2E:78:0E:80:56:B5:F3:19 X509v3 Authority Key Identifier: keyid:40:8C:99:9C:3C:1E:C0:16:44:94:5B:34:77:A9:F2:23:4E:B5:79:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QIyZnDwewBZElFs0d6nyI061eRw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:dc:92:b3:99:1f:ac:cc:bb:5f:0b:0e:2c:15:6c:9e:0b:0b: e1:fe:96:de:a0:9b:9d:65:d4:65:01:ac:07:77:38:e0:24:c0: a4:e4:a6:ce:bb:9f:69:15:d0:18:40:b0:e0:c0:41:cb:c1:fa: 20:25:4e:c3:b5:8c:3f:6d:f6:3d:c1:9f:d5:36:e8:0e:e2:82: 19:12:34:1a:29:78:2e:f1:49:02:50:6c:dc:15:cd:fb:38:00: df:0d:b1:40:08:74:7d:d8:21:ac:b8:a7:12:40:b5:0a:bb:8d: 85:81:41:78:d2:dc:a6:88:8b:c1:f1:60:f0:51:d9:65:4b:fb: 0e:e9:a8:14:9f:80:02:0a:d6:46:5c:34:63:17:a7:b1:b8:ed: be:13:25:ea:09:6d:26:85:2e:96:16:76:d9:1e:99:32:16:15: 8d:a9:d7:05:11:00:b4:9e:d4:53:8a:1b:65:3c:e2:9c:88:17: c4:21:68:74:7f:70:46:d6:10:69:39:72:d4:02:ee:d6:e6:52: 56:77:27:84:5a:c3:57:23:cf:5b:27:d7:e6:02:54:94:f9:37: 5e:94:fd:f8:fd:aa:dc:4e:0f:b4:fe:d7:f1:0e:87:2f:c8:e1: 5b:b1:f8:3a:55:77:31:d6:9f:55:a8:a8:43:01:a2:44:b1:04: 3b:b5:81:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJRMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjUwQTUxMTAvBgNVBAUTKDQwOEM5OTlDM0MxRUMwMTY0NDk0NUIzNDc3QTlGMjIz NEVCNTc5MUMwHhcNMjUxMjIwMTUzNzQwWhcNMjUxMjI3MTUzNzQwWjAYMRYwFAYD VQQDDA02OTQ2YzJjNC1jYzI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlTHfrkGLdHjkfwK0oUlDMzMSOzv8OcJQEPZkTIzoeVeD6I3YW0SUrKXj4rZg GeHCeLxKVxMEVSA+RNLLOS1A0PxvVNtep8Ff4gTaa3aEsvYk9yrqnA/ojpWwYLR2 ta67kKBZLAYvxcmsJ0s9kPnXxfDi3x/uPsfkRInqOt0P8GQXWPEBXUa6s+7Kios9 Q9PNYQLG7ju3Wp/64Yk9oLGYUc92QJ+PSGDJgedUSdfoWkB2orc++1Z9fURF6Iae etSyHDc56lrEVe9rvuremRJF35C21KSmJpvuPHXc1MymjzlUTQEvsQKoCkyFdhjG 74G4tKgfq7mY3Do1RrVmf6I1/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPLRSxQW 7jHDzQg54S54DoBWtfMZMB8GA1UdIwQYMBaAFECMmZw8HsAWRJRbNHep8iNOtXkc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTBBNS8xN0RGQjM1QTQ2 RTYxMUU1QjA4REExN0JDNEY5QUUwMi9RSXlabkR3ZXdCWkVsRnMwZDZueUkwNjFl UncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FJeVpuRHdld0JaRWxGczBkNm55STA2MWVSdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTBBNS8xN0RGQjM1QTQ2RTYxMUU1QjA4REExN0JDNEY5QUUwMi9RSXlabkR3ZXdC WkVsRnMwZDZueUkwNjFlUncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCa3JKzmR+szLtfCw4sFWyeCwvh/pbeoJudZdRlAawHdzjgJMCk5KbO u59pFdAYQLDgwEHLwfogJU7DtYw/bfY9wZ/VNugO4oIZEjQaKXgu8UkCUGzcFc37 OADfDbFACHR92CGsuKcSQLUKu42FgUF40tymiIvB8WDwUdllS/sO6agUn4ACCtZG XDRjF6exuO2+EyXqCW0mhS6WFnbZHpkyFhWNqdcFEQC0ntRTihtlPOKciBfEIWh0 f3BG1hBpOXLUAu7W5lJWdyeEWsNXI89bJ9fmAlSU+TdelP34/arcTg+0/tfxDocv yOFbsfg6VXcx1p9VqKhDAaJEsQQ7tYGd -----END CERTIFICATE-----Generated at Sun Dec 21 21:16:05 2025 by rpki-client