This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91971CB/7A750A0A2DD811EA9C35205DC4F9AE02/fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.mft File: fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.mft (raw, json) Hash identifier: vimDeO0eGXkthrx8QCsHs5ZOo59lc0vdtuoQZrVQgsc= Subject key identifier: CF:16:0E:58:08:D6:39:A0:13:AD:E4:78:68:37:7D:A0:5D:55:50:12 Authority key identifier: 7D:04:51:65:B2:9A:68:AF:CB:8B:A8:15:99:CE:30:67:45:44:FD:8F Certificate issuer: /CN=A91971CB/serialNumber=7D045165B29A68AFCB8BA81599CE30674544FD8F Certificate serial: 0BE8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91971CB/7A750A0A2DD811EA9C35205DC4F9AE02/fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.mft Manifest number: 0BE1 Signing time: Sat 20 Dec 2025 15:06:21 +0000 Manifest this update: Sat 20 Dec 2025 15:06:21 +0000 Manifest next update: Sat 27 Dec 2025 15:06:21 +0000 Files and hashes: 1: fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.crl (hash: XsG3FYx5ihNKxXjqHKjvA7jJGOCiXbz9M0X7FHoioQw=) 2: 99D18D463C0211EAA729693AC4F9AE02.roa (hash: /8fEEtPdMyUdjQ1z+LPnGcbnmSc1TogzrljlPk/+Zoo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91971CB/7A750A0A2DD811EA9C35205DC4F9AE02/fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.crl rsync://rpki.apnic.net/member_repository/A91971CB/7A750A0A2DD811EA9C35205DC4F9AE02/fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 14:50:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3048 (0xbe8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91971CB, serialNumber=7D045165B29A68AFCB8BA81599CE30674544FD8F Validity Not Before: Dec 20 15:06:21 2025 GMT Not After : Dec 27 15:06:21 2025 GMT Subject: CN=6946bb6d-1160 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:af:fd:e8:09:3f:72:fd:83:28:d8:df:d5:98: b5:6f:55:76:d2:a5:db:30:9c:4a:19:09:e0:df:9e: 3d:21:21:8c:f7:0c:24:48:a1:16:16:31:a2:35:d9: 06:79:b0:77:39:52:93:b2:0d:99:ea:3f:a4:b6:52: 90:a5:31:49:26:f0:fa:71:62:f8:0b:3e:29:a2:10: 90:28:04:38:a3:38:fc:34:9a:34:99:8f:79:fb:fb: 7a:43:7c:03:86:82:95:d6:13:d6:d1:ea:6f:fa:12: a9:a9:61:e1:47:e7:3b:0f:77:ce:a2:5e:f4:fa:63: e5:e4:1e:f1:be:be:66:13:25:ff:8d:28:1e:b5:97: 74:20:c7:34:59:0a:0b:91:af:ae:14:36:ba:e4:c3: 4d:61:1b:d5:1f:5c:b6:e7:9d:a8:5f:0f:2c:3e:fa: 83:63:cb:f5:92:cd:25:f9:74:47:22:77:59:3a:54: de:5a:39:32:21:2c:00:1f:e9:f5:45:8b:74:2a:18: 64:48:80:d6:25:64:79:e9:af:d0:4c:e2:8f:36:40: 18:88:1c:17:2b:cf:b2:d2:76:df:6b:29:f8:29:ed: e2:37:c3:6c:47:bc:cd:d6:76:56:bb:6c:9a:df:03: a0:8d:8f:9a:75:56:06:47:df:e2:b7:ef:4f:b8:98: 97:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:16:0E:58:08:D6:39:A0:13:AD:E4:78:68:37:7D:A0:5D:55:50:12 X509v3 Authority Key Identifier: keyid:7D:04:51:65:B2:9A:68:AF:CB:8B:A8:15:99:CE:30:67:45:44:FD:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91971CB/7A750A0A2DD811EA9C35205DC4F9AE02/fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91971CB/7A750A0A2DD811EA9C35205DC4F9AE02/fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:e3:5c:27:cf:97:5d:12:d9:ac:aa:fe:0f:32:98:8e:61:f0: 9b:20:0e:92:5b:37:39:ce:56:22:7f:39:af:67:7f:ff:cf:a6: a3:98:57:29:41:3c:5c:b9:5d:7e:b6:66:63:eb:da:d5:17:e2: 4c:14:1b:ed:db:a3:33:db:38:f5:0e:fc:db:7a:5a:35:d5:8e: a3:12:5d:45:81:2c:09:3b:68:d3:be:eb:fa:3a:8d:5b:f2:c4: a0:e2:37:86:b9:a6:d4:ce:57:7c:a0:68:41:6c:16:4e:7c:f0: bf:68:39:9b:d2:b6:ab:50:61:60:2b:b9:e1:cf:af:6a:e3:d5: c8:12:d8:d9:5b:f7:38:a2:71:88:24:f5:c2:c7:5f:10:db:97: 6b:a3:c7:0a:d6:c5:e3:a9:39:e8:08:da:f8:c7:aa:0e:df:65: 74:f9:04:47:2b:78:a1:cc:3e:87:9c:5f:e5:cb:27:91:d3:56: f0:1c:b6:3a:7d:b2:9f:5e:76:23:ab:0b:63:8f:d2:a0:8d:3d: d2:84:f3:0d:69:de:67:6e:58:d7:a0:47:d8:3a:68:a8:a6:e9: 62:f2:ad:29:b7:c1:cd:74:52:0a:c5:df:40:8a:83:0d:e1:4d: 87:96:a4:4a:f1:62:4e:04:9e:11:d2:78:19:9d:c1:04:37:b0: 9c:80:02:53 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC+gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcxQ0IxMTAvBgNVBAUTKDdEMDQ1MTY1QjI5QTY4QUZDQjhCQTgxNTk5Q0UzMDY3 NDU0NEZEOEYwHhcNMjUxMjIwMTUwNjIxWhcNMjUxMjI3MTUwNjIxWjAYMRYwFAYD VQQDDA02OTQ2YmI2ZC0xMTYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo6/96Ak/cv2DKNjf1Zi1b1V20qXbMJxKGQng3549ISGM9wwkSKEWFjGiNdkG ebB3OVKTsg2Z6j+ktlKQpTFJJvD6cWL4Cz4pohCQKAQ4ozj8NJo0mY95+/t6Q3wD hoKV1hPW0epv+hKpqWHhR+c7D3fOol70+mPl5B7xvr5mEyX/jSgetZd0IMc0WQoL ka+uFDa65MNNYRvVH1y2552oXw8sPvqDY8v1ks0l+XRHIndZOlTeWjkyISwAH+n1 RYt0KhhkSIDWJWR56a/QTOKPNkAYiBwXK8+y0nbfayn4Ke3iN8NsR7zN1nZWu2ya 3wOgjY+adVYGR9/it+9PuJiXlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM8WDlgI 1jmgE63keGg3faBdVVASMB8GA1UdIwQYMBaAFH0EUWWymmivy4uoFZnOMGdFRP2P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzFDQi83QTc1MEEwQTJE RDgxMUVBOUMzNTIwNURDNEY5QUUwMi9mUVJSWmJLYWFLX0xpNmdWbWM0d1owVkVf WTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2ZRUlJaYkthYUtfTGk2Z1ZtYzR3WjBWRV9ZOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzFDQi83QTc1MEEwQTJERDgxMUVBOUMzNTIwNURDNEY5QUUwMi9mUVJSWmJLYWFL X0xpNmdWbWM0d1owVkVfWTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCe41wnz5ddEtmsqv4PMpiOYfCbIA6SWzc5zlYifzmvZ3//z6ajmFcp QTxcuV1+tmZj69rVF+JMFBvt26Mz2zj1Dvzbelo11Y6jEl1FgSwJO2jTvuv6Oo1b 8sSg4jeGuabUzld8oGhBbBZOfPC/aDmb0rarUGFgK7nhz69q49XIEtjZW/c4onGI JPXCx18Q25dro8cK1sXjqTnoCNr4x6oO32V0+QRHK3ihzD6HnF/lyyeR01bwHLY6 fbKfXnYjqwtjj9KgjT3ShPMNad5nbljXoEfYOmiopuli8q0pt8HNdFIKxd9AioMN 4U2HlqRK8WJOBJ4R0ngZncEEN7CcgAJT -----END CERTIFICATE-----Generated at Sun Dec 21 02:47:01 2025 by rpki-client