This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A25DF/EF4AD4525ED511F09CF1D50CC4F9AE02/QbQ0kVpJGdzvV9aXfEBIDfwxE00.mft File: QbQ0kVpJGdzvV9aXfEBIDfwxE00.mft (raw, json) Hash identifier: Hmqs5Jedc5DBAWxQ1AM4AbVkvHQulHwIfMoS0vWOYhU= Subject key identifier: 49:4D:03:A0:5B:3F:5F:66:C5:B0:30:C3:42:03:7F:66:B8:93:69:9D Authority key identifier: 41:B4:34:91:5A:49:19:DC:EF:57:D6:97:7C:40:48:0D:FC:31:13:4D Certificate issuer: /CN=A91A25DF/serialNumber=41B434915A4919DCEF57D6977C40480DFC31134D Certificate serial: 57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QbQ0kVpJGdzvV9aXfEBIDfwxE00.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A25DF/EF4AD4525ED511F09CF1D50CC4F9AE02/QbQ0kVpJGdzvV9aXfEBIDfwxE00.mft Manifest number: 56 Signing time: Tue 23 Dec 2025 06:04:46 +0000 Manifest this update: Tue 23 Dec 2025 06:04:46 +0000 Manifest next update: Tue 30 Dec 2025 06:04:46 +0000 Files and hashes: 1: QbQ0kVpJGdzvV9aXfEBIDfwxE00.crl (hash: e3iabP+Rrsx/vIOhl/lm24h4ummlzQoZfWHEMEf+QHE=) 2: C5B717905EDA11F0A5EAB579C4F9AE02.roa (hash: PqNnMtc0YzN3eHNjrg0ykkeSPjuNLhEa4HAV6yMUzA8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A25DF/EF4AD4525ED511F09CF1D50CC4F9AE02/QbQ0kVpJGdzvV9aXfEBIDfwxE00.crl rsync://rpki.apnic.net/member_repository/A91A25DF/EF4AD4525ED511F09CF1D50CC4F9AE02/QbQ0kVpJGdzvV9aXfEBIDfwxE00.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QbQ0kVpJGdzvV9aXfEBIDfwxE00.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 06:04:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 87 (0x57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A25DF, serialNumber=41B434915A4919DCEF57D6977C40480DFC31134D Validity Not Before: Dec 23 06:04:46 2025 GMT Not After : Dec 30 06:04:46 2025 GMT Subject: CN=694a30fe-618c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:61:33:bc:c2:8b:1d:1a:95:46:92:61:69:d2: b5:a7:d0:2a:28:f9:08:dd:ce:8f:91:9b:fd:e1:f2: a1:d9:bd:62:1c:56:a5:96:17:32:aa:17:f5:28:fb: cb:c2:64:eb:cf:db:28:13:36:51:95:2f:89:8c:20: ce:00:ce:30:fd:d5:a1:6a:ae:70:e2:bc:5b:cc:b6: 1d:af:58:73:c5:cd:a7:12:a0:75:fb:5c:bf:58:97: bb:d3:69:39:f9:01:91:92:e6:3f:c1:47:b6:7e:25: f2:f6:c5:11:be:ec:52:0d:ea:a3:75:e0:86:cc:e2: 98:f2:c7:f1:ff:d1:e1:cc:0e:64:0a:20:c9:bd:f2: 03:09:48:de:3a:db:9d:a8:55:35:5f:fd:90:5d:83: f3:99:1b:ab:3f:7e:9b:ae:0a:a2:11:00:0b:60:88: 75:80:09:2f:72:cb:02:1c:8c:25:b0:3b:cc:92:e7: 33:1d:1d:77:78:ba:b6:3e:db:5a:75:ca:5d:c2:91: f8:d4:7b:e7:ca:40:5b:01:7e:33:86:31:a4:d3:d7: 43:e2:70:88:8c:a4:44:ed:dd:f4:46:b7:aa:cd:73: fd:f4:fb:11:1a:98:ad:72:58:d3:87:17:39:07:7a: 79:c2:ac:77:56:7e:54:87:1f:18:99:6b:7a:e5:72: 46:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:4D:03:A0:5B:3F:5F:66:C5:B0:30:C3:42:03:7F:66:B8:93:69:9D X509v3 Authority Key Identifier: keyid:41:B4:34:91:5A:49:19:DC:EF:57:D6:97:7C:40:48:0D:FC:31:13:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A25DF/EF4AD4525ED511F09CF1D50CC4F9AE02/QbQ0kVpJGdzvV9aXfEBIDfwxE00.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QbQ0kVpJGdzvV9aXfEBIDfwxE00.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A25DF/EF4AD4525ED511F09CF1D50CC4F9AE02/QbQ0kVpJGdzvV9aXfEBIDfwxE00.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:89:12:17:cb:71:1e:cb:f6:dc:e3:7b:99:e8:5c:1e:10:b1: 43:f2:2c:50:32:30:94:46:fa:19:65:bf:05:16:5d:c4:58:64: 8b:f5:7a:55:01:0e:58:c3:73:08:59:8d:c4:a7:e1:f0:25:cd: ff:bd:73:10:f1:7b:f7:29:5f:ac:85:98:71:39:f3:19:53:1c: ab:39:f3:38:53:87:5e:05:0a:a0:f6:a9:06:cf:fb:c9:de:00: de:75:3d:3a:54:e6:f0:d3:1b:83:55:33:64:07:47:31:d8:50: ae:f0:7a:86:2f:7c:10:2b:b3:0b:8a:50:8b:4f:34:bb:1c:0a: d0:3a:46:f0:7f:25:f6:30:60:64:0c:0b:1e:f6:55:ed:0c:6e: 86:3a:f3:e8:b6:e3:8f:9a:af:a6:e6:96:89:f5:1c:7c:90:4e: e5:09:18:f1:a9:ca:a2:e6:f3:3e:2f:af:03:e7:4b:14:f8:18: 9e:4f:86:69:10:c1:52:98:3f:8b:c2:bf:3b:46:cb:cb:f3:4f: 5b:5d:76:95:5d:79:fd:df:96:50:90:04:e3:74:4f:13:ce:f7: 0c:e9:62:dd:28:06:af:0d:ef:71:7f:5f:5a:8c:70:a5:8d:bb: 84:f0:24:80:c6:da:9b:f6:a8:07:7c:b0:cf:6c:7f:aa:cf:2d: 33:9a:74:d7 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBVzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB MjVERjExMC8GA1UEBRMoNDFCNDM0OTE1QTQ5MTlEQ0VGNTdENjk3N0M0MDQ4MERG QzMxMTM0RDAeFw0yNTEyMjMwNjA0NDZaFw0yNTEyMzAwNjA0NDZaMBgxFjAUBgNV BAMMDTY5NGEzMGZlLTYxOGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCyYTO8wosdGpVGkmFp0rWn0Coo+Qjdzo+Rm/3h8qHZvWIcVqWWFzKqF/Uo+8vC ZOvP2ygTNlGVL4mMIM4AzjD91aFqrnDivFvMth2vWHPFzacSoHX7XL9Yl7vTaTn5 AZGS5j/BR7Z+JfL2xRG+7FIN6qN14IbM4pjyx/H/0eHMDmQKIMm98gMJSN46252o VTVf/ZBdg/OZG6s/fpuuCqIRAAtgiHWACS9yywIcjCWwO8yS5zMdHXd4urY+21p1 yl3CkfjUe+fKQFsBfjOGMaTT10PicIiMpETt3fRGt6rNc/30+xEamK1yWNOHFzkH ennCrHdWflSHHxiZa3rlckZ/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUSU0DoFs/ X2bFsDDDQgN/ZriTaZ0wHwYDVR0jBBgwFoAUQbQ0kVpJGdzvV9aXfEBIDfwxE00w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEyNURGL0VGNEFENDUyNUVE NTExRjA5Q0YxRDUwQ0M0RjlBRTAyL1FiUTBrVnBKR2R6dlY5YVhmRUJJRGZ3eEUw MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUWJRMGtWcEpHZHp2VjlhWGZFQklEZnd4RTAwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEy NURGL0VGNEFENDUyNUVENTExRjA5Q0YxRDUwQ0M0RjlBRTAyL1FiUTBrVnBKR2R6 dlY5YVhmRUJJRGZ3eEUwMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAImJEhfLcR7L9tzje5noXB4QsUPyLFAyMJRG+hllvwUWXcRYZIv1elUB DljDcwhZjcSn4fAlzf+9cxDxe/cpX6yFmHE58xlTHKs58zhTh14FCqD2qQbP+8ne AN51PTpU5vDTG4NVM2QHRzHYUK7weoYvfBArswuKUItPNLscCtA6RvB/JfYwYGQM Cx72Ve0MboY68+i244+ar6bmlon1HHyQTuUJGPGpyqLm8z4vrwPnSxT4GJ5PhmkQ wVKYP4vCvztGy8vzT1tddpVdef3fllCQBON0TxPO9wzpYt0oBq8N73F/X1qMcKWN u4TwJIDG2pv2qAd8sM9sf6rPLTOadNc= -----END CERTIFICATE-----Generated at Wed Dec 24 15:42:17 2025 by rpki-client