This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.mft File: -qIKGvsgkct_URR4g_NkpFMJQTE.mft (raw, json) Hash identifier: 2O9JtXVYzBv+5Z28ezTYDKwHNPtrFLr/HeSr+ZwY4hY= Subject key identifier: 35:1E:D2:5F:EA:8F:F2:DB:FC:B0:0F:83:74:BC:0F:AB:65:EC:99:A2 Authority key identifier: FA:A2:0A:1A:FB:20:91:CB:7F:51:14:78:83:F3:64:A4:53:09:41:31 Certificate issuer: /CN=A91AF0E8/serialNumber=FAA20A1AFB2091CB7F51147883F364A453094131 Certificate serial: 3502 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-qIKGvsgkct_URR4g_NkpFMJQTE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.mft Manifest number: 34F7 Signing time: Mon 22 Dec 2025 15:01:09 +0000 Manifest this update: Mon 22 Dec 2025 15:01:08 +0000 Manifest next update: Mon 29 Dec 2025 15:01:08 +0000 Files and hashes: 1: -qIKGvsgkct_URR4g_NkpFMJQTE.crl (hash: dQclZvIO1vCe9b3gfZrbU2z5uSVr9gjJ/dTEiLWuMzg=) 2: 0A956A80B48711EC83327546C4F9AE02.roa (hash: QTUVJsweaVnNBbhlnpDHj+5m7Q6KujtkGNOkASm6SsM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.crl rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-qIKGvsgkct_URR4g_NkpFMJQTE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 15:01:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13570 (0x3502) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF0E8, serialNumber=FAA20A1AFB2091CB7F51147883F364A453094131 Validity Not Before: Dec 22 15:01:08 2025 GMT Not After : Dec 29 15:01:08 2025 GMT Subject: CN=69495d34-5760 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:89:61:24:a1:b5:ae:48:6a:27:1b:7a:28:7e: f9:e1:3f:d1:26:75:d9:af:e0:0c:f0:f2:40:f2:e8: f2:35:c0:9a:d9:25:a7:bf:0c:ae:bf:69:95:b6:5c: f9:60:d9:a4:1e:75:7c:90:e8:5a:76:41:f3:9a:f4: 05:b9:00:5b:44:07:5c:1c:db:80:0a:49:b6:84:8f: c9:9d:a8:21:92:64:59:3c:2f:65:73:f0:46:b6:46: e6:2b:aa:62:9a:06:e2:32:b5:4f:91:28:08:e3:b9: 49:68:bf:4d:37:99:1f:cb:68:d2:25:74:b2:13:6f: 98:a4:68:f7:29:38:79:a3:dc:8c:3e:80:47:8f:03: a6:bf:43:9c:99:1f:fa:4c:35:dd:73:9f:84:8a:ef: b0:76:d8:fa:2e:2f:3a:24:e3:8c:f1:15:fc:5c:5a: 23:84:7e:57:93:85:87:b3:94:71:8c:f7:26:2a:34: 3e:00:1c:9b:17:85:d4:3f:cf:7a:0a:f9:ad:e7:d3: 15:91:4f:42:04:c0:47:f7:2e:e8:86:79:a2:c2:0c: 58:7d:dd:a2:ab:3b:36:d2:35:10:d7:12:6b:19:a9: 71:49:a2:20:fb:3a:27:de:90:39:c8:4d:3b:db:5e: 9b:82:62:1e:0b:be:0f:80:e3:6a:75:7c:da:fc:b5: 12:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:1E:D2:5F:EA:8F:F2:DB:FC:B0:0F:83:74:BC:0F:AB:65:EC:99:A2 X509v3 Authority Key Identifier: keyid:FA:A2:0A:1A:FB:20:91:CB:7F:51:14:78:83:F3:64:A4:53:09:41:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-qIKGvsgkct_URR4g_NkpFMJQTE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:d7:51:0b:3e:60:9d:8d:ce:4e:17:b5:be:cb:fe:38:b3:f9: b9:14:42:e2:c5:02:9c:ae:f1:73:1a:36:86:21:8f:cd:51:84: 40:f3:5b:bf:b7:de:51:bf:d5:d9:84:a9:da:42:19:f0:2a:ba: 94:64:c1:16:0b:67:80:e3:59:12:58:9f:96:0c:cf:e7:10:a0: 15:e3:ad:96:97:1f:7c:79:d7:d0:4f:6f:8a:43:73:e9:c6:7b: ea:a6:da:f9:50:cd:eb:d0:48:2c:ce:2a:b7:fd:fd:76:7b:4b: 9e:87:3a:d4:ef:a3:e1:c6:6f:02:f7:56:07:e8:8a:80:4e:d2: c2:2c:b0:4f:09:3f:66:97:eb:cd:dd:ca:b0:5c:b2:86:b1:7a: eb:68:b4:9b:90:2d:da:93:eb:bf:f5:c0:fe:c6:11:54:85:6e: bc:8b:b3:08:30:4e:89:48:3d:16:1c:49:8c:5e:cd:0f:4b:96: da:14:74:ed:5b:31:03:5a:f4:5e:73:35:f1:79:e0:c0:e9:46: bf:f4:84:c2:a9:dd:c6:f1:a4:28:43:ef:32:98:1c:9a:9c:99: 23:8e:4b:b7:14:26:3c:66:d2:25:ac:cc:d6:c6:12:8f:11:9c: aa:dc:a6:ad:82:c2:7e:2a:06:46:5a:cb:29:36:49:27:d4:4e: df:b0:03:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNQIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUYwRTgxMTAvBgNVBAUTKEZBQTIwQTFBRkIyMDkxQ0I3RjUxMTQ3ODgzRjM2NEE0 NTMwOTQxMzEwHhcNMjUxMjIyMTUwMTA4WhcNMjUxMjI5MTUwMTA4WjAYMRYwFAYD VQQDDA02OTQ5NWQzNC01NzYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA34lhJKG1rkhqJxt6KH754T/RJnXZr+AM8PJA8ujyNcCa2SWnvwyuv2mVtlz5 YNmkHnV8kOhadkHzmvQFuQBbRAdcHNuACkm2hI/JnaghkmRZPC9lc/BGtkbmK6pi mgbiMrVPkSgI47lJaL9NN5kfy2jSJXSyE2+YpGj3KTh5o9yMPoBHjwOmv0OcmR/6 TDXdc5+Eiu+wdtj6Li86JOOM8RX8XFojhH5Xk4WHs5RxjPcmKjQ+ABybF4XUP896 Cvmt59MVkU9CBMBH9y7ohnmiwgxYfd2iqzs20jUQ1xJrGalxSaIg+zon3pA5yE07 216bgmIeC74PgONqdXza/LUSTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDUe0l/q j/Lb/LAPg3S8D6tl7JmiMB8GA1UdIwQYMBaAFPqiChr7IJHLf1EUeIPzZKRTCUEx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjBFOC80NTc5NkFEMjFE QTMxMUUyOUZGQjhDOTgwOEIwMkNEMi8tcUlLR3ZzZ2tjdF9VUlI0Z19Oa3BGTUpR VEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1xSUtHdnNna2N0X1VSUjRnX05rcEZNSlFURS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjBFOC80NTc5NkFEMjFEQTMxMUUyOUZGQjhDOTgwOEIwMkNEMi8tcUlLR3ZzZ2tj dF9VUlI0Z19Oa3BGTUpRVEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBs11ELPmCdjc5OF7W+y/44s/m5FELixQKcrvFzGjaGIY/NUYRA81u/ t95Rv9XZhKnaQhnwKrqUZMEWC2eA41kSWJ+WDM/nEKAV462Wlx98edfQT2+KQ3Pp xnvqptr5UM3r0Egsziq3/f12e0uehzrU76Phxm8C91YH6IqATtLCLLBPCT9ml+vN 3cqwXLKGsXrraLSbkC3ak+u/9cD+xhFUhW68i7MIME6JSD0WHEmMXs0PS5baFHTt WzEDWvReczXxeeDA6Ua/9ITCqd3G8aQoQ+8ymByanJkjjku3FCY8ZtIlrMzWxhKP EZyq3KatgsJ+KgZGWsspNkkn1E7fsAOh -----END CERTIFICATE-----Generated at Wed Dec 24 14:10:43 2025 by rpki-client