This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB492/2C0B32D8093611F0A2842D57C4F9AE02/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.mft File: QOS9Nq4VB3_lmYXRNw1dZGcKiNk.mft (raw, json) Hash identifier: kfx+GxrVll5H74f8vND+kVBktQkweQeD6DGQIfI1IIQ= Subject key identifier: AF:FC:D0:E2:DD:B0:1D:CF:67:B6:36:C0:C3:EF:C3:92:64:BC:C5:8F Authority key identifier: 40:E4:BD:36:AE:15:07:7F:E5:99:85:D1:37:0D:5D:64:67:0A:88:D9 Certificate issuer: /CN=A91BB492/serialNumber=40E4BD36AE15077FE59985D1370D5D64670A88D9 Certificate serial: 8C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB492/2C0B32D8093611F0A2842D57C4F9AE02/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.mft Manifest number: 8C Signing time: Tue 23 Dec 2025 05:30:08 +0000 Manifest this update: Tue 23 Dec 2025 05:30:07 +0000 Manifest next update: Tue 30 Dec 2025 05:30:07 +0000 Files and hashes: 1: QOS9Nq4VB3_lmYXRNw1dZGcKiNk.crl (hash: vcwIf9tJQFeWfAoDaJB/QEy21QwzwdqyFeqS5PHl3/o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB492/2C0B32D8093611F0A2842D57C4F9AE02/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.crl rsync://rpki.apnic.net/member_repository/A91BB492/2C0B32D8093611F0A2842D57C4F9AE02/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 05:30:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 140 (0x8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB492, serialNumber=40E4BD36AE15077FE59985D1370D5D64670A88D9 Validity Not Before: Dec 23 05:30:07 2025 GMT Not After : Dec 30 05:30:07 2025 GMT Subject: CN=694a28e0-d23e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:39:b5:8c:2c:78:74:2e:00:ec:aa:8e:ab:3e: 81:e8:d0:17:95:6b:bb:93:0c:a9:2b:59:c1:6e:76: 6e:ca:ad:a2:d1:5d:b0:73:8a:88:ac:35:51:26:d9: bf:eb:3c:b2:5b:4d:27:02:13:46:64:aa:3b:c8:93: 51:54:f3:5f:fa:7b:b4:2d:a1:06:7b:f6:78:5c:3d: 13:6f:5e:83:d5:ec:b1:9a:b7:89:22:bb:83:af:b0: cd:fa:71:a1:bd:a3:5b:82:4c:f3:81:72:77:55:4a: ea:02:03:a0:51:6e:6b:4c:c0:9c:eb:00:ec:59:83: 26:53:ae:1b:e1:46:2f:a6:38:28:29:e2:f0:1d:6b: 90:bd:f0:78:f1:1d:ff:46:5d:8e:8a:c6:a6:47:b0: bc:21:e8:34:9e:53:8b:d8:93:3a:1b:d4:77:02:ef: b6:65:ec:83:b4:17:cb:e4:28:b0:9d:51:c4:60:4e: 26:fa:be:50:1e:0a:b6:93:4d:1c:82:53:9d:a2:93: 9a:b3:ad:82:94:77:67:a1:9c:9b:07:18:c6:40:01: 91:f2:b6:55:ed:0a:dd:49:7e:fa:ac:50:cf:54:5d: 4c:07:a7:d1:03:28:9c:cc:24:26:b3:a8:4b:54:d1: fe:94:67:7a:06:67:88:3d:06:a9:5a:3d:e6:f6:ff: 36:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:FC:D0:E2:DD:B0:1D:CF:67:B6:36:C0:C3:EF:C3:92:64:BC:C5:8F X509v3 Authority Key Identifier: keyid:40:E4:BD:36:AE:15:07:7F:E5:99:85:D1:37:0D:5D:64:67:0A:88:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB492/2C0B32D8093611F0A2842D57C4F9AE02/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB492/2C0B32D8093611F0A2842D57C4F9AE02/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:ec:93:89:08:bc:da:31:38:0b:5c:a2:45:ec:48:12:85:ff: 11:80:99:8f:c8:ad:97:f6:52:90:08:0c:61:99:13:8b:81:96: eb:47:d7:02:41:70:61:c0:c6:6a:4e:71:4c:42:b4:b9:de:4a: ac:2f:0f:ac:98:0a:18:84:80:34:2a:89:db:ef:11:56:f0:8a: ef:8f:47:9f:af:93:45:1c:7e:26:e3:3c:4a:33:3c:05:a2:82: 55:5a:64:41:dd:e3:f6:a2:4e:d1:c3:51:cc:ca:02:8a:4f:b5: 0c:9f:ec:a9:d0:b2:62:b1:60:96:47:51:6a:e5:69:81:cc:1c: cf:c5:c1:e0:da:7c:d2:5a:57:7f:9b:8e:53:39:43:bc:e4:7f: 59:5d:28:fe:0e:c7:3c:f0:23:49:98:d1:82:1f:66:a2:d6:e8: c5:b1:be:e6:39:42:2f:02:29:34:fa:e4:e8:c8:f6:55:3e:9a: ac:10:ba:75:5b:0b:4e:4c:0c:b1:28:63:e5:74:2d:e4:51:f9: 31:8e:c9:c5:a2:bd:55:48:34:79:63:77:35:d9:e1:d1:78:7e: e3:cb:bc:20:fa:c7:9f:c9:3a:77:d1:6c:f8:3e:d9:a5:d3:d4: 2a:ee:7a:b2:7c:aa:1a:7b:c0:66:6b:29:6b:0a:0e:6b:9c:87: f4:e4:1c:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI0OTIxMTAvBgNVBAUTKDQwRTRCRDM2QUUxNTA3N0ZFNTk5ODVEMTM3MEQ1RDY0 NjcwQTg4RDkwHhcNMjUxMjIzMDUzMDA3WhcNMjUxMjMwMDUzMDA3WjAYMRYwFAYD VQQDDA02OTRhMjhlMC1kMjNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvjm1jCx4dC4A7KqOqz6B6NAXlWu7kwypK1nBbnZuyq2i0V2wc4qIrDVRJtm/ 6zyyW00nAhNGZKo7yJNRVPNf+nu0LaEGe/Z4XD0Tb16D1eyxmreJIruDr7DN+nGh vaNbgkzzgXJ3VUrqAgOgUW5rTMCc6wDsWYMmU64b4UYvpjgoKeLwHWuQvfB48R3/ Rl2OisamR7C8Ieg0nlOL2JM6G9R3Au+2ZeyDtBfL5CiwnVHEYE4m+r5QHgq2k00c glOdopOas62ClHdnoZybBxjGQAGR8rZV7QrdSX76rFDPVF1MB6fRAyiczCQms6hL VNH+lGd6BmeIPQapWj3m9v82WQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK/80OLd sB3PZ7Y2wMPvw5JkvMWPMB8GA1UdIwQYMBaAFEDkvTauFQd/5ZmF0TcNXWRnCojZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjQ5Mi8yQzBCMzJEODA5 MzYxMUYwQTI4NDJENTdDNEY5QUUwMi9RT1M5TnE0VkIzX2xtWVhSTncxZFpHY0tp TmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FPUzlOcTRWQjNfbG1ZWFJOdzFkWkdjS2lOay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjQ5Mi8yQzBCMzJEODA5MzYxMUYwQTI4NDJENTdDNEY5QUUwMi9RT1M5TnE0VkIz X2xtWVhSTncxZFpHY0tpTmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAW7JOJCLzaMTgLXKJF7EgShf8RgJmPyK2X9lKQCAxhmROLgZbrR9cC QXBhwMZqTnFMQrS53kqsLw+smAoYhIA0Konb7xFW8Irvj0efr5NFHH4m4zxKMzwF ooJVWmRB3eP2ok7Rw1HMygKKT7UMn+yp0LJisWCWR1Fq5WmBzBzPxcHg2nzSWld/ m45TOUO85H9ZXSj+Dsc88CNJmNGCH2ai1ujFsb7mOUIvAik0+uToyPZVPpqsELp1 WwtOTAyxKGPldC3kUfkxjsnFor1VSDR5Y3c12eHReH7jy7wg+sefyTp30Wz4Ptml 09Qq7nqyfKoae8BmaylrCg5rnIf05BwR -----END CERTIFICATE-----Generated at Wed Dec 24 14:14:46 2025 by rpki-client