This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D7C1D/A8070AF28AF011EAA9528309C4F9AE02/qK6pspMKYU1coxq59-hDeTYaL0M.mft File: qK6pspMKYU1coxq59-hDeTYaL0M.mft (raw, json) Hash identifier: S4K/LIzK8Aorl73vZZu7HrTo0BE8zO9UHYPShO5PVvg= Subject key identifier: 84:06:7E:95:54:06:BA:A1:2A:57:FD:33:F9:85:1E:E2:9D:53:3B:4D Authority key identifier: A8:AE:A9:B2:93:0A:61:4D:5C:A3:1A:B9:F7:E8:43:79:36:1A:2F:43 Certificate issuer: /CN=A91D7C1D/serialNumber=A8AEA9B2930A614D5CA31AB9F7E84379361A2F43 Certificate serial: 0A16 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qK6pspMKYU1coxq59-hDeTYaL0M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D7C1D/A8070AF28AF011EAA9528309C4F9AE02/qK6pspMKYU1coxq59-hDeTYaL0M.mft Manifest number: 0A07 Signing time: Sat 20 Dec 2025 19:19:43 +0000 Manifest this update: Sat 20 Dec 2025 19:19:43 +0000 Manifest next update: Sat 27 Dec 2025 19:19:43 +0000 Files and hashes: 1: qK6pspMKYU1coxq59-hDeTYaL0M.crl (hash: 9LpeWjqOJB0UwqkPRFHZQUFaHFeaTVE39PnpYpiCSpA=) 2: A292E3529E9711EEB6899B1CC4F9AE02.roa (hash: Ogu9kxXrFRJanE7jcwo9P/mePv/PXm/3vRabACePad8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D7C1D/A8070AF28AF011EAA9528309C4F9AE02/qK6pspMKYU1coxq59-hDeTYaL0M.crl rsync://rpki.apnic.net/member_repository/A91D7C1D/A8070AF28AF011EAA9528309C4F9AE02/qK6pspMKYU1coxq59-hDeTYaL0M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qK6pspMKYU1coxq59-hDeTYaL0M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 19:19:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2582 (0xa16) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D7C1D, serialNumber=A8AEA9B2930A614D5CA31AB9F7E84379361A2F43 Validity Not Before: Dec 20 19:19:43 2025 GMT Not After : Dec 27 19:19:43 2025 GMT Subject: CN=6946f6cf-5def Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:70:71:9a:9a:b4:49:9a:64:6a:50:4c:ee:0d: 53:2a:07:cc:82:7c:e9:f1:0d:33:23:24:c9:2f:b8: 21:98:20:b7:4f:46:bb:e5:a2:1e:f1:a7:ec:c1:a4: 2b:df:f7:15:ce:8e:7f:99:b1:b1:9a:69:0e:8d:5f: e1:2f:cf:fb:17:cd:cb:38:e2:01:51:3e:c8:b3:82: ed:fb:ad:7b:27:3c:43:7e:37:9e:ac:96:58:6e:c4: e3:ec:73:ca:0d:43:75:75:c5:34:63:76:53:8c:ac: 55:b1:b6:68:41:81:8f:75:0e:85:42:ca:5b:2c:91: 93:50:48:a0:9e:74:05:8b:f9:2d:0d:b8:af:e9:be: e0:db:e0:93:00:bc:e5:0c:d7:0b:a3:36:c8:53:de: b4:64:25:2e:a8:a0:3a:de:48:83:ec:df:4c:fd:54: ae:38:18:d7:b4:55:4a:5c:56:ec:0b:e7:52:99:a3: 84:80:8b:45:4a:0d:92:10:eb:4a:b5:4b:a1:b2:73: 35:57:ad:57:23:ca:23:8c:1a:7a:a3:5b:98:d7:10: 37:12:63:e5:85:70:b3:57:46:21:17:4b:ab:55:f9: c9:f9:27:8b:bf:a9:97:55:47:36:36:e0:96:7f:c4: 8e:6c:af:b6:bc:b3:ac:9d:56:ef:75:41:84:87:af: 92:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:06:7E:95:54:06:BA:A1:2A:57:FD:33:F9:85:1E:E2:9D:53:3B:4D X509v3 Authority Key Identifier: keyid:A8:AE:A9:B2:93:0A:61:4D:5C:A3:1A:B9:F7:E8:43:79:36:1A:2F:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D7C1D/A8070AF28AF011EAA9528309C4F9AE02/qK6pspMKYU1coxq59-hDeTYaL0M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qK6pspMKYU1coxq59-hDeTYaL0M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D7C1D/A8070AF28AF011EAA9528309C4F9AE02/qK6pspMKYU1coxq59-hDeTYaL0M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:2c:a6:bc:2d:4e:fb:b8:39:56:4a:a1:ca:d2:76:2d:97:dd: 91:cc:5b:b5:d4:9f:8f:e7:24:fe:6e:7f:de:4c:6d:26:91:69: 02:d0:5b:35:6e:aa:9b:e0:4b:5b:42:b4:25:f2:1b:2b:9e:52: ea:f2:37:2c:37:68:b0:24:3c:f0:04:dc:19:7b:dd:ec:8f:e7: 22:1b:71:fc:16:6a:8c:d0:10:73:80:e8:74:cb:9a:c4:7a:35: 6e:4d:10:1f:99:3b:a6:93:58:2e:af:e5:13:61:60:15:a9:33: 60:2a:93:5f:f2:3c:5d:df:02:13:77:03:0e:b5:76:46:a0:f0: be:d4:52:e7:b6:60:1b:30:3d:88:ad:fa:27:46:db:c9:8e:89: 10:23:6c:e2:0e:49:bb:b4:88:6b:b8:ec:06:07:a5:87:46:c5: 0c:f7:8d:05:4f:f7:25:82:cd:c9:13:ff:7c:0f:c3:20:34:a0: 61:86:75:4d:9a:ab:54:dd:35:93:8c:cb:08:2b:e7:03:47:e0: c5:54:29:6f:51:56:78:98:a8:b7:d9:05:2b:ac:ce:ae:50:70: be:cb:9c:9e:c4:ad:3d:26:99:51:09:27:05:80:39:17:84:c2: 34:88:8c:5b:e0:bf:1a:87:66:b9:82:90:b6:c1:b6:84:da:71: b9:b8:5f:c3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICChYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDdDMUQxMTAvBgNVBAUTKEE4QUVBOUIyOTMwQTYxNEQ1Q0EzMUFCOUY3RTg0Mzc5 MzYxQTJGNDMwHhcNMjUxMjIwMTkxOTQzWhcNMjUxMjI3MTkxOTQzWjAYMRYwFAYD VQQDDA02OTQ2ZjZjZi01ZGVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoHBxmpq0SZpkalBM7g1TKgfMgnzp8Q0zIyTJL7ghmCC3T0a75aIe8afswaQr 3/cVzo5/mbGxmmkOjV/hL8/7F83LOOIBUT7Is4Lt+617JzxDfjeerJZYbsTj7HPK DUN1dcU0Y3ZTjKxVsbZoQYGPdQ6FQspbLJGTUEignnQFi/ktDbiv6b7g2+CTALzl DNcLozbIU960ZCUuqKA63kiD7N9M/VSuOBjXtFVKXFbsC+dSmaOEgItFSg2SEOtK tUuhsnM1V61XI8ojjBp6o1uY1xA3EmPlhXCzV0YhF0urVfnJ+SeLv6mXVUc2NuCW f8SObK+2vLOsnVbvdUGEh6+SxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIQGfpVU BrqhKlf9M/mFHuKdUztNMB8GA1UdIwQYMBaAFKiuqbKTCmFNXKMauffoQ3k2Gi9D MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEN0MxRC9BODA3MEFGMjhB RjAxMUVBQTk1MjgzMDlDNEY5QUUwMi9xSzZwc3BNS1lVMWNveHE1OS1oRGVUWWFM ME0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FLNnBzcE1LWVUxY294cTU5LWhEZVRZYUwwTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE N0MxRC9BODA3MEFGMjhBRjAxMUVBQTk1MjgzMDlDNEY5QUUwMi9xSzZwc3BNS1lV MWNveHE1OS1oRGVUWWFMME0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC+LKa8LU77uDlWSqHK0nYtl92RzFu11J+P5yT+bn/eTG0mkWkC0Fs1 bqqb4EtbQrQl8hsrnlLq8jcsN2iwJDzwBNwZe93sj+ciG3H8FmqM0BBzgOh0y5rE ejVuTRAfmTumk1gur+UTYWAVqTNgKpNf8jxd3wITdwMOtXZGoPC+1FLntmAbMD2I rfonRtvJjokQI2ziDkm7tIhruOwGB6WHRsUM940FT/clgs3JE/98D8MgNKBhhnVN mqtU3TWTjMsIK+cDR+DFVClvUVZ4mKi32QUrrM6uUHC+y5yexK09JplRCScFgDkX hMI0iIxb4L8ah2a5gpC2wbaE2nG5uF/D -----END CERTIFICATE-----Generated at Mon Dec 22 11:34:15 2025 by rpki-client