This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB04D/E958AFE6019C11EC91644B7BC4F9AE02/qhOo9ipv0n6bme44axRRnm_MhjI.mft File: qhOo9ipv0n6bme44axRRnm_MhjI.mft (raw, json) Hash identifier: pXFI6BYC3CnBMWd8tZ0LiFMVD/EkNHxDZ9U/AboSjSk= Subject key identifier: 1C:58:CA:4D:E6:14:8C:08:60:1F:1F:A5:81:71:F4:E0:EF:BF:3F:F0 Authority key identifier: AA:13:A8:F6:2A:6F:D2:7E:9B:99:EE:38:6B:14:51:9E:6F:CC:86:32 Certificate issuer: /CN=A91DB04D/serialNumber=AA13A8F62A6FD27E9B99EE386B14519E6FCC8632 Certificate serial: 0593 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qhOo9ipv0n6bme44axRRnm_MhjI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB04D/E958AFE6019C11EC91644B7BC4F9AE02/qhOo9ipv0n6bme44axRRnm_MhjI.mft Manifest number: 058C Signing time: Mon 22 Dec 2025 22:24:04 +0000 Manifest this update: Mon 22 Dec 2025 22:24:04 +0000 Manifest next update: Mon 29 Dec 2025 22:24:04 +0000 Files and hashes: 1: qhOo9ipv0n6bme44axRRnm_MhjI.crl (hash: ylVc608uU1hYr4O2x0SUshF4zuzxQEwGAvSXpjuo0Xw=) 2: 5913DBAA01A011ECBFF72849C4F9AE02.roa (hash: v1NPyZcIzLXfq6FcYAJwcqBJcL8OUjXOFJ6ZI59acfQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB04D/E958AFE6019C11EC91644B7BC4F9AE02/qhOo9ipv0n6bme44axRRnm_MhjI.crl rsync://rpki.apnic.net/member_repository/A91DB04D/E958AFE6019C11EC91644B7BC4F9AE02/qhOo9ipv0n6bme44axRRnm_MhjI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qhOo9ipv0n6bme44axRRnm_MhjI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 22:24:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1427 (0x593) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB04D, serialNumber=AA13A8F62A6FD27E9B99EE386B14519E6FCC8632 Validity Not Before: Dec 22 22:24:04 2025 GMT Not After : Dec 29 22:24:04 2025 GMT Subject: CN=6949c504-8bc3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:f6:7d:0a:e6:bf:db:14:fc:2c:fd:a4:f4:c3: 4c:35:f1:a2:80:ee:d5:f3:78:a8:27:de:11:4f:5e: 08:d6:45:be:17:18:51:6a:42:e5:a4:17:de:b5:2f: 68:b9:41:2c:29:87:17:61:bf:6e:90:51:1c:5d:34: 98:ca:7f:6f:4a:59:e0:20:e6:99:24:20:ac:f0:5d: 73:25:76:d4:b1:07:04:79:38:00:b2:9c:f0:89:bc: ef:83:eb:28:d1:c2:5e:ce:8d:f4:82:55:cd:c5:bf: a1:6f:0f:25:2b:6d:08:23:9d:22:ed:3c:2d:12:b4: 78:06:16:66:f4:01:aa:53:5b:a2:55:26:b4:75:c9: a6:54:5c:0f:26:95:06:16:e1:38:d6:2d:1c:f7:e0: 2f:03:47:e7:1b:01:60:5f:f7:2f:7b:4b:ad:c4:28: a2:27:d1:11:d5:38:a3:db:31:48:e3:a6:02:09:46: 1e:09:7e:ac:1f:04:f5:8c:3b:ff:eb:df:20:f7:7b: c1:57:8a:fd:8f:53:d7:17:f5:c2:31:72:ec:06:be: 1e:ac:53:24:b8:cd:99:03:6d:63:01:17:82:d3:84: 6e:d8:fc:87:29:51:9c:63:de:cc:a5:3c:b9:66:c9: 1f:a0:ad:3f:99:8f:21:33:03:e6:6f:5b:08:a4:3e: 69:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:58:CA:4D:E6:14:8C:08:60:1F:1F:A5:81:71:F4:E0:EF:BF:3F:F0 X509v3 Authority Key Identifier: keyid:AA:13:A8:F6:2A:6F:D2:7E:9B:99:EE:38:6B:14:51:9E:6F:CC:86:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB04D/E958AFE6019C11EC91644B7BC4F9AE02/qhOo9ipv0n6bme44axRRnm_MhjI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qhOo9ipv0n6bme44axRRnm_MhjI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB04D/E958AFE6019C11EC91644B7BC4F9AE02/qhOo9ipv0n6bme44axRRnm_MhjI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:41:e3:f0:23:d0:33:02:18:68:d1:57:08:35:68:4a:46:de: 9a:ec:cb:a3:dc:ea:65:1b:9c:9f:9d:75:dd:1e:41:a2:dc:aa: bf:c3:8f:f3:d3:8f:56:be:5d:1d:1e:9d:0e:9e:b7:ed:2d:51: 4a:54:d4:6e:61:3b:4b:f3:37:a2:23:83:53:0d:97:fd:51:6d: e6:0a:9f:a5:b1:69:a5:15:eb:65:ab:b0:6b:dd:5e:de:a5:40: 58:00:16:db:b4:a3:ca:24:f8:1d:6c:67:96:8d:48:31:50:d9: af:21:b6:c7:a8:df:7e:87:d4:ec:b2:81:11:89:b4:b3:3b:bc: da:5a:3d:74:2a:08:48:bc:69:0f:6f:f2:d6:d4:c0:ab:58:42: a0:0e:8e:8e:74:95:1b:20:ee:ac:1c:c1:99:35:22:cb:24:3f: b9:da:2e:18:79:04:16:6b:99:01:60:4f:44:c8:08:d1:60:d9: 53:53:1f:4a:95:27:3b:f4:00:bd:fc:97:17:80:1c:44:85:89: 61:69:db:42:7d:03:92:42:32:6f:ed:7a:a7:72:0e:a2:2a:49: 69:76:26:29:b9:9f:e3:bd:2e:19:33:3d:b0:6f:cd:16:12:4a: 29:7b:f8:7f:17:c2:48:e4:11:d0:43:75:42:1e:54:99:b8:6e: 54:10:be:f3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBZMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REIwNEQxMTAvBgNVBAUTKEFBMTNBOEY2MkE2RkQyN0U5Qjk5RUUzODZCMTQ1MTlF NkZDQzg2MzIwHhcNMjUxMjIyMjIyNDA0WhcNMjUxMjI5MjIyNDA0WjAYMRYwFAYD VQQDDA02OTQ5YzUwNC04YmMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsvZ9Cua/2xT8LP2k9MNMNfGigO7V83ioJ94RT14I1kW+FxhRakLlpBfetS9o uUEsKYcXYb9ukFEcXTSYyn9vSlngIOaZJCCs8F1zJXbUsQcEeTgAspzwibzvg+so 0cJezo30glXNxb+hbw8lK20II50i7TwtErR4BhZm9AGqU1uiVSa0dcmmVFwPJpUG FuE41i0c9+AvA0fnGwFgX/cve0utxCiiJ9ER1Tij2zFI46YCCUYeCX6sHwT1jDv/ 698g93vBV4r9j1PXF/XCMXLsBr4erFMkuM2ZA21jAReC04Ru2PyHKVGcY97MpTy5 ZskfoK0/mY8hMwPmb1sIpD5pIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBxYyk3m FIwIYB8fpYFx9ODvvz/wMB8GA1UdIwQYMBaAFKoTqPYqb9J+m5nuOGsUUZ5vzIYy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjA0RC9FOTU4QUZFNjAx OUMxMUVDOTE2NDRCN0JDNEY5QUUwMi9xaE9vOWlwdjBuNmJtZTQ0YXhSUm5tX01o akkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FoT285aXB2MG42Ym1lNDRheFJSbm1fTWhqSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QjA0RC9FOTU4QUZFNjAxOUMxMUVDOTE2NDRCN0JDNEY5QUUwMi9xaE9vOWlwdjBu NmJtZTQ0YXhSUm5tX01oakkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPQePwI9AzAhho0VcINWhKRt6a7Muj3OplG5yfnXXdHkGi3Kq/w4/z 049Wvl0dHp0OnrftLVFKVNRuYTtL8zeiI4NTDZf9UW3mCp+lsWmlFetlq7Br3V7e pUBYABbbtKPKJPgdbGeWjUgxUNmvIbbHqN9+h9TssoERibSzO7zaWj10KghIvGkP b/LW1MCrWEKgDo6OdJUbIO6sHMGZNSLLJD+52i4YeQQWa5kBYE9EyAjRYNlTUx9K lSc79AC9/JcXgBxEhYlhadtCfQOSQjJv7Xqncg6iKklpdiYpuZ/jvS4ZMz2wb80W Ekope/h/F8JI5BHQQ3VCHlSZuG5UEL7z -----END CERTIFICATE-----Generated at Wed Dec 24 15:43:35 2025 by rpki-client