This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB475/208FB730417211EA98A3686DC4F9AE02/1QwK07StgdVVlFzH8_HuHB-t5hc.mft File: 1QwK07StgdVVlFzH8_HuHB-t5hc.mft (raw, json) Hash identifier: tEkl8jjCzDeYOkTE+Jb6Co5Utp5Ba4ZWO5JUqx9EuQc= Subject key identifier: 80:F0:2F:36:A4:C5:9E:60:3D:CA:CC:F9:56:D7:CE:C6:10:A9:73:67 Authority key identifier: D5:0C:0A:D3:B4:AD:81:D5:55:94:5C:C7:F3:F1:EE:1C:1F:AD:E6:17 Certificate issuer: /CN=A91DB475/serialNumber=D50C0AD3B4AD81D555945CC7F3F1EE1C1FADE617 Certificate serial: 0B8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1QwK07StgdVVlFzH8_HuHB-t5hc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB475/208FB730417211EA98A3686DC4F9AE02/1QwK07StgdVVlFzH8_HuHB-t5hc.mft Manifest number: 0B7C Signing time: Tue 16 Dec 2025 18:49:42 +0000 Manifest this update: Tue 16 Dec 2025 18:49:42 +0000 Manifest next update: Tue 23 Dec 2025 18:49:42 +0000 Files and hashes: 1: 1QwK07StgdVVlFzH8_HuHB-t5hc.crl (hash: lscOG+IUapxHdYx8kJZsRGBVpBUmLcYBQzWpVkLlf4A=) 2: 74CA44AA049F11F087661234C4F9AE02.roa (hash: Dt3Rxw54HIQ46kEi6T0edZoyMwWemQneM/8kvnTf7jo=) 3: 1E6B12EC049F11F0AD5C7C33C4F9AE02.roa (hash: V1nVjcRX5R04AqVfR5w5cXlLTGnKcZ3YhA/Vr4DbC7g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB475/208FB730417211EA98A3686DC4F9AE02/1QwK07StgdVVlFzH8_HuHB-t5hc.crl rsync://rpki.apnic.net/member_repository/A91DB475/208FB730417211EA98A3686DC4F9AE02/1QwK07StgdVVlFzH8_HuHB-t5hc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1QwK07StgdVVlFzH8_HuHB-t5hc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Dec 2025 18:49:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2954 (0xb8a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB475, serialNumber=D50C0AD3B4AD81D555945CC7F3F1EE1C1FADE617 Validity Not Before: Dec 16 18:49:42 2025 GMT Not After : Dec 23 18:49:42 2025 GMT Subject: CN=6941a9c6-af86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:87:85:eb:9f:e4:c5:a3:a6:8f:00:0b:ca:82: a1:f0:62:a2:93:60:64:28:eb:3a:48:15:bc:ba:3d: 8b:b2:e7:cd:66:f0:e9:e3:0c:d1:e2:69:e4:15:82: 5a:e1:f5:db:a0:2a:80:2b:ad:d4:84:69:46:97:05: 28:63:b3:a2:07:19:56:e3:1b:13:ea:58:2b:f1:23: d6:f2:ae:d9:d3:56:3a:04:ce:e2:55:e0:be:ca:ef: 40:a8:01:30:f9:ce:1a:4b:04:1b:b0:c0:be:0a:c4: f4:7c:58:f8:74:51:15:34:4b:e4:21:ed:40:93:45: 93:4f:05:96:4a:70:5f:4b:e7:cf:c8:b8:b4:54:01: 54:70:02:25:ad:90:aa:29:11:95:1d:88:55:3c:37: 73:8e:05:fc:a7:10:52:d9:7c:75:dc:e0:aa:03:aa: 79:64:dc:ce:4d:95:8c:a0:fd:fd:c1:cd:7d:1e:2f: e4:ba:d5:9e:a7:58:46:f4:1c:0d:92:9d:08:c7:4b: 12:9f:d1:24:e2:b1:96:9e:df:a9:a3:7f:af:73:46: 64:5c:fb:4e:bd:14:55:cf:ed:f6:3f:76:06:57:5a: 3d:0d:f5:d0:c0:9d:da:69:4b:79:d3:1f:13:21:1c: 36:ee:07:58:ee:bf:2e:42:cc:98:77:9d:2b:c5:4c: 41:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:F0:2F:36:A4:C5:9E:60:3D:CA:CC:F9:56:D7:CE:C6:10:A9:73:67 X509v3 Authority Key Identifier: keyid:D5:0C:0A:D3:B4:AD:81:D5:55:94:5C:C7:F3:F1:EE:1C:1F:AD:E6:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB475/208FB730417211EA98A3686DC4F9AE02/1QwK07StgdVVlFzH8_HuHB-t5hc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1QwK07StgdVVlFzH8_HuHB-t5hc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB475/208FB730417211EA98A3686DC4F9AE02/1QwK07StgdVVlFzH8_HuHB-t5hc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:13:73:18:b1:fa:4c:36:13:0b:fd:b5:5a:d1:3a:77:76:03: be:77:a7:8f:61:24:7d:a5:8e:d6:51:50:ca:f8:ad:19:9e:5f: f5:f9:5b:e2:0e:14:2f:f3:1e:e8:62:23:a1:ef:ff:8b:23:89: 12:0a:cc:72:e3:0f:59:48:53:52:d0:e7:e2:ce:2e:86:54:0d: 61:29:6f:ea:8f:1c:44:d4:a6:79:b7:0d:d4:34:d9:35:0b:fd: 49:5e:77:f8:dc:a6:36:be:9c:d8:ad:9c:78:55:45:b7:d0:69: af:cf:bd:1a:84:e5:34:80:4d:39:c2:07:3f:9a:b7:b8:32:14: b1:e2:bc:ee:d6:08:fb:88:3c:ae:5b:9e:1d:10:7c:a3:0e:a9: 9f:0b:8d:12:0d:e8:88:80:81:6f:66:ab:ac:9f:a3:57:2a:10: 36:18:3d:95:bb:0f:99:44:6e:9d:10:a1:52:ed:84:8f:73:17: ca:30:80:f6:4c:01:5f:1a:3f:4e:af:7f:ae:b9:37:ef:b2:a0: 5a:46:9e:43:58:c2:17:c6:12:2a:7f:a0:12:f4:66:58:ac:3a: 68:6d:26:c4:52:89:cb:29:a1:64:6b:f6:78:f9:c0:c6:3f:09: 1f:cb:18:bb:c6:24:01:e4:81:17:60:bb:00:cd:e1:be:7f:93: 89:5e:50:04 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC4owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REI0NzUxMTAvBgNVBAUTKEQ1MEMwQUQzQjRBRDgxRDU1NTk0NUNDN0YzRjFFRTFD MUZBREU2MTcwHhcNMjUxMjE2MTg0OTQyWhcNMjUxMjIzMTg0OTQyWjAYMRYwFAYD VQQDDA02OTQxYTljNi1hZjg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtIeF65/kxaOmjwALyoKh8GKik2BkKOs6SBW8uj2LsufNZvDp4wzR4mnkFYJa 4fXboCqAK63UhGlGlwUoY7OiBxlW4xsT6lgr8SPW8q7Z01Y6BM7iVeC+yu9AqAEw +c4aSwQbsMC+CsT0fFj4dFEVNEvkIe1Ak0WTTwWWSnBfS+fPyLi0VAFUcAIlrZCq KRGVHYhVPDdzjgX8pxBS2Xx13OCqA6p5ZNzOTZWMoP39wc19Hi/kutWep1hG9BwN kp0Ix0sSn9Ek4rGWnt+po3+vc0ZkXPtOvRRVz+32P3YGV1o9DfXQwJ3aaUt50x8T IRw27gdY7r8uQsyYd50rxUxBzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIDwLzak xZ5gPcrM+VbXzsYQqXNnMB8GA1UdIwQYMBaAFNUMCtO0rYHVVZRcx/Px7hwfreYX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjQ3NS8yMDhGQjczMDQx NzIxMUVBOThBMzY4NkRDNEY5QUUwMi8xUXdLMDdTdGdkVlZsRnpIOF9IdUhCLXQ1 aGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFRd0swN1N0Z2RWVmxGekg4X0h1SEItdDVoYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QjQ3NS8yMDhGQjczMDQxNzIxMUVBOThBMzY4NkRDNEY5QUUwMi8xUXdLMDdTdGdk VlZsRnpIOF9IdUhCLXQ1aGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLE3MYsfpMNhML/bVa0Tp3dgO+d6ePYSR9pY7WUVDK+K0Znl/1+Vvi DhQv8x7oYiOh7/+LI4kSCsxy4w9ZSFNS0Ofizi6GVA1hKW/qjxxE1KZ5tw3UNNk1 C/1JXnf43KY2vpzYrZx4VUW30Gmvz70ahOU0gE05wgc/mre4MhSx4rzu1gj7iDyu W54dEHyjDqmfC40SDeiIgIFvZqusn6NXKhA2GD2Vuw+ZRG6dEKFS7YSPcxfKMID2 TAFfGj9Or3+uuTfvsqBaRp5DWMIXxhIqf6AS9GZYrDpobSbEUonLKaFka/Z4+cDG Pwkfyxi7xiQB5IEXYLsAzeG+f5OJXlAE -----END CERTIFICATE-----Generated at Wed Dec 17 07:39:40 2025 by rpki-client