This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4668/7C9009AC97F111E9A2E51981C4F9AE02/PQVW0ZO8kqIep0f5WMaXqX7F1dY.mft File: PQVW0ZO8kqIep0f5WMaXqX7F1dY.mft (raw, json) Hash identifier: X9lfs+3YwyWPEcuat5FPyzu189rlmQsYAl5WfN2TvkU= Subject key identifier: C9:F2:13:9F:51:42:2C:EE:4B:5C:91:2A:37:54:FE:57:B3:B3:88:08 Authority key identifier: 3D:05:56:D1:93:BC:92:A2:1E:A7:47:F9:58:C6:97:A9:7E:C5:D5:D6 Certificate issuer: /CN=A91E4668/serialNumber=3D0556D193BC92A21EA747F958C697A97EC5D5D6 Certificate serial: 0EEA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PQVW0ZO8kqIep0f5WMaXqX7F1dY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4668/7C9009AC97F111E9A2E51981C4F9AE02/PQVW0ZO8kqIep0f5WMaXqX7F1dY.mft Manifest number: 0EDE Signing time: Mon 22 Dec 2025 17:17:45 +0000 Manifest this update: Mon 22 Dec 2025 17:17:45 +0000 Manifest next update: Mon 29 Dec 2025 17:17:45 +0000 Files and hashes: 1: PQVW0ZO8kqIep0f5WMaXqX7F1dY.crl (hash: kwvfawBSHuq0EUrqjNpR88C+88O40quiLKDVBpIuvLk=) 2: A5B7D874091F11EFA6EDE141C4F9AE02.roa (hash: vN4eTkgE+NqzrGCF55MmLQiQ1U4uCoJcvi6VZO9X/KY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4668/7C9009AC97F111E9A2E51981C4F9AE02/PQVW0ZO8kqIep0f5WMaXqX7F1dY.crl rsync://rpki.apnic.net/member_repository/A91E4668/7C9009AC97F111E9A2E51981C4F9AE02/PQVW0ZO8kqIep0f5WMaXqX7F1dY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PQVW0ZO8kqIep0f5WMaXqX7F1dY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 17:17:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3818 (0xeea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4668, serialNumber=3D0556D193BC92A21EA747F958C697A97EC5D5D6 Validity Not Before: Dec 22 17:17:45 2025 GMT Not After : Dec 29 17:17:45 2025 GMT Subject: CN=69497d39-30ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:39:df:08:f4:bb:e8:4a:e3:ed:95:32:68:ce: 52:57:ca:2e:80:ed:a8:a3:ec:51:96:22:f6:7f:8b: dc:d9:4e:d8:89:81:27:b6:f7:cc:ba:51:8e:3a:99: 8c:83:59:82:c1:f3:8f:d7:08:e1:e0:3d:8d:0b:3e: 5a:77:83:ff:4c:f1:03:0d:b2:2c:18:52:ba:57:6c: 45:9c:8d:e2:ab:5d:bb:37:33:4e:35:ac:7f:8c:fb: 43:0f:15:2e:3c:48:3d:c4:0e:c9:11:b2:4d:a8:64: 01:24:0d:de:78:f8:90:1a:38:c9:5b:25:1d:09:e6: 1b:79:31:4e:74:aa:74:9c:f1:2f:c4:98:49:c3:93: de:9b:1f:62:2b:ff:99:fb:fe:61:c1:8c:a5:0e:1d: 71:b0:19:ce:81:73:8b:f7:43:10:f4:94:88:b1:61: 4e:47:e0:36:78:7c:9e:e8:d0:40:4c:ed:d5:e6:5e: 7d:6d:38:26:37:69:eb:b1:74:46:e3:b6:2f:14:28: 0f:a1:8a:8c:cb:61:10:73:54:51:a0:3d:74:bf:ca: 93:25:7e:9e:48:52:e6:22:aa:a6:90:43:ca:b0:71: d3:0d:05:bf:54:58:0e:de:65:97:70:63:8a:49:a4: d7:ef:b9:95:3a:89:8c:b5:79:53:1c:ac:4f:8a:9a: cc:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:F2:13:9F:51:42:2C:EE:4B:5C:91:2A:37:54:FE:57:B3:B3:88:08 X509v3 Authority Key Identifier: keyid:3D:05:56:D1:93:BC:92:A2:1E:A7:47:F9:58:C6:97:A9:7E:C5:D5:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4668/7C9009AC97F111E9A2E51981C4F9AE02/PQVW0ZO8kqIep0f5WMaXqX7F1dY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PQVW0ZO8kqIep0f5WMaXqX7F1dY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4668/7C9009AC97F111E9A2E51981C4F9AE02/PQVW0ZO8kqIep0f5WMaXqX7F1dY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:17:09:37:3c:6d:09:b3:24:18:03:8f:d2:cd:20:8e:23:8e: e5:c8:4d:17:46:f6:ec:fc:d0:ea:9f:3a:2a:3f:15:79:04:48: 4d:5b:8a:6b:a2:b8:0c:df:40:2d:0d:bb:e1:6d:5c:d9:95:3e: 2f:1e:8b:6d:c9:04:eb:22:b6:25:4d:04:1b:af:a7:af:b0:f5: ad:54:3c:b6:84:07:16:25:82:c9:85:83:61:13:7d:75:6e:19: ff:0e:09:9f:1a:f2:b9:09:32:9b:35:49:c5:00:c8:10:f3:77: 5e:99:7a:73:88:c0:f1:96:d5:c6:d0:f8:74:69:75:e9:0e:39: f0:b8:96:0c:68:bf:34:fe:0d:05:08:2a:cd:44:31:7b:15:79: e7:71:ff:8f:5b:64:b6:2b:f5:b6:b6:e6:64:cb:33:02:ec:ad: 44:0d:24:eb:16:96:3c:6c:f7:f7:68:c2:66:41:82:49:44:62: 95:45:3d:60:f0:14:25:2b:2b:e8:20:32:ff:7e:d8:f9:14:6f: c8:03:7f:1c:a9:0c:75:03:c5:7e:a7:76:86:4f:d5:94:32:fa: 29:2a:85:08:70:d3:40:52:20:55:01:58:7b:7a:e6:72:e7:b3: ca:ad:88:02:02:90:4a:39:9d:e6:8b:09:17:22:c9:4e:08:d6: 44:e0:6f:7e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDuowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQ2NjgxMTAvBgNVBAUTKDNEMDU1NkQxOTNCQzkyQTIxRUE3NDdGOTU4QzY5N0E5 N0VDNUQ1RDYwHhcNMjUxMjIyMTcxNzQ1WhcNMjUxMjI5MTcxNzQ1WjAYMRYwFAYD VQQDDA02OTQ5N2QzOS0zMGVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjznfCPS76Erj7ZUyaM5SV8ougO2oo+xRliL2f4vc2U7YiYEntvfMulGOOpmM g1mCwfOP1wjh4D2NCz5ad4P/TPEDDbIsGFK6V2xFnI3iq127NzNONax/jPtDDxUu PEg9xA7JEbJNqGQBJA3eePiQGjjJWyUdCeYbeTFOdKp0nPEvxJhJw5Pemx9iK/+Z +/5hwYylDh1xsBnOgXOL90MQ9JSIsWFOR+A2eHye6NBATO3V5l59bTgmN2nrsXRG 47YvFCgPoYqMy2EQc1RRoD10v8qTJX6eSFLmIqqmkEPKsHHTDQW/VFgO3mWXcGOK SaTX77mVOomMtXlTHKxPiprMkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMnyE59R QizuS1yRKjdU/lezs4gIMB8GA1UdIwQYMBaAFD0FVtGTvJKiHqdH+VjGl6l+xdXW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDY2OC83QzkwMDlBQzk3 RjExMUU5QTJFNTE5ODFDNEY5QUUwMi9QUVZXMFpPOGtxSWVwMGY1V01hWHFYN0Yx ZFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BRVlcwWk84a3FJZXAwZjVXTWFYcVg3RjFkWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NDY2OC83QzkwMDlBQzk3RjExMUU5QTJFNTE5ODFDNEY5QUUwMi9QUVZXMFpPOGtx SWVwMGY1V01hWHFYN0YxZFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCmFwk3PG0JsyQYA4/SzSCOI47lyE0XRvbs/NDqnzoqPxV5BEhNW4pr orgM30AtDbvhbVzZlT4vHottyQTrIrYlTQQbr6evsPWtVDy2hAcWJYLJhYNhE311 bhn/DgmfGvK5CTKbNUnFAMgQ83demXpziMDxltXG0Ph0aXXpDjnwuJYMaL80/g0F CCrNRDF7FXnncf+PW2S2K/W2tuZkyzMC7K1EDSTrFpY8bPf3aMJmQYJJRGKVRT1g 8BQlKyvoIDL/ftj5FG/IA38cqQx1A8V+p3aGT9WUMvopKoUIcNNAUiBVAVh7euZy 57PKrYgCApBKOZ3miwkXIslOCNZE4G9+ -----END CERTIFICATE-----Generated at Wed Dec 24 14:10:37 2025 by rpki-client