This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4700/42CC0D50B3BB11F0A931BA6FC4F9AE02/QGOUHymkcXnuj_UfMB3x6kEfvTg.mft File: QGOUHymkcXnuj_UfMB3x6kEfvTg.mft (raw, json) Hash identifier: JCUClGLObmSWK0605uGvaRJb8i/P1Lh7Jm73pQU8RFw= Subject key identifier: 4D:20:4F:4B:B7:8C:3C:11:5D:76:92:0A:CF:56:45:F3:F9:A6:AC:F0 Authority key identifier: 40:63:94:1F:29:A4:71:79:EE:8F:F5:1F:30:1D:F1:EA:41:1F:BD:38 Certificate issuer: /CN=A91E4700/serialNumber=4063941F29A47179EE8FF51F301DF1EA411FBD38 Certificate serial: 32 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QGOUHymkcXnuj_UfMB3x6kEfvTg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4700/42CC0D50B3BB11F0A931BA6FC4F9AE02/QGOUHymkcXnuj_UfMB3x6kEfvTg.mft Manifest number: 2B Signing time: Tue 23 Dec 2025 06:37:00 +0000 Manifest this update: Tue 23 Dec 2025 06:37:00 +0000 Manifest next update: Tue 30 Dec 2025 06:37:00 +0000 Files and hashes: 1: QGOUHymkcXnuj_UfMB3x6kEfvTg.crl (hash: /v8q3HGY3C0+bjjikHL8t8PxFObdcV0Q6ET6Gt5bw/E=) 2: 6A797774BDDF11F0B524BD85C4F9AE02.roa (hash: XLt77ymX3IfxJDGE2bQhR8BqSs0c0er1rbpdz6nyrjM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4700/42CC0D50B3BB11F0A931BA6FC4F9AE02/QGOUHymkcXnuj_UfMB3x6kEfvTg.crl rsync://rpki.apnic.net/member_repository/A91E4700/42CC0D50B3BB11F0A931BA6FC4F9AE02/QGOUHymkcXnuj_UfMB3x6kEfvTg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QGOUHymkcXnuj_UfMB3x6kEfvTg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 06:36:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50 (0x32) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4700, serialNumber=4063941F29A47179EE8FF51F301DF1EA411FBD38 Validity Not Before: Dec 23 06:37:00 2025 GMT Not After : Dec 30 06:37:00 2025 GMT Subject: CN=694a388c-5f17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:68:ed:7b:de:0a:1f:f6:1d:3a:8f:88:ae:e0: 81:3d:7f:22:a8:ea:a3:73:a8:2c:af:70:39:a4:69: 51:21:ad:56:a3:56:2d:ab:cb:3c:b9:aa:11:d7:16: bd:39:73:7f:76:e2:7b:3c:0a:47:26:e9:3c:fd:9c: cb:40:e0:9a:d5:2a:05:9c:9e:78:ce:9f:6f:50:96: 58:68:99:3e:df:20:47:39:3a:33:6c:4a:da:d3:d9: 9f:2e:ac:17:39:46:5b:41:77:12:11:38:a4:a1:c6: 7f:f8:eb:f8:46:5f:c1:6c:63:3a:3c:6e:0e:51:1a: bb:7f:98:b6:3f:20:1b:0a:f6:9a:84:ba:f0:f5:d6: e6:23:0a:1a:cd:cd:82:f4:56:7c:69:17:c4:e8:87: c8:84:ae:f6:57:c2:70:1f:a0:83:ed:ef:06:3e:e7: a1:c4:5c:3a:f8:04:13:d4:0e:39:9c:f2:2c:92:c3: 6d:c9:45:81:1d:0e:06:6b:e2:57:3e:23:ad:ef:20: 3b:d5:fe:51:a1:2f:a4:35:f8:a1:a6:2d:da:f2:0e: 5f:32:c8:a3:f9:62:cb:94:9f:dd:70:55:80:ad:94: 81:5c:fe:69:63:38:db:1c:71:2b:7f:0f:12:cb:d4: 22:58:4b:fe:14:8c:ae:ae:3e:8a:7a:8a:44:2d:f2: df:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:20:4F:4B:B7:8C:3C:11:5D:76:92:0A:CF:56:45:F3:F9:A6:AC:F0 X509v3 Authority Key Identifier: keyid:40:63:94:1F:29:A4:71:79:EE:8F:F5:1F:30:1D:F1:EA:41:1F:BD:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4700/42CC0D50B3BB11F0A931BA6FC4F9AE02/QGOUHymkcXnuj_UfMB3x6kEfvTg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QGOUHymkcXnuj_UfMB3x6kEfvTg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4700/42CC0D50B3BB11F0A931BA6FC4F9AE02/QGOUHymkcXnuj_UfMB3x6kEfvTg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:32:a9:60:ec:88:77:88:37:55:27:0f:f7:1c:1b:54:51:79: ce:47:e4:66:fc:fe:73:6f:9b:71:37:a4:b2:fa:d1:cb:b9:26: fd:4c:8d:94:ed:61:0c:38:a5:31:1c:d8:e5:18:d5:f6:06:ee: 1f:63:10:c3:36:d0:b4:b6:cd:28:a1:e4:c3:17:86:aa:8a:d5: 8a:ad:de:a1:67:c1:c4:97:a1:30:fd:84:90:a3:cc:68:7b:d1: 2e:8c:e8:66:35:58:0e:71:ad:c8:7a:8d:be:c4:f3:ff:ff:6e: e8:02:ab:d3:2f:14:14:25:0e:dd:b8:eb:23:f3:cc:f7:dc:2f: 26:56:96:57:40:8f:54:7f:89:f2:78:6c:35:ae:b5:db:af:8c: 99:ad:25:a1:c6:e0:0e:a9:13:af:f0:ff:62:df:30:6f:dc:ee: 1d:42:b9:0b:64:6d:8f:1e:d7:14:c5:c6:75:9f:6e:69:7f:6b: a2:36:44:ab:9c:0f:50:dc:95:a4:2d:77:d0:59:8d:f3:55:1f: dc:6a:6f:2e:fe:77:5b:af:cb:02:04:c4:a0:15:7b:04:2b:68: 8d:24:4c:0f:1a:d7:88:bb:e8:9b:70:95:4e:05:b7:c6:53:3c: c2:74:f1:7f:e6:00:1f:3c:24:6d:9d:5e:bc:6c:fc:4b:f7:d1: c2:3e:cf:e2 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBMjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF NDcwMDExMC8GA1UEBRMoNDA2Mzk0MUYyOUE0NzE3OUVFOEZGNTFGMzAxREYxRUE0 MTFGQkQzODAeFw0yNTEyMjMwNjM3MDBaFw0yNTEyMzAwNjM3MDBaMBgxFjAUBgNV BAMMDTY5NGEzODhjLTVmMTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDGaO173gof9h06j4iu4IE9fyKo6qNzqCyvcDmkaVEhrVajVi2ryzy5qhHXFr05 c3924ns8Ckcm6Tz9nMtA4JrVKgWcnnjOn29QllhomT7fIEc5OjNsStrT2Z8urBc5 RltBdxIROKShxn/46/hGX8FsYzo8bg5RGrt/mLY/IBsK9pqEuvD11uYjChrNzYL0 VnxpF8Toh8iErvZXwnAfoIPt7wY+56HEXDr4BBPUDjmc8iySw23JRYEdDgZr4lc+ I63vIDvV/lGhL6Q1+KGmLdryDl8yyKP5YsuUn91wVYCtlIFc/mljONsccSt/DxLL 1CJYS/4UjK6uPop6ikQt8t/nAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUTSBPS7eM PBFddpIKz1ZF8/mmrPAwHwYDVR0jBBgwFoAUQGOUHymkcXnuj/UfMB3x6kEfvTgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU0NzAwLzQyQ0MwRDUwQjNC QjExRjBBOTMxQkE2RkM0RjlBRTAyL1FHT1VIeW1rY1hudWpfVWZNQjN4NmtFZnZU Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUUdPVUh5bWtjWG51al9VZk1CM3g2a0VmdlRnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU0 NzAwLzQyQ0MwRDUwQjNCQjExRjBBOTMxQkE2RkM0RjlBRTAyL1FHT1VIeW1rY1hu dWpfVWZNQjN4NmtFZnZUZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAB4yqWDsiHeIN1UnD/ccG1RRec5H5Gb8/nNvm3E3pLL60cu5Jv1MjZTt YQw4pTEc2OUY1fYG7h9jEMM20LS2zSih5MMXhqqK1Yqt3qFnwcSXoTD9hJCjzGh7 0S6M6GY1WA5xrch6jb7E8///bugCq9MvFBQlDt246yPzzPfcLyZWlldAj1R/ifJ4 bDWutduvjJmtJaHG4A6pE6/w/2LfMG/c7h1CuQtkbY8e1xTFxnWfbml/a6I2RKuc D1DclaQtd9BZjfNVH9xqby7+d1uvywIExKAVewQraI0kTA8a14i76JtwlU4Ft8ZT PMJ08X/mAB88JG2dXrxs/Ev30cI+z+I= -----END CERTIFICATE-----Generated at Wed Dec 24 14:11:48 2025 by rpki-client