This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5D61/2A7C7D981D7911E2879E38C508B02CD2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.mft File: QW1s1gOQ-3yW7XnXjOdvVK_PRFg.mft (raw, json) Hash identifier: XyAR7XUz1iyL7Or+skhpQQYBSfr/TxQm/74v93TSGSM= Subject key identifier: 1B:E3:66:21:9C:45:67:73:A8:22:33:49:2F:07:B7:E1:F0:AE:A6:F8 Authority key identifier: 41:6D:6C:D6:03:90:FB:7C:96:ED:79:D7:8C:E7:6F:54:AF:CF:44:58 Certificate issuer: /CN=A91E5D61/serialNumber=416D6CD60390FB7C96ED79D78CE76F54AFCF4458 Certificate serial: 12FE Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5D61/2A7C7D981D7911E2879E38C508B02CD2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.mft Manifest number: 480F Signing time: Sat 06 Dec 2025 14:20:05 +0000 Manifest this update: Sat 06 Dec 2025 14:20:05 +0000 Manifest next update: Sat 13 Dec 2025 14:20:05 +0000 Files and hashes: 1: QW1s1gOQ-3yW7XnXjOdvVK_PRFg.crl (hash: /9xrD9W3vQGnO1bsrzozz2VE61IADTBbHJiAl0jtnNk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5D61/2A7C7D981D7911E2879E38C508B02CD2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.crl rsync://rpki.apnic.net/member_repository/A91E5D61/2A7C7D981D7911E2879E38C508B02CD2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 14:20:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4862 (0x12fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D61, serialNumber=416D6CD60390FB7C96ED79D78CE76F54AFCF4458 Validity Not Before: Dec 6 14:20:05 2025 GMT Not After : Dec 13 14:20:05 2025 GMT Subject: CN=69343b95-8a3c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:d6:89:ca:0e:3d:d8:63:4d:9f:f4:7e:a1:06: e9:ee:43:1d:f6:49:24:80:cf:f7:0f:0e:db:51:81: 31:00:6f:57:88:e3:26:36:f4:33:7b:5d:0a:4d:d7: e8:b5:e6:a7:89:9f:79:c8:a9:e1:ee:9e:ad:52:0c: 04:9e:71:50:af:fe:06:d6:fe:b1:5b:85:28:2d:8b: c5:13:d9:62:3a:38:af:ff:37:fe:e5:38:c3:4f:dc: 65:c8:ad:2d:4d:45:b7:63:e0:9b:d8:ee:03:2c:00: 30:9b:c2:7f:a2:80:9b:48:b4:d3:6e:19:36:3d:91: 31:ef:9c:86:d6:06:ec:03:b1:10:ca:fc:2a:25:24: 14:75:b3:78:95:4f:95:bd:99:be:a6:a1:ba:76:a6: d6:2a:8d:06:99:30:8a:97:ed:36:20:82:7a:40:b4: a1:b8:57:d0:42:7a:0a:a7:8d:9f:f9:d7:af:0f:30: b7:8e:27:a3:5c:af:3a:80:55:77:53:71:9c:73:04: 0c:e3:86:93:7d:2b:da:d6:11:ce:fb:a5:1a:9f:cd: ad:5a:31:00:14:23:67:f4:ed:cc:c4:0d:4a:f9:89: 1b:ef:ae:10:41:9f:20:3b:16:49:3f:a9:77:91:f4: 4e:9e:81:fd:8e:6f:33:5c:30:9d:6f:50:50:b7:88: 35:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:E3:66:21:9C:45:67:73:A8:22:33:49:2F:07:B7:E1:F0:AE:A6:F8 X509v3 Authority Key Identifier: keyid:41:6D:6C:D6:03:90:FB:7C:96:ED:79:D7:8C:E7:6F:54:AF:CF:44:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5D61/2A7C7D981D7911E2879E38C508B02CD2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5D61/2A7C7D981D7911E2879E38C508B02CD2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:af:50:24:cb:7e:9e:5a:45:3b:34:90:cd:0f:36:f7:da:0f: 7e:75:d0:ad:2b:23:23:51:a8:d5:ba:09:07:28:9d:9b:96:d3: 16:11:fd:c5:df:04:0e:55:2d:17:36:92:a3:ff:e6:fa:64:56: 8c:1e:9a:d5:61:5b:6e:b7:24:fc:34:93:e1:8b:cd:41:66:af: 4b:d9:71:9e:91:ab:37:28:e9:8d:b2:54:21:b2:d6:d9:d0:c0: 86:a7:ce:65:7b:10:78:27:ad:d5:26:66:26:f5:93:1a:7e:fd: b8:72:e8:5d:b6:84:f4:9b:45:50:f5:a9:3b:0e:64:5e:6e:3c: fc:4e:21:bb:97:4f:99:6a:9b:6b:65:9a:64:18:ff:4f:fd:21: 3a:18:d5:a9:b8:4a:c7:e9:bc:f9:4b:8e:f4:eb:53:90:79:be: 17:f5:b0:51:38:87:c5:f0:9a:6c:a8:9f:1b:19:bc:c7:10:d9: 93:a4:ed:74:29:f2:d8:ae:b7:4f:f8:a1:e4:c3:e3:13:92:e1: 21:2e:60:90:35:1c:10:14:fc:60:5c:75:70:e0:63:6c:33:63: 6a:67:70:f9:48:b8:67:42:7c:b8:de:fd:ac:8d:3c:52:da:50: 6b:fe:f1:56:31:17:8f:53:1b:b4:12:d9:e8:a5:28:a5:e7:d9: 83:20:67:0e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEv4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTVENjExMTAvBgNVBAUTKDQxNkQ2Q0Q2MDM5MEZCN0M5NkVENzlENzhDRTc2RjU0 QUZDRjQ0NTgwHhcNMjUxMjA2MTQyMDA1WhcNMjUxMjEzMTQyMDA1WjAYMRYwFAYD VQQDEw02OTM0M2I5NS04YTNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqNaJyg492GNNn/R+oQbp7kMd9kkkgM/3Dw7bUYExAG9XiOMmNvQze10KTdfo teaniZ95yKnh7p6tUgwEnnFQr/4G1v6xW4UoLYvFE9liOjiv/zf+5TjDT9xlyK0t TUW3Y+Cb2O4DLAAwm8J/ooCbSLTTbhk2PZEx75yG1gbsA7EQyvwqJSQUdbN4lU+V vZm+pqG6dqbWKo0GmTCKl+02IIJ6QLShuFfQQnoKp42f+devDzC3jiejXK86gFV3 U3GccwQM44aTfSva1hHO+6Uan82tWjEAFCNn9O3MxA1K+Ykb764QQZ8gOxZJP6l3 kfROnoH9jm8zXDCdb1BQt4g1uwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBvjZiGc RWdzqCIzSS8Ht+Hwrqb4MB8GA1UdIwQYMBaAFEFtbNYDkPt8lu1514znb1Svz0RY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNUQ2MS8yQTdDN0Q5ODFE NzkxMUUyODc5RTM4QzUwOEIwMkNEMi9RVzFzMWdPUS0zeVc3WG5Yak9kdlZLX1BS RmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1FXMXMxZ09RLTN5VzdYblhqT2R2VktfUFJGZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NUQ2MS8yQTdDN0Q5ODFENzkxMUUyODc5RTM4QzUwOEIwMkNEMi9RVzFzMWdPUS0z eVc3WG5Yak9kdlZLX1BSRmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+r1Aky36eWkU7NJDNDzb32g9+ddCtKyMjUajVugkHKJ2bltMWEf3F 3wQOVS0XNpKj/+b6ZFaMHprVYVtutyT8NJPhi81BZq9L2XGekas3KOmNslQhstbZ 0MCGp85lexB4J63VJmYm9ZMafv24cuhdtoT0m0VQ9ak7DmRebjz8TiG7l0+Zaptr ZZpkGP9P/SE6GNWpuErH6bz5S47061OQeb4X9bBROIfF8JpsqJ8bGbzHENmTpO10 KfLYrrdP+KHkw+MTkuEhLmCQNRwQFPxgXHVw4GNsM2NqZ3D5SLhnQny43v2sjTxS 2lBr/vFWMRePUxu0EtnopSil59mDIGcO -----END CERTIFICATE-----Generated at Sun Dec 7 03:02:15 2025 by rpki-client