This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.mft File: QU-2F4hpEw-Cbp4wwLeUCE2XYN0.mft (raw, json) Hash identifier: NQ7s+IsWn6zJoWGaSkB2DyFAj/SWC2MR4zvWQz1BG78= Subject key identifier: 6B:9F:C7:50:6F:0D:00:70:01:FF:4B:CC:62:D7:EA:62:C3:1B:E2:AF Authority key identifier: 41:4F:B6:17:88:69:13:0F:82:6E:9E:30:C0:B7:94:08:4D:97:60:DD Certificate issuer: /CN=A91E91BC/serialNumber=414FB6178869130F826E9E30C0B794084D9760DD Certificate serial: 0362 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.mft Manifest number: 035C Signing time: Mon 08 Dec 2025 23:19:45 +0000 Manifest this update: Mon 08 Dec 2025 23:19:44 +0000 Manifest next update: Mon 15 Dec 2025 23:19:44 +0000 Files and hashes: 1: QU-2F4hpEw-Cbp4wwLeUCE2XYN0.crl (hash: mbGrlKw+y/vBkebpeCJZ7kOxuOhTwbCdNbAhxrx9rTA=) 2: 7BCC4B32E85C11EE9593933FC4F9AE02.roa (hash: C9cBIgp62dlijuyH/TsefWQ1spYTduwHvoUlA7V/520=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.crl rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Dec 2025 23:19:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 866 (0x362) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E91BC, serialNumber=414FB6178869130F826E9E30C0B794084D9760DD Validity Not Before: Dec 8 23:19:44 2025 GMT Not After : Dec 15 23:19:44 2025 GMT Subject: CN=69375d10-82bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:fe:ce:25:2d:5b:c1:ba:dd:3c:da:a4:9c:3b: 5d:99:6d:4a:66:ac:d2:09:27:e5:0e:77:0e:11:a5: fb:35:9b:91:a4:d6:ab:89:44:7e:0a:99:be:22:48: 34:60:75:e1:e9:ad:d4:3b:7b:99:c2:67:2e:7a:df: 39:27:21:4b:f5:b3:bb:f2:39:da:07:92:c9:22:d8: ea:4e:2c:32:80:6e:e3:4c:07:3c:5e:51:30:2b:12: 90:bd:bf:8f:b3:a6:01:80:5a:4f:83:ca:56:4d:e7: f3:d3:7c:97:01:e0:20:b0:d0:ed:55:0a:3f:0c:06: a2:95:a7:d7:42:e1:dc:da:57:24:d2:19:ea:13:7e: c8:2b:f1:c5:5e:17:46:bc:f4:45:54:51:30:ff:3d: 65:55:3d:9e:a2:fa:60:4a:1a:fb:5f:a1:87:cb:1a: 90:d6:cc:2a:dd:52:76:98:1e:bd:f4:cd:06:df:a2: d8:95:88:98:26:73:d5:99:8a:3e:b0:ff:1d:95:d9: f2:75:ec:18:75:1a:d4:79:25:a1:af:f4:33:29:d9: af:6d:e5:b0:80:bb:29:46:e6:2a:8c:f4:59:53:ca: a5:71:e8:ba:3c:48:68:89:c1:f0:55:18:c8:57:ae: c7:53:7c:c7:b3:ef:7a:b1:72:70:14:6d:9b:d9:a0: d5:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:9F:C7:50:6F:0D:00:70:01:FF:4B:CC:62:D7:EA:62:C3:1B:E2:AF X509v3 Authority Key Identifier: keyid:41:4F:B6:17:88:69:13:0F:82:6E:9E:30:C0:B7:94:08:4D:97:60:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:4d:8d:e0:b5:04:45:cd:1e:e1:5e:bf:f4:ae:8b:57:9d:b1: 81:8d:5b:56:13:57:2a:dd:a6:04:bb:20:76:f2:6c:fc:67:bd: 4f:ee:b4:11:69:2f:b1:47:9c:87:d1:ab:96:da:2d:56:a0:92: a7:a7:33:0c:c5:24:08:49:d7:d6:28:c9:ae:71:52:63:a8:c8: 85:ce:e5:f9:c8:b1:b7:6c:79:d3:da:45:3c:38:95:53:b4:a6: b0:a6:ef:74:4f:a6:6b:83:ac:6a:16:c0:58:34:21:2b:14:66: 0c:14:1a:7e:63:5a:20:2a:ec:e3:d5:4f:01:c0:70:36:09:57: 08:0b:6a:65:5b:c9:23:3b:83:c8:91:15:26:e5:00:f4:0d:43: 5a:02:56:ce:56:a9:bf:45:7b:97:16:a8:35:cb:74:49:7e:7f: be:e1:d4:fa:1b:39:eb:5f:d9:6b:c5:67:1b:55:0c:a7:c6:46: fd:2f:7f:c2:f7:a0:d0:27:15:c2:ff:7d:db:91:94:22:48:d0: 81:df:d3:b9:0d:c0:43:89:2d:06:97:6b:db:06:e8:62:2b:cf: 8c:c1:ca:0c:0c:a5:26:46:88:99:8d:4b:20:e6:86:34:1f:0d: fb:82:2b:2d:6d:c4:ce:bf:d9:a5:eb:88:63:5b:38:ac:47:70: 1c:85:a1:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA2IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTkxQkMxMTAvBgNVBAUTKDQxNEZCNjE3ODg2OTEzMEY4MjZFOUUzMEMwQjc5NDA4 NEQ5NzYwREQwHhcNMjUxMjA4MjMxOTQ0WhcNMjUxMjE1MjMxOTQ0WjAYMRYwFAYD VQQDEw02OTM3NWQxMC04MmJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx/7OJS1bwbrdPNqknDtdmW1KZqzSCSflDncOEaX7NZuRpNariUR+Cpm+Ikg0 YHXh6a3UO3uZwmcuet85JyFL9bO78jnaB5LJItjqTiwygG7jTAc8XlEwKxKQvb+P s6YBgFpPg8pWTefz03yXAeAgsNDtVQo/DAailafXQuHc2lck0hnqE37IK/HFXhdG vPRFVFEw/z1lVT2eovpgShr7X6GHyxqQ1swq3VJ2mB699M0G36LYlYiYJnPVmYo+ sP8dldnydewYdRrUeSWhr/QzKdmvbeWwgLspRuYqjPRZU8qlcei6PEhoicHwVRjI V67HU3zHs+96sXJwFG2b2aDVrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGufx1Bv DQBwAf9LzGLX6mLDG+KvMB8GA1UdIwQYMBaAFEFPtheIaRMPgm6eMMC3lAhNl2Dd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTFCQy9BNEU2NzNDQURC RTkxMUVDOTUxMTA1MTVDNEY5QUUwMi9RVS0yRjRocEV3LUNicDR3d0xlVUNFMlhZ TjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FVLTJGNGhwRXctQ2JwNHd3TGVVQ0UyWFlOMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OTFCQy9BNEU2NzNDQURCRTkxMUVDOTUxMTA1MTVDNEY5QUUwMi9RVS0yRjRocEV3 LUNicDR3d0xlVUNFMlhZTjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCRTY3gtQRFzR7hXr/0rotXnbGBjVtWE1cq3aYEuyB28mz8Z71P7rQR aS+xR5yH0auW2i1WoJKnpzMMxSQISdfWKMmucVJjqMiFzuX5yLG3bHnT2kU8OJVT tKawpu90T6Zrg6xqFsBYNCErFGYMFBp+Y1ogKuzj1U8BwHA2CVcIC2plW8kjO4PI kRUm5QD0DUNaAlbOVqm/RXuXFqg1y3RJfn++4dT6GznrX9lrxWcbVQynxkb9L3/C 96DQJxXC/33bkZQiSNCB39O5DcBDiS0Gl2vbBuhiK8+MwcoMDKUmRoiZjUsg5oY0 Hw37gistbcTOv9ml64hjWzisR3AchaGu -----END CERTIFICATE-----Generated at Wed Dec 10 18:50:08 2025 by rpki-client