This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA582/974FCAA0A11911EC8C4FFA83C4F9AE02/qkjQtX4IXNlA26F5HapYc8wZx_4.mft File: qkjQtX4IXNlA26F5HapYc8wZx_4.mft (raw, json) Hash identifier: tBI7Z4XlN8hC4NP0MIarkKU5rY45KA706tAkw1pE0cI= Subject key identifier: CC:0C:21:B7:0B:1A:28:8E:08:76:1E:7E:31:B5:23:54:3C:3E:C9:3E Authority key identifier: AA:48:D0:B5:7E:08:5C:D9:40:DB:A1:79:1D:AA:58:73:CC:19:C7:FE Certificate issuer: /CN=A91EA582/serialNumber=AA48D0B57E085CD940DBA1791DAA5873CC19C7FE Certificate serial: 03FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkjQtX4IXNlA26F5HapYc8wZx_4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA582/974FCAA0A11911EC8C4FFA83C4F9AE02/qkjQtX4IXNlA26F5HapYc8wZx_4.mft Manifest number: 03F4 Signing time: Mon 22 Dec 2025 23:34:01 +0000 Manifest this update: Mon 22 Dec 2025 23:34:01 +0000 Manifest next update: Mon 29 Dec 2025 23:34:01 +0000 Files and hashes: 1: qkjQtX4IXNlA26F5HapYc8wZx_4.crl (hash: B8vjOHoH2JcTYxg7JYUPlUUAG8KlBYSYRmei3Oo9rYE=) 2: 9924B750A1AF11EC9A73D814C4F9AE02.roa (hash: H07H0KC74DRAPdC4SUe3j+pKIkb6uyeJtaN+ueDEin0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA582/974FCAA0A11911EC8C4FFA83C4F9AE02/qkjQtX4IXNlA26F5HapYc8wZx_4.crl rsync://rpki.apnic.net/member_repository/A91EA582/974FCAA0A11911EC8C4FFA83C4F9AE02/qkjQtX4IXNlA26F5HapYc8wZx_4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkjQtX4IXNlA26F5HapYc8wZx_4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 23:34:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1018 (0x3fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA582, serialNumber=AA48D0B57E085CD940DBA1791DAA5873CC19C7FE Validity Not Before: Dec 22 23:34:01 2025 GMT Not After : Dec 29 23:34:01 2025 GMT Subject: CN=6949d569-f6ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:39:b8:75:6f:4d:5f:bf:f5:3e:e3:ea:9c:8a: 3a:5a:6c:8f:75:1a:95:08:5d:dc:0f:97:8c:c7:59: a9:03:34:66:1c:cb:bf:5b:92:02:96:e1:4c:03:26: f1:53:31:d1:ba:09:f2:45:87:ee:15:75:79:2e:63: 77:6e:3a:cc:3e:1c:f5:c4:df:14:64:fe:ab:c6:f0: 2c:68:ef:2e:5e:c4:99:e0:3b:52:ae:a9:20:13:1e: c0:31:a3:5b:de:89:f3:fb:50:b0:ef:68:7b:80:16: d0:a4:1e:4b:50:2c:f4:0c:56:6b:d4:7d:78:bf:a1: 26:5b:f4:e6:af:fe:41:69:7b:5c:d2:f2:ec:50:8d: 44:e0:33:90:e4:f4:0a:f4:d0:a8:08:67:8e:c8:1c: 9e:48:1e:ee:e9:a3:b5:46:ea:98:7f:c8:79:46:4c: b8:59:c9:37:cc:21:a7:ae:19:13:0a:3f:07:e9:f2: c5:1a:40:6e:87:5c:c5:b9:be:b9:59:e5:f1:34:30: 13:b0:d2:1d:21:40:7f:6a:f5:51:d7:7e:02:58:89: be:fa:4d:e9:f5:3a:e1:ca:1f:4b:e8:28:7b:b8:cf: 9f:ae:1e:e8:43:47:ad:47:45:59:56:f4:d6:2f:35: 27:75:cc:60:c0:de:a2:6d:fc:b9:89:6d:0f:c7:cc: 49:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:0C:21:B7:0B:1A:28:8E:08:76:1E:7E:31:B5:23:54:3C:3E:C9:3E X509v3 Authority Key Identifier: keyid:AA:48:D0:B5:7E:08:5C:D9:40:DB:A1:79:1D:AA:58:73:CC:19:C7:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA582/974FCAA0A11911EC8C4FFA83C4F9AE02/qkjQtX4IXNlA26F5HapYc8wZx_4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkjQtX4IXNlA26F5HapYc8wZx_4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA582/974FCAA0A11911EC8C4FFA83C4F9AE02/qkjQtX4IXNlA26F5HapYc8wZx_4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:28:6b:4a:ce:0f:dc:31:73:7e:39:55:6a:ba:5f:ba:cb:3e: f8:5e:a3:7b:73:05:8b:6d:fc:88:72:fd:6a:92:b1:fe:78:b5: 6f:aa:bb:c7:11:d6:31:d2:16:3a:c3:f3:8f:fe:c7:06:a6:cb: 8a:a0:38:c4:f2:a2:1a:5e:1c:23:97:81:9a:3f:f0:fb:db:10: 7c:75:e8:af:10:c2:c3:ef:c7:1b:08:2d:41:fd:a3:21:be:5b: e5:51:2f:3a:70:22:78:58:d8:e0:61:c6:cc:41:2a:16:d6:a7: 84:68:c1:3f:b8:4d:37:2d:92:1e:f4:73:a0:47:a4:44:3a:fe: 8e:22:07:92:43:6d:94:68:83:ef:dc:2b:aa:d9:92:16:ee:e7: 67:15:e5:1f:e0:16:a2:d0:a9:8a:53:82:f6:3f:50:95:07:3e: 25:82:56:10:76:9d:bf:d6:17:8b:97:5a:72:44:fb:be:a6:1d: 7b:4d:5f:da:95:7b:b5:65:5e:b5:e3:70:17:67:cf:45:6b:15: 31:17:5c:77:ac:da:3c:2f:89:01:0c:2f:09:75:fd:18:d6:ab: 9a:3c:d5:a8:dd:5f:6b:61:95:54:bd:04:41:18:8a:9f:cc:2e: 3f:71:e1:d2:b1:76:3a:a7:fd:18:13:15:63:40:ac:fd:b7:1c: a1:8c:17:ab -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA/owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE1ODIxMTAvBgNVBAUTKEFBNDhEMEI1N0UwODVDRDk0MERCQTE3OTFEQUE1ODcz Q0MxOUM3RkUwHhcNMjUxMjIyMjMzNDAxWhcNMjUxMjI5MjMzNDAxWjAYMRYwFAYD VQQDDA02OTQ5ZDU2OS1mNmFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlTm4dW9NX7/1PuPqnIo6WmyPdRqVCF3cD5eMx1mpAzRmHMu/W5ICluFMAybx UzHRugnyRYfuFXV5LmN3bjrMPhz1xN8UZP6rxvAsaO8uXsSZ4DtSrqkgEx7AMaNb 3onz+1Cw72h7gBbQpB5LUCz0DFZr1H14v6EmW/Tmr/5BaXtc0vLsUI1E4DOQ5PQK 9NCoCGeOyByeSB7u6aO1RuqYf8h5Rky4Wck3zCGnrhkTCj8H6fLFGkBuh1zFub65 WeXxNDATsNIdIUB/avVR134CWIm++k3p9Trhyh9L6Ch7uM+frh7oQ0etR0VZVvTW LzUndcxgwN6ibfy5iW0Px8xJNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMwMIbcL GiiOCHYefjG1I1Q8Psk+MB8GA1UdIwQYMBaAFKpI0LV+CFzZQNuheR2qWHPMGcf+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTU4Mi85NzRGQ0FBMEEx MTkxMUVDOEM0RkZBODNDNEY5QUUwMi9xa2pRdFg0SVhObEEyNkY1SGFwWWM4d1p4 XzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FralF0WDRJWE5sQTI2RjVIYXBZYzh3WnhfNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTU4Mi85NzRGQ0FBMEExMTkxMUVDOEM0RkZBODNDNEY5QUUwMi9xa2pRdFg0SVhO bEEyNkY1SGFwWWM4d1p4XzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAoKGtKzg/cMXN+OVVqul+6yz74XqN7cwWLbfyIcv1qkrH+eLVvqrvH EdYx0hY6w/OP/scGpsuKoDjE8qIaXhwjl4GaP/D72xB8deivEMLD78cbCC1B/aMh vlvlUS86cCJ4WNjgYcbMQSoW1qeEaME/uE03LZIe9HOgR6REOv6OIgeSQ22UaIPv 3Cuq2ZIW7udnFeUf4Bai0KmKU4L2P1CVBz4lglYQdp2/1heLl1pyRPu+ph17TV/a lXu1ZV6143AXZ89FaxUxF1x3rNo8L4kBDC8Jdf0Y1quaPNWo3V9rYZVUvQRBGIqf zC4/ceHSsXY6p/0YExVjQKz9txyhjBer -----END CERTIFICATE-----Generated at Wed Dec 24 15:47:29 2025 by rpki-client