This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC8C9/738DDFC494C811EC95CB9765C4F9AE02/QSOsLsBp0u8nIB9NvKrGwZEhkCw.mft File: QSOsLsBp0u8nIB9NvKrGwZEhkCw.mft (raw, json) Hash identifier: FlNBZdFbDi4o2/TCp42Ex/YVOC8IC1bLXiXjKJANLbE= Subject key identifier: 5C:B6:E0:FD:CE:C8:25:67:AD:2E:44:A7:6C:AF:BA:7C:A7:AF:14:4F Authority key identifier: 41:23:AC:2E:C0:69:D2:EF:27:20:1F:4D:BC:AA:C6:C1:91:21:90:2C Certificate issuer: /CN=A91EC8C9/serialNumber=4123AC2EC069D2EF27201F4DBCAAC6C19121902C Certificate serial: 0419 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSOsLsBp0u8nIB9NvKrGwZEhkCw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC8C9/738DDFC494C811EC95CB9765C4F9AE02/QSOsLsBp0u8nIB9NvKrGwZEhkCw.mft Manifest number: 0414 Signing time: Mon 22 Dec 2025 23:26:13 +0000 Manifest this update: Mon 22 Dec 2025 23:26:13 +0000 Manifest next update: Mon 29 Dec 2025 23:26:13 +0000 Files and hashes: 1: QSOsLsBp0u8nIB9NvKrGwZEhkCw.crl (hash: Nkivpx477LxSBkdwWUcy5dAevXbvflIBaABrS4EbV5c=) 2: FFDA736894CB11ECA827746DC4F9AE02.roa (hash: pj2LnVj5JMKgQoW/CIO4SmTNgNuQfByzQiOUhiNM/dY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC8C9/738DDFC494C811EC95CB9765C4F9AE02/QSOsLsBp0u8nIB9NvKrGwZEhkCw.crl rsync://rpki.apnic.net/member_repository/A91EC8C9/738DDFC494C811EC95CB9765C4F9AE02/QSOsLsBp0u8nIB9NvKrGwZEhkCw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSOsLsBp0u8nIB9NvKrGwZEhkCw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 23:26:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1049 (0x419) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC8C9, serialNumber=4123AC2EC069D2EF27201F4DBCAAC6C19121902C Validity Not Before: Dec 22 23:26:13 2025 GMT Not After : Dec 29 23:26:13 2025 GMT Subject: CN=6949d395-006b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:44:cb:4e:5c:76:d6:96:a9:4f:21:e7:bd:07: 41:49:71:47:e9:ad:9f:8b:e7:e6:94:46:d1:99:1c: 51:4c:2d:8d:19:b6:23:5c:81:d4:5b:fc:c5:77:6a: c8:2f:e5:11:6c:2f:ac:43:8b:42:10:3b:6e:ce:b7: 7f:b0:5d:bf:d7:a5:f9:8b:d6:6c:d2:03:13:74:cf: c3:7b:5b:39:98:80:18:b2:d6:95:30:de:20:13:9b: 75:8d:c3:94:15:b2:c5:a0:80:19:6c:ac:f4:09:48: 7b:24:2e:c8:93:8e:86:e4:e5:96:a1:14:9a:87:a3: 61:88:c5:ed:e3:ee:94:91:3f:ed:96:dd:4a:26:ee: 66:80:e0:e1:d4:cd:3c:80:1a:c9:0a:cc:aa:c7:b6: 20:21:d1:ee:36:d3:36:de:c6:1d:b3:14:8d:97:3b: d5:35:74:c0:9a:40:3d:2a:32:81:46:94:3f:ad:18: 19:c0:ce:81:89:70:c4:8b:fd:a6:6c:55:a2:47:53: 9d:6a:4c:88:83:8d:65:0d:3c:c3:32:cb:0c:17:be: 29:61:34:21:a6:87:32:3a:83:79:39:38:1b:dd:9d: a3:96:34:d2:58:28:5b:1a:17:ad:ca:ed:3d:08:cf: 21:b0:8f:70:a6:af:d8:a1:ef:3f:c0:d3:5e:b7:50: ba:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:B6:E0:FD:CE:C8:25:67:AD:2E:44:A7:6C:AF:BA:7C:A7:AF:14:4F X509v3 Authority Key Identifier: keyid:41:23:AC:2E:C0:69:D2:EF:27:20:1F:4D:BC:AA:C6:C1:91:21:90:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC8C9/738DDFC494C811EC95CB9765C4F9AE02/QSOsLsBp0u8nIB9NvKrGwZEhkCw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSOsLsBp0u8nIB9NvKrGwZEhkCw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC8C9/738DDFC494C811EC95CB9765C4F9AE02/QSOsLsBp0u8nIB9NvKrGwZEhkCw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:b7:12:11:80:8b:09:49:4b:da:67:74:7d:bc:db:ac:c3:50: 7b:94:c1:f1:f1:fc:71:da:ac:d5:cc:df:7d:a4:72:2b:83:54: ab:ef:75:6f:8e:df:27:95:9f:f6:38:f7:ce:73:5a:ae:14:86: 7f:ee:a3:e0:78:62:73:cc:56:71:72:06:34:25:2e:de:ff:eb: 46:66:1f:74:2a:13:e2:f8:90:60:df:6e:3a:c2:ae:63:8f:17: b7:54:c1:04:e5:50:65:81:d5:4a:92:d3:1a:75:04:40:c5:60: a2:21:0a:7c:7a:2a:1d:e9:02:7f:a4:c4:74:e8:cd:fc:68:5c: d1:16:16:10:79:c6:77:68:09:3a:a7:13:2b:71:83:e7:23:4b: f9:c2:38:22:39:1c:51:0f:dd:e5:32:f7:87:a7:fb:8d:00:f1: 31:e7:c5:6b:3b:f6:48:b5:94:35:6b:90:4a:2e:1f:c0:b3:98: f3:2d:2c:cf:fc:8a:d4:90:03:0b:71:e0:63:8a:49:f6:b3:bd: 5c:47:ff:b0:c2:2e:ab:ac:59:b3:06:df:a7:68:8a:0f:d3:ac: 21:33:7d:f4:2e:00:a8:16:40:22:74:76:f8:bc:7e:a3:f7:c4: 1b:bc:ba:02:9e:03:41:c5:4b:04:53:a8:a6:aa:41:c8:a8:0e: ab:35:b6:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBBkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUM4QzkxMTAvBgNVBAUTKDQxMjNBQzJFQzA2OUQyRUYyNzIwMUY0REJDQUFDNkMx OTEyMTkwMkMwHhcNMjUxMjIyMjMyNjEzWhcNMjUxMjI5MjMyNjEzWjAYMRYwFAYD VQQDDA02OTQ5ZDM5NS0wMDZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsUTLTlx21papTyHnvQdBSXFH6a2fi+fmlEbRmRxRTC2NGbYjXIHUW/zFd2rI L+URbC+sQ4tCEDtuzrd/sF2/16X5i9Zs0gMTdM/De1s5mIAYstaVMN4gE5t1jcOU FbLFoIAZbKz0CUh7JC7Ik46G5OWWoRSah6NhiMXt4+6UkT/tlt1KJu5mgODh1M08 gBrJCsyqx7YgIdHuNtM23sYdsxSNlzvVNXTAmkA9KjKBRpQ/rRgZwM6BiXDEi/2m bFWiR1OdakyIg41lDTzDMssMF74pYTQhpocyOoN5OTgb3Z2jljTSWChbGhetyu09 CM8hsI9wpq/Yoe8/wNNet1C6ywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFy24P3O yCVnrS5Ep2yvunynrxRPMB8GA1UdIwQYMBaAFEEjrC7AadLvJyAfTbyqxsGRIZAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzhDOS83MzhEREZDNDk0 QzgxMUVDOTVDQjk3NjVDNEY5QUUwMi9RU09zTHNCcDB1OG5JQjlOdktyR3daRWhr Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FTT3NMc0JwMHU4bklCOU52S3JHd1pFaGtDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QzhDOS83MzhEREZDNDk0QzgxMUVDOTVDQjk3NjVDNEY5QUUwMi9RU09zTHNCcDB1 OG5JQjlOdktyR3daRWhrQ3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBttxIRgIsJSUvaZ3R9vNusw1B7lMHx8fxx2qzVzN99pHIrg1Sr73Vv jt8nlZ/2OPfOc1quFIZ/7qPgeGJzzFZxcgY0JS7e/+tGZh90KhPi+JBg3246wq5j jxe3VMEE5VBlgdVKktMadQRAxWCiIQp8eiod6QJ/pMR06M38aFzRFhYQecZ3aAk6 pxMrcYPnI0v5wjgiORxRD93lMveHp/uNAPEx58VrO/ZItZQ1a5BKLh/As5jzLSzP /IrUkAMLceBjikn2s71cR/+wwi6rrFmzBt+naIoP06whM330LgCoFkAidHb4vH6j 98QbvLoCngNBxUsEU6imqkHIqA6rNbY4 -----END CERTIFICATE-----Generated at Wed Dec 24 14:14:16 2025 by rpki-client