This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3B2E/0F55C696D67D11ED86D33750C4F9AE02/QSPpAOai7I_ptdcDt5KA7yFAfIE.mft File: QSPpAOai7I_ptdcDt5KA7yFAfIE.mft (raw, json) Hash identifier: qWuh3QQz+9OjoSdr29D/UE26whfmUxw8H7Oboz+bzvI= Subject key identifier: F2:58:AD:C8:66:69:7C:F1:3A:37:F5:F9:FB:51:13:F7:09:A7:F0:5E Authority key identifier: 41:23:E9:00:E6:A2:EC:8F:E9:B5:D7:03:B7:92:80:EF:21:40:7C:81 Certificate issuer: /CN=A91F3B2E/serialNumber=4123E900E6A2EC8FE9B5D703B79280EF21407C81 Certificate serial: 0228 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSPpAOai7I_ptdcDt5KA7yFAfIE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3B2E/0F55C696D67D11ED86D33750C4F9AE02/QSPpAOai7I_ptdcDt5KA7yFAfIE.mft Manifest number: 0214 Signing time: Tue 23 Dec 2025 01:30:22 +0000 Manifest this update: Tue 23 Dec 2025 01:30:22 +0000 Manifest next update: Tue 30 Dec 2025 01:30:22 +0000 Files and hashes: 1: QSPpAOai7I_ptdcDt5KA7yFAfIE.crl (hash: 2f/K5yP0K5L7Aaxpk0P6g2bhL4MzDyybNKBgaA4FLUE=) 2: A91AF6A8CE7811EF89FA3944C4F9AE02.roa (hash: xYipp+ZcmQFz/ogxlth1vHSd96eYxW/drt1nbOwk66E=) 3: 2B8EF9AA083911F0A051CE72C4F9AE02.roa (hash: NUJLc0QRL6TCVIjI3d7tAKvp2NahPW0NGI52wQUI1t4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3B2E/0F55C696D67D11ED86D33750C4F9AE02/QSPpAOai7I_ptdcDt5KA7yFAfIE.crl rsync://rpki.apnic.net/member_repository/A91F3B2E/0F55C696D67D11ED86D33750C4F9AE02/QSPpAOai7I_ptdcDt5KA7yFAfIE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSPpAOai7I_ptdcDt5KA7yFAfIE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 01:30:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 552 (0x228) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3B2E, serialNumber=4123E900E6A2EC8FE9B5D703B79280EF21407C81 Validity Not Before: Dec 23 01:30:22 2025 GMT Not After : Dec 30 01:30:22 2025 GMT Subject: CN=6949f0ae-a24b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:24:75:33:ea:12:39:2e:c3:90:a2:aa:1b:af: f3:78:b1:a5:56:65:18:ba:78:8f:10:c1:45:eb:c0: 95:44:78:10:d5:f8:36:47:0f:3c:f5:40:58:86:d0: 3e:1e:55:d7:d1:db:11:fa:d8:4c:8d:f5:ad:51:53: 26:d6:72:55:77:b6:d7:72:e3:57:e6:fa:f6:6f:ff: 5c:87:f7:c6:44:2e:2d:b2:87:21:db:09:3d:c1:8b: f0:03:35:c8:c6:6c:f3:4f:e4:fa:a1:8d:da:9c:97: 73:9e:6b:73:57:1d:9c:0f:bf:7f:31:9f:88:92:ca: c7:fc:fc:03:93:ef:49:a1:33:60:ea:d6:c1:e9:3b: 6d:47:5a:82:a9:a0:2a:43:75:f2:c9:bb:84:2e:83: ed:7e:36:57:50:f9:c3:56:08:d5:99:4a:6e:b7:f0: 1b:cf:e1:98:47:c6:d0:dd:b0:53:a1:9d:5a:7b:b6: a8:08:c7:14:11:d1:52:2b:97:4e:27:0c:05:b6:de: 86:e8:ce:4d:50:7a:0e:fd:2f:19:59:42:6b:1f:66: 53:88:0c:0c:1a:1a:19:34:29:66:a5:1d:b0:fd:28: f4:d6:c6:6e:3a:73:0d:80:8c:56:20:97:b4:df:f4: 00:cd:43:23:9e:1e:2a:2b:c3:7e:c2:03:e9:5c:71: 84:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:58:AD:C8:66:69:7C:F1:3A:37:F5:F9:FB:51:13:F7:09:A7:F0:5E X509v3 Authority Key Identifier: keyid:41:23:E9:00:E6:A2:EC:8F:E9:B5:D7:03:B7:92:80:EF:21:40:7C:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3B2E/0F55C696D67D11ED86D33750C4F9AE02/QSPpAOai7I_ptdcDt5KA7yFAfIE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSPpAOai7I_ptdcDt5KA7yFAfIE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3B2E/0F55C696D67D11ED86D33750C4F9AE02/QSPpAOai7I_ptdcDt5KA7yFAfIE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:7a:15:5b:ee:3b:76:f1:32:a5:d6:54:e4:12:2e:1b:46:dd: 84:60:12:2f:24:2e:21:3a:43:78:51:39:60:d3:bb:d2:81:08: 05:c9:5d:9d:04:12:7e:c7:58:1b:9b:76:f9:2a:47:f1:73:64: 25:ef:97:ba:7c:09:f9:7a:0e:c9:fd:e4:e4:b0:c4:58:40:c5: 1f:b8:15:7c:1a:bf:35:71:75:7f:fa:8d:50:64:d7:1c:b0:8d: 82:dc:7a:3a:1e:ed:6f:c9:98:7f:0b:ac:a5:5d:0d:87:4b:73: 51:91:df:e4:94:e3:1f:a2:a9:4f:ad:72:db:9d:e6:53:71:68: 4a:f9:f0:ba:b3:be:7b:c3:ff:0b:f9:80:cf:f5:3d:e5:4f:5a: d1:67:35:d7:81:0f:0e:8b:f0:98:3d:46:b4:aa:86:00:dc:a0: 63:ca:68:b3:4d:3e:c6:cf:dd:f9:39:40:f2:77:59:4a:4d:af: f4:cc:7a:73:e9:88:aa:3d:0e:c4:f1:37:7a:62:f7:94:05:08: 8b:c7:b0:bd:46:77:86:30:17:a4:6e:14:a6:b8:b2:30:61:70: 13:21:46:6b:74:29:05:06:89:fd:c7:bb:13:7a:98:b6:c7:8e: 35:0e:19:06:65:ca:8b:d8:61:8d:cf:e7:2f:46:41:fa:58:8d: 37:09:b5:71 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAigwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjNCMkUxMTAvBgNVBAUTKDQxMjNFOTAwRTZBMkVDOEZFOUI1RDcwM0I3OTI4MEVG MjE0MDdDODEwHhcNMjUxMjIzMDEzMDIyWhcNMjUxMjMwMDEzMDIyWjAYMRYwFAYD VQQDDA02OTQ5ZjBhZS1hMjRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqiR1M+oSOS7DkKKqG6/zeLGlVmUYuniPEMFF68CVRHgQ1fg2Rw889UBYhtA+ HlXX0dsR+thMjfWtUVMm1nJVd7bXcuNX5vr2b/9ch/fGRC4tsoch2wk9wYvwAzXI xmzzT+T6oY3anJdznmtzVx2cD79/MZ+IksrH/PwDk+9JoTNg6tbB6TttR1qCqaAq Q3XyybuELoPtfjZXUPnDVgjVmUput/Abz+GYR8bQ3bBToZ1ae7aoCMcUEdFSK5dO JwwFtt6G6M5NUHoO/S8ZWUJrH2ZTiAwMGhoZNClmpR2w/Sj01sZuOnMNgIxWIJe0 3/QAzUMjnh4qK8N+wgPpXHGEfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPJYrchm aXzxOjf1+ftRE/cJp/BeMB8GA1UdIwQYMBaAFEEj6QDmouyP6bXXA7eSgO8hQHyB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGM0IyRS8wRjU1QzY5NkQ2 N0QxMUVEODZEMzM3NTBDNEY5QUUwMi9RU1BwQU9haTdJX3B0ZGNEdDVLQTd5RkFm SUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FTUHBBT2FpN0lfcHRkY0R0NUtBN3lGQWZJRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG M0IyRS8wRjU1QzY5NkQ2N0QxMUVEODZEMzM3NTBDNEY5QUUwMi9RU1BwQU9haTdJ X3B0ZGNEdDVLQTd5RkFmSUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWehVb7jt28TKl1lTkEi4bRt2EYBIvJC4hOkN4UTlg07vSgQgFyV2d BBJ+x1gbm3b5Kkfxc2Ql75e6fAn5eg7J/eTksMRYQMUfuBV8Gr81cXV/+o1QZNcc sI2C3Ho6Hu1vyZh/C6ylXQ2HS3NRkd/klOMfoqlPrXLbneZTcWhK+fC6s757w/8L +YDP9T3lT1rRZzXXgQ8Oi/CYPUa0qoYA3KBjymizTT7Gz935OUDyd1lKTa/0zHpz 6YiqPQ7E8Td6YveUBQiLx7C9RneGMBekbhSmuLIwYXATIUZrdCkFBon9x7sTepi2 x441DhkGZcqL2GGNz+cvRkH6WI03CbVx -----END CERTIFICATE-----Generated at Tue Dec 23 09:12:15 2025 by rpki-client