This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB924/FED23D821D8B11E286A2E5E608B02CD2/sqo-Olsp4PQc3Vphf3-2o3obkBE.mft File: sqo-Olsp4PQc3Vphf3-2o3obkBE.mft (raw, json) Hash identifier: DClOMqZwT8UgkBfP/upI/coj++VZ95OUxC4jVWJHjBc= Subject key identifier: A2:7A:5A:1F:1C:16:B1:4C:2A:DC:E0:60:CA:35:92:E4:D8:DB:DE:9B Authority key identifier: B2:AA:3E:3A:5B:29:E0:F4:1C:DD:5A:61:7F:7F:B6:A3:7A:1B:90:11 Certificate issuer: /CN=A91FB924/serialNumber=B2AA3E3A5B29E0F41CDD5A617F7FB6A37A1B9011 Certificate serial: 34FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sqo-Olsp4PQc3Vphf3-2o3obkBE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FB924/FED23D821D8B11E286A2E5E608B02CD2/sqo-Olsp4PQc3Vphf3-2o3obkBE.mft Manifest number: 34F7 Signing time: Wed 24 Dec 2025 14:34:14 +0000 Manifest this update: Wed 24 Dec 2025 14:34:13 +0000 Manifest next update: Wed 31 Dec 2025 14:34:13 +0000 Files and hashes: 1: sqo-Olsp4PQc3Vphf3-2o3obkBE.crl (hash: q3LJ81Wda9z5uUZra/e1+nzTe0Zs8NIw/x5f++6lDS0=) 2: DF502EECD44511E984021644C4F9AE02.roa (hash: lhTwffgGoDZ+11LSS1CyopFlM7JUjXizmn+X+Kky/Wk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FB924/FED23D821D8B11E286A2E5E608B02CD2/sqo-Olsp4PQc3Vphf3-2o3obkBE.crl rsync://rpki.apnic.net/member_repository/A91FB924/FED23D821D8B11E286A2E5E608B02CD2/sqo-Olsp4PQc3Vphf3-2o3obkBE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sqo-Olsp4PQc3Vphf3-2o3obkBE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Dec 2025 14:34:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13566 (0x34fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FB924, serialNumber=B2AA3E3A5B29E0F41CDD5A617F7FB6A37A1B9011 Validity Not Before: Dec 24 14:34:13 2025 GMT Not After : Dec 31 14:34:13 2025 GMT Subject: CN=694bf9e5-cb2a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:ff:b4:7e:27:ca:c3:5f:7c:26:c6:4e:96:ac: 76:22:1f:1e:2e:8a:95:06:e2:5c:3f:1b:f7:66:94: e0:e2:1c:36:c0:bd:16:b3:3d:b2:11:98:29:b5:aa: fa:9b:07:6e:4e:58:08:46:0c:be:d4:51:e8:38:14: d3:fd:0a:a6:ad:4f:45:e3:3b:1a:d4:75:31:27:b5: 99:59:bb:4e:92:dc:70:f1:40:30:ab:fc:4d:3a:a6: 19:c5:c4:b0:ae:7f:6c:a8:bc:ef:fa:d0:b3:d6:a6: bf:60:7b:ef:40:70:8e:3c:37:7a:d8:81:c1:c0:15: 46:6e:9f:3c:11:59:a7:31:81:83:3c:72:70:9a:53: fc:61:00:96:de:0b:95:f0:8e:c9:41:a8:f2:79:c6: 4c:ec:d4:96:88:47:e7:f4:51:59:95:55:24:0f:4f: 8b:cf:b8:de:71:0e:4f:dc:bd:9e:a9:ad:47:c8:d3: 46:bc:f9:b0:24:c6:f7:99:9a:cd:7a:8b:41:d1:bc: f2:bb:af:dc:1b:1c:e4:a3:36:5b:55:fc:1e:ed:ce: 92:f0:73:30:06:85:b7:f1:10:de:d0:82:08:59:78: c6:00:53:7a:1d:3f:bd:f4:90:9c:cf:90:ab:4a:cb: 4c:fd:5e:a7:2e:f5:fc:59:74:52:a8:fe:de:ca:1e: 64:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:7A:5A:1F:1C:16:B1:4C:2A:DC:E0:60:CA:35:92:E4:D8:DB:DE:9B X509v3 Authority Key Identifier: keyid:B2:AA:3E:3A:5B:29:E0:F4:1C:DD:5A:61:7F:7F:B6:A3:7A:1B:90:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FB924/FED23D821D8B11E286A2E5E608B02CD2/sqo-Olsp4PQc3Vphf3-2o3obkBE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sqo-Olsp4PQc3Vphf3-2o3obkBE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB924/FED23D821D8B11E286A2E5E608B02CD2/sqo-Olsp4PQc3Vphf3-2o3obkBE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:4a:70:82:56:bc:c8:7e:28:f9:31:3d:45:ff:a8:5f:37:c0: d3:2b:04:7c:69:5f:dc:d1:20:06:c8:76:27:62:c9:8d:c5:cd: 01:e1:e6:f8:80:10:b3:b2:fc:4c:d6:b6:49:19:68:b8:65:f3: df:47:48:0c:f4:1f:ad:97:b2:94:67:8a:d1:51:9d:f4:8f:f1: ca:f0:09:d6:b6:21:be:2e:9a:a2:f3:dc:ca:3d:a5:53:49:05: c5:38:5f:35:0d:3d:f3:9a:db:49:3c:9e:6f:c6:75:f3:e4:a8: 20:dc:8a:71:f4:d4:0f:96:27:32:43:4b:d4:52:50:7b:83:8a: d1:2f:60:a8:e3:e7:08:de:e8:6a:48:36:8b:20:21:28:c8:07: 4b:94:26:13:0b:d6:9c:fe:a6:ba:3a:59:a6:6a:fc:38:71:a9: b6:13:b3:17:ba:32:0d:ec:e0:53:2c:f7:ef:35:8e:17:80:b4: bf:cc:3b:e7:a3:f8:e3:4b:32:1d:57:0a:79:a9:0e:fc:2e:77: ab:68:ff:7b:26:da:83:be:1a:d3:7f:e0:56:b8:15:4e:9a:df: b0:53:23:0d:f3:69:cb:ad:f0:88:79:e8:05:d0:33:a4:a5:0a: 77:78:75:e3:ab:a0:c2:59:f7:98:a5:f9:55:0c:44:ff:65:c8: c3:fe:12:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNP4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkI5MjQxMTAvBgNVBAUTKEIyQUEzRTNBNUIyOUUwRjQxQ0RENUE2MTdGN0ZCNkEz N0ExQjkwMTEwHhcNMjUxMjI0MTQzNDEzWhcNMjUxMjMxMTQzNDEzWjAYMRYwFAYD VQQDDA02OTRiZjllNS1jYjJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqP+0fifKw198JsZOlqx2Ih8eLoqVBuJcPxv3ZpTg4hw2wL0Wsz2yEZgptar6 mwduTlgIRgy+1FHoOBTT/QqmrU9F4zsa1HUxJ7WZWbtOktxw8UAwq/xNOqYZxcSw rn9sqLzv+tCz1qa/YHvvQHCOPDd62IHBwBVGbp88EVmnMYGDPHJwmlP8YQCW3guV 8I7JQajyecZM7NSWiEfn9FFZlVUkD0+Lz7jecQ5P3L2eqa1HyNNGvPmwJMb3mZrN eotB0bzyu6/cGxzkozZbVfwe7c6S8HMwBoW38RDe0IIIWXjGAFN6HT+99JCcz5Cr SstM/V6nLvX8WXRSqP7eyh5kQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKJ6Wh8c FrFMKtzgYMo1kuTY296bMB8GA1UdIwQYMBaAFLKqPjpbKeD0HN1aYX9/tqN6G5AR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQjkyNC9GRUQyM0Q4MjFE OEIxMUUyODZBMkU1RTYwOEIwMkNEMi9zcW8tT2xzcDRQUWMzVnBoZjMtMm8zb2Jr QkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Nxby1PbHNwNFBRYzNWcGhmMy0ybzNvYmtCRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QjkyNC9GRUQyM0Q4MjFEOEIxMUUyODZBMkU1RTYwOEIwMkNEMi9zcW8tT2xzcDRQ UWMzVnBoZjMtMm8zb2JrQkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWSnCCVrzIfij5MT1F/6hfN8DTKwR8aV/c0SAGyHYnYsmNxc0B4eb4 gBCzsvxM1rZJGWi4ZfPfR0gM9B+tl7KUZ4rRUZ30j/HK8AnWtiG+Lpqi89zKPaVT SQXFOF81DT3zmttJPJ5vxnXz5Kgg3Ipx9NQPlicyQ0vUUlB7g4rRL2Co4+cI3uhq SDaLICEoyAdLlCYTC9ac/qa6Olmmavw4cam2E7MXujIN7OBTLPfvNY4XgLS/zDvn o/jjSzIdVwp5qQ78LneraP97JtqDvhrTf+BWuBVOmt+wUyMN82nLrfCIeegF0DOk pQp3eHXjq6DCWfeYpflVDET/ZcjD/hIb -----END CERTIFICATE-----Generated at Wed Dec 24 17:34:52 2025 by rpki-client