This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDD4D/BAE108C4EA6011E58815770CC4F9AE02/cq-668ns3aLu0tSbE-YEjqPkHmA.mft File: cq-668ns3aLu0tSbE-YEjqPkHmA.mft (raw, json) Hash identifier: Ff+M4kwkucHAa8YHhIWD6HJTl/3XGOh6hmALGLB03VQ= Subject key identifier: 50:D0:7B:E0:2D:45:E2:E2:F0:8D:B9:5F:E4:93:B1:F9:D8:52:0A:32 Authority key identifier: 72:AF:BA:EB:C9:EC:DD:A2:EE:D2:D4:9B:13:E6:04:8E:A3:E4:1E:60 Certificate issuer: /CN=A91FDD4D/serialNumber=72AFBAEBC9ECDDA2EED2D49B13E6048EA3E41E60 Certificate serial: 2231 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cq-668ns3aLu0tSbE-YEjqPkHmA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDD4D/BAE108C4EA6011E58815770CC4F9AE02/cq-668ns3aLu0tSbE-YEjqPkHmA.mft Manifest number: 21F6 Signing time: Sun 08 Feb 2026 15:46:51 +0000 Manifest this update: Sun 08 Feb 2026 15:46:50 +0000 Manifest next update: Sun 15 Feb 2026 15:46:50 +0000 Files and hashes: 1: cq-668ns3aLu0tSbE-YEjqPkHmA.crl (hash: rFuVurLZJQiRZzeuHZri5zd+e+7eS5la6OuW+HzXymg=) 2: EEFB07CCB8A311ED8F694046C4F9AE02.roa (hash: cgIrr8o9jTXMbYMAZf1J8wAI/DfnpUQHzKHIr7ZgI6c=) 3: 0F0824DED28311EDB1655152C4F9AE02.roa (hash: dz1GvojNAIHZyqW3h8Y6bP+YBH4Rk6bXASQ1x7rYr58=) 4: E9DE96C44C3611EEA9D59630C4F9AE02.roa (hash: PC1UpxkrsO/0WXvqCVPit0ma41SpwfY7b5bjQTzVpWQ=) 5: E50E6E14B63411EDB4416786C4F9AE02.roa (hash: FmtBKEomkwEsg09oOugyzChandkcrHCKNwzoO1agNsg=) 6: AB9E7432714911EEBF95153CC4F9AE02.roa (hash: lgOGf6vXQs55zxCogd+pRQs87jNu5Yd5pLF5QPR8QMk=) 7: 0FB07E54D28311EDB1655152C4F9AE02.roa (hash: V6pTdi9Go4VZBEN3XXIn2lnRjqLUf2zngAhmgO8tgA0=) 8: 1C628A90671411EEA0040661C4F9AE02.roa (hash: CTvIhXrCtBos/LVoBMmH2P68ViNfFaDxoAYBDmOA96g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDD4D/BAE108C4EA6011E58815770CC4F9AE02/cq-668ns3aLu0tSbE-YEjqPkHmA.crl rsync://rpki.apnic.net/member_repository/A91FDD4D/BAE108C4EA6011E58815770CC4F9AE02/cq-668ns3aLu0tSbE-YEjqPkHmA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cq-668ns3aLu0tSbE-YEjqPkHmA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 15 Feb 2026 15:46:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8753 (0x2231) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDD4D, serialNumber=72AFBAEBC9ECDDA2EED2D49B13E6048EA3E41E60 Validity Not Before: Feb 8 15:46:50 2026 GMT Not After : Feb 15 15:46:50 2026 GMT Subject: CN=6988afeb-89fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:a1:bb:10:b1:a7:d7:35:11:44:2d:d5:11:48: 4e:fa:4c:dc:e8:62:7a:5f:72:a0:d9:19:ad:1a:41: 7f:9c:0a:92:b1:ff:47:1c:ed:20:ee:2b:f0:36:e8: d7:26:ba:7d:5c:78:e1:8f:11:16:ac:0d:6f:74:0a: 24:25:3f:9a:c3:44:b0:21:dc:91:6a:64:1a:31:c1: 31:40:8e:01:74:ed:5c:7d:b8:ba:58:7a:a6:55:17: 0a:02:96:37:37:07:34:50:12:9a:83:99:d7:d4:9e: a2:8f:7b:28:4c:45:79:f1:0b:44:f0:b7:88:ba:f3: 21:96:c3:27:5b:44:37:0e:27:aa:67:4e:60:30:99: 17:63:50:9b:fc:68:f8:d8:ca:10:e2:ce:a3:a7:17: 9e:f4:fb:51:6e:f7:f6:5b:b0:df:5b:f5:73:ba:9c: c1:bb:ea:5d:4d:ae:da:1d:6e:e6:7f:06:bc:61:4b: 8a:eb:b0:c1:fc:08:94:38:0e:be:86:05:f4:dc:2f: 0d:db:8a:6d:2d:c5:60:62:87:14:b7:ed:84:21:6e: 73:f0:1d:a4:ec:74:c0:36:61:6c:88:86:c0:22:75: dc:51:e8:31:a4:92:59:1e:86:56:d9:c7:35:c4:64: 1f:62:1c:81:7d:de:d5:29:d5:44:aa:90:e4:48:31: dc:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:D0:7B:E0:2D:45:E2:E2:F0:8D:B9:5F:E4:93:B1:F9:D8:52:0A:32 X509v3 Authority Key Identifier: keyid:72:AF:BA:EB:C9:EC:DD:A2:EE:D2:D4:9B:13:E6:04:8E:A3:E4:1E:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDD4D/BAE108C4EA6011E58815770CC4F9AE02/cq-668ns3aLu0tSbE-YEjqPkHmA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cq-668ns3aLu0tSbE-YEjqPkHmA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDD4D/BAE108C4EA6011E58815770CC4F9AE02/cq-668ns3aLu0tSbE-YEjqPkHmA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:a0:90:fc:f8:b7:13:c4:d1:a0:2f:cf:b5:d5:a7:ad:6a:29: d9:64:7b:b4:6e:c5:a6:7a:1d:5b:e9:f7:c7:31:11:0a:d7:74: 2b:fa:45:f8:54:f1:a8:66:4b:55:98:6c:32:38:7b:59:32:fd: 5d:7f:c8:52:40:e3:a9:6f:cf:13:3d:32:38:17:5c:48:b6:c3: 14:e2:22:89:b9:4e:54:5e:9f:27:b7:eb:34:67:b7:9e:94:87: 85:64:cc:eb:cf:2d:78:c7:34:4b:17:b8:a3:40:1d:07:ab:28: 59:c6:47:03:22:09:62:e6:35:92:c3:22:06:c5:50:be:90:36: 30:04:27:03:52:0c:dc:c1:58:50:b3:82:ed:21:5d:1d:11:1a: 7d:4e:99:a1:a8:03:92:91:53:47:fc:01:eb:44:b5:fe:a6:92: 8c:7c:54:7c:ce:70:82:4e:18:e2:63:4e:07:8a:2a:56:c8:dc: b4:45:cb:94:cb:ec:c1:f2:73:4b:97:b6:4b:dd:0d:4b:08:41: 2f:f8:16:e4:5b:9d:cd:e2:c3:22:1f:52:bb:64:29:56:35:9a: 3f:32:36:67:43:e0:0a:fc:09:07:13:59:ac:11:20:d1:fd:58: 3c:1c:f7:e9:ac:f3:79:69:57:c0:6b:03:c8:c2:40:0e:78:81: 7b:a8:f4:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIjEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRENEQxMTAvBgNVBAUTKDcyQUZCQUVCQzlFQ0REQTJFRUQyRDQ5QjEzRTYwNDhF QTNFNDFFNjAwHhcNMjYwMjA4MTU0NjUwWhcNMjYwMjE1MTU0NjUwWjAYMRYwFAYD VQQDDA02OTg4YWZlYi04OWZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu6G7ELGn1zURRC3VEUhO+kzc6GJ6X3Kg2RmtGkF/nAqSsf9HHO0g7ivwNujX Jrp9XHjhjxEWrA1vdAokJT+aw0SwIdyRamQaMcExQI4BdO1cfbi6WHqmVRcKApY3 Nwc0UBKag5nX1J6ij3soTEV58QtE8LeIuvMhlsMnW0Q3DieqZ05gMJkXY1Cb/Gj4 2MoQ4s6jpxee9PtRbvf2W7DfW/VzupzBu+pdTa7aHW7mfwa8YUuK67DB/AiUOA6+ hgX03C8N24ptLcVgYocUt+2EIW5z8B2k7HTANmFsiIbAInXcUegxpJJZHoZW2cc1 xGQfYhyBfd7VKdVEqpDkSDHcFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFDQe+At ReLi8I25X+STsfnYUgoyMB8GA1UdIwQYMBaAFHKvuuvJ7N2i7tLUmxPmBI6j5B5g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREQ0RC9CQUUxMDhDNEVB NjAxMUU1ODgxNTc3MENDNEY5QUUwMi9jcS02NjhuczNhTHUwdFNiRS1ZRWpxUGtI bUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NxLTY2OG5zM2FMdTB0U2JFLVlFanFQa0htQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG REQ0RC9CQUUxMDhDNEVBNjAxMUU1ODgxNTc3MENDNEY5QUUwMi9jcS02NjhuczNh THUwdFNiRS1ZRWpxUGtIbUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC3oJD8+LcTxNGgL8+11aetainZZHu0bsWmeh1b6ffHMREK13Qr+kX4 VPGoZktVmGwyOHtZMv1df8hSQOOpb88TPTI4F1xItsMU4iKJuU5UXp8nt+s0Z7ee lIeFZMzrzy14xzRLF7ijQB0HqyhZxkcDIgli5jWSwyIGxVC+kDYwBCcDUgzcwVhQ s4LtIV0dERp9TpmhqAOSkVNH/AHrRLX+ppKMfFR8znCCThjiY04HiipWyNy0RcuU y+zB8nNLl7ZL3Q1LCEEv+BbkW53N4sMiH1K7ZClWNZo/MjZnQ+AK/AkHE1msESDR /Vg8HPfprPN5aVfAawPIwkAOeIF7qPQ/ -----END CERTIFICATE-----Generated at Tue Feb 10 02:25:53 2026 by rpki-client