This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDD4D/BAE108C4EA6011E58815770CC4F9AE02/cq-668ns3aLu0tSbE-YEjqPkHmA.mft File: cq-668ns3aLu0tSbE-YEjqPkHmA.mft (raw, json) Hash identifier: 9yunXUw97HMsWpnYBldCA5prZml7jZOd4ImbPpPHhtE= Subject key identifier: 78:60:ED:76:7F:D6:8B:74:90:CA:46:AB:45:D5:49:25:A7:1F:16:A1 Authority key identifier: 72:AF:BA:EB:C9:EC:DD:A2:EE:D2:D4:9B:13:E6:04:8E:A3:E4:1E:60 Certificate issuer: /CN=A91FDD4D/serialNumber=72AFBAEBC9ECDDA2EED2D49B13E6048EA3E41E60 Certificate serial: 2216 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cq-668ns3aLu0tSbE-YEjqPkHmA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDD4D/BAE108C4EA6011E58815770CC4F9AE02/cq-668ns3aLu0tSbE-YEjqPkHmA.mft Manifest number: 21DB Signing time: Sat 20 Dec 2025 15:45:13 +0000 Manifest this update: Sat 20 Dec 2025 15:45:13 +0000 Manifest next update: Sat 27 Dec 2025 15:45:13 +0000 Files and hashes: 1: cq-668ns3aLu0tSbE-YEjqPkHmA.crl (hash: LPgiK/EFArkZfiyB2XGsxGpemC8Ch98DI9ds0xDfNH8=) 2: 0FB07E54D28311EDB1655152C4F9AE02.roa (hash: V6pTdi9Go4VZBEN3XXIn2lnRjqLUf2zngAhmgO8tgA0=) 3: E50E6E14B63411EDB4416786C4F9AE02.roa (hash: FmtBKEomkwEsg09oOugyzChandkcrHCKNwzoO1agNsg=) 4: EEFB07CCB8A311ED8F694046C4F9AE02.roa (hash: cgIrr8o9jTXMbYMAZf1J8wAI/DfnpUQHzKHIr7ZgI6c=) 5: E9DE96C44C3611EEA9D59630C4F9AE02.roa (hash: PC1UpxkrsO/0WXvqCVPit0ma41SpwfY7b5bjQTzVpWQ=) 6: 1C628A90671411EEA0040661C4F9AE02.roa (hash: CTvIhXrCtBos/LVoBMmH2P68ViNfFaDxoAYBDmOA96g=) 7: 0F0824DED28311EDB1655152C4F9AE02.roa (hash: dz1GvojNAIHZyqW3h8Y6bP+YBH4Rk6bXASQ1x7rYr58=) 8: AB9E7432714911EEBF95153CC4F9AE02.roa (hash: lgOGf6vXQs55zxCogd+pRQs87jNu5Yd5pLF5QPR8QMk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDD4D/BAE108C4EA6011E58815770CC4F9AE02/cq-668ns3aLu0tSbE-YEjqPkHmA.crl rsync://rpki.apnic.net/member_repository/A91FDD4D/BAE108C4EA6011E58815770CC4F9AE02/cq-668ns3aLu0tSbE-YEjqPkHmA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cq-668ns3aLu0tSbE-YEjqPkHmA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 14:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8726 (0x2216) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDD4D, serialNumber=72AFBAEBC9ECDDA2EED2D49B13E6048EA3E41E60 Validity Not Before: Dec 20 15:45:13 2025 GMT Not After : Dec 27 15:45:13 2025 GMT Subject: CN=6946c489-358f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:a2:0a:ee:c9:1e:c7:a5:f3:a1:1d:4f:d9:b7: b3:f3:0a:83:57:39:22:01:ac:76:b7:79:3d:dd:da: 81:8d:2d:66:16:44:fa:81:f9:30:05:40:7c:49:0d: 4f:9a:81:6d:32:67:8f:e7:b8:7a:11:40:ea:32:15: 38:52:29:23:2e:06:fa:eb:a9:00:a3:52:1b:a0:1a: 54:88:9a:1e:7b:9a:23:e1:7c:9c:3c:22:95:d9:a3: de:03:e4:ca:2d:54:e1:40:06:14:cf:d9:aa:9d:91: 39:22:93:03:91:5d:d1:c9:f1:82:88:22:41:11:b8: a5:2f:92:83:bb:23:10:fd:70:b6:f3:bf:fa:08:4f: 1f:b1:19:a1:96:d1:41:d4:de:c2:04:6c:28:e8:26: 30:04:30:88:a4:c8:46:81:c5:13:e8:64:cf:37:67: 1b:52:db:76:7b:46:57:ae:68:72:a6:3a:e1:46:07: 17:21:d8:a4:32:bc:1f:c0:5a:71:86:6a:47:e2:0f: 35:b6:92:06:bb:c7:74:1d:07:6c:79:6d:16:95:11: c3:4e:71:b4:02:b9:70:02:78:b8:a2:7f:75:76:ec: 16:a6:4e:60:83:e6:b3:68:8e:b4:8b:f4:4e:bf:1f: db:71:5a:15:f9:c8:39:4b:76:68:e6:dd:43:f5:59: 6e:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:60:ED:76:7F:D6:8B:74:90:CA:46:AB:45:D5:49:25:A7:1F:16:A1 X509v3 Authority Key Identifier: keyid:72:AF:BA:EB:C9:EC:DD:A2:EE:D2:D4:9B:13:E6:04:8E:A3:E4:1E:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDD4D/BAE108C4EA6011E58815770CC4F9AE02/cq-668ns3aLu0tSbE-YEjqPkHmA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cq-668ns3aLu0tSbE-YEjqPkHmA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDD4D/BAE108C4EA6011E58815770CC4F9AE02/cq-668ns3aLu0tSbE-YEjqPkHmA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:88:bd:06:5a:4f:d3:c7:cd:7e:7c:12:a8:b3:61:cd:d3:cd: fd:3f:6d:dd:8f:92:e7:67:73:91:e5:2b:52:8d:8e:61:77:30: 9e:55:32:8e:fa:fb:cb:63:28:74:d9:bd:fe:59:b8:52:17:7d: a1:0c:4c:90:ce:84:3a:58:2f:77:7c:5d:37:eb:13:81:8f:1d: 36:ad:43:50:a8:75:5d:a9:8b:b1:d8:69:3e:81:5a:49:5d:32: a0:a7:16:d9:e7:f0:05:ad:7b:b1:73:49:34:9c:22:8f:54:6e: ad:4a:d9:fd:ac:6c:e9:80:b9:f8:6d:9f:f3:3f:6a:9e:f4:03: 1c:8a:41:fe:73:38:83:05:8b:11:36:c6:96:b1:f4:f0:55:58: be:7c:cc:5b:02:ad:95:0f:73:8f:ee:9c:a6:26:51:b1:6d:19: d7:35:cc:d9:32:67:cc:8e:21:9c:44:38:e9:54:56:2b:b5:de: 1d:28:cd:4e:09:9b:01:b3:93:67:47:37:7f:55:ca:3e:ce:59: 8f:ef:8c:c1:97:57:f0:3b:a2:13:9d:c7:69:1c:9b:64:9c:75: 46:fb:32:a5:91:cc:bf:df:e4:89:72:35:86:48:b2:0d:2b:04: b5:5b:02:10:7e:06:68:18:ac:28:4b:8f:6e:5c:62:4b:4c:d4: c3:70:3c:e7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIhYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRENEQxMTAvBgNVBAUTKDcyQUZCQUVCQzlFQ0REQTJFRUQyRDQ5QjEzRTYwNDhF QTNFNDFFNjAwHhcNMjUxMjIwMTU0NTEzWhcNMjUxMjI3MTU0NTEzWjAYMRYwFAYD VQQDDA02OTQ2YzQ4OS0zNThmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyKIK7skex6XzoR1P2bez8wqDVzkiAax2t3k93dqBjS1mFkT6gfkwBUB8SQ1P moFtMmeP57h6EUDqMhU4UikjLgb666kAo1IboBpUiJoee5oj4XycPCKV2aPeA+TK LVThQAYUz9mqnZE5IpMDkV3RyfGCiCJBEbilL5KDuyMQ/XC287/6CE8fsRmhltFB 1N7CBGwo6CYwBDCIpMhGgcUT6GTPN2cbUtt2e0ZXrmhypjrhRgcXIdikMrwfwFpx hmpH4g81tpIGu8d0HQdseW0WlRHDTnG0ArlwAni4on91duwWpk5gg+azaI60i/RO vx/bcVoV+cg5S3Zo5t1D9VluLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHhg7XZ/ 1ot0kMpGq0XVSSWnHxahMB8GA1UdIwQYMBaAFHKvuuvJ7N2i7tLUmxPmBI6j5B5g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREQ0RC9CQUUxMDhDNEVB NjAxMUU1ODgxNTc3MENDNEY5QUUwMi9jcS02NjhuczNhTHUwdFNiRS1ZRWpxUGtI bUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NxLTY2OG5zM2FMdTB0U2JFLVlFanFQa0htQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG REQ0RC9CQUUxMDhDNEVBNjAxMUU1ODgxNTc3MENDNEY5QUUwMi9jcS02NjhuczNh THUwdFNiRS1ZRWpxUGtIbUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRiL0GWk/Tx81+fBKos2HN0839P23dj5LnZ3OR5StSjY5hdzCeVTKO +vvLYyh02b3+WbhSF32hDEyQzoQ6WC93fF036xOBjx02rUNQqHVdqYux2Gk+gVpJ XTKgpxbZ5/AFrXuxc0k0nCKPVG6tStn9rGzpgLn4bZ/zP2qe9AMcikH+cziDBYsR NsaWsfTwVVi+fMxbAq2VD3OP7pymJlGxbRnXNczZMmfMjiGcRDjpVFYrtd4dKM1O CZsBs5NnRzd/Vco+zlmP74zBl1fwO6ITncdpHJtknHVG+zKlkcy/3+SJcjWGSLIN KwS1WwIQfgZoGKwoS49uXGJLTNTDcDzn -----END CERTIFICATE-----Generated at Sat Dec 20 20:10:39 2025 by rpki-client