This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDEFE/1164CAE0A51611EF890ECD3EC4F9AE02/qCkvYgTIIT15H6bMqvV4UZTvgaA.mft File: qCkvYgTIIT15H6bMqvV4UZTvgaA.mft (raw, json) Hash identifier: 8Ajope4Vdw9Q58YUnp/1xXerSNeNa7NPuNJid+UVZQ8= Subject key identifier: 57:8E:8A:DC:C2:A5:72:4E:A0:B1:9B:A2:0C:81:CF:74:11:16:C9:A0 Authority key identifier: A8:29:2F:62:04:C8:21:3D:79:1F:A6:CC:AA:F5:78:51:94:EF:81:A0 Certificate issuer: /CN=A91FDEFE/serialNumber=A8292F6204C8213D791FA6CCAAF5785194EF81A0 Certificate serial: C4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qCkvYgTIIT15H6bMqvV4UZTvgaA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDEFE/1164CAE0A51611EF890ECD3EC4F9AE02/qCkvYgTIIT15H6bMqvV4UZTvgaA.mft Manifest number: C3 Signing time: Wed 03 Dec 2025 04:13:51 +0000 Manifest this update: Wed 03 Dec 2025 04:13:51 +0000 Manifest next update: Wed 10 Dec 2025 04:13:51 +0000 Files and hashes: 1: qCkvYgTIIT15H6bMqvV4UZTvgaA.crl (hash: bRGWD6WCEsFNfSweFt5jZnHnBLzZXI98VCS0P2rUs3g=) 2: E7695EC6A53411EFB98AFE51C4F9AE02.roa (hash: Lu7YmWMIdl1OwrJtUhBGFe6+OAHwy7pjCKEXO1Xq/dY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDEFE/1164CAE0A51611EF890ECD3EC4F9AE02/qCkvYgTIIT15H6bMqvV4UZTvgaA.crl rsync://rpki.apnic.net/member_repository/A91FDEFE/1164CAE0A51611EF890ECD3EC4F9AE02/qCkvYgTIIT15H6bMqvV4UZTvgaA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qCkvYgTIIT15H6bMqvV4UZTvgaA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 04:13:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 196 (0xc4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDEFE, serialNumber=A8292F6204C8213D791FA6CCAAF5785194EF81A0 Validity Not Before: Dec 3 04:13:51 2025 GMT Not After : Dec 10 04:13:51 2025 GMT Subject: CN=692fb8ff-d603 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:a1:1f:fa:fa:59:56:94:0a:c6:d1:a5:c0:59: 07:b1:c0:0b:13:b3:d0:59:51:8f:df:fd:bb:d8:2f: 44:3c:b4:26:67:d9:06:7c:96:3f:d8:f7:f3:a7:73: 84:8a:15:91:fa:c1:f3:b6:87:f7:49:81:d2:16:00: 66:d8:dd:ab:17:30:a9:55:8c:6f:72:6f:ac:b4:1c: 84:a6:4d:37:ca:93:ed:c1:db:07:a8:ea:d4:75:8f: 52:87:00:02:c4:b1:27:8a:77:db:32:0a:f1:4c:c9: f0:42:9f:02:49:c0:b6:47:c4:e1:d2:d1:73:2a:a9: 4b:df:1d:9e:64:96:c6:d9:f3:a7:e1:fb:fc:f9:2d: 78:6c:c7:17:f6:24:10:52:19:1f:b4:c3:33:1e:6c: 31:99:15:71:af:fd:8e:1a:b6:15:0b:e1:f6:35:71: d5:33:4f:b1:86:2b:58:a1:24:ba:3f:91:e0:5f:de: 70:fa:91:21:20:02:3d:14:c1:a5:8f:21:28:78:06: aa:fe:d6:88:d7:46:1b:7d:68:4b:b8:5a:01:f7:1b: f6:14:37:69:bd:95:ac:56:73:39:bf:b5:75:8e:6e: 37:8a:f1:90:0e:53:e3:81:e0:0f:40:17:6b:c9:2c: 7f:70:5c:51:0f:99:21:a8:df:6c:b7:da:76:05:de: fb:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:8E:8A:DC:C2:A5:72:4E:A0:B1:9B:A2:0C:81:CF:74:11:16:C9:A0 X509v3 Authority Key Identifier: keyid:A8:29:2F:62:04:C8:21:3D:79:1F:A6:CC:AA:F5:78:51:94:EF:81:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDEFE/1164CAE0A51611EF890ECD3EC4F9AE02/qCkvYgTIIT15H6bMqvV4UZTvgaA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qCkvYgTIIT15H6bMqvV4UZTvgaA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDEFE/1164CAE0A51611EF890ECD3EC4F9AE02/qCkvYgTIIT15H6bMqvV4UZTvgaA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:db:bb:eb:af:01:86:a7:3b:6e:f4:59:1e:63:ee:17:12:67: 29:a7:ab:c7:94:01:c5:61:d3:63:f7:1c:9a:08:74:16:cd:a4: f9:40:60:a0:b0:4b:d6:2d:11:f3:20:18:74:e2:2b:2b:e6:b5: 33:07:c3:8d:04:8e:7d:43:bd:6a:fc:a0:1a:58:44:6c:80:68: ca:cb:eb:91:5d:81:7f:ef:88:9c:ca:7d:d4:e2:ee:b8:f7:55: 2c:8c:d2:fe:64:25:cf:0d:eb:09:94:31:b2:8b:36:41:16:73: b4:d8:05:1c:8c:5e:54:a0:28:ed:2e:13:b6:13:c6:32:92:7d: b4:55:ff:6d:49:5f:d4:47:d3:a1:31:8a:9e:4a:1c:0d:eb:a9: 8e:d4:ca:ee:d6:30:e5:e4:9f:ad:47:4c:35:4d:27:8a:3f:87: ff:f0:8a:92:58:68:b5:c4:a7:33:66:b4:dc:68:f7:30:c4:77: 5b:2c:44:78:d2:d2:75:e6:ab:db:ca:87:87:31:5b:a6:6f:d4: bc:f6:c3:8e:19:79:14:95:eb:0b:a6:3a:81:b6:91:f4:fb:40: 6d:0f:40:d2:dc:ba:42:16:62:06:2a:9d:da:df:e4:b4:5b:fe: a2:c7:72:a7:52:ad:c7:49:82:80:b5:c1:b7:ba:9e:a7:9d:77: 0c:2e:61:8d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRFRkUxMTAvBgNVBAUTKEE4MjkyRjYyMDRDODIxM0Q3OTFGQTZDQ0FBRjU3ODUx OTRFRjgxQTAwHhcNMjUxMjAzMDQxMzUxWhcNMjUxMjEwMDQxMzUxWjAYMRYwFAYD VQQDEw02OTJmYjhmZi1kNjAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0KEf+vpZVpQKxtGlwFkHscALE7PQWVGP3/272C9EPLQmZ9kGfJY/2Pfzp3OE ihWR+sHztof3SYHSFgBm2N2rFzCpVYxvcm+stByEpk03ypPtwdsHqOrUdY9ShwAC xLEninfbMgrxTMnwQp8CScC2R8Th0tFzKqlL3x2eZJbG2fOn4fv8+S14bMcX9iQQ UhkftMMzHmwxmRVxr/2OGrYVC+H2NXHVM0+xhitYoSS6P5HgX95w+pEhIAI9FMGl jyEoeAaq/taI10YbfWhLuFoB9xv2FDdpvZWsVnM5v7V1jm43ivGQDlPjgeAPQBdr ySx/cFxRD5khqN9st9p2Bd77rQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFeOitzC pXJOoLGbogyBz3QRFsmgMB8GA1UdIwQYMBaAFKgpL2IEyCE9eR+mzKr1eFGU74Gg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREVGRS8xMTY0Q0FFMEE1 MTYxMUVGODkwRUNEM0VDNEY5QUUwMi9xQ2t2WWdUSUlUMTVINmJNcXZWNFVaVHZn YUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3FDa3ZZZ1RJSVQxNUg2Yk1xdlY0VVpUdmdhQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG REVGRS8xMTY0Q0FFMEE1MTYxMUVGODkwRUNEM0VDNEY5QUUwMi9xQ2t2WWdUSUlU MTVINmJNcXZWNFVaVHZnYUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBW27vrrwGGpztu9FkeY+4XEmcpp6vHlAHFYdNj9xyaCHQWzaT5QGCg sEvWLRHzIBh04isr5rUzB8ONBI59Q71q/KAaWERsgGjKy+uRXYF/74icyn3U4u64 91UsjNL+ZCXPDesJlDGyizZBFnO02AUcjF5UoCjtLhO2E8Yykn20Vf9tSV/UR9Oh MYqeShwN66mO1Mru1jDl5J+tR0w1TSeKP4f/8IqSWGi1xKczZrTcaPcwxHdbLER4 0tJ15qvbyoeHMVumb9S89sOOGXkUlesLpjqBtpH0+0BtD0DS3LpCFmIGKp3a3+S0 W/6ix3KnUq3HSYKAtcG3up6nnXcMLmGN -----END CERTIFICATE-----Generated at Wed Dec 3 13:58:29 2025 by rpki-client