This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91454B0/1CC4DDB61D8E11E2902E3CEC08B02CD2/QgHlq32GvGha8R8C3mhAUVttgFg.mft File: QgHlq32GvGha8R8C3mhAUVttgFg.mft (raw, json) Hash identifier: OHgKvmyZ9EjpgXqaUsQVj3oFxe1abSLIFVMjT7YSPEY= Subject key identifier: 64:CF:75:58:7F:BD:D9:C1:78:58:EC:0D:BB:48:27:25:69:0E:40:D6 Authority key identifier: 42:01:E5:AB:7D:86:BC:68:5A:F1:1F:02:DE:68:40:51:5B:6D:80:58 Certificate issuer: /CN=A91454B0/serialNumber=4201E5AB7D86BC685AF11F02DE6840515B6D8058 Certificate serial: 34EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QgHlq32GvGha8R8C3mhAUVttgFg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91454B0/1CC4DDB61D8E11E2902E3CEC08B02CD2/QgHlq32GvGha8R8C3mhAUVttgFg.mft Manifest number: 34EA Signing time: Sat 06 Dec 2025 14:34:38 +0000 Manifest this update: Sat 06 Dec 2025 14:34:37 +0000 Manifest next update: Sat 13 Dec 2025 14:34:37 +0000 Files and hashes: 1: QgHlq32GvGha8R8C3mhAUVttgFg.crl (hash: VxWkI9pfIoJi61k+i7DjCMcVCfFJbSRyT4ayWh34nDs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91454B0/1CC4DDB61D8E11E2902E3CEC08B02CD2/QgHlq32GvGha8R8C3mhAUVttgFg.crl rsync://rpki.apnic.net/member_repository/A91454B0/1CC4DDB61D8E11E2902E3CEC08B02CD2/QgHlq32GvGha8R8C3mhAUVttgFg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QgHlq32GvGha8R8C3mhAUVttgFg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 14:34:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13546 (0x34ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91454B0, serialNumber=4201E5AB7D86BC685AF11F02DE6840515B6D8058 Validity Not Before: Dec 6 14:34:37 2025 GMT Not After : Dec 13 14:34:37 2025 GMT Subject: CN=69343efd-990d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:e7:24:db:23:27:01:30:fd:19:d9:8d:55:d0: d7:38:6b:4c:c0:d9:7b:9d:62:0d:dd:63:be:98:cb: de:fd:ae:03:d4:f7:8f:4e:50:13:97:4f:6e:77:b1: 33:00:32:21:55:df:29:f6:e4:96:4e:da:df:ef:bd: 4a:1b:9c:4c:68:23:42:d5:20:c2:51:5d:9e:a8:e7: d3:50:d4:51:7b:d6:af:17:c7:ed:f8:59:40:64:58: 07:f2:7d:12:45:ac:01:6e:9a:8b:48:b3:81:00:e3: a9:b0:e5:e1:50:62:8c:37:20:12:36:db:15:a0:cf: 50:f9:32:04:3e:26:4f:04:62:e9:8c:42:38:c8:dd: 72:71:81:9c:06:f3:43:47:08:eb:b3:20:70:88:b2: 0e:fd:9a:a2:ff:ed:c8:c8:01:39:cd:29:cf:3f:54: dc:78:ac:ea:34:9a:93:69:9a:9a:42:3b:87:72:f0: 50:a6:00:8c:5a:aa:31:09:fb:67:2f:db:af:4d:54: 7d:5c:b4:cf:0c:f7:86:28:97:b6:d3:be:51:82:5d: 27:38:b4:bc:77:60:3f:23:b6:9c:f3:41:8e:cd:46: cc:63:02:08:6b:5e:a8:c2:72:1e:a3:75:1a:79:1c: 17:f3:76:e4:fc:2e:46:37:2c:fd:52:ef:57:03:76: 30:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:CF:75:58:7F:BD:D9:C1:78:58:EC:0D:BB:48:27:25:69:0E:40:D6 X509v3 Authority Key Identifier: keyid:42:01:E5:AB:7D:86:BC:68:5A:F1:1F:02:DE:68:40:51:5B:6D:80:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91454B0/1CC4DDB61D8E11E2902E3CEC08B02CD2/QgHlq32GvGha8R8C3mhAUVttgFg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QgHlq32GvGha8R8C3mhAUVttgFg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91454B0/1CC4DDB61D8E11E2902E3CEC08B02CD2/QgHlq32GvGha8R8C3mhAUVttgFg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:71:70:f0:64:6b:f3:c7:d0:80:9d:ba:a5:d6:d5:59:86:e5: 0a:80:74:38:f4:76:9a:0b:9d:73:4f:5b:1c:ea:65:9e:57:fe: ab:0a:8f:69:bd:7e:eb:18:66:d1:b3:28:fb:5e:5b:15:95:13: 3f:a1:f2:38:42:9d:ec:cd:c0:b5:c6:d8:13:a4:f4:be:97:cc: 22:b1:7d:16:19:30:97:30:9b:8f:8c:6f:48:77:0c:f0:8a:54: 92:fa:18:47:4d:3e:a2:04:6b:2e:ac:ec:a1:3d:03:24:f3:7d: 2d:a6:73:09:c0:87:83:5a:6d:c4:77:fe:17:53:4a:3d:b5:c9: d4:d9:2c:51:b1:53:ec:31:10:fb:c3:9e:55:13:92:39:47:5b: 40:36:f5:94:4f:ed:18:0b:c5:18:2d:52:2a:65:6e:d3:bd:5b: 24:64:f1:73:75:ce:47:42:ae:89:0e:1a:38:74:3a:b6:d7:4d: 85:6d:31:31:c4:08:3f:68:21:92:97:88:2c:9e:87:27:c6:79: 60:06:f5:5f:99:4b:47:95:a2:af:21:8b:d2:56:8e:65:1f:2b: 19:66:60:65:f1:b9:3b:d8:72:9d:94:ff:3c:07:87:b7:97:c8: df:29:00:df:67:cc:e6:70:e6:29:3f:f1:ce:da:c3:d7:56:eb: e8:71:e9:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNOowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDU0QjAxMTAvBgNVBAUTKDQyMDFFNUFCN0Q4NkJDNjg1QUYxMUYwMkRFNjg0MDUx NUI2RDgwNTgwHhcNMjUxMjA2MTQzNDM3WhcNMjUxMjEzMTQzNDM3WjAYMRYwFAYD VQQDEw02OTM0M2VmZC05OTBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAveck2yMnATD9GdmNVdDXOGtMwNl7nWIN3WO+mMve/a4D1PePTlATl09ud7Ez ADIhVd8p9uSWTtrf771KG5xMaCNC1SDCUV2eqOfTUNRRe9avF8ft+FlAZFgH8n0S RawBbpqLSLOBAOOpsOXhUGKMNyASNtsVoM9Q+TIEPiZPBGLpjEI4yN1ycYGcBvND RwjrsyBwiLIO/Zqi/+3IyAE5zSnPP1TceKzqNJqTaZqaQjuHcvBQpgCMWqoxCftn L9uvTVR9XLTPDPeGKJe2075Rgl0nOLS8d2A/I7ac80GOzUbMYwIIa16ownIeo3Ua eRwX83bk/C5GNyz9Uu9XA3YwoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGTPdVh/ vdnBeFjsDbtIJyVpDkDWMB8GA1UdIwQYMBaAFEIB5at9hrxoWvEfAt5oQFFbbYBY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTRCMC8xQ0M0RERCNjFE OEUxMUUyOTAyRTNDRUMwOEIwMkNEMi9RZ0hscTMyR3ZHaGE4UjhDM21oQVVWdHRn RmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FnSGxxMzJHdkdoYThSOEMzbWhBVVZ0dGdGZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NTRCMC8xQ0M0RERCNjFEOEUxMUUyOTAyRTNDRUMwOEIwMkNEMi9RZ0hscTMyR3ZH aGE4UjhDM21oQVVWdHRnRmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBecXDwZGvzx9CAnbql1tVZhuUKgHQ49HaaC51zT1sc6mWeV/6rCo9p vX7rGGbRsyj7XlsVlRM/ofI4Qp3szcC1xtgTpPS+l8wisX0WGTCXMJuPjG9Idwzw ilSS+hhHTT6iBGsurOyhPQMk830tpnMJwIeDWm3Ed/4XU0o9tcnU2SxRsVPsMRD7 w55VE5I5R1tANvWUT+0YC8UYLVIqZW7TvVskZPFzdc5HQq6JDho4dDq2102FbTEx xAg/aCGSl4gsnocnxnlgBvVfmUtHlaKvIYvSVo5lHysZZmBl8bk72HKdlP88B4e3 l8jfKQDfZ8zmcOYpP/HO2sPXVuvocemL -----END CERTIFICATE-----Generated at Sun Dec 7 09:01:42 2025 by rpki-client