This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A25DF/EF4AD4525ED511F09CF1D50CC4F9AE02/QbQ0kVpJGdzvV9aXfEBIDfwxE00.mft File: QbQ0kVpJGdzvV9aXfEBIDfwxE00.mft (raw, json) Hash identifier: B/R7xZ5WHEeDJdUjEov8Hwab9npBG6IDxc1tyX4Z4DI= Subject key identifier: 17:B0:DE:FC:C4:0D:FF:32:C8:43:4E:A1:04:A2:EF:08:24:34:18:4E Authority key identifier: 41:B4:34:91:5A:49:19:DC:EF:57:D6:97:7C:40:48:0D:FC:31:13:4D Certificate issuer: /CN=A91A25DF/serialNumber=41B434915A4919DCEF57D6977C40480DFC31134D Certificate serial: 4E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QbQ0kVpJGdzvV9aXfEBIDfwxE00.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A25DF/EF4AD4525ED511F09CF1D50CC4F9AE02/QbQ0kVpJGdzvV9aXfEBIDfwxE00.mft Manifest number: 4D Signing time: Fri 05 Dec 2025 05:10:00 +0000 Manifest this update: Fri 05 Dec 2025 05:10:00 +0000 Manifest next update: Fri 12 Dec 2025 05:10:00 +0000 Files and hashes: 1: QbQ0kVpJGdzvV9aXfEBIDfwxE00.crl (hash: t9YFf/YY5Qa8vuGbn75Y1GtAbpVRJe0SxdIwVxUVwxY=) 2: C5B717905EDA11F0A5EAB579C4F9AE02.roa (hash: PqNnMtc0YzN3eHNjrg0ykkeSPjuNLhEa4HAV6yMUzA8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A25DF/EF4AD4525ED511F09CF1D50CC4F9AE02/QbQ0kVpJGdzvV9aXfEBIDfwxE00.crl rsync://rpki.apnic.net/member_repository/A91A25DF/EF4AD4525ED511F09CF1D50CC4F9AE02/QbQ0kVpJGdzvV9aXfEBIDfwxE00.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QbQ0kVpJGdzvV9aXfEBIDfwxE00.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 05:09:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78 (0x4e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A25DF, serialNumber=41B434915A4919DCEF57D6977C40480DFC31134D Validity Not Before: Dec 5 05:10:00 2025 GMT Not After : Dec 12 05:10:00 2025 GMT Subject: CN=69326928-3d1b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:48:9a:75:a1:a3:db:3c:c1:23:fe:fe:c0:4b: e1:f3:af:86:ff:81:e0:42:f4:67:25:49:d9:ba:ff: 27:d1:d0:66:dd:7c:bc:34:50:a1:a8:61:86:43:30: 7c:1e:9a:d9:8d:58:3f:4d:05:2b:9e:89:84:75:d9: 38:6a:c8:ce:92:7f:84:46:fc:f4:85:b4:8b:ad:ef: a5:02:c3:aa:2e:68:a8:95:ad:a6:14:bf:eb:30:e5: 2c:65:82:b6:32:36:1f:8c:6a:b3:1c:7d:fc:ee:17: 1b:55:ef:de:37:b0:a5:6b:de:2d:c2:89:1e:43:83: c0:f7:56:5f:96:82:70:fd:a1:97:99:2f:37:2c:2a: c0:23:fe:95:6f:e5:4c:62:36:5d:b9:84:ed:51:47: 8f:0a:3d:a4:39:d5:b7:85:b7:f7:2e:9d:32:90:4d: 40:00:30:75:f2:2b:f8:d0:98:f7:50:af:e5:75:3f: 4b:a6:89:72:14:42:43:3f:7d:78:b5:f8:f4:3c:d7: 44:26:39:1f:9b:59:a9:9e:9e:73:b2:33:8f:59:6b: 05:fd:16:d8:b0:6e:69:ed:56:e2:68:46:5a:41:89: 7d:1e:95:f5:3e:42:72:0f:05:94:33:d5:98:08:49: 7a:ed:84:f3:0d:7b:7a:73:f7:e5:e2:57:a2:5e:cf: 3d:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:B0:DE:FC:C4:0D:FF:32:C8:43:4E:A1:04:A2:EF:08:24:34:18:4E X509v3 Authority Key Identifier: keyid:41:B4:34:91:5A:49:19:DC:EF:57:D6:97:7C:40:48:0D:FC:31:13:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A25DF/EF4AD4525ED511F09CF1D50CC4F9AE02/QbQ0kVpJGdzvV9aXfEBIDfwxE00.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QbQ0kVpJGdzvV9aXfEBIDfwxE00.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A25DF/EF4AD4525ED511F09CF1D50CC4F9AE02/QbQ0kVpJGdzvV9aXfEBIDfwxE00.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:6e:e0:82:04:05:f0:07:6c:3b:22:25:6e:b6:a1:5f:9f:7f: 4f:3a:f7:51:cc:20:2b:40:37:64:0d:15:23:ba:82:a3:f0:1a: e1:01:4d:4c:08:b3:be:96:8d:32:c0:3c:98:f4:36:65:a8:74: 53:74:4d:34:90:41:db:d5:05:8a:ae:99:b6:36:3e:a5:ed:a4: e9:21:f1:5b:17:1c:86:1f:7a:ac:fa:97:ee:53:0c:27:d9:7c: 12:b0:dd:1b:29:6a:89:53:bc:a7:72:5b:df:95:8c:5e:f3:15: 40:71:58:7a:60:fc:ec:ea:46:7b:b1:88:31:b9:f8:63:a7:69: ee:5c:75:19:d8:97:e3:11:f9:9e:eb:eb:d5:b6:f8:9d:f4:b2: 4a:2b:e7:26:e3:f2:40:65:6f:1d:c6:d5:3d:48:2d:dd:5c:a6: 35:45:09:a8:16:16:b3:c4:2c:75:d5:a7:e5:5d:15:10:74:ad: 96:35:7d:88:c8:c6:f1:2d:6d:c8:ac:2e:c1:7c:a4:2a:41:01: e7:41:67:f1:72:02:ca:a0:ea:52:7b:c9:43:e3:3b:f3:7e:87: dd:0b:9d:7c:0d:72:e5:dd:0f:e1:cf:c5:4f:b3:04:6d:96:32: 7f:77:ef:5f:f9:65:30:1e:9e:c3:c5:ce:7a:10:c1:5d:79:98: 49:2f:07:bc -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB MjVERjExMC8GA1UEBRMoNDFCNDM0OTE1QTQ5MTlEQ0VGNTdENjk3N0M0MDQ4MERG QzMxMTM0RDAeFw0yNTEyMDUwNTEwMDBaFw0yNTEyMTIwNTEwMDBaMBgxFjAUBgNV BAMTDTY5MzI2OTI4LTNkMWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCoSJp1oaPbPMEj/v7AS+Hzr4b/geBC9GclSdm6/yfR0GbdfLw0UKGoYYZDMHwe mtmNWD9NBSueiYR12ThqyM6Sf4RG/PSFtIut76UCw6ouaKiVraYUv+sw5SxlgrYy Nh+MarMcffzuFxtV7943sKVr3i3CiR5Dg8D3Vl+WgnD9oZeZLzcsKsAj/pVv5Uxi Nl25hO1RR48KPaQ51beFt/cunTKQTUAAMHXyK/jQmPdQr+V1P0umiXIUQkM/fXi1 +PQ810QmOR+bWamennOyM49ZawX9FtiwbmntVuJoRlpBiX0elfU+QnIPBZQz1ZgI SXrthPMNe3pz9+XiV6Jezz31AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUF7De/MQN /zLIQ06hBKLvCCQ0GE4wHwYDVR0jBBgwFoAUQbQ0kVpJGdzvV9aXfEBIDfwxE00w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEyNURGL0VGNEFENDUyNUVE NTExRjA5Q0YxRDUwQ0M0RjlBRTAyL1FiUTBrVnBKR2R6dlY5YVhmRUJJRGZ3eEUw MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUWJRMGtWcEpHZHp2VjlhWGZFQklEZnd4RTAwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEy NURGL0VGNEFENDUyNUVENTExRjA5Q0YxRDUwQ0M0RjlBRTAyL1FiUTBrVnBKR2R6 dlY5YVhmRUJJRGZ3eEUwMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABdu4IIEBfAHbDsiJW62oV+ff08691HMICtAN2QNFSO6gqPwGuEBTUwI s76WjTLAPJj0NmWodFN0TTSQQdvVBYqumbY2PqXtpOkh8VsXHIYfeqz6l+5TDCfZ fBKw3RspaolTvKdyW9+VjF7zFUBxWHpg/OzqRnuxiDG5+GOnae5cdRnYl+MR+Z7r 69W2+J30skor5ybj8kBlbx3G1T1ILd1cpjVFCagWFrPELHXVp+VdFRB0rZY1fYjI xvEtbcisLsF8pCpBAedBZ/FyAsqg6lJ7yUPjO/N+h90LnXwNcuXdD+HPxU+zBG2W Mn9371/5ZTAensPFznoQwV15mEkvB7w= -----END CERTIFICATE-----Generated at Sun Dec 7 06:08:57 2025 by rpki-client