This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5744/397F6CD4052E11EA9D314145C4F9AE02/qkHKgdI-9YhhkyqtErMWkNvPEAM.mft File: qkHKgdI-9YhhkyqtErMWkNvPEAM.mft (raw, json) Hash identifier: bPep9IwEee0xJJ4JrqGtmheuybZhRWtXTh/5rOtXLpI= Subject key identifier: C6:01:E8:03:CB:5D:83:7C:89:7C:21:75:28:94:3D:8A:85:3C:CF:70 Authority key identifier: AA:41:CA:81:D2:3E:F5:88:61:93:2A:AD:12:B3:16:90:DB:CF:10:03 Certificate issuer: /CN=A91A5744/serialNumber=AA41CA81D23EF58861932AAD12B31690DBCF1003 Certificate serial: 0CA7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkHKgdI-9YhhkyqtErMWkNvPEAM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5744/397F6CD4052E11EA9D314145C4F9AE02/qkHKgdI-9YhhkyqtErMWkNvPEAM.mft Manifest number: 0CA1 Signing time: Sat 06 Dec 2025 17:41:36 +0000 Manifest this update: Sat 06 Dec 2025 17:41:36 +0000 Manifest next update: Sat 13 Dec 2025 17:41:36 +0000 Files and hashes: 1: qkHKgdI-9YhhkyqtErMWkNvPEAM.crl (hash: 7AxgTfGM3/GmY3x/w4yR7mEpAxb5jB42kFlSwA/mb4g=) 2: 220DBB66054011EA90A20C7EC4F9AE02.roa (hash: V97lq+hSZ9oNH4AZKBUD+qWwTgR66PrTcw3FG8A1KF0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5744/397F6CD4052E11EA9D314145C4F9AE02/qkHKgdI-9YhhkyqtErMWkNvPEAM.crl rsync://rpki.apnic.net/member_repository/A91A5744/397F6CD4052E11EA9D314145C4F9AE02/qkHKgdI-9YhhkyqtErMWkNvPEAM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkHKgdI-9YhhkyqtErMWkNvPEAM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 17:41:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3239 (0xca7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5744, serialNumber=AA41CA81D23EF58861932AAD12B31690DBCF1003 Validity Not Before: Dec 6 17:41:36 2025 GMT Not After : Dec 13 17:41:36 2025 GMT Subject: CN=69346ad0-f72a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:4a:1a:c0:e1:76:29:55:30:d3:ef:57:94:88: 6d:d1:bd:15:5f:00:ae:97:f4:52:16:b1:f0:39:19: 1a:1b:3f:81:2a:0d:c7:65:ec:a5:69:46:f2:99:8b: 9c:17:2b:47:60:b7:38:c8:8c:ba:f3:ae:3f:4a:8e: 17:c9:9c:09:44:ea:2d:0f:66:3f:7b:ca:bf:9f:68: 6b:44:78:59:a9:a3:d6:2c:11:cf:63:b4:0f:cc:09: 25:0b:e4:90:7b:4e:a1:ce:45:5f:08:5b:ba:fe:5b: e7:de:3d:e5:6a:34:13:be:be:63:df:28:f4:56:73: 96:82:7f:5d:dd:2a:a1:8c:bf:25:89:fc:7f:a4:29: 2a:05:55:5f:79:fd:62:9d:b8:05:74:8e:c0:be:cf: 0e:7d:59:77:98:5b:b1:04:f3:81:24:bd:b2:b7:cc: e2:ff:4d:98:5a:dc:7e:00:f0:5b:25:d5:49:70:5b: 9a:03:06:2d:a7:6a:eb:5d:37:05:af:68:8d:7c:1a: cd:54:3f:c9:e6:52:c6:4c:1a:fd:57:9d:99:e7:80: c7:73:61:ae:85:d3:91:3b:a5:5a:1b:dc:1e:62:e9: 99:c4:62:a7:76:48:55:ac:99:34:30:16:16:4f:3b: 72:0e:cd:c9:03:fc:1c:d5:fa:57:c9:be:6b:65:cd: db:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:01:E8:03:CB:5D:83:7C:89:7C:21:75:28:94:3D:8A:85:3C:CF:70 X509v3 Authority Key Identifier: keyid:AA:41:CA:81:D2:3E:F5:88:61:93:2A:AD:12:B3:16:90:DB:CF:10:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5744/397F6CD4052E11EA9D314145C4F9AE02/qkHKgdI-9YhhkyqtErMWkNvPEAM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkHKgdI-9YhhkyqtErMWkNvPEAM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5744/397F6CD4052E11EA9D314145C4F9AE02/qkHKgdI-9YhhkyqtErMWkNvPEAM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:2f:7a:c2:ec:68:ed:75:01:10:b4:31:e8:3d:73:8b:48:8a: 49:f4:f5:cd:d3:0b:84:97:cf:f3:87:c7:e9:d2:c0:6a:16:d4: 54:e6:ad:4d:16:ad:a4:63:19:8e:c3:7e:91:6f:f2:ea:e5:af: 65:7b:57:3d:54:f6:64:d5:8a:51:24:8a:7d:ee:d8:8a:9f:2e: 26:e1:1a:ee:a2:a5:5b:bb:ab:42:48:88:28:34:65:60:d2:19: a3:df:31:4b:84:03:1c:44:7e:9b:31:54:82:cb:1b:74:9e:23: cc:ea:68:0a:c5:c5:d1:bd:fb:fd:c7:0a:1b:2b:47:5d:7c:44: 63:27:17:89:d0:95:5a:87:c8:2d:a0:7a:a5:a0:47:26:5c:a9: 1b:6d:75:78:e4:7c:5d:3a:37:b5:e4:5a:40:ef:ad:f1:ac:f7: c7:e7:12:41:37:03:c0:a1:f0:3d:25:5c:f9:10:e9:2e:36:87: cc:81:8d:e5:46:87:06:01:d4:08:aa:f3:e3:b8:c2:59:36:78: 99:d8:c0:34:a3:a8:01:6d:f4:e7:3e:e6:9a:90:61:ff:83:44: 3b:ff:06:e2:a2:cd:d6:da:9c:88:b1:22:9f:35:64:70:ba:85: 1b:a0:91:6c:a4:f4:f5:97:ba:70:da:16:7c:61:01:2f:5d:1c: 0e:e0:d1:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDKcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU3NDQxMTAvBgNVBAUTKEFBNDFDQTgxRDIzRUY1ODg2MTkzMkFBRDEyQjMxNjkw REJDRjEwMDMwHhcNMjUxMjA2MTc0MTM2WhcNMjUxMjEzMTc0MTM2WjAYMRYwFAYD VQQDEw02OTM0NmFkMC1mNzJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqkoawOF2KVUw0+9XlIht0b0VXwCul/RSFrHwORkaGz+BKg3HZeylaUbymYuc FytHYLc4yIy6864/So4XyZwJROotD2Y/e8q/n2hrRHhZqaPWLBHPY7QPzAklC+SQ e06hzkVfCFu6/lvn3j3lajQTvr5j3yj0VnOWgn9d3SqhjL8lifx/pCkqBVVfef1i nbgFdI7Avs8OfVl3mFuxBPOBJL2yt8zi/02YWtx+APBbJdVJcFuaAwYtp2rrXTcF r2iNfBrNVD/J5lLGTBr9V52Z54DHc2GuhdORO6VaG9weYumZxGKndkhVrJk0MBYW TztyDs3JA/wc1fpXyb5rZc3bdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMYB6APL XYN8iXwhdSiUPYqFPM9wMB8GA1UdIwQYMBaAFKpByoHSPvWIYZMqrRKzFpDbzxAD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTc0NC8zOTdGNkNENDA1 MkUxMUVBOUQzMTQxNDVDNEY5QUUwMi9xa0hLZ2RJLTlZaGhreXF0RXJNV2tOdlBF QU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FrSEtnZEktOVloaGt5cXRFck1Xa052UEVBTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTc0NC8zOTdGNkNENDA1MkUxMUVBOUQzMTQxNDVDNEY5QUUwMi9xa0hLZ2RJLTlZ aGhreXF0RXJNV2tOdlBFQU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBiL3rC7GjtdQEQtDHoPXOLSIpJ9PXN0wuEl8/zh8fp0sBqFtRU5q1N Fq2kYxmOw36Rb/Lq5a9le1c9VPZk1YpRJIp97tiKny4m4RruoqVbu6tCSIgoNGVg 0hmj3zFLhAMcRH6bMVSCyxt0niPM6mgKxcXRvfv9xwobK0ddfERjJxeJ0JVah8gt oHqloEcmXKkbbXV45HxdOje15FpA763xrPfH5xJBNwPAofA9JVz5EOkuNofMgY3l RocGAdQIqvPjuMJZNniZ2MA0o6gBbfTnPuaakGH/g0Q7/wbios3W2pyIsSKfNWRw uoUboJFspPT1l7pw2hZ8YQEvXRwO4NG/ -----END CERTIFICATE-----Generated at Sun Dec 7 00:02:26 2025 by rpki-client