This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/QELCSQ19r-wzIDFu1ap04L7Kqak.mft File: QELCSQ19r-wzIDFu1ap04L7Kqak.mft (raw, json) Hash identifier: 6DXrRR1M7AgGThYbs5kEDNHZ0GjW8OKNTzeKkYS63gw= Subject key identifier: A3:6F:A4:5B:51:49:0E:D9:1A:E4:75:92:A0:D8:BF:88:F0:A5:65:55 Authority key identifier: 40:42:C2:49:0D:7D:AF:EC:33:20:31:6E:D5:AA:74:E0:BE:CA:A9:A9 Certificate issuer: /CN=A91A7169/serialNumber=4042C2490D7DAFEC3320316ED5AA74E0BECAA9A9 Certificate serial: 01D7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QELCSQ19r-wzIDFu1ap04L7Kqak.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/QELCSQ19r-wzIDFu1ap04L7Kqak.mft Manifest number: 0198 Signing time: Sun 25 Jan 2026 03:24:52 +0000 Manifest this update: Sun 25 Jan 2026 03:24:52 +0000 Manifest next update: Sun 01 Feb 2026 03:24:52 +0000 Files and hashes: 1: QELCSQ19r-wzIDFu1ap04L7Kqak.crl (hash: vSQOCrnJ6QGf7JNT9K1l2PdkJenlhslI6qv10Wy08r4=) 2: 3D937A30EBB211EEA93D9B14C4F9AE02.roa (hash: govSB7bwBcjLhKLkQmAfX8Kv8Fg3iLmAfWNtXCpGOvc=) 3: 3E0BA21CEBB211EEA93D9B14C4F9AE02.roa (hash: N/ID+SY0JAy45rWeP36Bw1B7q4m3VaCJNW1Sv52Yw6c=) 4: 3C0376CC6FD511F0BF33C829C4F9AE02.roa (hash: tcVwqZZLgzM/JYa8wH8nV+ejGoZFhH0k2MAzqkTeLmo=) 5: 72E97B3A1BDB11F0B77B1344C4F9AE02.roa (hash: dLZr6fxQD9+vNX/nMzjBW+2uiS4zZgIOchhbHeELI7w=) 6: 3B8DEBA06FD511F0BF33C829C4F9AE02.roa (hash: TD3x6cqMZ5LdB5sZi2QZSzPZxBxaRneEmC2qFVxnzxU=) 7: FCF99042301011EFBC350682C4F9AE02.roa (hash: rZI2SkzqxVzOq3Vh/OUdHg7GfUMvt+YmYRrGtjtKaPI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/QELCSQ19r-wzIDFu1ap04L7Kqak.crl rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/QELCSQ19r-wzIDFu1ap04L7Kqak.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QELCSQ19r-wzIDFu1ap04L7Kqak.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 03:24:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 471 (0x1d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7169, serialNumber=4042C2490D7DAFEC3320316ED5AA74E0BECAA9A9 Validity Not Before: Jan 25 03:24:52 2026 GMT Not After : Feb 1 03:24:52 2026 GMT Subject: CN=69758d04-2cdf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:a7:e4:18:b6:63:f5:9e:4a:26:8f:3c:3e:e9: 5c:cd:4d:2b:ba:a4:22:d6:53:51:56:82:ed:01:af: c2:1d:0f:2c:98:21:7b:e6:3e:29:df:d7:02:50:95: 01:cb:42:4c:a0:47:0a:74:ec:9c:ab:16:21:30:31: cb:06:c9:98:81:a2:a6:c2:f0:99:35:a4:33:9a:8c: 14:e6:df:a2:bd:b6:f3:6d:d4:05:37:25:1b:5a:7c: bd:8a:bc:f0:35:01:2d:03:2b:b4:0c:49:33:55:27: 8f:ec:b4:b8:f7:d0:fd:f2:e7:2d:ba:07:40:a4:91: e2:c8:3b:e3:9d:3e:ce:6e:3f:50:e2:24:83:a1:12: 1b:2e:6b:fd:b8:04:41:a4:ff:9a:9b:ad:6d:fb:a1: e8:44:c0:d5:79:ae:b3:ce:f8:e0:05:bf:f1:cf:cf: f4:88:9b:0e:b4:df:70:bd:86:18:31:ea:f5:52:e9: 13:5e:d0:bf:ad:80:9b:ee:95:39:55:bd:94:8f:65: 2b:34:38:c5:db:eb:c4:63:62:8b:b3:ba:05:60:82: ef:94:10:af:5d:9a:3e:d7:fc:06:96:56:9e:cd:e2: 6c:1b:96:7d:99:bf:a5:28:10:3a:c1:d1:4f:2c:1c: 0e:8b:8a:fe:cd:c9:43:0d:42:5c:11:96:68:5d:99: 29:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:6F:A4:5B:51:49:0E:D9:1A:E4:75:92:A0:D8:BF:88:F0:A5:65:55 X509v3 Authority Key Identifier: keyid:40:42:C2:49:0D:7D:AF:EC:33:20:31:6E:D5:AA:74:E0:BE:CA:A9:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/QELCSQ19r-wzIDFu1ap04L7Kqak.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QELCSQ19r-wzIDFu1ap04L7Kqak.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/QELCSQ19r-wzIDFu1ap04L7Kqak.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:ea:fe:e2:68:90:1f:d1:d0:5d:55:34:51:74:56:f2:06:f7: ef:26:cc:7d:28:2a:28:29:67:39:e2:6d:c2:40:4c:43:f9:ca: 10:bd:41:18:21:e7:ab:12:a9:91:19:18:87:5d:a6:de:4c:72: 84:be:2b:28:ef:b8:a1:cb:1d:e6:f3:8c:42:82:9d:d9:6b:4d: aa:73:7a:38:a1:ad:46:93:0b:1a:82:7b:1c:5e:31:ba:3f:df: f4:b1:5a:66:55:18:4d:7c:3a:df:ea:9e:69:be:fb:ff:36:b1: 0c:5f:0e:d7:0f:ad:87:63:ca:0a:76:aa:9d:1f:5b:a1:3c:85: 72:8f:ed:e8:cd:be:41:47:04:6b:9a:d3:7c:4b:16:a2:bf:68: 78:c8:ae:08:c7:10:ca:c9:83:b2:59:33:6b:a4:a2:28:a2:0e: f5:54:e6:41:e7:aa:4a:c7:71:56:a8:c4:86:74:52:4a:41:00: bb:fd:6c:d5:24:be:77:0e:66:96:1f:42:bd:78:59:9f:ba:7d: 13:13:e5:39:30:8c:8a:0d:8d:fd:42:6a:eb:53:0d:9d:e5:c0: d6:de:d9:dd:27:46:15:8d:db:4a:68:c3:00:54:c5:e7:e9:46: 8c:ca:bc:d7:ac:1d:e0:1f:e1:fe:23:f4:bf:5c:f3:87:0c:62: 13:94:a6:04 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTcxNjkxMTAvBgNVBAUTKDQwNDJDMjQ5MEQ3REFGRUMzMzIwMzE2RUQ1QUE3NEUw QkVDQUE5QTkwHhcNMjYwMTI1MDMyNDUyWhcNMjYwMjAxMDMyNDUyWjAYMRYwFAYD VQQDDA02OTc1OGQwNC0yY2RmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6qfkGLZj9Z5KJo88PulczU0ruqQi1lNRVoLtAa/CHQ8smCF75j4p39cCUJUB y0JMoEcKdOycqxYhMDHLBsmYgaKmwvCZNaQzmowU5t+ivbbzbdQFNyUbWny9irzw NQEtAyu0DEkzVSeP7LS499D98uctugdApJHiyDvjnT7Obj9Q4iSDoRIbLmv9uARB pP+am61t+6HoRMDVea6zzvjgBb/xz8/0iJsOtN9wvYYYMer1UukTXtC/rYCb7pU5 Vb2Uj2UrNDjF2+vEY2KLs7oFYILvlBCvXZo+1/wGllaezeJsG5Z9mb+lKBA6wdFP LBwOi4r+zclDDUJcEZZoXZkp7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKNvpFtR SQ7ZGuR1kqDYv4jwpWVVMB8GA1UdIwQYMBaAFEBCwkkNfa/sMyAxbtWqdOC+yqmp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzE2OS82MjMzREQzRUVC QUUxMUVFOEEwRUQ5NjRDNEY5QUUwMi9RRUxDU1ExOXItd3pJREZ1MWFwMDRMN0tx YWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FFTENTUTE5ci13eklERnUxYXAwNEw3S3Fhay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NzE2OS82MjMzREQzRUVCQUUxMUVFOEEwRUQ5NjRDNEY5QUUwMi9RRUxDU1ExOXIt d3pJREZ1MWFwMDRMN0txYWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA06v7iaJAf0dBdVTRRdFbyBvfvJsx9KCooKWc54m3CQExD+coQvUEY IeerEqmRGRiHXabeTHKEviso77ihyx3m84xCgp3Za02qc3o4oa1GkwsagnscXjG6 P9/0sVpmVRhNfDrf6p5pvvv/NrEMXw7XD62HY8oKdqqdH1uhPIVyj+3ozb5BRwRr mtN8Sxaiv2h4yK4IxxDKyYOyWTNrpKIoog71VOZB56pKx3FWqMSGdFJKQQC7/WzV JL53DmaWH0K9eFmfun0TE+U5MIyKDY39QmrrUw2d5cDW3tndJ0YVjdtKaMMAVMXn 6UaMyrzXrB3gH+H+I/S/XPOHDGITlKYE -----END CERTIFICATE-----Generated at Sun Jan 25 13:52:46 2026 by rpki-client