This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.mft File: -Q4hD858Z6Lysy3hTusFoEsNEOE.mft (raw, json) Hash identifier: GQY1XPaUlKQ2GMD5kn5uGea06eN76Igfx6Zx8iiGTTo= Subject key identifier: 28:97:96:96:51:73:07:8E:7A:CD:D7:4E:AD:12:E5:D6:A4:03:39:3A Authority key identifier: F9:0E:21:0F:CE:7C:67:A2:F2:B3:2D:E1:4E:EB:05:A0:4B:0D:10:E1 Certificate issuer: /CN=A91A7369/serialNumber=F90E210FCE7C67A2F2B32DE14EEB05A04B0D10E1 Certificate serial: 01AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Q4hD858Z6Lysy3hTusFoEsNEOE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.mft Manifest number: 01A8 Signing time: Fri 05 Dec 2025 01:28:48 +0000 Manifest this update: Fri 05 Dec 2025 01:28:48 +0000 Manifest next update: Fri 12 Dec 2025 01:28:48 +0000 Files and hashes: 1: -Q4hD858Z6Lysy3hTusFoEsNEOE.crl (hash: zv8pU83oXHPmnu0eNndmDqDjecYEC23LC9AfkckyxU4=) 2: A99E5658488011EE8113A766C4F9AE02.roa (hash: NccKQh/awErD0XICha+c3zCJvrDGH6h5P5yVRARZDuM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.crl rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Q4hD858Z6Lysy3hTusFoEsNEOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 01:28:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 428 (0x1ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7369, serialNumber=F90E210FCE7C67A2F2B32DE14EEB05A04B0D10E1 Validity Not Before: Dec 5 01:28:48 2025 GMT Not After : Dec 12 01:28:48 2025 GMT Subject: CN=69323550-eb72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:fe:85:38:bb:d4:63:e3:b8:fe:2a:99:44:52: bd:88:08:5b:d2:5c:0f:17:4b:c7:73:f6:56:b6:4a: 7a:fc:18:77:7f:c7:a2:95:3a:50:e2:d4:c5:0d:b8: 37:36:84:25:7a:22:fe:20:e4:d6:35:1f:3c:02:69: 35:4e:69:72:ac:c5:f1:d0:3d:ff:de:e3:f4:ab:91: 2b:ee:49:7a:df:7b:32:75:31:7d:44:fa:c7:9a:2b: 36:a6:a3:d5:2b:cb:7b:71:44:a6:d5:3d:6d:d0:9e: bd:9c:ac:f9:92:5d:1c:a4:d9:7f:62:54:0a:ea:ea: 74:75:ab:da:ed:fc:30:57:02:c6:ea:13:39:f6:92: f1:bc:ac:7b:df:ed:0a:af:8e:96:88:9e:dd:34:69: a7:56:ef:ab:20:8e:8d:c7:9b:ec:d3:e4:a6:1a:f2: 42:f7:bb:d0:d3:85:50:7c:86:47:7d:cf:d0:8a:3f: 49:bc:6c:9e:56:67:17:17:97:d5:c0:a1:81:59:90: 1d:fe:17:51:b7:0f:d8:cf:1c:f5:43:0d:1d:b5:35: 7e:c2:b7:32:3f:5b:3e:59:e8:5c:fe:4e:77:e9:dc: 2b:e6:5f:0e:64:46:c2:0a:d4:57:18:68:a7:02:75: 2e:ca:24:1c:3a:cc:a1:b9:a9:7a:31:28:d6:66:d8: e1:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:97:96:96:51:73:07:8E:7A:CD:D7:4E:AD:12:E5:D6:A4:03:39:3A X509v3 Authority Key Identifier: keyid:F9:0E:21:0F:CE:7C:67:A2:F2:B3:2D:E1:4E:EB:05:A0:4B:0D:10:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Q4hD858Z6Lysy3hTusFoEsNEOE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:85:48:4f:f4:5d:c2:ab:57:78:3f:86:52:50:78:fd:b9:06: b6:7c:41:e4:25:1e:25:0c:5e:12:57:6a:1c:36:c5:21:4a:d6: f8:25:b4:c3:60:e9:2f:a9:04:36:cd:de:b0:db:ca:de:2b:66: 1c:5c:0a:fe:9c:f0:ea:cb:ea:1c:f3:fe:35:5a:78:4a:21:f3: 6a:0d:45:e5:e7:67:7e:b5:c4:30:34:e6:3a:5d:a5:9a:98:8e: c9:4a:ce:b6:3d:58:b3:e5:61:05:20:d1:0b:6f:a0:11:03:99: 27:8d:19:6a:28:d8:2b:ce:10:a9:a0:97:52:7e:36:90:17:eb: 0c:b0:44:04:aa:33:29:c9:eb:fe:86:03:9e:2e:dc:5a:d4:b1: 20:88:09:86:b9:b1:82:b2:b0:fe:06:f9:61:24:5c:4d:b0:07: 58:b1:c1:8d:7d:ee:3e:c5:ff:a6:aa:68:a5:eb:38:37:87:35: f1:ac:06:cc:da:e7:85:49:8b:d2:2c:eb:74:2e:a1:4d:ee:88: 8c:c6:09:61:39:bb:70:ca:f1:57:60:c3:e2:33:d4:7c:2c:1a: 6c:23:e7:5d:b5:6d:2f:d0:1d:22:a1:33:64:0b:17:5e:d3:e3: f0:8e:8b:36:ec:5c:b9:cb:a6:4f:6c:39:92:6c:8a:2d:2e:bb: 69:52:44:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAawwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTczNjkxMTAvBgNVBAUTKEY5MEUyMTBGQ0U3QzY3QTJGMkIzMkRFMTRFRUIwNUEw NEIwRDEwRTEwHhcNMjUxMjA1MDEyODQ4WhcNMjUxMjEyMDEyODQ4WjAYMRYwFAYD VQQDEw02OTMyMzU1MC1lYjcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu/6FOLvUY+O4/iqZRFK9iAhb0lwPF0vHc/ZWtkp6/Bh3f8eilTpQ4tTFDbg3 NoQleiL+IOTWNR88Amk1TmlyrMXx0D3/3uP0q5Er7kl633sydTF9RPrHmis2pqPV K8t7cUSm1T1t0J69nKz5kl0cpNl/YlQK6up0dava7fwwVwLG6hM59pLxvKx73+0K r46WiJ7dNGmnVu+rII6Nx5vs0+SmGvJC97vQ04VQfIZHfc/Qij9JvGyeVmcXF5fV wKGBWZAd/hdRtw/Yzxz1Qw0dtTV+wrcyP1s+Wehc/k536dwr5l8OZEbCCtRXGGin AnUuyiQcOsyhual6MSjWZtjhXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCiXlpZR cweOes3XTq0S5dakAzk6MB8GA1UdIwQYMBaAFPkOIQ/OfGei8rMt4U7rBaBLDRDh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzM2OS9CMUQ2MTk0MjQ4 N0YxMUVFQTgwQTAyNENDNEY5QUUwMi8tUTRoRDg1OFo2THlzeTNoVHVzRm9Fc05F T0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1RNGhEODU4WjZMeXN5M2hUdXNGb0VzTkVPRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NzM2OS9CMUQ2MTk0MjQ4N0YxMUVFQTgwQTAyNENDNEY5QUUwMi8tUTRoRDg1OFo2 THlzeTNoVHVzRm9Fc05FT0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBShUhP9F3Cq1d4P4ZSUHj9uQa2fEHkJR4lDF4SV2ocNsUhStb4JbTD YOkvqQQ2zd6w28reK2YcXAr+nPDqy+oc8/41WnhKIfNqDUXl52d+tcQwNOY6XaWa mI7JSs62PViz5WEFINELb6ARA5knjRlqKNgrzhCpoJdSfjaQF+sMsEQEqjMpyev+ hgOeLtxa1LEgiAmGubGCsrD+BvlhJFxNsAdYscGNfe4+xf+mqmil6zg3hzXxrAbM 2ueFSYvSLOt0LqFN7oiMxglhObtwyvFXYMPiM9R8LBpsI+ddtW0v0B0ioTNkCxde 0+Pwjos27Fy5y6ZPbDmSbIotLrtpUkS0 -----END CERTIFICATE-----Generated at Sat Dec 6 22:07:38 2025 by rpki-client