This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.mft File: -qIKGvsgkct_URR4g_NkpFMJQTE.mft (raw, json) Hash identifier: /uJzJVk0RU/HBzNZVIy+H9h9rnRf3PZZ5jsKvu2BkwE= Subject key identifier: 60:96:2E:DE:12:A4:E8:CC:DA:96:25:0C:DD:B4:C8:BC:68:2A:72:13 Authority key identifier: FA:A2:0A:1A:FB:20:91:CB:7F:51:14:78:83:F3:64:A4:53:09:41:31 Certificate issuer: /CN=A91AF0E8/serialNumber=FAA20A1AFB2091CB7F51147883F364A453094131 Certificate serial: 34FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-qIKGvsgkct_URR4g_NkpFMJQTE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.mft Manifest number: 34EF Signing time: Sat 06 Dec 2025 14:59:23 +0000 Manifest this update: Sat 06 Dec 2025 14:59:23 +0000 Manifest next update: Sat 13 Dec 2025 14:59:23 +0000 Files and hashes: 1: -qIKGvsgkct_URR4g_NkpFMJQTE.crl (hash: ObzItPC8vcW/NrAXhGz5qkP9Zi544w7/DdHWnwaU+qg=) 2: 0A956A80B48711EC83327546C4F9AE02.roa (hash: QTUVJsweaVnNBbhlnpDHj+5m7Q6KujtkGNOkASm6SsM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.crl rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-qIKGvsgkct_URR4g_NkpFMJQTE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 14:59:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13562 (0x34fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF0E8, serialNumber=FAA20A1AFB2091CB7F51147883F364A453094131 Validity Not Before: Dec 6 14:59:23 2025 GMT Not After : Dec 13 14:59:23 2025 GMT Subject: CN=693444cb-8ec2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:5f:68:26:bb:7b:28:28:9d:bd:11:72:57:c9: cd:38:1f:8b:90:79:a6:17:68:20:15:42:09:fe:ac: cd:cf:70:42:72:e1:ed:6f:f0:50:05:0a:1c:cf:cb: 9b:cf:48:8f:5f:84:2b:ad:37:ba:25:ad:b3:99:3d: 68:92:62:85:e4:c7:f8:ff:c8:78:f7:de:63:b0:69: 00:92:4a:8a:81:5b:f0:ef:ef:85:5e:3b:74:f6:18: 29:96:0f:d2:10:d2:fd:e1:e3:f5:ff:13:34:31:3d: 28:9b:2e:4c:4e:23:74:41:85:4b:bf:2d:6a:d7:3b: 9c:e3:8e:35:94:87:95:2b:e6:05:31:a3:52:aa:61: 1c:af:f8:58:03:ea:4c:91:4b:35:63:9f:74:07:73: b1:6d:be:79:93:9b:7e:17:88:ba:67:c0:d6:fc:e2: 5b:58:03:16:66:44:a2:be:46:6e:6d:fe:94:58:e1: 86:88:f7:ad:29:ce:84:8b:fa:0e:25:21:84:92:43: 6f:39:41:5a:4a:2d:80:ff:fc:82:fd:78:31:c9:50: 89:2b:eb:a7:6f:c6:7f:c2:ff:44:b8:a8:27:9c:25: d9:ef:0a:95:f6:60:ae:db:5d:b5:7e:22:4a:c5:d3: 72:41:75:7c:c1:99:db:4f:05:d7:09:34:06:69:3c: 3a:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:96:2E:DE:12:A4:E8:CC:DA:96:25:0C:DD:B4:C8:BC:68:2A:72:13 X509v3 Authority Key Identifier: keyid:FA:A2:0A:1A:FB:20:91:CB:7F:51:14:78:83:F3:64:A4:53:09:41:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-qIKGvsgkct_URR4g_NkpFMJQTE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:94:ad:f0:18:f2:6a:ec:95:8c:49:8e:94:47:04:84:15:a5: cb:7a:fb:a6:6d:75:b3:47:80:04:ef:5a:ee:2d:e8:2f:84:5e: fe:25:f0:30:2a:17:af:04:82:a6:e8:36:77:e6:09:b6:42:20: 5b:ac:7e:68:bd:b5:8d:c5:fd:bd:40:b0:00:48:09:3f:9c:6a: 01:4f:65:a8:80:b9:59:2c:4f:6b:43:bc:4c:df:60:d2:5f:d0: da:46:a6:e4:fe:8b:03:6e:5f:82:53:0a:7a:6d:6e:cc:05:62: 45:04:00:06:35:0c:0a:dd:45:9a:9c:d4:03:dc:48:af:42:3a: 13:3a:07:71:2e:44:31:31:60:5a:b4:ee:f9:ec:a7:21:0c:48: d6:10:3c:a1:69:c0:48:94:bf:9d:b9:51:2e:2f:1a:ea:09:34: d2:ea:f3:cc:71:41:d0:59:d8:08:48:8d:87:38:1b:c4:3f:57: 06:a1:1d:99:04:de:74:c7:20:4f:b8:d8:fb:81:fc:a2:d4:fb: 20:50:f7:0f:59:ef:1d:e8:37:97:22:c2:70:77:79:3c:27:a5: d7:98:7d:30:58:a8:29:11:97:9d:e7:84:8e:8c:f8:ae:a9:e6: 94:51:5e:66:39:5a:2e:66:1e:4c:85:61:38:d3:05:9f:ab:b1: fd:2c:d8:e7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNPowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUYwRTgxMTAvBgNVBAUTKEZBQTIwQTFBRkIyMDkxQ0I3RjUxMTQ3ODgzRjM2NEE0 NTMwOTQxMzEwHhcNMjUxMjA2MTQ1OTIzWhcNMjUxMjEzMTQ1OTIzWjAYMRYwFAYD VQQDEw02OTM0NDRjYi04ZWMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsV9oJrt7KCidvRFyV8nNOB+LkHmmF2ggFUIJ/qzNz3BCcuHtb/BQBQocz8ub z0iPX4QrrTe6Ja2zmT1okmKF5Mf4/8h4995jsGkAkkqKgVvw7++FXjt09hgplg/S ENL94eP1/xM0MT0omy5MTiN0QYVLvy1q1zuc4441lIeVK+YFMaNSqmEcr/hYA+pM kUs1Y590B3Oxbb55k5t+F4i6Z8DW/OJbWAMWZkSivkZubf6UWOGGiPetKc6Ei/oO JSGEkkNvOUFaSi2A//yC/XgxyVCJK+unb8Z/wv9EuKgnnCXZ7wqV9mCu2121fiJK xdNyQXV8wZnbTwXXCTQGaTw6yQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGCWLt4S pOjM2pYlDN20yLxoKnITMB8GA1UdIwQYMBaAFPqiChr7IJHLf1EUeIPzZKRTCUEx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjBFOC80NTc5NkFEMjFE QTMxMUUyOUZGQjhDOTgwOEIwMkNEMi8tcUlLR3ZzZ2tjdF9VUlI0Z19Oa3BGTUpR VEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1xSUtHdnNna2N0X1VSUjRnX05rcEZNSlFURS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjBFOC80NTc5NkFEMjFEQTMxMUUyOUZGQjhDOTgwOEIwMkNEMi8tcUlLR3ZzZ2tj dF9VUlI0Z19Oa3BGTUpRVEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCElK3wGPJq7JWMSY6URwSEFaXLevumbXWzR4AE71ruLegvhF7+JfAw KhevBIKm6DZ35gm2QiBbrH5ovbWNxf29QLAASAk/nGoBT2WogLlZLE9rQ7xM32DS X9DaRqbk/osDbl+CUwp6bW7MBWJFBAAGNQwK3UWanNQD3EivQjoTOgdxLkQxMWBa tO757KchDEjWEDyhacBIlL+duVEuLxrqCTTS6vPMcUHQWdgISI2HOBvEP1cGoR2Z BN50xyBPuNj7gfyi1PsgUPcPWe8d6DeXIsJwd3k8J6XXmH0wWKgpEZed54SOjPiu qeaUUV5mOVouZh5MhWE40wWfq7H9LNjn -----END CERTIFICATE-----Generated at Sat Dec 6 19:30:40 2025 by rpki-client