This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB492/2C0B32D8093611F0A2842D57C4F9AE02/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.mft File: QOS9Nq4VB3_lmYXRNw1dZGcKiNk.mft (raw, json) Hash identifier: kw1Iz9zRfyQy9CXjwfMYCFo127OIRFO1W0Mv9RcOXzc= Subject key identifier: 89:46:D8:AE:B4:D2:24:A9:EE:0E:5F:A9:3B:5A:8D:20:82:E6:A4:22 Authority key identifier: 40:E4:BD:36:AE:15:07:7F:E5:99:85:D1:37:0D:5D:64:67:0A:88:D9 Certificate issuer: /CN=A91BB492/serialNumber=40E4BD36AE15077FE59985D1370D5D64670A88D9 Certificate serial: 83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB492/2C0B32D8093611F0A2842D57C4F9AE02/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.mft Manifest number: 83 Signing time: Fri 05 Dec 2025 04:37:10 +0000 Manifest this update: Fri 05 Dec 2025 04:37:10 +0000 Manifest next update: Fri 12 Dec 2025 04:37:10 +0000 Files and hashes: 1: QOS9Nq4VB3_lmYXRNw1dZGcKiNk.crl (hash: gY04Es9OEVr1kbkvIZ/3N0XYPEeoVSr44gYlRgfXqpE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB492/2C0B32D8093611F0A2842D57C4F9AE02/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.crl rsync://rpki.apnic.net/member_repository/A91BB492/2C0B32D8093611F0A2842D57C4F9AE02/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:37:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 131 (0x83) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB492, serialNumber=40E4BD36AE15077FE59985D1370D5D64670A88D9 Validity Not Before: Dec 5 04:37:10 2025 GMT Not After : Dec 12 04:37:10 2025 GMT Subject: CN=69326176-c67b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:74:c5:c7:c3:97:22:67:99:ce:9c:d7:ae:0d: 2d:e1:0f:c4:1b:fb:a9:4c:8e:78:d1:59:74:0a:b5: 95:76:85:ee:b9:a7:ef:4d:ef:2b:b7:8a:7a:2b:4b: 0d:ab:43:cb:9c:7d:99:00:7a:c4:64:b1:43:aa:cd: 16:e5:44:7a:ec:08:04:59:6f:57:e4:49:01:37:7b: 54:1e:bb:9c:19:2d:94:7b:7a:19:7b:e5:ed:2f:79: 96:81:1f:93:1f:12:ae:d1:69:7a:7e:d7:cb:eb:f8: 44:fc:09:f5:37:b5:fb:bb:fe:e6:f8:b2:93:4d:75: c8:c9:70:1b:e0:19:62:4e:35:8c:85:37:5c:91:bb: 6a:db:f1:e9:a2:87:6c:32:9a:a0:1a:3c:44:ad:ba: 36:92:03:a5:55:32:00:9c:1f:d9:30:3e:4f:49:5b: 20:23:4c:cf:d1:2c:f1:83:a1:e6:c8:90:9c:de:1d: 20:5b:3d:89:8f:e6:1b:f3:68:bc:d4:71:dc:46:be: fb:0e:09:fc:13:c7:19:e1:60:48:c2:5f:6d:22:b7: 83:5d:d2:35:ab:12:cb:9a:75:e6:0e:11:10:ce:5b: 49:fe:79:51:36:ee:b4:48:55:63:88:4b:41:3a:97: 31:2c:84:d6:e6:73:93:b7:46:36:93:f4:88:71:ee: ff:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:46:D8:AE:B4:D2:24:A9:EE:0E:5F:A9:3B:5A:8D:20:82:E6:A4:22 X509v3 Authority Key Identifier: keyid:40:E4:BD:36:AE:15:07:7F:E5:99:85:D1:37:0D:5D:64:67:0A:88:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB492/2C0B32D8093611F0A2842D57C4F9AE02/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB492/2C0B32D8093611F0A2842D57C4F9AE02/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:3f:b9:e2:d4:7a:e3:3c:0a:91:db:1c:c0:0f:a4:16:ef:e3: 6a:13:d0:ee:6f:9f:ae:3e:75:7f:6c:53:6f:83:08:d8:ad:bb: 88:39:47:47:7c:7b:8b:10:3b:3e:0b:01:9b:7e:d6:c4:d1:61: c2:46:73:06:41:08:49:14:f9:ac:9b:ff:fa:c7:50:84:18:63: 41:43:7d:da:fd:41:17:b1:17:86:80:e1:7a:b5:04:bd:92:00: f5:23:48:eb:1f:04:46:ba:25:f5:45:aa:61:5f:6d:12:b7:85: 77:8c:26:3b:49:f4:fd:6b:b8:c4:64:8a:60:0f:b1:03:95:17: 83:85:d1:cc:a1:7c:30:6e:bc:b2:6d:70:ad:b8:0f:e2:94:53: ab:ad:1e:07:c1:7f:ff:3b:2d:f5:5b:a8:cc:77:11:3b:25:94: fd:68:ac:94:05:91:ef:7c:67:ed:02:c6:cc:2d:9d:b6:f2:b2: 3a:0b:8a:0b:a7:62:a5:46:30:cd:a0:9f:79:ec:fc:85:6f:bd: e0:99:f4:df:bc:db:a9:bc:e3:49:e9:86:5d:80:b5:0e:0f:56: 31:84:6a:25:0e:02:89:42:eb:16:c5:f3:01:a7:25:ef:bd:1c: 57:b6:a5:9e:f6:f7:fa:1c:37:84:a3:ce:14:de:c2:93:84:f4: 4d:44:ca:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI0OTIxMTAvBgNVBAUTKDQwRTRCRDM2QUUxNTA3N0ZFNTk5ODVEMTM3MEQ1RDY0 NjcwQTg4RDkwHhcNMjUxMjA1MDQzNzEwWhcNMjUxMjEyMDQzNzEwWjAYMRYwFAYD VQQDEw02OTMyNjE3Ni1jNjdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtXTFx8OXImeZzpzXrg0t4Q/EG/upTI540Vl0CrWVdoXuuafvTe8rt4p6K0sN q0PLnH2ZAHrEZLFDqs0W5UR67AgEWW9X5EkBN3tUHrucGS2Ue3oZe+XtL3mWgR+T HxKu0Wl6ftfL6/hE/An1N7X7u/7m+LKTTXXIyXAb4BliTjWMhTdckbtq2/Hpoods MpqgGjxErbo2kgOlVTIAnB/ZMD5PSVsgI0zP0Szxg6HmyJCc3h0gWz2Jj+Yb82i8 1HHcRr77Dgn8E8cZ4WBIwl9tIreDXdI1qxLLmnXmDhEQzltJ/nlRNu60SFVjiEtB OpcxLITW5nOTt0Y2k/SIce7/fQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIlG2K60 0iSp7g5fqTtajSCC5qQiMB8GA1UdIwQYMBaAFEDkvTauFQd/5ZmF0TcNXWRnCojZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjQ5Mi8yQzBCMzJEODA5 MzYxMUYwQTI4NDJENTdDNEY5QUUwMi9RT1M5TnE0VkIzX2xtWVhSTncxZFpHY0tp TmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FPUzlOcTRWQjNfbG1ZWFJOdzFkWkdjS2lOay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjQ5Mi8yQzBCMzJEODA5MzYxMUYwQTI4NDJENTdDNEY5QUUwMi9RT1M5TnE0VkIz X2xtWVhSTncxZFpHY0tpTmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBcP7ni1HrjPAqR2xzAD6QW7+NqE9Dub5+uPnV/bFNvgwjYrbuIOUdH fHuLEDs+CwGbftbE0WHCRnMGQQhJFPmsm//6x1CEGGNBQ33a/UEXsReGgOF6tQS9 kgD1I0jrHwRGuiX1RaphX20St4V3jCY7SfT9a7jEZIpgD7EDlReDhdHMoXwwbryy bXCtuA/ilFOrrR4HwX//Oy31W6jMdxE7JZT9aKyUBZHvfGftAsbMLZ228rI6C4oL p2KlRjDNoJ957PyFb73gmfTfvNupvONJ6YZdgLUOD1YxhGolDgKJQusWxfMBpyXv vRxXtqWe9vf6HDeEo84U3sKThPRNRMoc -----END CERTIFICATE-----Generated at Sun Dec 7 02:04:01 2025 by rpki-client