This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0BE1/E46FF490AE2B11EB95627F82C4F9AE02/qiG2kMHWPL9EGqO9EX7Yt4aIIik.mft File: qiG2kMHWPL9EGqO9EX7Yt4aIIik.mft (raw, json) Hash identifier: UE6JgtQOZKfidEQI8+Iv/XXyg9vz4Hp4dVSrq+4DoRE= Subject key identifier: 3D:2A:0A:49:D7:12:39:6D:13:E7:F9:50:BB:96:99:5D:2A:4A:E0:B0 Authority key identifier: AA:21:B6:90:C1:D6:3C:BF:44:1A:A3:BD:11:7E:D8:B7:86:88:22:29 Certificate issuer: /CN=A91C0BE1/serialNumber=AA21B690C1D63CBF441AA3BD117ED8B786882229 Certificate serial: 0657 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qiG2kMHWPL9EGqO9EX7Yt4aIIik.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0BE1/E46FF490AE2B11EB95627F82C4F9AE02/qiG2kMHWPL9EGqO9EX7Yt4aIIik.mft Manifest number: 0652 Signing time: Sat 06 Dec 2025 21:31:08 +0000 Manifest this update: Sat 06 Dec 2025 21:31:08 +0000 Manifest next update: Sat 13 Dec 2025 21:31:08 +0000 Files and hashes: 1: qiG2kMHWPL9EGqO9EX7Yt4aIIik.crl (hash: 2pdnFRefbGM1AIm7Bn3VGjC23f+lNz94fyPHLMC8Haw=) 2: 0C3EAFF6F84111EC926CBF53C4F9AE02.roa (hash: QP4syOi96y5XvL9Sdw2J+adgOyFXDCa3foh8bqHg19c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0BE1/E46FF490AE2B11EB95627F82C4F9AE02/qiG2kMHWPL9EGqO9EX7Yt4aIIik.crl rsync://rpki.apnic.net/member_repository/A91C0BE1/E46FF490AE2B11EB95627F82C4F9AE02/qiG2kMHWPL9EGqO9EX7Yt4aIIik.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qiG2kMHWPL9EGqO9EX7Yt4aIIik.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 21:31:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1623 (0x657) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0BE1, serialNumber=AA21B690C1D63CBF441AA3BD117ED8B786882229 Validity Not Before: Dec 6 21:31:08 2025 GMT Not After : Dec 13 21:31:08 2025 GMT Subject: CN=6934a09c-42aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:64:5c:6b:1a:f2:0c:2f:5f:88:f3:6a:f8:46: 0e:5d:d0:0f:8b:96:4d:6a:56:33:43:df:44:fe:42: 93:28:99:9b:5f:cf:28:4e:37:f1:4f:51:8a:c7:76: 74:17:23:51:d5:2a:c4:e9:e0:bd:8e:c1:15:77:07: 4c:73:49:3d:88:08:de:97:5b:b6:da:e4:f9:0d:37: 6a:62:85:62:af:1c:2e:29:39:5b:92:8c:35:b3:d9: 92:07:bd:9b:88:ee:00:73:c0:05:a7:f4:ec:08:05: 7f:c3:e1:6b:39:9b:99:15:5a:e4:2d:3a:9f:29:d6: 52:a1:4e:54:ba:81:5f:88:2e:ac:45:2b:de:c6:4c: da:ac:47:da:2a:54:0b:cf:b3:b2:63:de:43:2f:d5: 99:7e:14:2c:a9:cd:79:15:7e:e1:e8:70:ce:95:db: 5d:2f:6e:12:24:97:2a:72:5f:32:d7:87:1c:e1:a1: 7d:d4:e2:47:8f:d3:1e:9a:13:49:d8:0f:b1:80:88: 5e:84:e8:9d:b9:b0:8f:5a:13:49:18:7f:32:c2:2b: 06:35:36:16:36:a5:d6:1b:16:dc:6a:14:6b:b8:52: 16:29:d2:e6:28:1d:ce:7f:bf:a5:88:89:ca:ec:5f: 9d:12:65:a4:78:f3:e0:b3:82:e6:f7:92:e3:62:a8: a3:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:2A:0A:49:D7:12:39:6D:13:E7:F9:50:BB:96:99:5D:2A:4A:E0:B0 X509v3 Authority Key Identifier: keyid:AA:21:B6:90:C1:D6:3C:BF:44:1A:A3:BD:11:7E:D8:B7:86:88:22:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0BE1/E46FF490AE2B11EB95627F82C4F9AE02/qiG2kMHWPL9EGqO9EX7Yt4aIIik.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qiG2kMHWPL9EGqO9EX7Yt4aIIik.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0BE1/E46FF490AE2B11EB95627F82C4F9AE02/qiG2kMHWPL9EGqO9EX7Yt4aIIik.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:db:8d:a6:8f:e1:85:95:79:75:cd:76:ba:e9:83:a4:92:b7: a0:3b:87:35:90:7e:d3:93:0b:a2:15:7e:b4:bb:ba:48:fa:8a: 40:3d:1f:43:46:fa:81:73:2b:fe:63:7d:8c:cd:19:42:2b:69: 4e:7c:28:57:b0:6e:83:1f:c3:15:af:4b:b6:96:17:c0:b3:ad: be:01:cb:9f:04:37:93:cd:08:0c:9e:2d:f4:ed:35:2e:e3:4c: 3d:f7:43:c5:35:96:33:bb:86:4d:4b:81:c7:af:34:81:2e:b4: c1:a6:7d:5e:02:b2:27:4e:41:81:38:bc:22:1e:89:4c:f4:c5: 06:9e:b3:08:4b:b1:e1:03:aa:58:1a:c7:87:74:5b:04:9b:8e: 9c:26:cc:82:37:11:62:c7:bf:56:dd:af:5d:8c:15:bf:8e:9d: b9:72:21:db:99:cc:78:2a:29:2c:04:d0:66:75:72:3a:f2:8c: 1b:aa:84:4c:7e:01:17:c2:a9:7b:11:47:95:c0:70:e6:30:4e: 95:a9:4c:f6:f0:71:55:87:a8:27:5e:70:2b:bb:2e:6a:18:71: 29:11:c9:c5:89:f6:39:1c:8f:e6:35:69:02:fc:8c:06:50:fb: b1:df:1d:5a:f7:b2:8f:83:66:20:ac:74:02:61:9d:7d:3b:8e: 14:6a:0e:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBCRTExMTAvBgNVBAUTKEFBMjFCNjkwQzFENjNDQkY0NDFBQTNCRDExN0VEOEI3 ODY4ODIyMjkwHhcNMjUxMjA2MjEzMTA4WhcNMjUxMjEzMjEzMTA4WjAYMRYwFAYD VQQDEw02OTM0YTA5Yy00MmFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtWRcaxryDC9fiPNq+EYOXdAPi5ZNalYzQ99E/kKTKJmbX88oTjfxT1GKx3Z0 FyNR1SrE6eC9jsEVdwdMc0k9iAjel1u22uT5DTdqYoVirxwuKTlbkow1s9mSB72b iO4Ac8AFp/TsCAV/w+FrOZuZFVrkLTqfKdZSoU5UuoFfiC6sRSvexkzarEfaKlQL z7OyY95DL9WZfhQsqc15FX7h6HDOldtdL24SJJcqcl8y14cc4aF91OJHj9MemhNJ 2A+xgIhehOidubCPWhNJGH8ywisGNTYWNqXWGxbcahRruFIWKdLmKB3Of7+liInK 7F+dEmWkePPgs4Lm95LjYqijuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD0qCknX EjltE+f5ULuWmV0qSuCwMB8GA1UdIwQYMBaAFKohtpDB1jy/RBqjvRF+2LeGiCIp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEJFMS9FNDZGRjQ5MEFF MkIxMUVCOTU2MjdGODJDNEY5QUUwMi9xaUcya01IV1BMOUVHcU85RVg3WXQ0YUlJ aWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FpRzJrTUhXUEw5RUdxTzlFWDdZdDRhSUlpay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MEJFMS9FNDZGRjQ5MEFFMkIxMUVCOTU2MjdGODJDNEY5QUUwMi9xaUcya01IV1BM OUVHcU85RVg3WXQ0YUlJaWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAc242mj+GFlXl1zXa66YOkkregO4c1kH7TkwuiFX60u7pI+opAPR9D RvqBcyv+Y32MzRlCK2lOfChXsG6DH8MVr0u2lhfAs62+AcufBDeTzQgMni307TUu 40w990PFNZYzu4ZNS4HHrzSBLrTBpn1eArInTkGBOLwiHolM9MUGnrMIS7HhA6pY GseHdFsEm46cJsyCNxFix79W3a9djBW/jp25ciHbmcx4KiksBNBmdXI68owbqoRM fgEXwql7EUeVwHDmME6VqUz28HFVh6gnXnAruy5qGHEpEcnFifY5HI/mNWkC/IwG UPux3x1a97KPg2YgrHQCYZ19O44Uag6y -----END CERTIFICATE-----Generated at Sat Dec 6 23:50:39 2025 by rpki-client