This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0BE1/E46FF490AE2B11EB95627F82C4F9AE02/qiG2kMHWPL9EGqO9EX7Yt4aIIik.mft File: qiG2kMHWPL9EGqO9EX7Yt4aIIik.mft (raw, json) Hash identifier: OaHcW6qW58HL6smJhLC34cUUcwmrG8MorWowMtiBTnw= Subject key identifier: 27:DC:5C:3B:F5:D6:1B:E0:20:7A:B7:5E:F9:E2:C6:60:12:C1:99:90 Authority key identifier: AA:21:B6:90:C1:D6:3C:BF:44:1A:A3:BD:11:7E:D8:B7:86:88:22:29 Certificate issuer: /CN=A91C0BE1/serialNumber=AA21B690C1D63CBF441AA3BD117ED8B786882229 Certificate serial: 065B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qiG2kMHWPL9EGqO9EX7Yt4aIIik.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0BE1/E46FF490AE2B11EB95627F82C4F9AE02/qiG2kMHWPL9EGqO9EX7Yt4aIIik.mft Manifest number: 0656 Signing time: Sun 14 Dec 2025 21:58:03 +0000 Manifest this update: Sun 14 Dec 2025 21:58:03 +0000 Manifest next update: Sun 21 Dec 2025 21:58:03 +0000 Files and hashes: 1: qiG2kMHWPL9EGqO9EX7Yt4aIIik.crl (hash: ZHbQkcsgut8Y7byXCXG54GGdQrI3l5xglt4jZ7Npgo0=) 2: 0C3EAFF6F84111EC926CBF53C4F9AE02.roa (hash: QP4syOi96y5XvL9Sdw2J+adgOyFXDCa3foh8bqHg19c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0BE1/E46FF490AE2B11EB95627F82C4F9AE02/qiG2kMHWPL9EGqO9EX7Yt4aIIik.crl rsync://rpki.apnic.net/member_repository/A91C0BE1/E46FF490AE2B11EB95627F82C4F9AE02/qiG2kMHWPL9EGqO9EX7Yt4aIIik.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qiG2kMHWPL9EGqO9EX7Yt4aIIik.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Dec 2025 21:58:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1627 (0x65b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0BE1, serialNumber=AA21B690C1D63CBF441AA3BD117ED8B786882229 Validity Not Before: Dec 14 21:58:03 2025 GMT Not After : Dec 21 21:58:03 2025 GMT Subject: CN=693f32eb-b5e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:d0:4f:1c:6d:91:d6:64:ed:35:a5:19:c7:c3: 47:81:5c:96:8b:7b:98:43:87:2e:7a:ae:30:1d:bb: d0:97:ab:ea:37:f8:e6:0e:59:b7:50:bd:8a:47:8a: fe:b8:52:65:04:e5:fa:78:94:4b:2e:c3:81:a2:71: 00:c7:c1:43:ad:ae:c5:f8:5e:01:01:7a:60:ad:f0: 56:40:f8:2b:fa:8e:5f:99:3c:1e:ee:87:04:d5:ea: c4:50:42:1a:74:55:ae:c1:fc:14:73:f9:ba:1e:f1: aa:86:78:49:a5:aa:0a:c5:53:4e:a8:c2:fb:a9:af: 1e:0f:d8:ab:e4:ed:0e:4f:e2:a0:55:a6:55:7a:6d: be:66:71:6d:77:68:dd:60:f0:d9:cb:5a:26:54:94: b1:80:4c:70:70:1d:be:dc:c2:82:58:5b:36:f0:8c: f1:f6:d9:73:ca:0d:c0:4b:5b:bd:c1:f1:36:7b:93: 9b:37:05:52:64:19:54:3f:93:c8:d8:54:39:1e:a6: d1:a9:2d:75:ab:0d:5b:94:e5:95:6f:53:01:b1:a5: d8:b6:47:09:9e:6f:35:90:31:d8:e2:f0:ee:25:bf: 1f:3a:92:5b:2b:ab:7c:74:74:26:b7:3a:0e:61:6f: ff:c9:90:29:93:85:a2:65:88:bc:7d:81:81:64:99: d5:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:DC:5C:3B:F5:D6:1B:E0:20:7A:B7:5E:F9:E2:C6:60:12:C1:99:90 X509v3 Authority Key Identifier: keyid:AA:21:B6:90:C1:D6:3C:BF:44:1A:A3:BD:11:7E:D8:B7:86:88:22:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0BE1/E46FF490AE2B11EB95627F82C4F9AE02/qiG2kMHWPL9EGqO9EX7Yt4aIIik.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qiG2kMHWPL9EGqO9EX7Yt4aIIik.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0BE1/E46FF490AE2B11EB95627F82C4F9AE02/qiG2kMHWPL9EGqO9EX7Yt4aIIik.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:5b:78:03:46:e0:db:35:13:6b:ea:52:d8:17:05:d0:06:6f: 21:6d:d9:ad:dd:27:6d:26:c0:6a:93:eb:a8:e1:ae:fc:85:9e: ee:04:41:4c:ba:5a:e3:31:b8:e0:96:92:fa:d1:5f:5d:44:9d: 1c:7e:f0:dc:ba:7c:dd:51:8a:90:c3:ce:62:27:03:f0:dd:0d: d6:0c:7e:26:48:c4:3f:63:df:ca:30:e9:ea:f2:73:b0:72:e1: e3:2a:1f:40:55:14:b8:f7:1b:b0:35:e0:75:f7:6e:95:65:c2: 17:04:69:00:c0:9f:26:bd:a7:1e:47:95:13:c7:46:a1:15:64: 6e:ac:84:c2:60:ea:92:32:d6:c1:c3:43:52:86:01:aa:d9:24: 81:2b:8d:51:19:2f:b7:f5:86:af:4d:e2:53:d8:d4:7f:cc:d7: 76:5c:6d:e4:ef:ce:d6:9c:c7:9e:18:75:a0:91:fc:85:73:11: ae:41:8f:08:2b:07:78:dd:3c:21:f8:8a:c1:30:1e:7b:d7:af: b0:53:66:55:e1:bf:06:34:d0:ff:2a:08:f2:41:0a:7d:01:d9: 1c:75:42:05:65:e1:7d:ac:ea:c4:c0:17:91:e8:1d:3b:e8:40: c2:28:88:b4:a3:97:ae:63:7f:9d:63:d9:ad:f7:4d:08:84:6a: 4a:75:49:de -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBCRTExMTAvBgNVBAUTKEFBMjFCNjkwQzFENjNDQkY0NDFBQTNCRDExN0VEOEI3 ODY4ODIyMjkwHhcNMjUxMjE0MjE1ODAzWhcNMjUxMjIxMjE1ODAzWjAYMRYwFAYD VQQDDA02OTNmMzJlYi1iNWUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1dBPHG2R1mTtNaUZx8NHgVyWi3uYQ4cueq4wHbvQl6vqN/jmDlm3UL2KR4r+ uFJlBOX6eJRLLsOBonEAx8FDra7F+F4BAXpgrfBWQPgr+o5fmTwe7ocE1erEUEIa dFWuwfwUc/m6HvGqhnhJpaoKxVNOqML7qa8eD9ir5O0OT+KgVaZVem2+ZnFtd2jd YPDZy1omVJSxgExwcB2+3MKCWFs28Izx9tlzyg3AS1u9wfE2e5ObNwVSZBlUP5PI 2FQ5HqbRqS11qw1blOWVb1MBsaXYtkcJnm81kDHY4vDuJb8fOpJbK6t8dHQmtzoO YW//yZApk4WiZYi8fYGBZJnVfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCfcXDv1 1hvgIHq3XvnixmASwZmQMB8GA1UdIwQYMBaAFKohtpDB1jy/RBqjvRF+2LeGiCIp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEJFMS9FNDZGRjQ5MEFF MkIxMUVCOTU2MjdGODJDNEY5QUUwMi9xaUcya01IV1BMOUVHcU85RVg3WXQ0YUlJ aWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FpRzJrTUhXUEw5RUdxTzlFWDdZdDRhSUlpay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MEJFMS9FNDZGRjQ5MEFFMkIxMUVCOTU2MjdGODJDNEY5QUUwMi9xaUcya01IV1BM OUVHcU85RVg3WXQ0YUlJaWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtW3gDRuDbNRNr6lLYFwXQBm8hbdmt3SdtJsBqk+uo4a78hZ7uBEFM ulrjMbjglpL60V9dRJ0cfvDcunzdUYqQw85iJwPw3Q3WDH4mSMQ/Y9/KMOnq8nOw cuHjKh9AVRS49xuwNeB1926VZcIXBGkAwJ8mvaceR5UTx0ahFWRurITCYOqSMtbB w0NShgGq2SSBK41RGS+39YavTeJT2NR/zNd2XG3k787WnMeeGHWgkfyFcxGuQY8I Kwd43Twh+IrBMB5716+wU2ZV4b8GNND/KgjyQQp9AdkcdUIFZeF9rOrEwBeR6B07 6EDCKIi0o5euY3+dY9mt900IhGpKdUne -----END CERTIFICATE-----Generated at Tue Dec 16 20:59:57 2025 by rpki-client