This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7E5B/D84E7BF23C6E11F09D76A24DC4F9AE02/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.mft File: q1PZkoECuRnbfFRlyN1f8mZ0Q7M.mft (raw, json) Hash identifier: kMvgtH73krrhbctDLoVxOxomDiWM1q0LRaFUN2I3bBE= Subject key identifier: 63:0C:4B:CD:7F:3E:28:4C:9F:14:24:8E:27:57:12:1A:89:A6:65:CD Authority key identifier: AB:53:D9:92:81:02:B9:19:DB:7C:54:65:C8:DD:5F:F2:66:74:43:B3 Certificate issuer: /CN=A91C7E5B/serialNumber=AB53D9928102B919DB7C5465C8DD5FF2667443B3 Certificate serial: 6E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7E5B/D84E7BF23C6E11F09D76A24DC4F9AE02/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.mft Manifest number: 69 Signing time: Fri 05 Dec 2025 04:56:37 +0000 Manifest this update: Fri 05 Dec 2025 04:56:37 +0000 Manifest next update: Fri 12 Dec 2025 04:56:37 +0000 Files and hashes: 1: q1PZkoECuRnbfFRlyN1f8mZ0Q7M.crl (hash: gjg+eiXylxnMe4LnY98sKpBXGuxN0KVX6JxvZM7W21I=) 2: 35CA66BABC2111F0A08A6F79C4F9AE02.roa (hash: rpmrXdQJLd8mWrJCCVBclKAPg3Mu6Bj/cHb9ZSARUHQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7E5B/D84E7BF23C6E11F09D76A24DC4F9AE02/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.crl rsync://rpki.apnic.net/member_repository/A91C7E5B/D84E7BF23C6E11F09D76A24DC4F9AE02/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:56:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 110 (0x6e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7E5B, serialNumber=AB53D9928102B919DB7C5465C8DD5FF2667443B3 Validity Not Before: Dec 5 04:56:37 2025 GMT Not After : Dec 12 04:56:37 2025 GMT Subject: CN=69326605-a777 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:25:38:da:1b:cc:d9:d1:a4:7a:ea:ef:65:3e: 53:c4:a8:a8:b9:31:1d:3a:6b:bc:70:a6:98:a7:9f: 38:8f:93:f1:45:e6:73:df:67:c8:b5:0c:16:d1:e4: 53:fa:2f:a8:b2:a8:fb:5e:21:12:03:a3:85:a9:57: 15:33:83:57:5f:4d:0c:a6:a7:e6:c3:f3:17:aa:d8: 7e:f0:c0:da:45:0f:a6:80:85:83:13:97:bf:66:43: 91:99:2b:8c:ac:30:b5:43:ff:da:67:09:b7:a7:b5: 7d:53:c6:3e:3b:d1:08:ac:ef:a9:04:85:62:47:6e: 26:ec:98:91:3c:54:b4:64:34:27:01:48:8b:63:68: 39:14:76:12:16:ec:98:31:2a:b2:ee:d2:0c:7c:ac: 24:ca:27:d8:de:36:d8:4b:e0:73:e0:bc:30:62:89: 18:63:7c:b7:36:40:58:bc:ef:04:3d:52:68:b9:9b: 0c:fd:69:6b:9d:92:a6:78:38:23:c5:4c:c4:e3:37: 6a:d8:3d:09:75:08:d5:7d:c0:df:0e:bc:41:2d:5a: 52:03:a2:b7:5b:d8:e5:69:1a:f6:af:53:8b:a0:94: 2d:49:9c:4b:6e:84:c0:fa:9c:41:f4:26:12:b1:7d: c4:04:65:bc:87:be:bf:c1:a7:a7:d7:0d:78:91:65: d5:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:0C:4B:CD:7F:3E:28:4C:9F:14:24:8E:27:57:12:1A:89:A6:65:CD X509v3 Authority Key Identifier: keyid:AB:53:D9:92:81:02:B9:19:DB:7C:54:65:C8:DD:5F:F2:66:74:43:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7E5B/D84E7BF23C6E11F09D76A24DC4F9AE02/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7E5B/D84E7BF23C6E11F09D76A24DC4F9AE02/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d3:c7:e1:13:04:c7:d3:80:ac:5c:dc:c9:a1:6f:cc:29:84:b0: 93:9d:42:d3:22:5a:c2:1c:79:09:a2:9f:71:2b:ae:dc:64:0e: f1:60:85:47:a3:28:e3:63:44:5c:9a:09:96:6a:51:ec:e8:40: ed:dc:a9:ef:5a:34:b5:57:9e:8e:65:69:91:1b:50:4d:de:0b: f1:b4:7a:66:be:e7:53:98:31:5b:df:ce:67:ab:04:da:6b:96: 66:83:4e:45:f1:1c:48:b8:1c:61:1c:4e:67:91:e4:98:14:cd: 7e:c9:8f:a6:e8:56:16:22:af:ae:2f:61:f5:ee:6e:e1:97:93: 1f:50:00:53:4d:aa:54:25:64:9c:83:83:82:0b:15:cf:9c:27: fa:5f:f6:18:10:69:1c:73:35:3f:3d:2f:f4:fc:e1:89:b4:a9: 20:09:7c:af:67:65:4a:b6:ef:78:70:51:94:56:fd:60:b1:7b: e5:f4:39:2f:2d:98:1d:8e:ba:6c:99:57:37:1f:0f:3c:90:5e: f8:3e:0e:d0:b7:71:37:10:76:56:ed:ec:56:ca:35:7f:d6:24: 77:3a:9a:05:52:85:01:9f:2f:18:ec:b1:e6:7d:41:d0:34:27: ed:58:71:d2:10:d0:08:29:7e:c5:86:f5:c4:aa:ce:29:d0:10: c6:e3:3a:eb -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD N0U1QjExMC8GA1UEBRMoQUI1M0Q5OTI4MTAyQjkxOURCN0M1NDY1QzhERDVGRjI2 Njc0NDNCMzAeFw0yNTEyMDUwNDU2MzdaFw0yNTEyMTIwNDU2MzdaMBgxFjAUBgNV BAMTDTY5MzI2NjA1LWE3NzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDmJTjaG8zZ0aR66u9lPlPEqKi5MR06a7xwppinnziPk/FF5nPfZ8i1DBbR5FP6 L6iyqPteIRIDo4WpVxUzg1dfTQymp+bD8xeq2H7wwNpFD6aAhYMTl79mQ5GZK4ys MLVD/9pnCbentX1Txj470Qis76kEhWJHbibsmJE8VLRkNCcBSItjaDkUdhIW7Jgx KrLu0gx8rCTKJ9jeNthL4HPgvDBiiRhjfLc2QFi87wQ9Umi5mwz9aWudkqZ4OCPF TMTjN2rYPQl1CNV9wN8OvEEtWlIDordb2OVpGvavU4uglC1JnEtuhMD6nEH0JhKx fcQEZbyHvr/Bp6fXDXiRZdWBAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUYwxLzX8+ KEyfFCSOJ1cSGommZc0wHwYDVR0jBBgwFoAUq1PZkoECuRnbfFRlyN1f8mZ0Q7Mw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM3RTVCL0Q4NEU3QkYyM0M2 RTExRjA5RDc2QTI0REM0RjlBRTAyL3ExUFprb0VDdVJuYmZGUmx5TjFmOG1aMFE3 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvcTFQWmtvRUN1Um5iZkZSbHlOMWY4bVowUTdNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM3 RTVCL0Q4NEU3QkYyM0M2RTExRjA5RDc2QTI0REM0RjlBRTAyL3ExUFprb0VDdVJu YmZGUmx5TjFmOG1aMFE3TS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBANPH4RMEx9OArFzcyaFvzCmEsJOdQtMiWsIceQmin3ErrtxkDvFghUej KONjRFyaCZZqUezoQO3cqe9aNLVXno5laZEbUE3eC/G0ema+51OYMVvfzmerBNpr lmaDTkXxHEi4HGEcTmeR5JgUzX7Jj6boVhYir64vYfXubuGXkx9QAFNNqlQlZJyD g4ILFc+cJ/pf9hgQaRxzNT89L/T84Ym0qSAJfK9nZUq273hwUZRW/WCxe+X0OS8t mB2OumyZVzcfDzyQXvg+DtC3cTcQdlbt7FbKNX/WJHc6mgVShQGfLxjsseZ9QdA0 J+1YcdIQ0AgpfsWG9cSqzinQEMbjOus= -----END CERTIFICATE-----Generated at Sun Dec 7 00:17:46 2025 by rpki-client