This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.mft File: QNueLLrezam5cjUQIVB63NGlYn8.mft (raw, json) Hash identifier: xe893QYsFP4FPRHcPMAWEnrQDlkaIeNipGFTksMZ6MU= Subject key identifier: F5:BD:A2:7E:D7:27:DA:98:A7:9A:0B:D5:DC:A5:80:1F:C7:92:9C:D7 Authority key identifier: 40:DB:9E:2C:BA:DE:CD:A9:B9:72:35:10:21:50:7A:DC:D1:A5:62:7F Certificate issuer: /CN=A91C8B4F/serialNumber=40DB9E2CBADECDA9B972351021507ADCD1A5627F Certificate serial: 04A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QNueLLrezam5cjUQIVB63NGlYn8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.mft Manifest number: 049A Signing time: Sat 24 Jan 2026 23:14:26 +0000 Manifest this update: Sat 24 Jan 2026 23:14:26 +0000 Manifest next update: Sat 31 Jan 2026 23:14:26 +0000 Files and hashes: 1: QNueLLrezam5cjUQIVB63NGlYn8.crl (hash: PBfgafAI/D0bZeSitpkuH2YRjTWTHlRfybNrP/wWIJM=) 2: 18E79956BAA811ECB07DA44BC4F9AE02.roa (hash: C2+RZmYoetqMpTEvEp2UgZ/k5COwbQ6X5aMLB79x36Q=) 3: 43540B7A0EE311EF9E24862BC4F9AE02.roa (hash: mV4y857QRPSQMJQogVNfC/t4weo9OVDbm55M2NQZyIc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.crl rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QNueLLrezam5cjUQIVB63NGlYn8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 23:14:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1189 (0x4a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8B4F, serialNumber=40DB9E2CBADECDA9B972351021507ADCD1A5627F Validity Not Before: Jan 24 23:14:26 2026 GMT Not After : Jan 31 23:14:26 2026 GMT Subject: CN=69755252-6d39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:95:0b:d4:d0:30:fd:ec:1e:1c:b2:c2:d1:4d: 5b:ad:c5:96:10:16:ee:5c:cf:96:99:81:ef:0f:df: e9:73:d0:6b:51:6f:e2:0b:84:c5:9b:89:bb:c9:68: 7e:4e:c9:e8:6f:d7:f6:a6:0b:60:83:74:5c:f4:e4: da:9a:4d:10:94:b7:b6:51:1d:37:43:f4:74:f2:d1: 46:12:53:de:70:0e:bf:28:95:14:d5:ed:43:00:0a: a6:e6:6a:61:e9:11:96:ae:de:0f:f4:6b:95:b2:86: 3a:a9:90:80:66:27:2e:89:37:cf:aa:75:17:49:77: af:04:25:97:65:fd:4c:0c:4b:29:96:db:af:70:21: ff:51:e9:43:17:ff:29:d7:8f:a7:d2:39:73:f5:ce: cf:00:e2:20:17:bc:76:ff:ae:ca:fc:70:97:f6:4a: 9b:29:f4:27:76:01:46:96:50:12:e6:5a:0d:3d:6e: 28:3c:f8:30:f6:1b:55:a4:8b:7c:3b:cf:14:f5:d1: 36:87:96:eb:8f:85:6b:a8:82:67:b3:d6:e1:bc:53: f1:9f:c1:78:e1:0a:0e:47:6b:a9:6a:32:2e:62:a4: 1f:9c:5c:da:1b:d7:a3:5d:ac:20:10:c9:d7:01:03: be:8a:c2:78:c6:8e:b7:44:56:39:be:55:bb:68:4b: 0b:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:BD:A2:7E:D7:27:DA:98:A7:9A:0B:D5:DC:A5:80:1F:C7:92:9C:D7 X509v3 Authority Key Identifier: keyid:40:DB:9E:2C:BA:DE:CD:A9:B9:72:35:10:21:50:7A:DC:D1:A5:62:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QNueLLrezam5cjUQIVB63NGlYn8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:e1:e4:57:2c:90:55:40:6d:8e:af:07:2b:61:d8:ba:da:84: 59:74:9d:29:d6:3b:05:11:69:2d:51:8c:44:e3:c0:51:37:6b: 9b:b2:13:c1:4a:2a:cd:2f:d9:1c:30:99:0c:87:0e:e1:65:d0: 04:54:ef:30:3d:29:7a:c7:52:60:bc:b0:0b:40:c7:5f:bd:f3: 2b:fb:4a:3d:68:2a:62:d8:70:8b:42:5e:43:64:25:90:05:f7: 5e:da:3e:61:55:80:6c:c7:07:50:6d:e8:db:b2:b8:35:c7:fa: e1:db:d0:ed:2a:b4:3e:fc:f3:7c:bb:70:16:d2:c8:38:61:b6: 14:51:21:2e:d4:d9:03:2e:02:21:00:80:61:3e:70:4e:e6:35: 25:44:f3:93:08:52:fc:06:23:fa:ce:db:da:16:71:4f:1a:b2: 19:fc:bf:65:20:a5:f0:83:a5:d7:5f:cb:44:69:9f:ed:ce:c1: f9:53:0e:a2:ef:6a:42:0f:7e:a1:18:59:77:8d:19:8a:47:0e: f9:d3:95:6b:4e:ca:91:9b:b5:e2:81:31:77:7a:91:7f:29:b4: 81:06:9f:47:85:a8:08:6e:1a:44:d6:53:fb:13:b7:f5:a4:60: 07:71:05:a8:98:e3:f6:ec:48:6b:b6:55:05:fe:86:d2:02:02: c0:3d:df:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBKUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhCNEYxMTAvBgNVBAUTKDQwREI5RTJDQkFERUNEQTlCOTcyMzUxMDIxNTA3QURD RDFBNTYyN0YwHhcNMjYwMTI0MjMxNDI2WhcNMjYwMTMxMjMxNDI2WjAYMRYwFAYD VQQDDA02OTc1NTI1Mi02ZDM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA45UL1NAw/eweHLLC0U1brcWWEBbuXM+WmYHvD9/pc9BrUW/iC4TFm4m7yWh+ Tsnob9f2pgtgg3Rc9OTamk0QlLe2UR03Q/R08tFGElPecA6/KJUU1e1DAAqm5mph 6RGWrt4P9GuVsoY6qZCAZicuiTfPqnUXSXevBCWXZf1MDEspltuvcCH/UelDF/8p 14+n0jlz9c7PAOIgF7x2/67K/HCX9kqbKfQndgFGllAS5loNPW4oPPgw9htVpIt8 O88U9dE2h5brj4VrqIJns9bhvFPxn8F44QoOR2upajIuYqQfnFzaG9ejXawgEMnX AQO+isJ4xo63RFY5vlW7aEsLcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPW9on7X J9qYp5oL1dylgB/HkpzXMB8GA1UdIwQYMBaAFEDbniy63s2puXI1ECFQetzRpWJ/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEI0Ri9ERDczMjY0ODY4 QkMxMUVDODc4MDc5NDhDNEY5QUUwMi9RTnVlTExyZXphbTVjalVRSVZCNjNOR2xZ bjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FOdWVMTHJlemFtNWNqVVFJVkI2M05HbFluOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OEI0Ri9ERDczMjY0ODY4QkMxMUVDODc4MDc5NDhDNEY5QUUwMi9RTnVlTExyZXph bTVjalVRSVZCNjNOR2xZbjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCm4eRXLJBVQG2OrwcrYdi62oRZdJ0p1jsFEWktUYxE48BRN2ubshPB SirNL9kcMJkMhw7hZdAEVO8wPSl6x1JgvLALQMdfvfMr+0o9aCpi2HCLQl5DZCWQ Bfde2j5hVYBsxwdQbejbsrg1x/rh29DtKrQ+/PN8u3AW0sg4YbYUUSEu1NkDLgIh AIBhPnBO5jUlRPOTCFL8BiP6ztvaFnFPGrIZ/L9lIKXwg6XXX8tEaZ/tzsH5Uw6i 72pCD36hGFl3jRmKRw7505VrTsqRm7XigTF3epF/KbSBBp9HhagIbhpE1lP7E7f1 pGAHcQWomOP27EhrtlUF/obSAgLAPd8h -----END CERTIFICATE-----Generated at Sun Jan 25 17:21:21 2026 by rpki-client