This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.mft File: QNueLLrezam5cjUQIVB63NGlYn8.mft (raw, json) Hash identifier: e7Nbrrz97g3SLzwm/RxtvV6HJ444gJtWwFrsUU3d4L0= Subject key identifier: A0:51:7D:07:A2:BB:D1:EE:64:5E:29:4F:9D:46:5D:D0:70:54:85:C6 Authority key identifier: 40:DB:9E:2C:BA:DE:CD:A9:B9:72:35:10:21:50:7A:DC:D1:A5:62:7F Certificate issuer: /CN=A91C8B4F/serialNumber=40DB9E2CBADECDA9B972351021507ADCD1A5627F Certificate serial: 048B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QNueLLrezam5cjUQIVB63NGlYn8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.mft Manifest number: 0480 Signing time: Thu 04 Dec 2025 22:37:28 +0000 Manifest this update: Thu 04 Dec 2025 22:37:27 +0000 Manifest next update: Thu 11 Dec 2025 22:37:27 +0000 Files and hashes: 1: QNueLLrezam5cjUQIVB63NGlYn8.crl (hash: mwOpkdAL4qPAzo3ak93C+Xhg2h2xyEoObBKOzS/bJPg=) 2: 18E79956BAA811ECB07DA44BC4F9AE02.roa (hash: C2+RZmYoetqMpTEvEp2UgZ/k5COwbQ6X5aMLB79x36Q=) 3: 43540B7A0EE311EF9E24862BC4F9AE02.roa (hash: mV4y857QRPSQMJQogVNfC/t4weo9OVDbm55M2NQZyIc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.crl rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QNueLLrezam5cjUQIVB63NGlYn8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 22:37:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1163 (0x48b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8B4F, serialNumber=40DB9E2CBADECDA9B972351021507ADCD1A5627F Validity Not Before: Dec 4 22:37:27 2025 GMT Not After : Dec 11 22:37:27 2025 GMT Subject: CN=69320d27-fc47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:92:b2:8d:89:f4:20:fa:69:83:c4:74:8e:d6: ce:42:a9:30:45:62:a2:36:7e:ee:06:b4:35:35:6a: 6e:29:bc:b9:33:98:95:09:e1:f1:52:36:2f:05:4b: b1:6e:59:35:79:e8:4f:0f:dd:22:11:94:93:25:f8: e0:53:8b:be:2b:2c:f6:d6:b8:dd:b5:ec:da:cf:e3: 0e:7b:ab:d4:3f:51:7d:2a:b0:12:3f:0a:d5:6b:e8: 9a:bc:a2:8e:6d:36:33:b8:7b:0c:c0:8a:0c:66:2d: 4e:41:b9:ae:4c:18:44:5c:d8:89:b2:3b:38:c2:7c: 7e:4e:1f:cb:69:f1:00:3b:49:01:57:d3:63:d2:36: 5a:3c:ac:68:1e:28:38:88:54:ef:f7:29:e3:e5:c8: ce:08:5b:dc:c0:11:87:1e:eb:14:e1:82:75:d3:f4: f6:a3:f3:cd:ad:15:e9:d2:8a:11:ee:7a:59:62:8c: 3b:b5:a3:d2:5e:3f:2c:c9:e2:01:16:d5:de:c6:3b: 3b:71:84:9d:a4:9c:7c:43:0e:83:10:9d:0c:06:3f: 1d:ae:27:f2:33:58:d0:49:9e:82:84:b7:24:a8:e9: ef:ff:21:e4:ec:a3:0d:59:63:ae:27:d5:77:8c:1f: 75:bb:63:a8:0b:41:3c:5a:ea:16:cd:c7:d3:2a:ab: 5a:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:51:7D:07:A2:BB:D1:EE:64:5E:29:4F:9D:46:5D:D0:70:54:85:C6 X509v3 Authority Key Identifier: keyid:40:DB:9E:2C:BA:DE:CD:A9:B9:72:35:10:21:50:7A:DC:D1:A5:62:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QNueLLrezam5cjUQIVB63NGlYn8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:d3:ea:5e:4d:c1:83:31:f5:eb:af:d2:17:aa:69:5d:56:16: 97:ce:c2:21:b9:a8:45:d7:b2:58:0f:b4:e3:d6:77:67:e0:66: 04:7b:ea:91:0f:a4:e8:52:ee:dd:0d:3e:73:30:c5:9f:e0:07: f1:a9:8c:e4:5c:3c:ec:ca:55:8e:a1:e2:da:9d:5c:51:38:1d: 9b:9c:e2:41:8d:51:85:80:17:35:c0:e4:b2:7a:dc:6b:0b:b4: e6:36:71:02:e8:d6:d5:87:3b:9d:03:63:1e:0d:ac:98:7e:6c: 19:d4:22:6e:08:b0:34:5c:dd:b8:56:ce:ec:63:d5:b2:5c:7f: f3:dc:12:43:f8:0e:13:bb:9f:95:fe:5d:2d:ec:4c:b7:49:04: a7:a8:51:dc:8b:e1:83:ae:91:2e:f3:e5:e7:60:31:5c:b1:ee: ed:0b:a3:28:21:cd:38:8d:54:47:d8:46:37:37:13:d6:bd:c7: 00:0c:ce:bb:d8:ca:8d:a4:50:26:9c:65:3f:7a:d0:05:cf:94: 1e:ac:c0:8f:aa:5b:d6:58:6c:67:60:dc:38:0a:54:ca:98:dc: f5:5f:81:53:1b:78:a7:12:4d:ee:dc:d6:fb:22:6b:df:f7:ed: 15:8a:04:b2:63:27:1b:99:49:35:f9:ff:bc:53:18:20:cc:7b: c8:0f:76:23 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBIswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhCNEYxMTAvBgNVBAUTKDQwREI5RTJDQkFERUNEQTlCOTcyMzUxMDIxNTA3QURD RDFBNTYyN0YwHhcNMjUxMjA0MjIzNzI3WhcNMjUxMjExMjIzNzI3WjAYMRYwFAYD VQQDEw02OTMyMGQyNy1mYzQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtJKyjYn0IPppg8R0jtbOQqkwRWKiNn7uBrQ1NWpuKby5M5iVCeHxUjYvBUux blk1eehPD90iEZSTJfjgU4u+Kyz21rjdtezaz+MOe6vUP1F9KrASPwrVa+iavKKO bTYzuHsMwIoMZi1OQbmuTBhEXNiJsjs4wnx+Th/LafEAO0kBV9Nj0jZaPKxoHig4 iFTv9ynj5cjOCFvcwBGHHusU4YJ10/T2o/PNrRXp0ooR7npZYow7taPSXj8syeIB FtXexjs7cYSdpJx8Qw6DEJ0MBj8drifyM1jQSZ6ChLckqOnv/yHk7KMNWWOuJ9V3 jB91u2OoC0E8WuoWzcfTKqtaaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKBRfQei u9HuZF4pT51GXdBwVIXGMB8GA1UdIwQYMBaAFEDbniy63s2puXI1ECFQetzRpWJ/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEI0Ri9ERDczMjY0ODY4 QkMxMUVDODc4MDc5NDhDNEY5QUUwMi9RTnVlTExyZXphbTVjalVRSVZCNjNOR2xZ bjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FOdWVMTHJlemFtNWNqVVFJVkI2M05HbFluOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OEI0Ri9ERDczMjY0ODY4QkMxMUVDODc4MDc5NDhDNEY5QUUwMi9RTnVlTExyZXph bTVjalVRSVZCNjNOR2xZbjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCy0+peTcGDMfXrr9IXqmldVhaXzsIhuahF17JYD7Tj1ndn4GYEe+qR D6ToUu7dDT5zMMWf4AfxqYzkXDzsylWOoeLanVxROB2bnOJBjVGFgBc1wOSyetxr C7TmNnEC6NbVhzudA2MeDayYfmwZ1CJuCLA0XN24Vs7sY9WyXH/z3BJD+A4Tu5+V /l0t7Ey3SQSnqFHci+GDrpEu8+XnYDFcse7tC6MoIc04jVRH2EY3NxPWvccADM67 2MqNpFAmnGU/etAFz5QerMCPqlvWWGxnYNw4ClTKmNz1X4FTG3inEk3u3Nb7Imvf 9+0VigSyYycbmUk1+f+8UxggzHvID3Yj -----END CERTIFICATE-----Generated at Sat Dec 6 17:07:12 2025 by rpki-client