This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB475/208FB730417211EA98A3686DC4F9AE02/1QwK07StgdVVlFzH8_HuHB-t5hc.mft File: 1QwK07StgdVVlFzH8_HuHB-t5hc.mft (raw, json) Hash identifier: aMYEy3GpYvRux0vzaMQvXbHvixNjZL/u89i26aP9qZQ= Subject key identifier: 5B:3D:67:6B:8A:E6:F9:E5:96:BA:E6:89:83:34:6B:61:08:06:5D:CD Authority key identifier: D5:0C:0A:D3:B4:AD:81:D5:55:94:5C:C7:F3:F1:EE:1C:1F:AD:E6:17 Certificate issuer: /CN=A91DB475/serialNumber=D50C0AD3B4AD81D555945CC7F3F1EE1C1FADE617 Certificate serial: 0B84 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1QwK07StgdVVlFzH8_HuHB-t5hc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB475/208FB730417211EA98A3686DC4F9AE02/1QwK07StgdVVlFzH8_HuHB-t5hc.mft Manifest number: 0B76 Signing time: Thu 04 Dec 2025 18:27:46 +0000 Manifest this update: Thu 04 Dec 2025 18:27:46 +0000 Manifest next update: Thu 11 Dec 2025 18:27:46 +0000 Files and hashes: 1: 1QwK07StgdVVlFzH8_HuHB-t5hc.crl (hash: 0OHTu0bk92yG+aeEPkv+xUx7qOerkuBf0vnXLzG9o5k=) 2: 1E6B12EC049F11F0AD5C7C33C4F9AE02.roa (hash: V1nVjcRX5R04AqVfR5w5cXlLTGnKcZ3YhA/Vr4DbC7g=) 3: 74CA44AA049F11F087661234C4F9AE02.roa (hash: Dt3Rxw54HIQ46kEi6T0edZoyMwWemQneM/8kvnTf7jo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB475/208FB730417211EA98A3686DC4F9AE02/1QwK07StgdVVlFzH8_HuHB-t5hc.crl rsync://rpki.apnic.net/member_repository/A91DB475/208FB730417211EA98A3686DC4F9AE02/1QwK07StgdVVlFzH8_HuHB-t5hc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1QwK07StgdVVlFzH8_HuHB-t5hc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 18:27:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2948 (0xb84) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB475, serialNumber=D50C0AD3B4AD81D555945CC7F3F1EE1C1FADE617 Validity Not Before: Dec 4 18:27:46 2025 GMT Not After : Dec 11 18:27:46 2025 GMT Subject: CN=6931d2a2-62a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:8d:ea:58:96:14:c6:1a:25:0b:3e:68:4b:06: e4:56:82:8a:0d:a0:4a:79:34:1c:1e:c3:8c:6e:61: f1:69:38:ab:57:88:1e:c8:e8:79:38:f5:b6:22:68: 88:73:9d:1a:d1:ad:40:fa:d2:4e:df:a3:dc:b1:49: 00:ca:45:21:29:51:18:f9:f8:ef:9b:05:85:d4:d1: be:9d:52:2e:9a:1d:dc:2a:b8:dd:af:ca:b6:25:46: 3a:a3:ff:12:77:ef:72:d4:d4:93:ef:ce:e8:2a:44: ce:84:ac:6a:ed:a7:4c:b2:fe:64:20:18:22:ac:07: 39:fc:6f:5d:ae:8c:03:f6:51:ac:aa:7c:f4:20:ea: 35:33:a2:6d:29:cd:9b:c4:e9:3c:d6:aa:78:48:eb: c8:9a:5f:a1:36:ef:03:d9:84:27:92:df:7f:21:a3: 00:d7:7a:ed:cf:63:e0:e5:32:d2:d1:be:96:62:87: c8:24:73:3a:41:e6:e1:37:4f:ba:47:e1:3d:2b:0e: be:25:c6:28:23:b7:67:65:0c:8c:9c:2f:5b:1d:17: ae:ef:20:7e:4c:5a:0e:20:5e:f1:2f:5a:c2:68:46: 41:21:44:01:6f:8e:0a:9f:0f:cc:f2:60:fb:a4:f0: ac:65:c3:b8:6f:3d:9c:bf:ef:b6:ab:bd:e8:d4:5e: e0:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:3D:67:6B:8A:E6:F9:E5:96:BA:E6:89:83:34:6B:61:08:06:5D:CD X509v3 Authority Key Identifier: keyid:D5:0C:0A:D3:B4:AD:81:D5:55:94:5C:C7:F3:F1:EE:1C:1F:AD:E6:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB475/208FB730417211EA98A3686DC4F9AE02/1QwK07StgdVVlFzH8_HuHB-t5hc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1QwK07StgdVVlFzH8_HuHB-t5hc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB475/208FB730417211EA98A3686DC4F9AE02/1QwK07StgdVVlFzH8_HuHB-t5hc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:79:d4:26:1a:11:d2:31:ac:91:2c:2a:98:8e:28:f5:a5:09: a6:ed:e2:56:cb:de:44:af:68:52:e0:1e:dc:9e:84:c5:09:0c: 26:82:77:d6:17:3a:ac:09:95:20:06:5d:19:d9:ff:9b:a5:c6: b1:37:f3:e9:5d:b1:5d:66:71:73:50:2f:3b:9b:c9:4f:29:22: 0e:bb:0d:5c:89:80:17:66:cd:61:ab:b4:88:52:f7:1f:ae:85: ef:50:a5:ea:5a:95:5b:07:5c:20:41:90:30:cd:77:65:e7:17: e5:b0:29:78:67:94:48:25:0b:08:f7:f8:a8:41:45:49:8a:d7: 4c:08:43:db:75:5f:eb:aa:ff:4e:ba:65:4a:22:f5:d7:3c:8c: 3e:9a:51:c7:d3:b7:a9:2b:7a:5f:83:60:c9:86:66:f6:b5:19: d0:aa:5f:fa:0f:ec:6f:55:21:61:ec:e4:7d:48:61:bb:b5:99: c5:0a:40:2b:ba:89:a3:48:1d:98:47:a9:e1:c7:af:22:57:66: e0:03:70:ed:9b:c7:b7:fd:7a:fc:ad:1b:a4:35:63:77:ad:db: e2:40:09:78:90:0d:70:d3:27:03:af:38:e0:82:15:38:bf:8d: 4c:ad:57:17:9e:70:f9:49:0c:6e:88:f6:5c:cc:eb:ba:9b:82: 3c:5f:58:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC4QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REI0NzUxMTAvBgNVBAUTKEQ1MEMwQUQzQjRBRDgxRDU1NTk0NUNDN0YzRjFFRTFD MUZBREU2MTcwHhcNMjUxMjA0MTgyNzQ2WhcNMjUxMjExMTgyNzQ2WjAYMRYwFAYD VQQDEw02OTMxZDJhMi02MmE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyI3qWJYUxholCz5oSwbkVoKKDaBKeTQcHsOMbmHxaTirV4geyOh5OPW2ImiI c50a0a1A+tJO36PcsUkAykUhKVEY+fjvmwWF1NG+nVIumh3cKrjdr8q2JUY6o/8S d+9y1NST787oKkTOhKxq7adMsv5kIBgirAc5/G9drowD9lGsqnz0IOo1M6JtKc2b xOk81qp4SOvIml+hNu8D2YQnkt9/IaMA13rtz2Pg5TLS0b6WYofIJHM6QebhN0+6 R+E9Kw6+JcYoI7dnZQyMnC9bHReu7yB+TFoOIF7xL1rCaEZBIUQBb44Knw/M8mD7 pPCsZcO4bz2cv++2q73o1F7grwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFs9Z2uK 5vnllrrmiYM0a2EIBl3NMB8GA1UdIwQYMBaAFNUMCtO0rYHVVZRcx/Px7hwfreYX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjQ3NS8yMDhGQjczMDQx NzIxMUVBOThBMzY4NkRDNEY5QUUwMi8xUXdLMDdTdGdkVlZsRnpIOF9IdUhCLXQ1 aGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFRd0swN1N0Z2RWVmxGekg4X0h1SEItdDVoYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QjQ3NS8yMDhGQjczMDQxNzIxMUVBOThBMzY4NkRDNEY5QUUwMi8xUXdLMDdTdGdk VlZsRnpIOF9IdUhCLXQ1aGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5edQmGhHSMayRLCqYjij1pQmm7eJWy95Er2hS4B7cnoTFCQwmgnfW FzqsCZUgBl0Z2f+bpcaxN/PpXbFdZnFzUC87m8lPKSIOuw1ciYAXZs1hq7SIUvcf roXvUKXqWpVbB1wgQZAwzXdl5xflsCl4Z5RIJQsI9/ioQUVJitdMCEPbdV/rqv9O umVKIvXXPIw+mlHH07epK3pfg2DJhmb2tRnQql/6D+xvVSFh7OR9SGG7tZnFCkAr uomjSB2YR6nhx68iV2bgA3Dtm8e3/Xr8rRukNWN3rdviQAl4kA1w0ycDrzjgghU4 v41MrVcXnnD5SQxuiPZczOu6m4I8X1hc -----END CERTIFICATE-----Generated at Sat Dec 6 14:34:22 2025 by rpki-client