This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E80FB/628D520C8FB611EC92BD2510C4F9AE02/QIWuE0tjOKEnZXKD67wWwS8guGI.mft File: QIWuE0tjOKEnZXKD67wWwS8guGI.mft (raw, json) Hash identifier: mcHY1v7BJswaTUKtAqaHK9wKMLHiRi8MMVT+X5Ps0zU= Subject key identifier: 22:8D:33:96:50:76:5B:09:F9:83:16:FC:0B:E7:47:A6:30:BE:24:46 Authority key identifier: 40:85:AE:13:4B:63:38:A1:27:65:72:83:EB:BC:16:C1:2F:20:B8:62 Certificate issuer: /CN=A91E80FB/serialNumber=4085AE134B6338A127657283EBBC16C12F20B862 Certificate serial: 042D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QIWuE0tjOKEnZXKD67wWwS8guGI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E80FB/628D520C8FB611EC92BD2510C4F9AE02/QIWuE0tjOKEnZXKD67wWwS8guGI.mft Manifest number: 0422 Signing time: Sat 06 Dec 2025 23:02:35 +0000 Manifest this update: Sat 06 Dec 2025 23:02:35 +0000 Manifest next update: Sat 13 Dec 2025 23:02:35 +0000 Files and hashes: 1: QIWuE0tjOKEnZXKD67wWwS8guGI.crl (hash: 5sAA+3APqY9Pd7DSfwI9VZUtmkTYO3TNlxFEjzBWClg=) 2: 9FBFD358C0F911EFA63F3E64C4F9AE02.roa (hash: yc1nPimI0kUiUPjKIX7+rUbHKCs59csyBzZSSe87J8M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E80FB/628D520C8FB611EC92BD2510C4F9AE02/QIWuE0tjOKEnZXKD67wWwS8guGI.crl rsync://rpki.apnic.net/member_repository/A91E80FB/628D520C8FB611EC92BD2510C4F9AE02/QIWuE0tjOKEnZXKD67wWwS8guGI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QIWuE0tjOKEnZXKD67wWwS8guGI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 21:31:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1069 (0x42d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E80FB, serialNumber=4085AE134B6338A127657283EBBC16C12F20B862 Validity Not Before: Dec 6 23:02:35 2025 GMT Not After : Dec 13 23:02:35 2025 GMT Subject: CN=6934b60b-99d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:00:5e:aa:16:e3:13:43:78:85:be:24:28:c1: fe:11:a7:54:4f:10:03:80:22:58:a9:a4:65:e7:fd: 53:72:33:c6:61:56:5e:a1:6a:64:86:43:a3:c1:aa: 62:c7:62:06:00:4c:18:c6:68:aa:1f:4d:2d:a1:b2: f1:3d:f2:7f:d6:cf:bd:64:2d:81:67:3e:60:f8:b8: 2d:65:e2:0e:d6:a2:f7:bf:ba:e9:e7:c9:08:b5:a1: 18:5b:3e:a7:f3:3b:86:79:fa:63:1c:7a:ca:c4:97: a1:dd:7a:d7:36:c5:38:5c:5d:9a:69:03:fa:2d:47: 7d:87:96:f3:55:fb:11:13:f8:f9:c5:1b:c3:27:31: f3:b0:d0:f1:3d:8d:51:b7:38:e8:69:10:14:15:74: b6:94:e9:c3:0f:5b:cd:c8:4e:42:55:da:8c:20:71: 4c:c9:07:0f:ee:6b:c4:5b:91:83:41:bf:44:f6:cb: b2:3f:07:61:46:cf:45:d8:82:7b:5b:4a:19:9c:82: 00:18:04:44:da:9e:18:06:27:31:2a:41:82:25:56: 07:46:c4:c0:08:6d:12:ce:bc:ae:c4:55:b8:26:46: fc:5e:d1:8d:11:e7:ee:e5:fc:32:ba:8f:06:8d:ae: 16:08:2f:76:5d:e3:14:2a:fd:74:52:4f:13:ad:a1: 6d:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:8D:33:96:50:76:5B:09:F9:83:16:FC:0B:E7:47:A6:30:BE:24:46 X509v3 Authority Key Identifier: keyid:40:85:AE:13:4B:63:38:A1:27:65:72:83:EB:BC:16:C1:2F:20:B8:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E80FB/628D520C8FB611EC92BD2510C4F9AE02/QIWuE0tjOKEnZXKD67wWwS8guGI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QIWuE0tjOKEnZXKD67wWwS8guGI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E80FB/628D520C8FB611EC92BD2510C4F9AE02/QIWuE0tjOKEnZXKD67wWwS8guGI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:db:f7:1c:98:fc:d5:18:b8:87:02:5b:03:2e:73:6c:17:04: b4:6d:b7:6a:56:f3:d9:7c:41:ee:02:18:d4:96:f9:a6:5e:b0: 79:34:48:ae:c4:d0:2f:7b:fe:f2:76:9f:e2:02:bc:29:54:76: 77:3e:20:9f:a5:00:20:53:09:57:22:66:0a:d6:ee:75:43:bf: 8c:a9:05:bd:df:5c:a1:a6:93:2f:79:bc:59:2c:96:66:5d:7b: a4:db:b9:57:d4:4a:9c:f2:93:33:02:66:52:1a:16:a6:3b:27: 00:b5:1d:09:0d:5c:36:c0:b7:a6:01:6a:58:64:9a:ac:46:34: 77:dd:d4:42:26:bb:12:7a:5e:cb:44:7f:ca:1f:e0:2f:ae:ff: 78:25:ab:c7:91:4e:75:de:4f:32:75:1a:10:6a:22:20:36:7f: c1:09:30:13:9e:3d:7d:38:5d:8f:e6:df:02:bd:a1:99:14:b4: 2f:dc:55:ce:bb:58:67:6d:a0:1b:9a:db:af:63:b3:1e:2a:9b: b5:ac:07:e2:4f:55:02:51:a7:48:c8:f6:0b:1a:24:c1:39:fb: c6:df:bb:e6:a4:a0:26:df:f4:55:11:ee:3c:8f:bf:15:55:5b: a7:f3:1c:d6:1c:e5:01:36:25:ad:46:e9:8d:10:f0:96:cc:f9: fc:c2:fc:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBC0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTgwRkIxMTAvBgNVBAUTKDQwODVBRTEzNEI2MzM4QTEyNzY1NzI4M0VCQkMxNkMx MkYyMEI4NjIwHhcNMjUxMjA2MjMwMjM1WhcNMjUxMjEzMjMwMjM1WjAYMRYwFAYD VQQDEw02OTM0YjYwYi05OWQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuQBeqhbjE0N4hb4kKMH+EadUTxADgCJYqaRl5/1TcjPGYVZeoWpkhkOjwapi x2IGAEwYxmiqH00tobLxPfJ/1s+9ZC2BZz5g+LgtZeIO1qL3v7rp58kItaEYWz6n 8zuGefpjHHrKxJeh3XrXNsU4XF2aaQP6LUd9h5bzVfsRE/j5xRvDJzHzsNDxPY1R tzjoaRAUFXS2lOnDD1vNyE5CVdqMIHFMyQcP7mvEW5GDQb9E9suyPwdhRs9F2IJ7 W0oZnIIAGARE2p4YBicxKkGCJVYHRsTACG0SzryuxFW4Jkb8XtGNEefu5fwyuo8G ja4WCC92XeMUKv10Uk8TraFtTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCKNM5ZQ dlsJ+YMW/AvnR6YwviRGMB8GA1UdIwQYMBaAFECFrhNLYzihJ2Vyg+u8FsEvILhi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODBGQi82MjhENTIwQzhG QjYxMUVDOTJCRDI1MTBDNEY5QUUwMi9RSVd1RTB0ak9LRW5aWEtENjd3V3dTOGd1 R0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FJV3VFMHRqT0tFblpYS0Q2N3dXd1M4Z3VHSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF ODBGQi82MjhENTIwQzhGQjYxMUVDOTJCRDI1MTBDNEY5QUUwMi9RSVd1RTB0ak9L RW5aWEtENjd3V3dTOGd1R0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB82/ccmPzVGLiHAlsDLnNsFwS0bbdqVvPZfEHuAhjUlvmmXrB5NEiu xNAve/7ydp/iArwpVHZ3PiCfpQAgUwlXImYK1u51Q7+MqQW931yhppMvebxZLJZm XXuk27lX1Eqc8pMzAmZSGhamOycAtR0JDVw2wLemAWpYZJqsRjR33dRCJrsSel7L RH/KH+Avrv94JavHkU513k8ydRoQaiIgNn/BCTATnj19OF2P5t8CvaGZFLQv3FXO u1hnbaAbmtuvY7MeKpu1rAfiT1UCUadIyPYLGiTBOfvG37vmpKAm3/RVEe48j78V VVun8xzWHOUBNiWtRumNEPCWzPn8wvwk -----END CERTIFICATE-----Generated at Sun Dec 7 01:52:01 2025 by rpki-client