This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.mft File: a-Q-axOWQ8tMGebfcyO1A8STEds.mft (raw, json) Hash identifier: 2EWKXo91qLDHYPrRM/Yk78wlsu2e4j0qMoC/kpeclg0= Subject key identifier: 7D:41:CB:4B:D0:AB:66:95:55:AE:E6:97:A3:93:EC:00:30:05:AD:68 Authority key identifier: 6B:E4:3E:6B:13:96:43:CB:4C:19:E6:DF:73:23:B5:03:C4:93:11:DB Certificate issuer: /CN=A91E8D27/serialNumber=6BE43E6B139643CB4C19E6DF7323B503C49311DB Certificate serial: 3466 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a-Q-axOWQ8tMGebfcyO1A8STEds.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.mft Manifest number: 3449 Signing time: Thu 04 Dec 2025 15:08:15 +0000 Manifest this update: Thu 04 Dec 2025 15:08:14 +0000 Manifest next update: Thu 11 Dec 2025 15:08:14 +0000 Files and hashes: 1: a-Q-axOWQ8tMGebfcyO1A8STEds.crl (hash: slLp8BTWeKxpn1X9aVex+jBjZuyyLAtd1zKFEMnLo4Y=) 2: 56C3DC822B0B11EF97C4A74AC4F9AE02.roa (hash: CVWZvuJMAyjtpzrMYgtcHwOIm2n01TzT8z4GiPVYHFA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.crl rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a-Q-axOWQ8tMGebfcyO1A8STEds.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 15:08:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13414 (0x3466) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8D27, serialNumber=6BE43E6B139643CB4C19E6DF7323B503C49311DB Validity Not Before: Dec 4 15:08:14 2025 GMT Not After : Dec 11 15:08:14 2025 GMT Subject: CN=6931a3de-c96e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:76:3f:e5:b5:0f:92:07:ff:c5:ee:ca:86:2d: a3:e0:31:c0:80:05:75:74:dc:2d:10:f0:14:dc:57: 53:86:73:e4:3a:df:3f:d8:d7:81:9d:76:93:76:10: 35:3a:ad:25:8a:f0:41:7e:22:cf:33:13:58:65:ce: 67:e9:1a:61:4a:e8:0d:fe:cf:0f:54:fd:b4:e3:c8: 3a:8e:9e:38:0a:a9:f7:8c:74:51:dc:1f:54:4b:99: b6:19:38:ab:35:de:3a:cb:14:70:59:4a:ec:b1:93: d0:b3:54:6f:74:ab:f1:e5:90:73:c1:d3:c2:e1:fb: 2a:fe:54:30:9e:df:cc:47:3e:c6:73:21:bf:ba:20: 3b:20:89:47:4c:65:cb:6c:28:f6:1c:a3:0b:54:a2: 57:87:44:95:20:56:0b:79:8e:89:fb:47:57:8e:d1: 7c:02:cb:a2:ad:f2:13:38:c1:74:b3:10:ff:7b:7e: 3a:f6:d0:39:52:14:c4:2f:a8:aa:c3:a5:e9:6c:2b: 58:8c:35:b1:6f:bc:27:14:ac:22:a5:39:0c:88:d7: 7f:a2:76:2e:c2:2c:97:2a:49:9c:15:9c:66:62:70: b0:5a:7c:f8:ea:60:c1:ba:9b:4e:d3:37:56:8f:2c: 34:20:a8:dd:f8:b2:d0:3c:7e:8e:22:1f:42:85:7d: 47:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:41:CB:4B:D0:AB:66:95:55:AE:E6:97:A3:93:EC:00:30:05:AD:68 X509v3 Authority Key Identifier: keyid:6B:E4:3E:6B:13:96:43:CB:4C:19:E6:DF:73:23:B5:03:C4:93:11:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a-Q-axOWQ8tMGebfcyO1A8STEds.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:31:60:b3:05:d8:a4:63:af:7e:21:33:78:cc:88:4d:2e:8d: f9:e0:69:28:6a:f0:d8:fb:4f:99:c5:c0:5e:3e:23:7d:e8:2a: 75:f2:4e:d2:92:01:40:8e:d7:b1:64:4e:ec:8a:9f:4d:10:5d: 96:ef:4d:ae:c8:d3:33:a2:b2:a4:d1:e5:6a:69:cc:45:47:21: 2b:6e:95:2f:6d:ac:c5:7c:cf:37:7d:be:75:32:a2:d3:fe:2c: fb:25:95:79:67:8b:08:8e:82:bc:5b:fb:2b:8c:21:f0:36:ef: f9:aa:e1:1b:f6:89:bc:5e:f2:b9:7c:26:14:f9:c8:9c:d8:ea: 78:ca:ed:a7:36:1d:30:ed:c2:1b:36:68:84:04:1d:69:31:72: e0:00:79:23:ee:11:d5:b8:c3:04:5a:db:f1:12:b3:ce:0b:87: 18:15:ff:d8:54:21:74:74:6c:f7:e3:b9:57:98:e6:f6:8e:8b: 85:1f:61:8f:c8:0c:1c:00:93:21:a7:44:98:84:2d:28:66:51: 91:ec:ee:29:c4:f8:00:fd:75:b1:29:50:98:0b:88:cb:29:8b: 31:da:ca:39:81:00:94:15:07:dc:02:c4:97:6e:5b:8d:0e:6b: a0:b2:47:12:d7:af:ac:8e:d7:e9:d1:83:4c:b5:d9:af:bf:12: 1c:59:73:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNGYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThEMjcxMTAvBgNVBAUTKDZCRTQzRTZCMTM5NjQzQ0I0QzE5RTZERjczMjNCNTAz QzQ5MzExREIwHhcNMjUxMjA0MTUwODE0WhcNMjUxMjExMTUwODE0WjAYMRYwFAYD VQQDEw02OTMxYTNkZS1jOTZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx3Y/5bUPkgf/xe7Khi2j4DHAgAV1dNwtEPAU3FdThnPkOt8/2NeBnXaTdhA1 Oq0livBBfiLPMxNYZc5n6RphSugN/s8PVP2048g6jp44Cqn3jHRR3B9US5m2GTir Nd46yxRwWUrssZPQs1RvdKvx5ZBzwdPC4fsq/lQwnt/MRz7GcyG/uiA7IIlHTGXL bCj2HKMLVKJXh0SVIFYLeY6J+0dXjtF8AsuirfITOMF0sxD/e3469tA5UhTEL6iq w6XpbCtYjDWxb7wnFKwipTkMiNd/onYuwiyXKkmcFZxmYnCwWnz46mDBuptO0zdW jyw0IKjd+LLQPH6OIh9ChX1HWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH1By0vQ q2aVVa7ml6OT7AAwBa1oMB8GA1UdIwQYMBaAFGvkPmsTlkPLTBnm33MjtQPEkxHb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEQyNy9DMEM1ODA3MDQy RTkxMUUyOTc1MEEzMkUyOTc5QkIyMC9hLVEtYXhPV1E4dE1HZWJmY3lPMUE4U1RF ZHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2EtUS1heE9XUTh0TUdlYmZjeU8xQThTVEVkcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OEQyNy9DMEM1ODA3MDQyRTkxMUUyOTc1MEEzMkUyOTc5QkIyMC9hLVEtYXhPV1E4 dE1HZWJmY3lPMUE4U1RFZHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArMWCzBdikY69+ITN4zIhNLo354GkoavDY+0+ZxcBePiN96Cp18k7S kgFAjtexZE7sip9NEF2W702uyNMzorKk0eVqacxFRyErbpUvbazFfM83fb51MqLT /iz7JZV5Z4sIjoK8W/srjCHwNu/5quEb9om8XvK5fCYU+cic2Op4yu2nNh0w7cIb NmiEBB1pMXLgAHkj7hHVuMMEWtvxErPOC4cYFf/YVCF0dGz347lXmOb2jouFH2GP yAwcAJMhp0SYhC0oZlGR7O4pxPgA/XWxKVCYC4jLKYsx2so5gQCUFQfcAsSXbluN DmugskcS16+sjtfp0YNMtdmvvxIcWXPm -----END CERTIFICATE-----Generated at Sat Dec 6 14:33:56 2025 by rpki-client