This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.mft File: QU-2F4hpEw-Cbp4wwLeUCE2XYN0.mft (raw, json) Hash identifier: mYd5QsROV+O6uLIKR2Vv/Q+j8j3oCDJva6VFzEgcklw= Subject key identifier: C5:55:D2:06:EC:33:4D:52:0E:56:82:57:7F:1B:97:4E:35:04:58:FB Authority key identifier: 41:4F:B6:17:88:69:13:0F:82:6E:9E:30:C0:B7:94:08:4D:97:60:DD Certificate issuer: /CN=A91E91BC/serialNumber=414FB6178869130F826E9E30C0B794084D9760DD Certificate serial: 0361 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.mft Manifest number: 035B Signing time: Sat 06 Dec 2025 23:32:59 +0000 Manifest this update: Sat 06 Dec 2025 23:32:59 +0000 Manifest next update: Sat 13 Dec 2025 23:32:59 +0000 Files and hashes: 1: QU-2F4hpEw-Cbp4wwLeUCE2XYN0.crl (hash: Uvf/X80IwJj25s2BcbAsxEK99cp4xbng/7atSglaV48=) 2: 7BCC4B32E85C11EE9593933FC4F9AE02.roa (hash: C9cBIgp62dlijuyH/TsefWQ1spYTduwHvoUlA7V/520=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.crl rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 23:32:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 865 (0x361) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E91BC, serialNumber=414FB6178869130F826E9E30C0B794084D9760DD Validity Not Before: Dec 6 23:32:59 2025 GMT Not After : Dec 13 23:32:59 2025 GMT Subject: CN=6934bd2b-db93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:80:fe:69:2b:de:ef:23:a2:b3:08:e2:36:1a: 28:31:24:ee:7c:78:0f:51:d9:c6:b3:62:8b:a8:6b: 2c:0b:df:bc:7f:91:4a:92:0f:f4:ad:c9:7c:b7:95: f3:da:fd:09:7c:cb:d2:2d:22:b5:1e:8a:cc:eb:21: af:2e:b5:e0:1d:e2:c1:2d:0b:e8:d1:4c:b3:94:ef: 04:a8:0b:9b:95:58:a8:82:e7:1e:48:74:80:b2:e7: cf:8d:a2:48:b4:03:9a:f7:71:09:e8:15:49:49:7f: 90:08:3c:1e:80:8e:79:68:c9:07:a7:a4:f2:5e:a6: 1d:19:8a:dc:bd:1c:ac:90:5f:28:8d:0d:58:7b:3d: 55:e4:2a:c2:e5:47:0b:8c:91:88:15:7c:14:11:61: c1:eb:fd:49:37:b5:c8:f8:76:fd:2e:72:ce:9e:1e: 13:3c:49:7e:55:29:52:b2:b9:69:53:36:1f:09:be: 74:90:a4:7d:da:49:ae:c4:c7:4c:81:00:75:58:32: 72:20:ca:60:36:ee:72:38:94:26:d7:36:74:43:18: f0:c7:b3:3e:c0:52:32:ec:12:40:9e:62:b2:cf:8c: 4a:79:33:4c:53:5b:79:9e:30:c2:58:bb:cd:bc:c6: 88:30:5c:d5:2c:84:64:b5:0e:9b:99:55:b6:b0:49: 0a:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:55:D2:06:EC:33:4D:52:0E:56:82:57:7F:1B:97:4E:35:04:58:FB X509v3 Authority Key Identifier: keyid:41:4F:B6:17:88:69:13:0F:82:6E:9E:30:C0:B7:94:08:4D:97:60:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:69:2a:1c:bd:47:62:3c:1e:3c:9f:19:21:cc:49:04:8e:aa: 4d:8c:80:99:4f:4d:52:27:b0:5b:9a:c8:52:0a:a0:36:cf:fe: 3c:15:d5:a2:7c:96:da:cc:5c:5a:79:cf:fc:44:8a:38:8c:68: 4c:6f:7d:16:d5:6d:79:29:c0:e8:e1:b5:b7:ca:4e:d5:db:d9: 89:a3:e1:c7:19:d1:a5:27:fc:99:31:cb:0d:88:8e:19:c0:97: ec:92:36:0c:df:62:a9:22:18:34:8b:1e:42:5e:9f:0e:c3:46: 62:9a:a4:c6:3c:4e:77:46:5d:af:47:44:6d:ca:ec:86:11:1d: 37:07:7b:f9:39:ca:8d:8b:e7:7f:dd:25:9a:4f:26:ec:08:9f: c8:95:4a:c4:8e:55:00:7c:19:d8:1e:bd:f6:c2:c5:5c:e8:c7: 81:aa:6c:4b:f5:46:57:91:bd:4f:99:b4:ce:14:9b:61:da:e1: 86:28:f5:eb:eb:ae:2c:29:a9:59:77:3c:50:fe:48:be:28:8d: 19:df:b9:8d:cd:fa:86:35:df:bc:d4:b4:df:eb:16:a9:06:77: 90:b3:5f:7a:2e:b8:20:09:5d:e6:b3:39:97:a5:c2:4b:12:53: e7:b5:2b:e8:19:bf:a7:91:2c:c0:cb:4f:38:57:36:7d:75:ef: 64:f0:5e:86 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA2EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTkxQkMxMTAvBgNVBAUTKDQxNEZCNjE3ODg2OTEzMEY4MjZFOUUzMEMwQjc5NDA4 NEQ5NzYwREQwHhcNMjUxMjA2MjMzMjU5WhcNMjUxMjEzMjMzMjU5WjAYMRYwFAYD VQQDEw02OTM0YmQyYi1kYjkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxID+aSve7yOiswjiNhooMSTufHgPUdnGs2KLqGssC9+8f5FKkg/0rcl8t5Xz 2v0JfMvSLSK1HorM6yGvLrXgHeLBLQvo0UyzlO8EqAublVioguceSHSAsufPjaJI tAOa93EJ6BVJSX+QCDwegI55aMkHp6TyXqYdGYrcvRyskF8ojQ1Yez1V5CrC5UcL jJGIFXwUEWHB6/1JN7XI+Hb9LnLOnh4TPEl+VSlSsrlpUzYfCb50kKR92kmuxMdM gQB1WDJyIMpgNu5yOJQm1zZ0Qxjwx7M+wFIy7BJAnmKyz4xKeTNMU1t5njDCWLvN vMaIMFzVLIRktQ6bmVW2sEkKxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMVV0gbs M01SDlaCV38bl041BFj7MB8GA1UdIwQYMBaAFEFPtheIaRMPgm6eMMC3lAhNl2Dd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTFCQy9BNEU2NzNDQURC RTkxMUVDOTUxMTA1MTVDNEY5QUUwMi9RVS0yRjRocEV3LUNicDR3d0xlVUNFMlhZ TjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FVLTJGNGhwRXctQ2JwNHd3TGVVQ0UyWFlOMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OTFCQy9BNEU2NzNDQURCRTkxMUVDOTUxMTA1MTVDNEY5QUUwMi9RVS0yRjRocEV3 LUNicDR3d0xlVUNFMlhZTjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsaSocvUdiPB48nxkhzEkEjqpNjICZT01SJ7BbmshSCqA2z/48FdWi fJbazFxaec/8RIo4jGhMb30W1W15KcDo4bW3yk7V29mJo+HHGdGlJ/yZMcsNiI4Z wJfskjYM32KpIhg0ix5CXp8Ow0ZimqTGPE53Rl2vR0RtyuyGER03B3v5OcqNi+d/ 3SWaTybsCJ/IlUrEjlUAfBnYHr32wsVc6MeBqmxL9UZXkb1PmbTOFJth2uGGKPXr 664sKalZdzxQ/ki+KI0Z37mNzfqGNd+81LTf6xapBneQs196LrggCV3mszmXpcJL ElPntSvoGb+nkSzAy084VzZ9de9k8F6G -----END CERTIFICATE-----Generated at Sun Dec 7 07:15:30 2025 by rpki-client