This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.mft File: QU-2F4hpEw-Cbp4wwLeUCE2XYN0.mft (raw, json) Hash identifier: LmSm+YU5wd2ENKfYPhlpgt+aaiOW+azyCQn2O2dnz7w= Subject key identifier: 1A:9E:C9:EE:D3:DB:CC:E2:2D:47:F3:D0:79:B2:9F:37:41:A2:37:14 Authority key identifier: 41:4F:B6:17:88:69:13:0F:82:6E:9E:30:C0:B7:94:08:4D:97:60:DD Certificate issuer: /CN=A91E91BC/serialNumber=414FB6178869130F826E9E30C0B794084D9760DD Certificate serial: 037A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.mft Manifest number: 0374 Signing time: Sun 25 Jan 2026 00:03:50 +0000 Manifest this update: Sun 25 Jan 2026 00:03:49 +0000 Manifest next update: Sun 01 Feb 2026 00:03:49 +0000 Files and hashes: 1: QU-2F4hpEw-Cbp4wwLeUCE2XYN0.crl (hash: PjfThslFmRVOAKQcVzJo4htaEqGzj954RybShrMG2kU=) 2: 7BCC4B32E85C11EE9593933FC4F9AE02.roa (hash: C9cBIgp62dlijuyH/TsefWQ1spYTduwHvoUlA7V/520=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.crl rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 00:03:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 890 (0x37a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E91BC, serialNumber=414FB6178869130F826E9E30C0B794084D9760DD Validity Not Before: Jan 25 00:03:49 2026 GMT Not After : Feb 1 00:03:49 2026 GMT Subject: CN=69755de6-aaed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:db:f6:ea:a9:b2:34:b4:0c:c2:ae:a2:29:cc: a9:27:e1:6c:b1:be:ee:5d:31:a5:b9:f1:f9:c0:d4: 6b:ec:4a:4b:f7:54:7a:a3:09:cb:4f:c4:60:4b:d9: 26:50:c0:19:4d:1e:99:ef:d6:f3:c9:e0:dd:22:35: b4:af:dc:05:1d:0a:d1:cf:98:1a:c5:3a:f5:d6:31: 55:ca:48:bd:0f:16:e6:8d:67:9c:8a:f5:83:97:20: 54:17:37:4b:59:09:9c:ab:02:f8:08:4b:77:6c:e0: d8:38:5d:8f:90:7e:e3:3d:7c:3d:bb:56:9a:94:e3: c9:7e:75:df:ac:6f:d7:24:10:1e:1c:25:4e:3d:07: 21:a5:a5:69:fe:7c:0e:39:77:3c:a8:06:3d:9c:41: ea:16:96:4b:a1:ba:4a:b3:48:be:41:5e:41:04:6a: b8:c8:56:de:69:d3:9d:8e:aa:9d:63:82:c6:eb:fc: cc:88:0b:63:2a:c8:72:dd:0c:24:3f:5d:ab:1c:55: 7f:15:0a:c0:ca:bd:df:cb:ca:95:b0:bc:64:13:24: 8f:db:20:07:d2:e1:63:5b:ad:0f:c7:2e:9d:aa:5c: 29:40:90:75:e2:e5:0f:a8:a6:af:1b:a5:c6:e5:8a: 18:d0:a3:88:4b:56:94:30:4e:8b:b4:71:89:f8:d2: 12:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:9E:C9:EE:D3:DB:CC:E2:2D:47:F3:D0:79:B2:9F:37:41:A2:37:14 X509v3 Authority Key Identifier: keyid:41:4F:B6:17:88:69:13:0F:82:6E:9E:30:C0:B7:94:08:4D:97:60:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:a0:fc:d6:f5:7b:34:92:78:89:24:1b:0d:cf:ca:5c:6d:b4: fd:45:26:26:f6:fc:9f:bd:4c:53:02:56:0a:49:71:24:07:44: 08:a4:c5:d1:d3:5a:4f:2f:47:cf:ec:5a:b1:68:65:81:a9:e3: 94:85:2c:9a:6b:c0:03:c0:f8:a6:ce:be:b4:2a:4b:da:e7:19: 44:6f:10:b4:cf:29:ec:b5:6a:4e:76:6d:51:cd:22:3d:86:e4: 0c:9a:d2:8f:ce:85:75:95:af:9a:83:5b:e1:df:65:5f:8a:49: 9f:28:47:ea:c3:d8:43:fa:43:d1:55:d0:62:e1:f3:67:e1:7d: 3f:91:6e:b6:08:d7:e8:16:57:45:df:4d:22:c5:1d:96:4b:7e: bb:14:64:99:e0:bc:9f:ab:e4:1b:bf:38:f2:50:5f:24:2f:be: 78:7d:0e:49:88:00:90:d5:0b:2d:65:dc:9d:68:63:b2:61:2d: 45:9b:33:41:a3:23:9d:8f:c3:34:51:51:81:98:ac:a1:55:19: 8a:bf:89:87:68:bf:4f:98:6e:46:5b:fb:c3:64:0b:8c:2d:78: dd:64:d7:a5:52:df:0d:47:b1:48:c9:2b:16:08:36:eb:f1:3e: d0:3f:77:5a:a4:16:6c:c0:7d:c0:91:ae:62:5f:dd:62:e6:14: 36:1c:c6:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA3owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTkxQkMxMTAvBgNVBAUTKDQxNEZCNjE3ODg2OTEzMEY4MjZFOUUzMEMwQjc5NDA4 NEQ5NzYwREQwHhcNMjYwMTI1MDAwMzQ5WhcNMjYwMjAxMDAwMzQ5WjAYMRYwFAYD VQQDDA02OTc1NWRlNi1hYWVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsNv26qmyNLQMwq6iKcypJ+Fssb7uXTGlufH5wNRr7EpL91R6ownLT8RgS9km UMAZTR6Z79bzyeDdIjW0r9wFHQrRz5gaxTr11jFVyki9DxbmjWecivWDlyBUFzdL WQmcqwL4CEt3bODYOF2PkH7jPXw9u1aalOPJfnXfrG/XJBAeHCVOPQchpaVp/nwO OXc8qAY9nEHqFpZLobpKs0i+QV5BBGq4yFbeadOdjqqdY4LG6/zMiAtjKshy3Qwk P12rHFV/FQrAyr3fy8qVsLxkEySP2yAH0uFjW60Pxy6dqlwpQJB14uUPqKavG6XG 5YoY0KOIS1aUME6LtHGJ+NISzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBqeye7T 28ziLUfz0HmynzdBojcUMB8GA1UdIwQYMBaAFEFPtheIaRMPgm6eMMC3lAhNl2Dd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTFCQy9BNEU2NzNDQURC RTkxMUVDOTUxMTA1MTVDNEY5QUUwMi9RVS0yRjRocEV3LUNicDR3d0xlVUNFMlhZ TjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FVLTJGNGhwRXctQ2JwNHd3TGVVQ0UyWFlOMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OTFCQy9BNEU2NzNDQURCRTkxMUVDOTUxMTA1MTVDNEY5QUUwMi9RVS0yRjRocEV3 LUNicDR3d0xlVUNFMlhZTjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9oPzW9Xs0kniJJBsNz8pcbbT9RSYm9vyfvUxTAlYKSXEkB0QIpMXR 01pPL0fP7FqxaGWBqeOUhSyaa8ADwPimzr60Kkva5xlEbxC0zynstWpOdm1RzSI9 huQMmtKPzoV1la+ag1vh32VfikmfKEfqw9hD+kPRVdBi4fNn4X0/kW62CNfoFldF 300ixR2WS367FGSZ4Lyfq+QbvzjyUF8kL754fQ5JiACQ1QstZdydaGOyYS1FmzNB oyOdj8M0UVGBmKyhVRmKv4mHaL9PmG5GW/vDZAuMLXjdZNelUt8NR7FIySsWCDbr 8T7QP3dapBZswH3Aka5iX91i5hQ2HMYb -----END CERTIFICATE-----Generated at Sun Jan 25 18:34:30 2026 by rpki-client