This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBBD7/F93219126CB911EA80832E2EC4F9AE02/qbsN-21P9jtyiDO-CtZiN5bsihk.mft File: qbsN-21P9jtyiDO-CtZiN5bsihk.mft (raw, json) Hash identifier: /wvFUEQRMcycvza6akoGrAf+5tc40gJFO9orMKOcv+M= Subject key identifier: DC:FE:C9:AC:10:F9:97:D3:C5:22:F3:7B:A2:96:C0:53:BE:82:DB:7F Authority key identifier: A9:BB:0D:FB:6D:4F:F6:3B:72:88:33:BE:0A:D6:62:37:96:EC:8A:19 Certificate issuer: /CN=A91EBBD7/serialNumber=A9BB0DFB6D4FF63B728833BE0AD6623796EC8A19 Certificate serial: 0A97 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qbsN-21P9jtyiDO-CtZiN5bsihk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBBD7/F93219126CB911EA80832E2EC4F9AE02/qbsN-21P9jtyiDO-CtZiN5bsihk.mft Manifest number: 0A90 Signing time: Sat 06 Dec 2025 18:48:37 +0000 Manifest this update: Sat 06 Dec 2025 18:48:37 +0000 Manifest next update: Sat 13 Dec 2025 18:48:37 +0000 Files and hashes: 1: qbsN-21P9jtyiDO-CtZiN5bsihk.crl (hash: kjow2x287e3fFhyhtn71EFYp1XYyLE4UlP6iBkRPfDM=) 2: 651072686CBB11EA95256D30C4F9AE02.roa (hash: 6Cva/MAM9NxBoaAYG/HBqjbHLWksXNLd6d8hzeYffrs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBBD7/F93219126CB911EA80832E2EC4F9AE02/qbsN-21P9jtyiDO-CtZiN5bsihk.crl rsync://rpki.apnic.net/member_repository/A91EBBD7/F93219126CB911EA80832E2EC4F9AE02/qbsN-21P9jtyiDO-CtZiN5bsihk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qbsN-21P9jtyiDO-CtZiN5bsihk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2711 (0xa97) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBBD7, serialNumber=A9BB0DFB6D4FF63B728833BE0AD6623796EC8A19 Validity Not Before: Dec 6 18:48:37 2025 GMT Not After : Dec 13 18:48:37 2025 GMT Subject: CN=69347a85-f3d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:11:0e:0e:40:11:1b:17:cf:d2:9f:f2:7d:51: 55:20:48:dd:2b:a0:3f:76:fd:48:6a:a9:85:34:bf: d3:45:3c:9e:b7:c7:c8:72:0f:ee:2b:8a:84:d9:1d: 59:37:91:e6:4e:76:c9:ea:cf:11:b0:b3:35:94:1b: e9:d1:1e:09:8e:bd:69:50:b3:4f:ce:bd:9a:a6:32: 0d:0e:8e:a1:ad:ce:e4:e3:1b:1a:af:67:3c:b9:40: 4b:ad:24:f6:09:a4:81:f2:c2:62:c6:fd:f1:61:1e: 81:c9:bf:38:a5:2c:50:b5:88:4f:63:30:e3:c6:b7: e8:d1:d0:e7:2b:cd:d9:d2:2b:c5:8f:7c:83:72:d1: f3:d7:62:65:ee:de:14:6a:e6:51:ff:2c:61:ae:05: 36:4b:6e:c0:8c:d3:24:72:9d:38:70:01:c6:95:f3: 9f:fa:17:db:7d:a9:2e:35:e4:e7:71:18:bd:7a:7c: 51:13:28:0f:95:38:d9:9f:f5:5e:e5:a7:48:03:1e: f0:a1:d8:10:c4:db:b7:96:d6:c3:ce:33:20:fd:65: 17:b1:97:ea:4f:d9:1c:38:0d:81:57:94:08:2f:58: c7:df:e7:d5:19:8f:d9:f0:94:a7:54:34:ff:39:bc: 96:60:3c:c6:8e:79:a7:dd:87:a9:f0:e0:1a:fd:fc: cd:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:FE:C9:AC:10:F9:97:D3:C5:22:F3:7B:A2:96:C0:53:BE:82:DB:7F X509v3 Authority Key Identifier: keyid:A9:BB:0D:FB:6D:4F:F6:3B:72:88:33:BE:0A:D6:62:37:96:EC:8A:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBBD7/F93219126CB911EA80832E2EC4F9AE02/qbsN-21P9jtyiDO-CtZiN5bsihk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qbsN-21P9jtyiDO-CtZiN5bsihk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBBD7/F93219126CB911EA80832E2EC4F9AE02/qbsN-21P9jtyiDO-CtZiN5bsihk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e1:fb:20:d6:24:45:cc:0d:9f:68:76:0f:73:44:fa:c4:38:12: a3:78:01:5f:8a:6a:fd:71:df:72:01:0b:79:e9:e2:fa:a5:3f: 7d:3e:10:d5:8f:e0:3c:d1:9e:b4:c5:c1:c8:3a:38:84:94:33: f4:5e:6d:a3:d5:c3:68:f3:15:62:22:c8:b7:4d:cf:81:6f:d6: be:7e:88:25:b5:ce:6b:24:b4:38:fa:91:d4:f0:9a:dd:ca:3d: 7d:dd:31:60:ff:9d:6b:eb:bd:0a:af:69:3c:65:4f:61:dc:7f: 70:70:a4:43:f4:4f:ce:f5:3b:ff:d2:bd:9d:b0:eb:da:26:72: 11:e1:53:41:71:3f:2f:6e:b1:dc:ee:04:9c:54:8a:b0:3d:65: f2:d6:bf:ea:91:c2:81:b9:59:a7:56:1a:d4:e5:e5:d0:dc:d2: 8f:b8:8e:3d:30:f3:c9:eb:60:11:e3:47:00:e4:fb:4c:6d:42: a5:2b:ad:1b:10:ad:59:a6:7f:05:e1:c7:72:e6:ed:78:4f:67: 3d:a0:d5:ea:69:af:25:e7:ef:01:db:0b:59:88:8b:3e:9d:66: 5b:93:de:13:37:8f:1e:c4:ff:d5:da:74:61:5b:7a:48:7c:71: 94:18:df:ae:e6:94:23:cf:76:e1:4f:1a:2e:3f:5a:a1:ca:5b: 29:cc:e7:04 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCpcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJCRDcxMTAvBgNVBAUTKEE5QkIwREZCNkQ0RkY2M0I3Mjg4MzNCRTBBRDY2MjM3 OTZFQzhBMTkwHhcNMjUxMjA2MTg0ODM3WhcNMjUxMjEzMTg0ODM3WjAYMRYwFAYD VQQDEw02OTM0N2E4NS1mM2Q0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9BEODkARGxfP0p/yfVFVIEjdK6A/dv1IaqmFNL/TRTyet8fIcg/uK4qE2R1Z N5HmTnbJ6s8RsLM1lBvp0R4Jjr1pULNPzr2apjINDo6hrc7k4xsar2c8uUBLrST2 CaSB8sJixv3xYR6Byb84pSxQtYhPYzDjxrfo0dDnK83Z0ivFj3yDctHz12Jl7t4U auZR/yxhrgU2S27AjNMkcp04cAHGlfOf+hfbfakuNeTncRi9enxREygPlTjZn/Ve 5adIAx7wodgQxNu3ltbDzjMg/WUXsZfqT9kcOA2BV5QIL1jH3+fVGY/Z8JSnVDT/ ObyWYDzGjnmn3Yep8OAa/fzN5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNz+yawQ +ZfTxSLze6KWwFO+gtt/MB8GA1UdIwQYMBaAFKm7DfttT/Y7cogzvgrWYjeW7IoZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkJENy9GOTMyMTkxMjZD QjkxMUVBODA4MzJFMkVDNEY5QUUwMi9xYnNOLTIxUDlqdHlpRE8tQ3RaaU41YnNp aGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Fic04tMjFQOWp0eWlETy1DdFppTjVic2loay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkJENy9GOTMyMTkxMjZDQjkxMUVBODA4MzJFMkVDNEY5QUUwMi9xYnNOLTIxUDlq dHlpRE8tQ3RaaU41YnNpaGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDh+yDWJEXMDZ9odg9zRPrEOBKjeAFfimr9cd9yAQt56eL6pT99PhDV j+A80Z60xcHIOjiElDP0Xm2j1cNo8xViIsi3Tc+Bb9a+fogltc5rJLQ4+pHU8Jrd yj193TFg/51r670Kr2k8ZU9h3H9wcKRD9E/O9Tv/0r2dsOvaJnIR4VNBcT8vbrHc 7gScVIqwPWXy1r/qkcKBuVmnVhrU5eXQ3NKPuI49MPPJ62AR40cA5PtMbUKlK60b EK1Zpn8F4cdy5u14T2c9oNXqaa8l5+8B2wtZiIs+nWZbk94TN48exP/V2nRhW3pI fHGUGN+u5pQjz3bhTxouP1qhylspzOcE -----END CERTIFICATE-----Generated at Sat Dec 6 21:29:23 2025 by rpki-client