This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC8C9/738DDFC494C811EC95CB9765C4F9AE02/QSOsLsBp0u8nIB9NvKrGwZEhkCw.mft File: QSOsLsBp0u8nIB9NvKrGwZEhkCw.mft (raw, json) Hash identifier: ldLOmmAZOz0ZZBZ37lTX6lZT06DJbwgVSoGioS1BG1g= Subject key identifier: 10:D8:3F:32:60:2C:B7:16:84:12:1D:01:D8:DC:28:D1:87:59:04:7F Authority key identifier: 41:23:AC:2E:C0:69:D2:EF:27:20:1F:4D:BC:AA:C6:C1:91:21:90:2C Certificate issuer: /CN=A91EC8C9/serialNumber=4123AC2EC069D2EF27201F4DBCAAC6C19121902C Certificate serial: 0410 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSOsLsBp0u8nIB9NvKrGwZEhkCw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC8C9/738DDFC494C811EC95CB9765C4F9AE02/QSOsLsBp0u8nIB9NvKrGwZEhkCw.mft Manifest number: 040B Signing time: Thu 04 Dec 2025 22:52:53 +0000 Manifest this update: Thu 04 Dec 2025 22:52:52 +0000 Manifest next update: Thu 11 Dec 2025 22:52:52 +0000 Files and hashes: 1: QSOsLsBp0u8nIB9NvKrGwZEhkCw.crl (hash: pJiGJJate06rwl2vPJ3bsVmoNboj7PR6dcDpWeEu6Uk=) 2: FFDA736894CB11ECA827746DC4F9AE02.roa (hash: pj2LnVj5JMKgQoW/CIO4SmTNgNuQfByzQiOUhiNM/dY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC8C9/738DDFC494C811EC95CB9765C4F9AE02/QSOsLsBp0u8nIB9NvKrGwZEhkCw.crl rsync://rpki.apnic.net/member_repository/A91EC8C9/738DDFC494C811EC95CB9765C4F9AE02/QSOsLsBp0u8nIB9NvKrGwZEhkCw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSOsLsBp0u8nIB9NvKrGwZEhkCw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 22:52:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1040 (0x410) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC8C9, serialNumber=4123AC2EC069D2EF27201F4DBCAAC6C19121902C Validity Not Before: Dec 4 22:52:52 2025 GMT Not After : Dec 11 22:52:52 2025 GMT Subject: CN=693210c5-ec3b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:29:f7:3b:a9:bb:1a:91:cb:b8:49:37:e9:82: d0:45:c7:e7:53:c4:bc:82:26:d3:fb:68:d6:e3:57: 68:3a:0d:4d:40:fa:f6:71:46:14:83:e5:e0:a2:a2: 20:c7:f2:c8:01:fc:b5:d3:8c:c4:d7:fc:00:19:96: fb:4f:fc:0f:d5:08:11:8b:9e:a6:a1:55:37:08:c0: 99:fa:55:57:01:af:4c:23:4d:cb:24:e7:42:e4:cd: 41:36:11:0e:db:29:2f:28:48:69:b5:21:0f:d9:c7: 92:be:6a:9e:d6:dd:6a:57:78:64:9b:1b:56:dd:db: 96:26:a5:26:eb:02:b8:ac:94:a4:94:d0:fd:6a:dc: 4a:14:04:5d:aa:5e:ce:27:c3:8c:cf:80:f2:46:37: 97:75:9f:27:4f:72:57:ac:34:cc:b6:12:0e:1b:df: 82:15:64:2c:51:a1:c7:7f:f3:de:91:c8:39:83:61: 46:5b:e3:ac:bb:fc:1b:ee:c7:f8:5a:f6:55:91:7d: 46:0d:d0:ef:14:59:67:28:fe:31:69:8d:07:b6:54: fa:39:fc:84:d7:41:97:b9:cc:c7:c5:0e:d8:a3:02: e3:2e:bf:91:62:75:b2:08:aa:29:4c:ea:ce:ed:6f: ba:87:3b:7c:4c:f2:b1:e0:94:fb:a8:aa:f2:03:48: e8:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:D8:3F:32:60:2C:B7:16:84:12:1D:01:D8:DC:28:D1:87:59:04:7F X509v3 Authority Key Identifier: keyid:41:23:AC:2E:C0:69:D2:EF:27:20:1F:4D:BC:AA:C6:C1:91:21:90:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC8C9/738DDFC494C811EC95CB9765C4F9AE02/QSOsLsBp0u8nIB9NvKrGwZEhkCw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSOsLsBp0u8nIB9NvKrGwZEhkCw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC8C9/738DDFC494C811EC95CB9765C4F9AE02/QSOsLsBp0u8nIB9NvKrGwZEhkCw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:02:d8:e7:ff:41:1f:e2:7e:81:ee:8c:e5:e6:62:07:ef:0f: a4:99:0c:0d:34:56:3c:f0:e8:03:b0:81:0f:86:49:27:51:59: d7:fc:c9:34:ca:a3:7b:5e:42:c4:e0:4e:62:25:34:3b:97:35: 14:79:92:94:8d:7a:70:66:88:32:48:c7:54:b3:1d:47:ee:c5: 9c:56:ff:fa:34:39:64:85:8d:0f:05:8d:f0:b4:3a:8b:d6:6f: d9:13:7d:fd:6e:88:2b:3c:5e:45:ac:06:f8:3f:6d:26:28:3b: 68:12:c6:67:c4:fb:c9:33:fb:97:80:9a:ab:b5:d7:12:95:33: a5:ff:28:0f:23:52:e0:b1:be:2b:e9:a6:69:c2:d0:79:41:1a: fc:98:75:ac:77:aa:8d:d3:f4:28:77:3e:7d:6a:c8:15:fd:8a: e1:5a:6f:1c:cb:74:c0:23:4a:e8:4e:5e:9e:05:ee:bb:b6:4f: fe:2a:4e:0e:75:80:2c:88:b9:a6:16:2e:21:65:1b:e9:db:54: 96:46:63:35:dd:67:20:7a:e1:81:4e:78:c5:1e:74:d6:c8:71: ca:3d:7c:65:4d:8a:c6:36:aa:83:d9:b3:8e:ee:7b:25:d8:a8: 68:32:db:67:2c:14:6b:69:c7:4d:18:83:91:43:a3:6c:c0:0e: 9f:67:37:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBBAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUM4QzkxMTAvBgNVBAUTKDQxMjNBQzJFQzA2OUQyRUYyNzIwMUY0REJDQUFDNkMx OTEyMTkwMkMwHhcNMjUxMjA0MjI1MjUyWhcNMjUxMjExMjI1MjUyWjAYMRYwFAYD VQQDEw02OTMyMTBjNS1lYzNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsyn3O6m7GpHLuEk36YLQRcfnU8S8gibT+2jW41doOg1NQPr2cUYUg+XgoqIg x/LIAfy104zE1/wAGZb7T/wP1QgRi56moVU3CMCZ+lVXAa9MI03LJOdC5M1BNhEO 2ykvKEhptSEP2ceSvmqe1t1qV3hkmxtW3duWJqUm6wK4rJSklND9atxKFARdql7O J8OMz4DyRjeXdZ8nT3JXrDTMthIOG9+CFWQsUaHHf/Pekcg5g2FGW+Osu/wb7sf4 WvZVkX1GDdDvFFlnKP4xaY0HtlT6OfyE10GXuczHxQ7YowLjLr+RYnWyCKopTOrO 7W+6hzt8TPKx4JT7qKryA0jo2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBDYPzJg LLcWhBIdAdjcKNGHWQR/MB8GA1UdIwQYMBaAFEEjrC7AadLvJyAfTbyqxsGRIZAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzhDOS83MzhEREZDNDk0 QzgxMUVDOTVDQjk3NjVDNEY5QUUwMi9RU09zTHNCcDB1OG5JQjlOdktyR3daRWhr Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FTT3NMc0JwMHU4bklCOU52S3JHd1pFaGtDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QzhDOS83MzhEREZDNDk0QzgxMUVDOTVDQjk3NjVDNEY5QUUwMi9RU09zTHNCcDB1 OG5JQjlOdktyR3daRWhrQ3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7Atjn/0Ef4n6B7ozl5mIH7w+kmQwNNFY88OgDsIEPhkknUVnX/Mk0 yqN7XkLE4E5iJTQ7lzUUeZKUjXpwZogySMdUsx1H7sWcVv/6NDlkhY0PBY3wtDqL 1m/ZE339bogrPF5FrAb4P20mKDtoEsZnxPvJM/uXgJqrtdcSlTOl/ygPI1Lgsb4r 6aZpwtB5QRr8mHWsd6qN0/Qodz59asgV/YrhWm8cy3TAI0roTl6eBe67tk/+Kk4O dYAsiLmmFi4hZRvp21SWRmM13WcgeuGBTnjFHnTWyHHKPXxlTYrGNqqD2bOO7nsl 2KhoMttnLBRracdNGIORQ6NswA6fZzeC -----END CERTIFICATE-----Generated at Sat Dec 6 11:42:54 2025 by rpki-client