This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED6B5/EF469BFC594411ECAF575A6CC4F9AE02/QRfXbD7AS2IRM0hQpc1uowVTUFw.mft File: QRfXbD7AS2IRM0hQpc1uowVTUFw.mft (raw, json) Hash identifier: o5Wg1lVq7wxUr6SdrqqOc+JSY96wNqBcmM1sC07iq98= Subject key identifier: 4A:78:2C:B2:00:DE:0A:53:CC:39:BA:32:E5:3B:C9:2F:75:E6:EB:20 Authority key identifier: 41:17:D7:6C:3E:C0:4B:62:11:33:48:50:A5:CD:6E:A3:05:53:50:5C Certificate issuer: /CN=A91ED6B5/serialNumber=4117D76C3EC04B6211334850A5CD6EA30553505C Certificate serial: 04A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QRfXbD7AS2IRM0hQpc1uowVTUFw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED6B5/EF469BFC594411ECAF575A6CC4F9AE02/QRfXbD7AS2IRM0hQpc1uowVTUFw.mft Manifest number: 04A1 Signing time: Thu 04 Dec 2025 22:30:04 +0000 Manifest this update: Thu 04 Dec 2025 22:30:04 +0000 Manifest next update: Thu 11 Dec 2025 22:30:04 +0000 Files and hashes: 1: QRfXbD7AS2IRM0hQpc1uowVTUFw.crl (hash: GJg/SLFvzZqK5QmXlTzUqsmYhVfrEiVll8Z4ltyea00=) 2: 06A899FECCF311EC86719729C4F9AE02.roa (hash: aXuFAPx3sTT3XGxZkToSNXJ/vwo2rNiJs7Ikunvy7v4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED6B5/EF469BFC594411ECAF575A6CC4F9AE02/QRfXbD7AS2IRM0hQpc1uowVTUFw.crl rsync://rpki.apnic.net/member_repository/A91ED6B5/EF469BFC594411ECAF575A6CC4F9AE02/QRfXbD7AS2IRM0hQpc1uowVTUFw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QRfXbD7AS2IRM0hQpc1uowVTUFw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 22:30:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1189 (0x4a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED6B5, serialNumber=4117D76C3EC04B6211334850A5CD6EA30553505C Validity Not Before: Dec 4 22:30:04 2025 GMT Not After : Dec 11 22:30:04 2025 GMT Subject: CN=69320b6c-f5a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:dc:ea:4d:34:6d:e5:99:d9:90:0c:d2:0b:41: cd:29:77:f5:e5:49:55:76:5c:14:95:2e:c0:73:09: f3:28:8e:be:8f:96:9d:53:29:f9:5f:ec:b2:4a:3c: f0:e6:c1:a5:b7:14:84:ea:c1:46:95:23:ab:e8:78: 8b:b6:c1:1f:ab:a7:b1:7d:6a:7b:01:24:80:8d:ba: 6b:1a:e1:32:fd:e8:bb:ce:fd:ae:c3:ec:fa:d8:63: b7:f9:0a:5a:9a:7e:e8:5a:06:88:c8:00:33:80:b3: 74:22:fd:6e:97:ee:ff:85:26:04:3f:cc:19:3e:d9: 55:07:09:89:05:d6:0f:4a:87:f0:2f:27:b1:70:d2: f0:0c:4e:b1:7e:42:7d:f8:11:67:ec:12:b1:07:57: c0:78:18:fc:98:b8:1c:09:18:03:4c:c0:07:45:de: a1:9b:63:35:43:45:f5:46:00:69:86:64:63:67:f5: ab:bc:fa:62:02:af:35:2c:70:c4:5e:61:1a:ba:8a: b8:60:f3:a0:5f:e1:f4:dc:ce:e9:61:2f:3c:13:67: c6:22:d4:01:29:67:03:c7:8d:5a:80:e3:58:63:e1: c3:5c:1b:e2:99:9e:55:11:a8:26:46:86:f3:2a:f8: 52:e9:47:79:ea:22:3b:ab:08:e0:37:4d:b7:cc:6a: b9:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:78:2C:B2:00:DE:0A:53:CC:39:BA:32:E5:3B:C9:2F:75:E6:EB:20 X509v3 Authority Key Identifier: keyid:41:17:D7:6C:3E:C0:4B:62:11:33:48:50:A5:CD:6E:A3:05:53:50:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED6B5/EF469BFC594411ECAF575A6CC4F9AE02/QRfXbD7AS2IRM0hQpc1uowVTUFw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QRfXbD7AS2IRM0hQpc1uowVTUFw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED6B5/EF469BFC594411ECAF575A6CC4F9AE02/QRfXbD7AS2IRM0hQpc1uowVTUFw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:68:a0:34:07:6c:2d:b7:ba:6d:50:05:40:70:18:99:e9:c8: aa:69:e2:3e:3e:3e:d0:7f:83:f8:48:b5:46:32:1f:b9:28:40: f3:c4:50:35:bb:aa:00:e7:31:66:17:a6:00:37:2e:1d:8e:ec: 0a:91:5d:18:3b:fe:40:f8:9d:b9:0b:65:ad:15:e8:d1:03:31: 21:38:34:a0:c9:0c:52:99:6e:7b:c8:16:7d:f8:92:59:22:c3: 61:49:90:02:30:bb:8e:5d:9e:0d:71:ff:60:c3:de:4e:0f:60: 3d:23:6a:8d:a3:7a:aa:6a:4a:1d:fd:33:af:a7:fd:c2:b4:b3: c2:3c:2a:41:5c:80:e7:c1:d2:0e:d9:7f:c5:66:f5:0a:50:6c: 55:64:4e:a2:65:55:78:e1:d8:9d:4b:59:88:58:b1:b7:b7:15: a7:9d:06:f9:a1:94:42:95:a5:f2:ee:cb:2e:19:31:4c:28:2b: 46:a0:bc:7a:82:93:66:cb:c6:d1:d7:bc:21:27:93:d7:90:81: 9e:df:47:41:40:8d:5b:59:fc:62:4b:9d:32:48:44:1d:40:d5: c8:6b:22:36:82:fd:5d:e1:55:6e:d3:95:39:5b:8b:61:e8:b3: 07:25:a2:f6:34:71:d9:d4:96:6c:56:e4:3b:15:7a:09:03:06: f3:fc:8e:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBKUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUQ2QjUxMTAvBgNVBAUTKDQxMTdENzZDM0VDMDRCNjIxMTMzNDg1MEE1Q0Q2RUEz MDU1MzUwNUMwHhcNMjUxMjA0MjIzMDA0WhcNMjUxMjExMjIzMDA0WjAYMRYwFAYD VQQDEw02OTMyMGI2Yy1mNWE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6tzqTTRt5ZnZkAzSC0HNKXf15UlVdlwUlS7AcwnzKI6+j5adUyn5X+yySjzw 5sGltxSE6sFGlSOr6HiLtsEfq6exfWp7ASSAjbprGuEy/ei7zv2uw+z62GO3+Qpa mn7oWgaIyAAzgLN0Iv1ul+7/hSYEP8wZPtlVBwmJBdYPSofwLyexcNLwDE6xfkJ9 +BFn7BKxB1fAeBj8mLgcCRgDTMAHRd6hm2M1Q0X1RgBphmRjZ/WrvPpiAq81LHDE XmEauoq4YPOgX+H03M7pYS88E2fGItQBKWcDx41agONYY+HDXBvimZ5VEagmRobz KvhS6Ud56iI7qwjgN023zGq5PQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEp4LLIA 3gpTzDm6MuU7yS915usgMB8GA1UdIwQYMBaAFEEX12w+wEtiETNIUKXNbqMFU1Bc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDZCNS9FRjQ2OUJGQzU5 NDQxMUVDQUY1NzVBNkNDNEY5QUUwMi9RUmZYYkQ3QVMySVJNMGhRcGMxdW93VlRV RncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FSZlhiRDdBUzJJUk0waFFwYzF1b3dWVFVGdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RDZCNS9FRjQ2OUJGQzU5NDQxMUVDQUY1NzVBNkNDNEY5QUUwMi9RUmZYYkQ3QVMy SVJNMGhRcGMxdW93VlRVRncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNaKA0B2wtt7ptUAVAcBiZ6ciqaeI+Pj7Qf4P4SLVGMh+5KEDzxFA1 u6oA5zFmF6YANy4djuwKkV0YO/5A+J25C2WtFejRAzEhODSgyQxSmW57yBZ9+JJZ IsNhSZACMLuOXZ4Ncf9gw95OD2A9I2qNo3qqakod/TOvp/3CtLPCPCpBXIDnwdIO 2X/FZvUKUGxVZE6iZVV44didS1mIWLG3txWnnQb5oZRClaXy7ssuGTFMKCtGoLx6 gpNmy8bR17whJ5PXkIGe30dBQI1bWfxiS50ySEQdQNXIayI2gv1d4VVu05U5W4th 6LMHJaL2NHHZ1JZsVuQ7FXoJAwbz/I5W -----END CERTIFICATE-----Generated at Sat Dec 6 13:50:50 2025 by rpki-client