This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5216/5CD5E7306E0811EDBEED6284C4F9AE02/qEG9xa-p6aCpW4hUYRPKdF7pY7U.mft File: qEG9xa-p6aCpW4hUYRPKdF7pY7U.mft (raw, json) Hash identifier: ZOK8Lz82Gbdv2bmqVWfpcSQwsEbe1SRhQ/us6MgYuH8= Subject key identifier: DD:C6:01:2A:65:16:F1:96:AE:43:89:60:E6:17:E1:1F:46:EA:E9:92 Authority key identifier: A8:41:BD:C5:AF:A9:E9:A0:A9:5B:88:54:61:13:CA:74:5E:E9:63:B5 Certificate issuer: /CN=A91F5216/serialNumber=A841BDC5AFA9E9A0A95B88546113CA745EE963B5 Certificate serial: 023F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qEG9xa-p6aCpW4hUYRPKdF7pY7U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5216/5CD5E7306E0811EDBEED6284C4F9AE02/qEG9xa-p6aCpW4hUYRPKdF7pY7U.mft Manifest number: 0239 Signing time: Fri 05 Dec 2025 00:15:58 +0000 Manifest this update: Fri 05 Dec 2025 00:15:57 +0000 Manifest next update: Fri 12 Dec 2025 00:15:57 +0000 Files and hashes: 1: qEG9xa-p6aCpW4hUYRPKdF7pY7U.crl (hash: ySq+BYn0ptfvfNH/bvAK4wVrLaq8uGbzGeqpeMsW67Q=) 2: CDA9BB546E0C11ED8BF41547C4F9AE02.roa (hash: 5xUQVljU0BWWuc6LYolHHzG3Hqi8KmssX696YCKuce8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5216/5CD5E7306E0811EDBEED6284C4F9AE02/qEG9xa-p6aCpW4hUYRPKdF7pY7U.crl rsync://rpki.apnic.net/member_repository/A91F5216/5CD5E7306E0811EDBEED6284C4F9AE02/qEG9xa-p6aCpW4hUYRPKdF7pY7U.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qEG9xa-p6aCpW4hUYRPKdF7pY7U.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 00:15:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 575 (0x23f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5216, serialNumber=A841BDC5AFA9E9A0A95B88546113CA745EE963B5 Validity Not Before: Dec 5 00:15:57 2025 GMT Not After : Dec 12 00:15:57 2025 GMT Subject: CN=6932243d-c9c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:a7:98:9f:25:4e:b5:2d:f3:67:48:11:64:89: 07:6e:98:95:36:3e:56:c3:44:73:59:31:9e:ea:2a: 35:3d:28:9b:52:53:87:62:19:e0:b4:49:86:dd:4f: 6b:05:e5:38:4b:0b:22:43:e3:60:99:38:02:6e:d9: ac:33:aa:d2:d5:30:ea:30:b6:1f:3f:9b:ce:d6:0a: be:23:83:c8:83:31:db:ca:b7:bd:84:e2:69:cc:90: 96:be:ee:86:e6:50:25:e9:f1:ed:c0:37:b1:fa:4b: 7f:5c:a7:74:b2:ca:f4:2e:e8:b2:ed:f0:33:74:9c: e5:69:8b:bf:18:6a:35:24:da:91:12:2c:56:aa:b5: 62:09:97:ff:d5:fa:38:d4:9d:d9:8a:b8:fd:09:d3: 2b:e9:5b:c1:70:1e:98:69:15:b0:a7:e6:3a:eb:dc: 18:b2:5f:9c:02:0c:1e:f0:cb:24:b2:1c:7c:a0:16: 1e:c5:60:08:e8:4e:94:99:7c:77:c5:6f:a6:f3:be: 9f:a5:40:49:68:aa:02:4a:e1:fe:18:2d:17:f5:61: 8b:a2:c0:43:7a:90:99:6f:95:3e:16:f0:ed:6a:d0: 90:f9:d4:22:9f:5f:5c:cc:5c:5f:8d:30:35:12:39: bb:a8:b5:24:12:12:3e:2a:7f:33:c1:4a:bf:c4:8d: c6:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:C6:01:2A:65:16:F1:96:AE:43:89:60:E6:17:E1:1F:46:EA:E9:92 X509v3 Authority Key Identifier: keyid:A8:41:BD:C5:AF:A9:E9:A0:A9:5B:88:54:61:13:CA:74:5E:E9:63:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5216/5CD5E7306E0811EDBEED6284C4F9AE02/qEG9xa-p6aCpW4hUYRPKdF7pY7U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qEG9xa-p6aCpW4hUYRPKdF7pY7U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5216/5CD5E7306E0811EDBEED6284C4F9AE02/qEG9xa-p6aCpW4hUYRPKdF7pY7U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:35:70:7d:50:d4:68:a8:16:1c:69:54:55:6a:20:be:1f:f8: 5f:4b:16:c7:4d:50:33:20:90:94:71:32:93:de:fd:21:59:2e: 39:37:a2:35:fe:cc:20:ef:76:82:a4:49:c6:be:46:e3:24:cd: 6e:50:59:20:4c:0d:5b:4a:32:58:31:c4:24:58:88:75:fb:0e: c2:10:a5:e8:8a:cb:a5:a9:cc:96:d9:53:5c:f2:77:7a:3c:16: a1:9d:ae:84:5f:87:28:a1:6c:cf:87:ad:0f:00:c3:37:82:d6: b2:2c:fe:aa:7a:b1:11:ce:a2:4d:f5:3d:c9:d5:01:c3:8e:74: bb:08:af:66:b1:15:b4:e6:b3:c2:46:94:72:93:82:d7:14:16: 76:4e:f2:ab:64:56:ac:1c:2a:07:35:bb:34:8c:1d:2a:dd:2e: 76:27:13:49:50:8d:ff:fb:65:32:42:83:65:47:58:03:14:2a: 22:ff:6e:6e:99:dd:11:03:61:a3:4a:86:7d:98:98:22:7c:65: 57:c4:fb:92:87:a8:bb:77:8d:6a:71:41:22:3b:bd:13:c8:5d: fb:3a:d5:4f:7c:43:73:9e:d1:bc:09:0c:0a:32:51:6b:34:69: a6:c1:6c:85:e5:64:de:1b:9b:85:c5:63:6d:d0:de:a4:b3:0b: 6a:e6:61:dd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAj8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjUyMTYxMTAvBgNVBAUTKEE4NDFCREM1QUZBOUU5QTBBOTVCODg1NDYxMTNDQTc0 NUVFOTYzQjUwHhcNMjUxMjA1MDAxNTU3WhcNMjUxMjEyMDAxNTU3WjAYMRYwFAYD VQQDEw02OTMyMjQzZC1jOWM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwaeYnyVOtS3zZ0gRZIkHbpiVNj5Ww0RzWTGe6io1PSibUlOHYhngtEmG3U9r BeU4SwsiQ+NgmTgCbtmsM6rS1TDqMLYfP5vO1gq+I4PIgzHbyre9hOJpzJCWvu6G 5lAl6fHtwDex+kt/XKd0ssr0Luiy7fAzdJzlaYu/GGo1JNqREixWqrViCZf/1fo4 1J3Zirj9CdMr6VvBcB6YaRWwp+Y669wYsl+cAgwe8Mskshx8oBYexWAI6E6UmXx3 xW+m876fpUBJaKoCSuH+GC0X9WGLosBDepCZb5U+FvDtatCQ+dQin19czFxfjTA1 Ejm7qLUkEhI+Kn8zwUq/xI3G0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN3GASpl FvGWrkOJYOYX4R9G6umSMB8GA1UdIwQYMBaAFKhBvcWvqemgqVuIVGETynRe6WO1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTIxNi81Q0Q1RTczMDZF MDgxMUVEQkVFRDYyODRDNEY5QUUwMi9xRUc5eGEtcDZhQ3BXNGhVWVJQS2RGN3BZ N1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3FFRzl4YS1wNmFDcFc0aFVZUlBLZEY3cFk3VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTIxNi81Q0Q1RTczMDZFMDgxMUVEQkVFRDYyODRDNEY5QUUwMi9xRUc5eGEtcDZh Q3BXNGhVWVJQS2RGN3BZN1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFNXB9UNRoqBYcaVRVaiC+H/hfSxbHTVAzIJCUcTKT3v0hWS45N6I1 /swg73aCpEnGvkbjJM1uUFkgTA1bSjJYMcQkWIh1+w7CEKXoisulqcyW2VNc8nd6 PBahna6EX4cooWzPh60PAMM3gtayLP6qerERzqJN9T3J1QHDjnS7CK9msRW05rPC RpRyk4LXFBZ2TvKrZFasHCoHNbs0jB0q3S52JxNJUI3/+2UyQoNlR1gDFCoi/25u md0RA2GjSoZ9mJgifGVXxPuSh6i7d41qcUEiO70TyF37OtVPfENzntG8CQwKMlFr NGmmwWyF5WTeG5uFxWNt0N6kswtq5mHd -----END CERTIFICATE-----Generated at Sat Dec 6 19:03:16 2025 by rpki-client