This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5216/5CD5E7306E0811EDBEED6284C4F9AE02/qEG9xa-p6aCpW4hUYRPKdF7pY7U.mft File: qEG9xa-p6aCpW4hUYRPKdF7pY7U.mft (raw, json) Hash identifier: ugYuFMS5N/0kBdIGHE3zrVNYRYqDKXyIwEzP54YjY4I= Subject key identifier: 0F:B6:22:4B:8B:2E:A7:54:93:DB:09:3A:4D:D5:11:BC:CE:6A:44:86 Authority key identifier: A8:41:BD:C5:AF:A9:E9:A0:A9:5B:88:54:61:13:CA:74:5E:E9:63:B5 Certificate issuer: /CN=A91F5216/serialNumber=A841BDC5AFA9E9A0A95B88546113CA745EE963B5 Certificate serial: 0245 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qEG9xa-p6aCpW4hUYRPKdF7pY7U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5216/5CD5E7306E0811EDBEED6284C4F9AE02/qEG9xa-p6aCpW4hUYRPKdF7pY7U.mft Manifest number: 023F Signing time: Wed 17 Dec 2025 01:19:59 +0000 Manifest this update: Wed 17 Dec 2025 01:19:58 +0000 Manifest next update: Wed 24 Dec 2025 01:19:58 +0000 Files and hashes: 1: qEG9xa-p6aCpW4hUYRPKdF7pY7U.crl (hash: KyjDrOdUF5vGFLNqjniK1hsbqRResdv9cSTZ20q6tI4=) 2: CDA9BB546E0C11ED8BF41547C4F9AE02.roa (hash: 5xUQVljU0BWWuc6LYolHHzG3Hqi8KmssX696YCKuce8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5216/5CD5E7306E0811EDBEED6284C4F9AE02/qEG9xa-p6aCpW4hUYRPKdF7pY7U.crl rsync://rpki.apnic.net/member_repository/A91F5216/5CD5E7306E0811EDBEED6284C4F9AE02/qEG9xa-p6aCpW4hUYRPKdF7pY7U.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qEG9xa-p6aCpW4hUYRPKdF7pY7U.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Dec 2025 01:19:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 581 (0x245) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5216, serialNumber=A841BDC5AFA9E9A0A95B88546113CA745EE963B5 Validity Not Before: Dec 17 01:19:58 2025 GMT Not After : Dec 24 01:19:58 2025 GMT Subject: CN=6942053f-5e50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:ac:91:e6:46:3a:31:c4:81:79:ea:75:eb:a5: c1:5c:d3:ba:55:95:06:c2:f2:6b:32:dc:a0:fb:46: d9:e0:40:1b:5d:60:b1:07:e6:62:6d:b8:ce:43:27: e3:32:a0:12:b2:7c:88:8e:d4:b4:d2:71:5b:c7:4c: e7:17:b7:29:01:b3:d7:b4:66:d2:1e:52:38:6f:bd: b5:5b:74:ef:7d:8f:b8:30:bf:89:2a:2c:7e:77:56: 81:39:8f:d9:a4:7d:5a:8f:0c:f1:c4:c9:57:cf:7e: b3:ae:2b:f8:bd:9e:ba:f2:93:90:49:ea:62:0a:ec: aa:13:4a:3e:d9:8f:65:91:5b:df:ab:b2:c8:10:80: 09:29:5a:87:7f:97:8b:56:33:9d:f9:ce:e0:87:71: ca:c4:d5:f4:a9:28:34:50:d6:d5:c0:d0:d5:d9:59: 6b:9a:97:3e:0b:88:f7:ab:41:41:e2:15:af:c2:00: 2e:96:ed:50:2a:4f:9d:2d:44:1d:e4:29:c8:fc:f7: 10:24:d1:b0:5e:d1:2b:ff:e9:f5:20:d0:62:23:d0: d2:02:b3:2a:af:e9:b5:06:bc:d6:f0:58:33:57:51: 40:04:d2:a7:67:7b:25:91:8f:3d:7a:b6:39:2d:a5: 7f:75:b5:9a:ed:56:8f:a2:bc:d0:fe:02:0b:f3:f1: 0f:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:B6:22:4B:8B:2E:A7:54:93:DB:09:3A:4D:D5:11:BC:CE:6A:44:86 X509v3 Authority Key Identifier: keyid:A8:41:BD:C5:AF:A9:E9:A0:A9:5B:88:54:61:13:CA:74:5E:E9:63:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5216/5CD5E7306E0811EDBEED6284C4F9AE02/qEG9xa-p6aCpW4hUYRPKdF7pY7U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qEG9xa-p6aCpW4hUYRPKdF7pY7U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5216/5CD5E7306E0811EDBEED6284C4F9AE02/qEG9xa-p6aCpW4hUYRPKdF7pY7U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:b2:43:7b:a7:5b:20:d4:cb:c1:8a:69:73:39:67:aa:c1:a0: bc:96:68:61:1d:ce:fd:38:6d:80:1f:49:4d:87:a8:73:af:63: 5f:72:ee:5f:8b:a2:86:54:f6:8a:d2:9c:bb:52:33:21:cb:c5: 16:01:a6:57:7c:a8:be:c9:4f:ac:9e:f1:ed:3c:1f:03:2c:ab: f8:6e:6f:2f:ca:77:0c:8c:ac:f0:05:45:6b:a3:74:61:34:08: dd:22:2f:44:07:4a:ee:ea:4a:0a:a7:60:f0:36:17:e0:08:af: 97:54:eb:0a:5f:02:25:d9:c2:f4:dc:14:c5:7c:2a:07:60:12: 5a:a7:bf:6f:ec:01:8e:0e:ab:ae:17:6b:7c:93:32:32:33:a1: f2:18:a2:de:32:62:19:ac:93:36:e3:85:ea:0d:fc:b5:0e:9a: c0:98:f2:1b:13:df:74:5d:76:92:d4:6e:dd:b0:4b:c6:a7:d7: 3d:d5:9c:b0:db:fc:00:bf:56:3b:08:a3:1b:27:33:c1:f0:64: 29:69:db:73:e4:78:73:14:1c:e0:a8:85:0d:f2:fb:2d:cf:df: d6:a0:1d:a7:8f:a1:30:df:31:00:a0:07:c9:29:ae:bf:39:de: e7:50:1a:e7:8d:00:5f:94:d5:37:1f:3c:c4:fa:69:76:2b:cc: 31:7f:37:78 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjUyMTYxMTAvBgNVBAUTKEE4NDFCREM1QUZBOUU5QTBBOTVCODg1NDYxMTNDQTc0 NUVFOTYzQjUwHhcNMjUxMjE3MDExOTU4WhcNMjUxMjI0MDExOTU4WjAYMRYwFAYD VQQDDA02OTQyMDUzZi01ZTUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo6yR5kY6McSBeep166XBXNO6VZUGwvJrMtyg+0bZ4EAbXWCxB+ZibbjOQyfj MqASsnyIjtS00nFbx0znF7cpAbPXtGbSHlI4b721W3TvfY+4ML+JKix+d1aBOY/Z pH1ajwzxxMlXz36zriv4vZ668pOQSepiCuyqE0o+2Y9lkVvfq7LIEIAJKVqHf5eL VjOd+c7gh3HKxNX0qSg0UNbVwNDV2Vlrmpc+C4j3q0FB4hWvwgAulu1QKk+dLUQd 5CnI/PcQJNGwXtEr/+n1INBiI9DSArMqr+m1BrzW8FgzV1FABNKnZ3slkY89erY5 LaV/dbWa7VaPorzQ/gIL8/EPEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA+2IkuL LqdUk9sJOk3VEbzOakSGMB8GA1UdIwQYMBaAFKhBvcWvqemgqVuIVGETynRe6WO1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTIxNi81Q0Q1RTczMDZF MDgxMUVEQkVFRDYyODRDNEY5QUUwMi9xRUc5eGEtcDZhQ3BXNGhVWVJQS2RGN3BZ N1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3FFRzl4YS1wNmFDcFc0aFVZUlBLZEY3cFk3VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTIxNi81Q0Q1RTczMDZFMDgxMUVEQkVFRDYyODRDNEY5QUUwMi9xRUc5eGEtcDZh Q3BXNGhVWVJQS2RGN3BZN1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAeskN7p1sg1MvBimlzOWeqwaC8lmhhHc79OG2AH0lNh6hzr2Nfcu5f i6KGVPaK0py7UjMhy8UWAaZXfKi+yU+snvHtPB8DLKv4bm8vyncMjKzwBUVro3Rh NAjdIi9EB0ru6koKp2DwNhfgCK+XVOsKXwIl2cL03BTFfCoHYBJap79v7AGODquu F2t8kzIyM6HyGKLeMmIZrJM244XqDfy1DprAmPIbE990XXaS1G7dsEvGp9c91Zyw 2/wAv1Y7CKMbJzPB8GQpadtz5HhzFBzgqIUN8vstz9/WoB2nj6Ew3zEAoAfJKa6/ Od7nUBrnjQBflNU3HzzE+ml2K8wxfzd4 -----END CERTIFICATE-----Generated at Thu Dec 18 05:41:07 2025 by rpki-client