This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5756/6B727F32621211F08CA6C154C4F9AE02/QB2L3IKjJEjJO6Og_pOvEGQjYqI.mft File: QB2L3IKjJEjJO6Og_pOvEGQjYqI.mft (raw, json) Hash identifier: skvBLFJElwMr/fWRadfJp5pX+TQhDGzV/oUIYH4k59c= Subject key identifier: F5:C4:E4:A4:4F:A6:BE:A8:E1:0C:AB:F5:C6:0F:AC:F3:53:63:FC:BF Authority key identifier: 40:1D:8B:DC:82:A3:24:48:C9:3B:A3:A0:FE:93:AF:10:64:23:62:A2 Certificate issuer: /CN=A91F5756/serialNumber=401D8BDC82A32448C93BA3A0FE93AF10642362A2 Certificate serial: 4E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QB2L3IKjJEjJO6Og_pOvEGQjYqI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5756/6B727F32621211F08CA6C154C4F9AE02/QB2L3IKjJEjJO6Og_pOvEGQjYqI.mft Manifest number: 4C Signing time: Fri 05 Dec 2025 05:12:07 +0000 Manifest this update: Fri 05 Dec 2025 05:12:06 +0000 Manifest next update: Fri 12 Dec 2025 05:12:06 +0000 Files and hashes: 1: QB2L3IKjJEjJO6Og_pOvEGQjYqI.crl (hash: 5aICsptHbjryRgX4uS1d6HkiHpctblmSY6UHLcGKuGI=) 2: 2FD77F7E621511F09070587CC4F9AE02.roa (hash: DzXy8BEuESMOqIj1ZsPp4HtWDSpRtccWGiXvOFf8WyM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5756/6B727F32621211F08CA6C154C4F9AE02/QB2L3IKjJEjJO6Og_pOvEGQjYqI.crl rsync://rpki.apnic.net/member_repository/A91F5756/6B727F32621211F08CA6C154C4F9AE02/QB2L3IKjJEjJO6Og_pOvEGQjYqI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QB2L3IKjJEjJO6Og_pOvEGQjYqI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 05:12:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78 (0x4e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5756, serialNumber=401D8BDC82A32448C93BA3A0FE93AF10642362A2 Validity Not Before: Dec 5 05:12:06 2025 GMT Not After : Dec 12 05:12:06 2025 GMT Subject: CN=693269a7-bb23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:fd:f1:15:61:0f:62:cd:fa:ff:c0:25:f1:74: 71:24:78:1a:9d:77:ca:e2:3f:0e:cb:93:0f:40:64: 75:ed:55:31:1e:86:7b:39:80:20:fb:40:cf:82:17: 14:85:a5:c6:84:dc:b3:69:1b:af:22:18:f9:85:2c: 2e:11:46:83:7c:91:c7:b0:ad:33:2c:ad:ea:0a:ef: 42:4d:77:4f:b7:b1:a3:71:f3:ba:c2:da:69:4b:18: 30:42:e4:62:7e:38:61:6d:9b:c2:4e:ad:8c:31:5b: 38:3b:b3:19:b0:9e:8a:22:e0:39:c0:17:a1:c3:dc: e8:e0:3c:80:97:aa:87:f2:9c:1e:19:b2:a1:80:4d: d5:8d:53:24:22:38:a5:ef:c7:fc:f2:bd:f3:ca:0a: c4:ee:f6:37:b9:97:bd:ec:1a:a6:10:e8:d4:82:87: 37:09:55:c8:a3:26:0b:be:0c:79:88:d6:16:a4:92: 7b:8d:25:f4:34:82:32:60:2e:40:05:e9:41:cb:03: 1b:bd:17:47:15:7f:81:bc:bf:3d:30:6e:78:fd:24: fa:ad:07:51:aa:74:d4:7d:12:42:f4:89:e6:0a:9f: 61:24:96:d3:dc:8d:55:78:bd:3d:2c:34:c9:31:2a: 99:0c:2d:ff:f4:5c:a6:8a:b3:fb:74:d1:6e:7b:27: 7f:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:C4:E4:A4:4F:A6:BE:A8:E1:0C:AB:F5:C6:0F:AC:F3:53:63:FC:BF X509v3 Authority Key Identifier: keyid:40:1D:8B:DC:82:A3:24:48:C9:3B:A3:A0:FE:93:AF:10:64:23:62:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5756/6B727F32621211F08CA6C154C4F9AE02/QB2L3IKjJEjJO6Og_pOvEGQjYqI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QB2L3IKjJEjJO6Og_pOvEGQjYqI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5756/6B727F32621211F08CA6C154C4F9AE02/QB2L3IKjJEjJO6Og_pOvEGQjYqI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:19:ff:7b:89:0f:e1:8e:a2:56:c1:4c:6d:8b:fc:b9:9c:98: 7c:7f:4e:7d:ad:a9:d6:cc:db:88:69:a6:79:17:02:c7:be:b7: 76:0c:70:4c:9c:60:05:ee:0f:52:84:7b:b8:dd:4e:c8:99:e1: 4d:bd:ce:49:1a:44:10:ff:46:53:1d:9d:f4:83:a6:ff:d9:06: 1f:99:ee:a6:a5:3c:90:d3:42:c2:78:9a:e8:a5:37:45:f1:79: 9a:bc:74:27:8a:86:c6:2e:3a:3d:1a:ae:2b:81:b9:71:bd:c6: e2:75:e9:20:a0:2d:cf:d6:54:a1:cc:43:04:07:cd:3c:2b:48: a1:bd:bb:87:76:ce:70:8e:7f:15:a8:b7:20:02:71:b8:5a:c0: da:d0:8e:af:9e:de:f4:fb:9d:ed:df:a4:1b:c8:2b:f5:8a:a7: a4:67:2d:96:f8:9c:83:23:cb:bd:68:17:b2:c0:36:7c:ba:ee: 71:41:cc:65:e8:63:94:e9:50:5a:79:b5:31:4f:78:f4:47:35: 62:88:a6:4d:2d:f7:03:d5:68:c2:b1:53:b7:65:2b:f2:97:45: c6:95:a8:7d:70:c6:8b:36:59:2b:62:f9:96:3b:2d:d0:23:2a: 53:5a:15:28:57:31:1e:cb:92:1d:3a:fd:e9:5d:38:20:9f:9f: b4:72:81:68 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG NTc1NjExMC8GA1UEBRMoNDAxRDhCREM4MkEzMjQ0OEM5M0JBM0EwRkU5M0FGMTA2 NDIzNjJBMjAeFw0yNTEyMDUwNTEyMDZaFw0yNTEyMTIwNTEyMDZaMBgxFjAUBgNV BAMTDTY5MzI2OWE3LWJiMjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC4/fEVYQ9izfr/wCXxdHEkeBqdd8riPw7Lkw9AZHXtVTEehns5gCD7QM+CFxSF pcaE3LNpG68iGPmFLC4RRoN8kcewrTMsreoK70JNd0+3saNx87rC2mlLGDBC5GJ+ OGFtm8JOrYwxWzg7sxmwnooi4DnAF6HD3OjgPICXqofynB4ZsqGATdWNUyQiOKXv x/zyvfPKCsTu9je5l73sGqYQ6NSChzcJVcijJgu+DHmI1hakknuNJfQ0gjJgLkAF 6UHLAxu9F0cVf4G8vz0wbnj9JPqtB1GqdNR9EkL0ieYKn2EkltPcjVV4vT0sNMkx KpkMLf/0XKaKs/t00W57J3+VAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU9cTkpE+m vqjhDKv1xg+s81Nj/L8wHwYDVR0jBBgwFoAUQB2L3IKjJEjJO6Og/pOvEGQjYqIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY1NzU2LzZCNzI3RjMyNjIx MjExRjA4Q0E2QzE1NEM0RjlBRTAyL1FCMkwzSUtqSkVqSk82T2dfcE92RUdRallx SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUUIyTDNJS2pKRWpKTzZPZ19wT3ZFR1FqWXFJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY1 NzU2LzZCNzI3RjMyNjIxMjExRjA4Q0E2QzE1NEM0RjlBRTAyL1FCMkwzSUtqSkVq Sk82T2dfcE92RUdRallxSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALgZ/3uJD+GOolbBTG2L/LmcmHx/Tn2tqdbM24hppnkXAse+t3YMcEyc YAXuD1KEe7jdTsiZ4U29zkkaRBD/RlMdnfSDpv/ZBh+Z7qalPJDTQsJ4muilN0Xx eZq8dCeKhsYuOj0ariuBuXG9xuJ16SCgLc/WVKHMQwQHzTwrSKG9u4d2znCOfxWo tyACcbhawNrQjq+e3vT7ne3fpBvIK/WKp6RnLZb4nIMjy71oF7LANny67nFBzGXo Y5TpUFp5tTFPePRHNWKIpk0t9wPVaMKxU7dlK/KXRcaVqH1wxos2WSti+ZY7LdAj KlNaFShXMR7Lkh06/eldOCCfn7RygWg= -----END CERTIFICATE-----Generated at Sat Dec 6 15:40:29 2025 by rpki-client