This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9131D5E/56DD48DED94711EB9A1A0D71C4F9AE02/QeLjUgZMov-eIcSENVrALkQHJY0.mft File: QeLjUgZMov-eIcSENVrALkQHJY0.mft (raw, json) Hash identifier: hslczFcmN9YezyBTwWG6lEKktvFhDDECnvxxXLP9w3I= Subject key identifier: 06:1F:DF:84:B7:6A:EA:D0:1A:B2:2A:1A:93:84:86:F5:63:0D:AE:16 Authority key identifier: 41:E2:E3:52:06:4C:A2:FF:9E:21:C4:84:35:5A:C0:2E:44:07:25:8D Certificate issuer: /CN=A9131D5E/serialNumber=41E2E352064CA2FF9E21C484355AC02E4407258D Certificate serial: 05F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QeLjUgZMov-eIcSENVrALkQHJY0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131D5E/56DD48DED94711EB9A1A0D71C4F9AE02/QeLjUgZMov-eIcSENVrALkQHJY0.mft Manifest number: 05EA Signing time: Sat 06 Dec 2025 21:48:29 +0000 Manifest this update: Sat 06 Dec 2025 21:48:28 +0000 Manifest next update: Sat 13 Dec 2025 21:48:28 +0000 Files and hashes: 1: QeLjUgZMov-eIcSENVrALkQHJY0.crl (hash: djH1Sp3c7xgs7iTzOHOxQTz/tgHGm59dLu2D2p4uZf0=) 2: 9B41336A9ABB11EC9D11861FC4F9AE02.roa (hash: NdeCQAWI57TR1prRAjKyS139sDymB99f2VGK6TxtMaE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131D5E/56DD48DED94711EB9A1A0D71C4F9AE02/QeLjUgZMov-eIcSENVrALkQHJY0.crl rsync://rpki.apnic.net/member_repository/A9131D5E/56DD48DED94711EB9A1A0D71C4F9AE02/QeLjUgZMov-eIcSENVrALkQHJY0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QeLjUgZMov-eIcSENVrALkQHJY0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 21:48:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1522 (0x5f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131D5E, serialNumber=41E2E352064CA2FF9E21C484355AC02E4407258D Validity Not Before: Dec 6 21:48:28 2025 GMT Not After : Dec 13 21:48:28 2025 GMT Subject: CN=6934a4ac-b68c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:58:d9:bb:51:00:8c:98:82:6b:1e:6b:e0:c0: 0c:a5:bd:76:f7:48:78:3b:2f:9c:61:90:b2:56:46: 66:d1:ae:3c:96:cd:b3:c5:24:58:2b:e1:16:b8:70: ca:1c:0b:1b:e8:18:2f:d0:9b:ec:8b:81:5c:f2:12: 73:82:31:2a:33:3a:19:42:07:4f:64:73:e5:06:86: af:6c:f5:7f:e3:e2:8b:6b:3f:7c:8b:cb:43:85:0a: a1:e6:76:cb:13:04:f3:11:47:09:3f:4b:86:7f:e5: 99:bf:73:92:ef:ca:68:c9:2d:af:c2:d1:42:3c:b7: 4f:15:3f:a1:4e:e4:a9:64:1d:a9:6b:b5:5a:fa:63: c3:5a:67:c1:30:b9:c2:70:19:48:3d:a6:76:9c:b2: f2:21:f3:5e:20:3f:ef:82:b1:db:88:bd:d3:2c:2d: 75:1d:c8:ff:ba:20:dc:82:cc:0a:6a:da:cc:f3:40: e8:8f:00:17:87:a8:13:ff:64:a7:16:da:51:1c:18: 15:d8:67:e4:a5:51:93:cf:60:39:9e:23:03:9a:71: d3:39:93:97:fd:20:2f:a9:d4:c6:ba:cd:b9:a4:4d: dd:5d:27:85:9c:5e:ac:57:fa:d4:d1:05:3f:f0:92: ad:a6:d6:c8:57:2b:6a:fb:fe:5c:28:50:3d:7f:41: 0c:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:1F:DF:84:B7:6A:EA:D0:1A:B2:2A:1A:93:84:86:F5:63:0D:AE:16 X509v3 Authority Key Identifier: keyid:41:E2:E3:52:06:4C:A2:FF:9E:21:C4:84:35:5A:C0:2E:44:07:25:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131D5E/56DD48DED94711EB9A1A0D71C4F9AE02/QeLjUgZMov-eIcSENVrALkQHJY0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QeLjUgZMov-eIcSENVrALkQHJY0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131D5E/56DD48DED94711EB9A1A0D71C4F9AE02/QeLjUgZMov-eIcSENVrALkQHJY0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:e7:88:47:fd:06:2b:1a:3d:3f:5e:26:57:01:bc:97:a4:07: 7f:25:0d:9f:3b:d3:25:88:b7:70:f2:cb:17:5a:2e:6a:cd:71: 87:b9:93:7b:95:b9:41:71:e9:e3:d9:b8:9b:3c:61:c0:da:d4: 96:3f:9e:5f:68:b5:e0:63:3d:05:94:49:da:74:50:6e:46:79: 20:ff:fc:14:2a:66:4f:07:cf:87:35:c8:6d:76:47:83:10:e0: 4a:28:1b:23:c8:ee:f2:63:33:f2:c1:76:8b:9f:13:85:1c:32: 63:2f:8f:74:48:a1:b1:9a:a4:70:7e:89:56:84:16:df:6c:e4: 1b:b1:d4:47:fe:1a:c6:53:a0:e4:ff:e1:7c:b5:76:41:94:cf: cd:ad:a8:1a:4e:8c:62:cf:37:77:54:85:cc:e2:2b:bb:ef:44: 35:25:a3:9f:40:79:7a:49:c7:d2:a5:ba:a7:f0:9d:59:02:1a: cc:02:00:3f:a8:2a:bd:df:55:a9:38:4f:88:bf:7d:2c:4a:27: 5c:e5:9a:99:82:27:e4:b9:88:54:df:b3:b4:3d:25:77:a2:f9: 62:d0:67:48:8e:c6:97:a2:c5:eb:ad:4e:6d:e4:6f:5e:ac:5d: 17:a4:f9:11:b8:b2:96:66:ee:9c:d7:ef:98:c2:0a:c5:d5:8c: 6b:20:f5:2d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBfIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFENUUxMTAvBgNVBAUTKDQxRTJFMzUyMDY0Q0EyRkY5RTIxQzQ4NDM1NUFDMDJF NDQwNzI1OEQwHhcNMjUxMjA2MjE0ODI4WhcNMjUxMjEzMjE0ODI4WjAYMRYwFAYD VQQDEw02OTM0YTRhYy1iNjhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy1jZu1EAjJiCax5r4MAMpb1290h4Oy+cYZCyVkZm0a48ls2zxSRYK+EWuHDK HAsb6Bgv0Jvsi4Fc8hJzgjEqMzoZQgdPZHPlBoavbPV/4+KLaz98i8tDhQqh5nbL EwTzEUcJP0uGf+WZv3OS78poyS2vwtFCPLdPFT+hTuSpZB2pa7Va+mPDWmfBMLnC cBlIPaZ2nLLyIfNeID/vgrHbiL3TLC11Hcj/uiDcgswKatrM80DojwAXh6gT/2Sn FtpRHBgV2GfkpVGTz2A5niMDmnHTOZOX/SAvqdTGus25pE3dXSeFnF6sV/rU0QU/ 8JKtptbIVytq+/5cKFA9f0EMHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAYf34S3 aurQGrIqGpOEhvVjDa4WMB8GA1UdIwQYMBaAFEHi41IGTKL/niHEhDVawC5EByWN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUQ1RS81NkRENDhERUQ5 NDcxMUVCOUExQTBENzFDNEY5QUUwMi9RZUxqVWdaTW92LWVJY1NFTlZyQUxrUUhK WTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FlTGpVZ1pNb3YtZUljU0VOVnJBTGtRSEpZMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MUQ1RS81NkRENDhERUQ5NDcxMUVCOUExQTBENzFDNEY5QUUwMi9RZUxqVWdaTW92 LWVJY1NFTlZyQUxrUUhKWTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCi54hH/QYrGj0/XiZXAbyXpAd/JQ2fO9MliLdw8ssXWi5qzXGHuZN7 lblBcenj2bibPGHA2tSWP55faLXgYz0FlEnadFBuRnkg//wUKmZPB8+HNchtdkeD EOBKKBsjyO7yYzPywXaLnxOFHDJjL490SKGxmqRwfolWhBbfbOQbsdRH/hrGU6Dk /+F8tXZBlM/NragaToxizzd3VIXM4iu770Q1JaOfQHl6ScfSpbqn8J1ZAhrMAgA/ qCq931WpOE+Iv30sSidc5ZqZgifkuYhU37O0PSV3ovli0GdIjsaXosXrrU5t5G9e rF0XpPkRuLKWZu6c1++YwgrF1YxrIPUt -----END CERTIFICATE-----Generated at Mon Dec 8 09:15:50 2025 by rpki-client