This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91323E4/190B0D06F26211EAA522345AC4F9AE02/QBS8tK-bGBlk17ekDRv51vieCP8.mft File: QBS8tK-bGBlk17ekDRv51vieCP8.mft (raw, json) Hash identifier: kKHZXPbxR4X3FJRrsNx3ZFiFirm08FCjp5uwzqqJ7FA= Subject key identifier: 2F:45:27:9D:E7:DB:14:F1:CB:60:C4:52:7B:5F:AD:94:07:58:61:51 Authority key identifier: 40:14:BC:B4:AF:9B:18:19:64:D7:B7:A4:0D:1B:F9:D6:F8:9E:08:FF Certificate issuer: /CN=A91323E4/serialNumber=4014BCB4AF9B181964D7B7A40D1BF9D6F89E08FF Certificate serial: 0830 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QBS8tK-bGBlk17ekDRv51vieCP8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91323E4/190B0D06F26211EAA522345AC4F9AE02/QBS8tK-bGBlk17ekDRv51vieCP8.mft Manifest number: 082E Signing time: Sat 06 Dec 2025 19:55:21 +0000 Manifest this update: Sat 06 Dec 2025 19:55:20 +0000 Manifest next update: Sat 13 Dec 2025 19:55:20 +0000 Files and hashes: 1: QBS8tK-bGBlk17ekDRv51vieCP8.crl (hash: ZyU8yMtzoCrpSVGPZ6InXt8vgxKFTG9ehfXlt9m1DX4=) 2: 6944587246B311F090CDB927C4F9AE02.roa (hash: N5DJ/lWFfI48sdx6BvFVpFHkaPP8kCCAOxZfmLMaFUw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91323E4/190B0D06F26211EAA522345AC4F9AE02/QBS8tK-bGBlk17ekDRv51vieCP8.crl rsync://rpki.apnic.net/member_repository/A91323E4/190B0D06F26211EAA522345AC4F9AE02/QBS8tK-bGBlk17ekDRv51vieCP8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QBS8tK-bGBlk17ekDRv51vieCP8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 19:55:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2096 (0x830) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91323E4, serialNumber=4014BCB4AF9B181964D7B7A40D1BF9D6F89E08FF Validity Not Before: Dec 6 19:55:20 2025 GMT Not After : Dec 13 19:55:20 2025 GMT Subject: CN=69348a29-aa91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:46:15:89:55:93:8b:aa:41:c3:e3:22:24:32: 7d:75:bf:a5:2f:1e:21:56:3c:c9:7c:23:9d:0e:26: c2:54:54:5f:e6:81:69:4f:e3:08:51:21:9c:f2:b0: f2:d1:2e:11:09:7e:00:5e:f3:ce:b0:7c:c3:c1:04: ff:b9:a2:bb:ff:af:f5:18:6e:76:5c:43:b8:32:96: c1:c2:e8:75:22:0c:84:f1:3b:3b:b2:67:c5:59:85: dc:6e:a6:cc:ed:05:21:3a:93:76:7a:53:b7:19:cc: b2:6d:f2:76:1e:5a:52:a0:16:7f:82:7c:0b:73:83: 77:81:e9:fd:29:fb:26:39:a5:b8:50:ef:30:2d:f4: 5c:6b:53:99:13:df:25:61:9c:86:e8:e4:79:fc:8c: 3e:4e:34:b4:b1:3d:fb:74:5b:59:8d:ba:44:65:9d: 31:55:a2:2a:e4:a5:eb:e3:90:0e:4f:ad:cc:f7:e4: d1:c4:cb:22:1a:c2:aa:85:74:35:6a:84:3e:e3:67: ba:ef:61:8e:bb:f1:32:00:e3:5e:43:9f:48:20:76: 08:c7:a8:f4:37:9a:fd:55:d5:a5:d4:53:11:b0:fe: 5a:fb:7a:d2:13:5f:cc:98:2f:be:b8:e5:53:20:59: 1d:04:c9:8d:3c:49:5e:90:14:54:e8:ae:2c:e5:6d: 63:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:45:27:9D:E7:DB:14:F1:CB:60:C4:52:7B:5F:AD:94:07:58:61:51 X509v3 Authority Key Identifier: keyid:40:14:BC:B4:AF:9B:18:19:64:D7:B7:A4:0D:1B:F9:D6:F8:9E:08:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91323E4/190B0D06F26211EAA522345AC4F9AE02/QBS8tK-bGBlk17ekDRv51vieCP8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QBS8tK-bGBlk17ekDRv51vieCP8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91323E4/190B0D06F26211EAA522345AC4F9AE02/QBS8tK-bGBlk17ekDRv51vieCP8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:57:a3:cf:c7:a1:7b:01:0a:e7:ed:86:10:8c:dd:c7:ff:91: 72:ce:9f:25:ef:71:f7:19:e1:9b:c0:5f:ed:11:4b:40:08:9e: 2b:5e:33:54:e7:50:97:fe:a4:ae:cd:51:13:37:f2:7c:92:28: fa:c8:13:86:06:5d:48:69:9d:5b:5f:46:23:f8:85:c1:a6:cb: 27:70:92:f9:7a:fb:77:6f:82:84:2b:c5:e2:d6:82:f9:56:71: 5d:45:4b:8f:78:ba:fa:41:ec:94:a2:64:e3:e5:79:22:05:0a: ef:f8:f2:9c:98:19:78:67:2a:66:9f:37:c1:e2:35:24:13:7f: 93:a7:be:f7:5a:34:b2:21:d1:08:c1:72:bd:69:da:7f:ee:85: fb:f9:d5:f9:87:f2:09:44:ed:d3:de:be:78:eb:74:79:d1:84: 01:cf:68:08:08:20:37:e8:c9:dc:e4:d0:c5:09:a2:fb:9b:a2: 47:70:13:aa:09:70:d4:ff:00:86:e7:fa:b1:1d:6b:93:91:30: e7:f8:be:75:27:aa:87:2f:29:5c:d7:66:16:3d:a2:87:5f:51: df:0e:cc:8f:92:e2:25:a9:28:ac:e9:37:0f:3e:33:d3:b5:f6: b7:77:bc:b6:1a:23:a4:56:58:fc:20:54:ad:a1:f2:5d:c8:6b: 09:45:5f:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCDAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzIzRTQxMTAvBgNVBAUTKDQwMTRCQ0I0QUY5QjE4MTk2NEQ3QjdBNDBEMUJGOUQ2 Rjg5RTA4RkYwHhcNMjUxMjA2MTk1NTIwWhcNMjUxMjEzMTk1NTIwWjAYMRYwFAYD VQQDEw02OTM0OGEyOS1hYTkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz0YViVWTi6pBw+MiJDJ9db+lLx4hVjzJfCOdDibCVFRf5oFpT+MIUSGc8rDy 0S4RCX4AXvPOsHzDwQT/uaK7/6/1GG52XEO4MpbBwuh1IgyE8Ts7smfFWYXcbqbM 7QUhOpN2elO3GcyybfJ2HlpSoBZ/gnwLc4N3gen9KfsmOaW4UO8wLfRca1OZE98l YZyG6OR5/Iw+TjS0sT37dFtZjbpEZZ0xVaIq5KXr45AOT63M9+TRxMsiGsKqhXQ1 aoQ+42e672GOu/EyAONeQ59IIHYIx6j0N5r9VdWl1FMRsP5a+3rSE1/MmC++uOVT IFkdBMmNPElekBRU6K4s5W1jmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC9FJ53n 2xTxy2DEUntfrZQHWGFRMB8GA1UdIwQYMBaAFEAUvLSvmxgZZNe3pA0b+db4ngj/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMjNFNC8xOTBCMEQwNkYy NjIxMUVBQTUyMjM0NUFDNEY5QUUwMi9RQlM4dEstYkdCbGsxN2VrRFJ2NTF2aWVD UDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FCUzh0Sy1iR0JsazE3ZWtEUnY1MXZpZUNQOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MjNFNC8xOTBCMEQwNkYyNjIxMUVBQTUyMjM0NUFDNEY5QUUwMi9RQlM4dEstYkdC bGsxN2VrRFJ2NTF2aWVDUDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJV6PPx6F7AQrn7YYQjN3H/5Fyzp8l73H3GeGbwF/tEUtACJ4rXjNU 51CX/qSuzVETN/J8kij6yBOGBl1IaZ1bX0Yj+IXBpssncJL5evt3b4KEK8Xi1oL5 VnFdRUuPeLr6QeyUomTj5XkiBQrv+PKcmBl4ZypmnzfB4jUkE3+Tp773WjSyIdEI wXK9adp/7oX7+dX5h/IJRO3T3r5463R50YQBz2gICCA36Mnc5NDFCaL7m6JHcBOq CXDU/wCG5/qxHWuTkTDn+L51J6qHLylc12YWPaKHX1HfDsyPkuIlqSis6TcPPjPT tfa3d7y2GiOkVlj8IFStofJdyGsJRV9N -----END CERTIFICATE-----Generated at Sun Dec 7 01:58:50 2025 by rpki-client