This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.mft File: QeHsF957pw-MEkF3aWN3AjclGd4.mft (raw, json) Hash identifier: UuXgY1wLP5+Q638SebHdPb7ucnUgGiVsnzSBpnMqVRI= Subject key identifier: 90:BA:A4:82:45:97:34:4C:3E:A1:44:96:D3:5D:9F:A9:B0:34:65:E1 Authority key identifier: 41:E1:EC:17:DE:7B:A7:0F:8C:12:41:77:69:63:77:02:37:25:19:DE Certificate issuer: /CN=A913AE23/serialNumber=41E1EC17DE7BA70F8C12417769637702372519DE Certificate serial: 011D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QeHsF957pw-MEkF3aWN3AjclGd4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.mft Manifest number: 0118 Signing time: Sun 07 Dec 2025 03:09:15 +0000 Manifest this update: Sun 07 Dec 2025 03:09:14 +0000 Manifest next update: Sun 14 Dec 2025 03:09:14 +0000 Files and hashes: 1: QeHsF957pw-MEkF3aWN3AjclGd4.crl (hash: 9jbu7ist1BzplvHH2y42Nlp8D1OETrC5PZODopOYkV8=) 2: 8CF832322C6C11EFB50AD22EC4F9AE02.roa (hash: 2CA+qteNBX78NJxTKhwS/FKIzkSLCeJanQWnrGhStgI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.crl rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QeHsF957pw-MEkF3aWN3AjclGd4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 03:09:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 285 (0x11d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913AE23, serialNumber=41E1EC17DE7BA70F8C12417769637702372519DE Validity Not Before: Dec 7 03:09:14 2025 GMT Not After : Dec 14 03:09:14 2025 GMT Subject: CN=6934efdb-41c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:39:7f:a4:7a:4c:89:89:b6:2f:d6:24:49:87: e3:a4:e2:cc:fd:b2:d2:3d:27:46:4d:7e:0b:44:db: 2e:38:e9:75:35:3b:76:e5:97:ee:b5:2c:84:9d:4c: e3:d2:7d:34:39:eb:4f:5c:b2:69:00:29:45:35:1e: 1e:8b:ff:c5:df:f2:a7:07:d4:59:23:f9:10:e4:c1: 82:71:38:0b:a3:4c:6b:e0:9b:19:22:58:fe:20:c5: 82:1f:11:29:cb:14:3e:cc:b2:c8:2b:10:78:59:71: 7d:03:2e:cb:ec:67:a0:25:12:e4:08:a6:8f:b5:96: 40:ef:9d:76:6e:68:22:07:24:74:91:61:7e:7f:ca: d4:48:23:28:eb:3a:74:53:29:42:ec:e9:3e:59:96: d3:0b:df:05:aa:64:90:44:c2:ba:77:84:2a:c5:a3: 6c:67:db:58:05:23:3e:9c:7c:f1:42:80:72:a1:e6: 0d:4e:22:da:37:f4:f1:2d:7d:28:de:7e:f9:dc:64: d4:25:e3:0a:f5:a7:25:dc:35:9e:16:ae:9a:8b:26: 29:6b:a8:18:49:9e:ad:78:a4:36:0e:06:3a:b2:fa: 11:6d:e8:dd:ab:f6:51:41:80:82:aa:29:a9:2d:86: 3f:3b:da:ba:2e:e1:aa:44:0c:49:5f:d6:1f:13:bc: ad:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:BA:A4:82:45:97:34:4C:3E:A1:44:96:D3:5D:9F:A9:B0:34:65:E1 X509v3 Authority Key Identifier: keyid:41:E1:EC:17:DE:7B:A7:0F:8C:12:41:77:69:63:77:02:37:25:19:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QeHsF957pw-MEkF3aWN3AjclGd4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:e1:2c:75:1f:03:e3:f1:e5:d2:c6:84:6d:d7:70:11:86:4f: 94:34:75:06:01:99:07:2f:94:cd:06:fd:bc:e2:6e:22:65:7c: d2:69:99:0e:ff:31:2f:7d:0d:6b:f5:8e:48:10:12:fa:d4:02: cd:6b:f8:bc:d6:b1:f7:ee:e4:f6:99:97:5a:ca:4a:2f:c0:0d: f5:38:e1:e2:bb:f7:e7:69:3c:63:46:27:b5:1f:75:18:08:19: 87:13:41:4b:30:d5:08:dc:e5:51:0a:8a:73:bf:eb:55:06:5b: cc:b3:92:28:64:12:97:80:06:a7:cb:4b:f7:13:9b:f2:08:c8: 3e:b9:05:43:98:de:c7:db:57:60:e4:37:c0:ef:82:66:19:c8: b9:93:3a:0e:3c:ce:72:98:74:a2:67:39:94:2c:43:5d:cd:2f: e2:cc:14:00:a3:40:72:fe:5f:7b:96:05:90:2a:e8:ce:4f:1f: 39:0e:31:44:cd:18:39:3e:40:0f:15:1d:6c:9d:9b:01:df:51: b3:76:7c:4d:bb:c2:4b:9b:f0:d9:9b:48:0b:e2:37:1e:85:44: 8c:a7:77:7b:d9:43:3d:97:ab:70:c6:19:11:da:e3:16:11:b1: 25:75:fd:4e:db:08:71:3f:01:97:1b:95:9c:28:70:27:76:7c: ce:32:84:6b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAR0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0FFMjMxMTAvBgNVBAUTKDQxRTFFQzE3REU3QkE3MEY4QzEyNDE3NzY5NjM3NzAy MzcyNTE5REUwHhcNMjUxMjA3MDMwOTE0WhcNMjUxMjE0MDMwOTE0WjAYMRYwFAYD VQQDEw02OTM0ZWZkYi00MWM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsjl/pHpMiYm2L9YkSYfjpOLM/bLSPSdGTX4LRNsuOOl1NTt25ZfutSyEnUzj 0n00OetPXLJpAClFNR4ei//F3/KnB9RZI/kQ5MGCcTgLo0xr4JsZIlj+IMWCHxEp yxQ+zLLIKxB4WXF9Ay7L7GegJRLkCKaPtZZA7512bmgiByR0kWF+f8rUSCMo6zp0 UylC7Ok+WZbTC98FqmSQRMK6d4QqxaNsZ9tYBSM+nHzxQoByoeYNTiLaN/TxLX0o 3n753GTUJeMK9acl3DWeFq6aiyYpa6gYSZ6teKQ2DgY6svoRbejdq/ZRQYCCqimp LYY/O9q6LuGqRAxJX9YfE7ytiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJC6pIJF lzRMPqFEltNdn6mwNGXhMB8GA1UdIwQYMBaAFEHh7Bfee6cPjBJBd2ljdwI3JRne MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQUUyMy8zMDFBMUU0QTJD NkMxMUVGQTM0Njk0MkRDNEY5QUUwMi9RZUhzRjk1N3B3LU1Fa0YzYVdOM0FqY2xH ZDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FlSHNGOTU3cHctTUVrRjNhV04zQWpjbEdkNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QUUyMy8zMDFBMUU0QTJDNkMxMUVGQTM0Njk0MkRDNEY5QUUwMi9RZUhzRjk1N3B3 LU1Fa0YzYVdOM0FqY2xHZDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAu4Sx1HwPj8eXSxoRt13ARhk+UNHUGAZkHL5TNBv284m4iZXzSaZkO /zEvfQ1r9Y5IEBL61ALNa/i81rH37uT2mZdaykovwA31OOHiu/fnaTxjRie1H3UY CBmHE0FLMNUI3OVRCopzv+tVBlvMs5IoZBKXgAany0v3E5vyCMg+uQVDmN7H21dg 5DfA74JmGci5kzoOPM5ymHSiZzmULENdzS/izBQAo0By/l97lgWQKujOTx85DjFE zRg5PkAPFR1snZsB31GzdnxNu8JLm/DZm0gL4jcehUSMp3d72UM9l6twxhkR2uMW EbEldf1O2whxPwGXG5WcKHAndnzOMoRr -----END CERTIFICATE-----Generated at Sun Dec 7 16:20:36 2025 by rpki-client