This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.mft File: QELW5jee2AQkizYN7Zhe9_VlIBE.mft (raw, json) Hash identifier: 5/C9lbHLeEdmxObhOi5EDtUY9J/vCNFoURhkFaCntb4= Subject key identifier: E9:CB:DB:27:D1:BD:8F:42:D1:1B:0B:E2:C3:FF:93:0A:3D:E3:93:31 Authority key identifier: 40:42:D6:E6:37:9E:D8:04:24:8B:36:0D:ED:98:5E:F7:F5:65:20:11 Certificate issuer: /CN=A9148465/serialNumber=4042D6E6379ED804248B360DED985EF7F5652011 Certificate serial: 0297 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QELW5jee2AQkizYN7Zhe9_VlIBE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.mft Manifest number: 0293 Signing time: Thu 04 Dec 2025 23:54:21 +0000 Manifest this update: Thu 04 Dec 2025 23:54:21 +0000 Manifest next update: Thu 11 Dec 2025 23:54:21 +0000 Files and hashes: 1: QELW5jee2AQkizYN7Zhe9_VlIBE.crl (hash: o75bH0invUhYDMls1sbf1Y0hMOxwcZYMqbBxjDmuZj0=) 2: 7777513828C011EDBEC6D287C4F9AE02.roa (hash: KysVMiyZcH0HX0OV6c/BvTG9IGFmIflJ1zJN81z9Xf0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.crl rsync://rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QELW5jee2AQkizYN7Zhe9_VlIBE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 23:54:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 663 (0x297) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148465, serialNumber=4042D6E6379ED804248B360DED985EF7F5652011 Validity Not Before: Dec 4 23:54:21 2025 GMT Not After : Dec 11 23:54:21 2025 GMT Subject: CN=69321f2d-fda5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:fb:01:9d:47:a1:a9:81:f6:86:51:ed:97:c1: ed:f4:a8:63:57:7b:96:dc:01:7e:06:91:63:2d:bd: ff:85:63:69:0d:07:da:e9:23:6b:37:51:c5:1e:ce: c3:b4:82:5b:2c:0b:5e:57:d4:44:80:e9:81:5a:e0: c2:7e:b0:c4:91:0b:ab:99:a6:71:89:9d:f6:64:4f: 88:45:a7:b1:83:f1:d4:98:41:cd:f9:20:99:10:9d: 4f:3a:2a:17:8a:99:98:60:5c:cd:ef:46:be:8d:6d: 5b:b3:5e:ee:e1:37:81:fd:d1:6c:40:f2:ab:20:7e: 2e:4b:36:e9:79:f4:ee:05:c2:2d:f3:42:26:f3:02: 8f:e6:10:1e:d1:d0:ea:84:f8:55:29:8c:70:49:3a: 65:6a:7d:dd:c6:ab:e4:3d:de:2e:0a:58:db:fd:49: b6:88:74:19:79:e7:dd:1b:4d:2f:58:95:a4:02:e5: 3a:88:f4:1f:36:9c:39:90:25:dd:1f:27:d6:d4:6e: 76:a9:57:23:ee:44:af:c6:6c:d2:75:9e:53:d7:66: 14:cf:45:09:cb:1e:6c:4d:63:c9:11:51:6a:0f:73: 12:d4:cd:18:e9:19:a4:f0:78:85:06:c0:93:1e:db: e3:96:1a:e8:46:e6:c4:b0:e0:1d:56:d9:16:df:b0: 5d:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:CB:DB:27:D1:BD:8F:42:D1:1B:0B:E2:C3:FF:93:0A:3D:E3:93:31 X509v3 Authority Key Identifier: keyid:40:42:D6:E6:37:9E:D8:04:24:8B:36:0D:ED:98:5E:F7:F5:65:20:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QELW5jee2AQkizYN7Zhe9_VlIBE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:0e:5a:b9:8b:5f:02:7f:e1:62:48:6b:37:52:51:a7:02:a4: 26:eb:97:a9:e6:f4:4c:d1:b3:c1:cf:c7:b9:7a:1a:91:ee:af: 0d:36:f6:f1:11:9c:4e:51:93:d3:a7:09:52:de:c1:5b:f2:cd: e0:bd:af:a7:48:2b:c1:d8:62:68:31:f7:23:8f:3b:e2:1b:9f: 30:34:d3:7d:12:31:f3:75:83:a7:be:26:d6:e7:3f:40:1f:83: c1:96:bb:92:c7:ef:f1:7a:67:a2:f4:6a:d7:77:8e:ba:1d:5f: e3:16:18:66:4e:d8:8e:f7:3d:7e:8a:1c:b4:0c:51:a6:c3:df: 31:61:f8:3b:3c:3c:98:31:d0:3d:a5:b1:c5:3e:72:5f:ae:dd: 31:99:f0:42:db:02:0b:ed:17:55:ea:72:86:3e:d5:53:92:6b: 9f:37:15:05:c7:24:66:f0:43:77:ef:e5:30:7f:fb:a6:ea:87: 8e:d6:68:36:d1:fe:96:77:a6:10:c6:34:1a:69:cd:b0:96:5a: 9d:ff:b0:59:df:b2:17:7c:e1:b5:9f:e1:8c:47:d7:a4:d4:b3: bc:92:9f:86:a4:98:63:9c:50:ef:9c:38:6d:f2:65:ec:af:fd: 51:89:32:6a:6d:bb:ed:8b:7d:b6:67:c7:34:3c:8d:4b:04:9c: 6d:b4:56:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICApcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDg0NjUxMTAvBgNVBAUTKDQwNDJENkU2Mzc5RUQ4MDQyNDhCMzYwREVEOTg1RUY3 RjU2NTIwMTEwHhcNMjUxMjA0MjM1NDIxWhcNMjUxMjExMjM1NDIxWjAYMRYwFAYD VQQDEw02OTMyMWYyZC1mZGE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3/sBnUehqYH2hlHtl8Ht9KhjV3uW3AF+BpFjLb3/hWNpDQfa6SNrN1HFHs7D tIJbLAteV9REgOmBWuDCfrDEkQurmaZxiZ32ZE+IRaexg/HUmEHN+SCZEJ1POioX ipmYYFzN70a+jW1bs17u4TeB/dFsQPKrIH4uSzbpefTuBcIt80Im8wKP5hAe0dDq hPhVKYxwSTplan3dxqvkPd4uCljb/Um2iHQZeefdG00vWJWkAuU6iPQfNpw5kCXd HyfW1G52qVcj7kSvxmzSdZ5T12YUz0UJyx5sTWPJEVFqD3MS1M0Y6Rmk8HiFBsCT HtvjlhroRubEsOAdVtkW37Bd0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOnL2yfR vY9C0RsL4sP/kwo945MxMB8GA1UdIwQYMBaAFEBC1uY3ntgEJIs2De2YXvf1ZSAR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0ODQ2NS9ENjBGMDI3MjI4 QkIxMUVEQTU5QzMwODFDNEY5QUUwMi9RRUxXNWplZTJBUWtpellON1poZTlfVmxJ QkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FFTFc1amVlMkFRa2l6WU43WmhlOV9WbElCRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 ODQ2NS9ENjBGMDI3MjI4QkIxMUVEQTU5QzMwODFDNEY5QUUwMi9RRUxXNWplZTJB UWtpellON1poZTlfVmxJQkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9Dlq5i18Cf+FiSGs3UlGnAqQm65ep5vRM0bPBz8e5ehqR7q8NNvbx EZxOUZPTpwlS3sFb8s3gva+nSCvB2GJoMfcjjzviG58wNNN9EjHzdYOnvibW5z9A H4PBlruSx+/xemei9GrXd466HV/jFhhmTtiO9z1+ihy0DFGmw98xYfg7PDyYMdA9 pbHFPnJfrt0xmfBC2wIL7RdV6nKGPtVTkmufNxUFxyRm8EN37+Uwf/um6oeO1mg2 0f6Wd6YQxjQaac2wllqd/7BZ37IXfOG1n+GMR9ek1LO8kp+GpJhjnFDvnDht8mXs r/1RiTJqbbvti322Z8c0PI1LBJxttFYl -----END CERTIFICATE-----Generated at Sun Dec 7 00:04:49 2025 by rpki-client