This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9194A58/4EACE490AE4311E7881C6416C4F9AE02/QL0lotYDGHPlXfzdrTpI97z4jIs.mft File: QL0lotYDGHPlXfzdrTpI97z4jIs.mft (raw, json) Hash identifier: c2mf+F2idYU34jWk/0dt6YfnbDZ5c7f9GUkc/vajves= Subject key identifier: 0B:84:C2:FD:85:D2:41:67:88:04:EC:1E:83:6D:AE:50:1E:31:E3:D7 Authority key identifier: 40:BD:25:A2:D6:03:18:73:E5:5D:FC:DD:AD:3A:48:F7:BC:F8:8C:8B Certificate issuer: /CN=A9194A58/serialNumber=40BD25A2D6031873E55DFCDDAD3A48F7BCF88C8B Certificate serial: 18A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QL0lotYDGHPlXfzdrTpI97z4jIs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194A58/4EACE490AE4311E7881C6416C4F9AE02/QL0lotYDGHPlXfzdrTpI97z4jIs.mft Manifest number: 1895 Signing time: Thu 04 Dec 2025 16:11:06 +0000 Manifest this update: Thu 04 Dec 2025 16:11:06 +0000 Manifest next update: Thu 11 Dec 2025 16:11:06 +0000 Files and hashes: 1: QL0lotYDGHPlXfzdrTpI97z4jIs.crl (hash: O97HYJ34KYtc6CmPsuKT2b0Sd71t2KdBBHZu1hcrOt4=) 2: 42D0E9A4AFD911E7B8A7E96CC4F9AE02.roa (hash: p9zhGKCO2BBzL3wnYhT/qvWZC/Mb1+QSPyP9kvTHJK4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194A58/4EACE490AE4311E7881C6416C4F9AE02/QL0lotYDGHPlXfzdrTpI97z4jIs.crl rsync://rpki.apnic.net/member_repository/A9194A58/4EACE490AE4311E7881C6416C4F9AE02/QL0lotYDGHPlXfzdrTpI97z4jIs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QL0lotYDGHPlXfzdrTpI97z4jIs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 16:11:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6305 (0x18a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194A58, serialNumber=40BD25A2D6031873E55DFCDDAD3A48F7BCF88C8B Validity Not Before: Dec 4 16:11:06 2025 GMT Not After : Dec 11 16:11:06 2025 GMT Subject: CN=6931b29a-c4f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:8b:5e:30:ec:3e:84:25:ae:e2:25:01:40:53: 7c:ba:c0:05:64:21:83:ed:c7:4e:08:ef:ad:57:ae: ae:de:49:35:5c:20:a9:5e:cd:a3:ad:05:63:23:53: 19:3b:0f:a7:a0:b1:3e:1a:03:ea:0f:86:e4:3f:8a: a2:7b:a1:c0:78:9c:03:0b:b4:b2:df:4a:12:b2:87: 45:fd:1b:80:c5:b0:bf:44:a1:43:d3:ae:39:2a:85: 25:b6:33:94:46:77:90:07:b4:ec:10:e4:fe:fe:9f: 3e:ea:af:4f:9c:d6:f0:25:92:14:b6:53:e4:44:b1: f0:3e:7a:c8:82:4b:78:56:ed:97:de:34:76:10:72: 8f:4b:e0:4c:f7:a3:06:de:a8:37:f2:df:8f:ca:40: e3:c6:be:97:48:e3:9f:17:8e:80:23:a5:e0:36:b5: 9b:99:39:e2:42:d9:8b:fd:e6:6a:57:3d:79:e4:c3: 05:88:44:34:ac:67:2e:48:7c:6d:fd:10:78:98:b2: 39:7c:45:e8:14:95:3d:06:22:72:a8:47:03:0f:82: a2:d9:28:da:4e:40:5d:68:3a:4f:d8:a3:cd:0d:37: c6:c5:c0:91:12:99:d2:c3:99:ed:81:1f:41:92:5d: 1f:f7:d9:2b:42:44:e9:4f:a7:ed:c2:c2:50:47:c5: 90:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:84:C2:FD:85:D2:41:67:88:04:EC:1E:83:6D:AE:50:1E:31:E3:D7 X509v3 Authority Key Identifier: keyid:40:BD:25:A2:D6:03:18:73:E5:5D:FC:DD:AD:3A:48:F7:BC:F8:8C:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194A58/4EACE490AE4311E7881C6416C4F9AE02/QL0lotYDGHPlXfzdrTpI97z4jIs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QL0lotYDGHPlXfzdrTpI97z4jIs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194A58/4EACE490AE4311E7881C6416C4F9AE02/QL0lotYDGHPlXfzdrTpI97z4jIs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ce:9b:11:1d:db:c3:1f:f5:7a:09:e4:3d:09:70:5b:92:8e:50: 46:1f:04:45:76:5a:2f:ab:e6:e2:aa:16:05:e0:d0:47:28:f5: 72:d4:fd:43:91:da:94:24:e9:76:ac:21:6f:ed:1f:c3:46:1b: f6:fd:8c:e2:11:1e:18:e1:8e:78:ff:5c:35:78:50:ea:be:43: 7c:cd:af:c2:04:f5:99:57:50:87:b1:db:67:7e:e7:aa:f5:d7: 61:0f:7d:a5:58:96:6b:7c:f3:e3:4e:fa:a9:34:37:74:00:c8: 60:29:9b:d2:3e:35:c1:82:f7:5c:29:5f:be:fb:39:3b:66:f5: 5a:a8:54:66:7c:94:60:04:16:9e:32:fa:dd:20:a4:d9:ab:e3: d3:cf:b1:f2:26:d2:85:9a:6e:98:51:30:48:1a:f7:40:6d:9f: 50:b9:30:b1:79:23:00:ac:ea:13:2b:84:ea:91:da:bd:60:bd: 0b:6b:e5:2d:df:e2:9d:6e:d0:fd:a0:67:58:57:17:52:0f:11: 17:c8:dc:73:5a:a9:96:bf:1e:9a:f0:d4:c5:01:fe:3d:e9:a0: 65:e8:53:7b:5c:09:5f:09:86:d9:07:d1:6c:02:38:4a:48:7d: 65:7e:40:03:69:bd:c7:c0:f6:5c:59:34:bd:27:be:0a:23:33: f2:ee:50:ab -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGKEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTRBNTgxMTAvBgNVBAUTKDQwQkQyNUEyRDYwMzE4NzNFNTVERkNEREFEM0E0OEY3 QkNGODhDOEIwHhcNMjUxMjA0MTYxMTA2WhcNMjUxMjExMTYxMTA2WjAYMRYwFAYD VQQDEw02OTMxYjI5YS1jNGYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6oteMOw+hCWu4iUBQFN8usAFZCGD7cdOCO+tV66u3kk1XCCpXs2jrQVjI1MZ Ow+noLE+GgPqD4bkP4qie6HAeJwDC7Sy30oSsodF/RuAxbC/RKFD0645KoUltjOU RneQB7TsEOT+/p8+6q9PnNbwJZIUtlPkRLHwPnrIgkt4Vu2X3jR2EHKPS+BM96MG 3qg38t+PykDjxr6XSOOfF46AI6XgNrWbmTniQtmL/eZqVz155MMFiEQ0rGcuSHxt /RB4mLI5fEXoFJU9BiJyqEcDD4Ki2SjaTkBdaDpP2KPNDTfGxcCREpnSw5ntgR9B kl0f99krQkTpT6ftwsJQR8WQJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAuEwv2F 0kFniATsHoNtrlAeMePXMB8GA1UdIwQYMBaAFEC9JaLWAxhz5V383a06SPe8+IyL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NEE1OC80RUFDRTQ5MEFF NDMxMUU3ODgxQzY0MTZDNEY5QUUwMi9RTDBsb3RZREdIUGxYZnpkclRwSTk3ejRq SXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FMMGxvdFlER0hQbFhmemRyVHBJOTd6NGpJcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NEE1OC80RUFDRTQ5MEFFNDMxMUU3ODgxQzY0MTZDNEY5QUUwMi9RTDBsb3RZREdI UGxYZnpkclRwSTk3ejRqSXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDOmxEd28Mf9XoJ5D0JcFuSjlBGHwRFdlovq+biqhYF4NBHKPVy1P1D kdqUJOl2rCFv7R/DRhv2/YziER4Y4Y54/1w1eFDqvkN8za/CBPWZV1CHsdtnfueq 9ddhD32lWJZrfPPjTvqpNDd0AMhgKZvSPjXBgvdcKV+++zk7ZvVaqFRmfJRgBBae MvrdIKTZq+PTz7HyJtKFmm6YUTBIGvdAbZ9QuTCxeSMArOoTK4Tqkdq9YL0La+Ut 3+KdbtD9oGdYVxdSDxEXyNxzWqmWvx6a8NTFAf496aBl6FN7XAlfCYbZB9FsAjhK SH1lfkADab3HwPZcWTS9J74KIzPy7lCr -----END CERTIFICATE-----Generated at Sat Dec 6 17:07:47 2025 by rpki-client