This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919EA3B/89D0060A261611EEBE76105CC4F9AE02/QqwYh98sn_RowA68BlWa4XkLfUE.mft File: QqwYh98sn_RowA68BlWa4XkLfUE.mft (raw, json) Hash identifier: j02dUCNDYzqrZOkbL1wqQBs8sWPY3pfyMsoU4TNLNUo= Subject key identifier: 9A:D2:74:E8:8C:11:35:9A:85:BE:64:77:1B:4D:42:CA:02:9C:69:91 Authority key identifier: 42:AC:18:87:DF:2C:9F:F4:68:C0:0E:BC:06:55:9A:E1:79:0B:7D:41 Certificate issuer: /CN=A919EA3B/serialNumber=42AC1887DF2C9FF468C00EBC06559AE1790B7D41 Certificate serial: 01C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QqwYh98sn_RowA68BlWa4XkLfUE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EA3B/89D0060A261611EEBE76105CC4F9AE02/QqwYh98sn_RowA68BlWa4XkLfUE.mft Manifest number: 01BE Signing time: Fri 05 Dec 2025 01:16:15 +0000 Manifest this update: Fri 05 Dec 2025 01:16:14 +0000 Manifest next update: Fri 12 Dec 2025 01:16:14 +0000 Files and hashes: 1: QqwYh98sn_RowA68BlWa4XkLfUE.crl (hash: A7Pt4Ieju/vkk1l1TuCyVoMa1V9OiKoCVyvkHH5BGNU=) 2: 2E7C802A261711EEB93AAC74C4F9AE02.roa (hash: GNgH54VuveRBqhIirbO5+23rkV4blzguEnK1jVi0hnU=) 3: 0218C21E261711EE9AEA7674C4F9AE02.roa (hash: uhmsph/UZ+El90Yxy7WpECGs3tuN2cOfnCiiAfNg+oE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EA3B/89D0060A261611EEBE76105CC4F9AE02/QqwYh98sn_RowA68BlWa4XkLfUE.crl rsync://rpki.apnic.net/member_repository/A919EA3B/89D0060A261611EEBE76105CC4F9AE02/QqwYh98sn_RowA68BlWa4XkLfUE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QqwYh98sn_RowA68BlWa4XkLfUE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 01:16:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 452 (0x1c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EA3B, serialNumber=42AC1887DF2C9FF468C00EBC06559AE1790B7D41 Validity Not Before: Dec 5 01:16:14 2025 GMT Not After : Dec 12 01:16:14 2025 GMT Subject: CN=6932325e-08f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:09:39:5f:ea:50:6f:c1:8d:90:c7:e5:c1:d3: fb:4c:25:f8:b6:cf:52:82:ac:42:cb:60:9a:65:f3: 3f:c4:5d:ec:21:fb:42:b0:88:24:43:a4:fa:1d:07: 7e:3c:f1:a1:bc:f7:4a:17:6c:31:a7:fb:c7:35:ca: 8c:4f:07:3c:59:2f:8b:dd:e2:61:23:2a:e5:6a:16: 53:87:1d:23:58:0e:8c:1e:dc:1c:a4:82:f5:59:2a: 38:4b:ac:c4:13:9f:b9:ab:56:15:5c:6f:db:9e:3b: bf:92:7d:32:c2:65:11:de:bd:d2:17:b8:3f:5e:09: 1d:97:c8:a1:32:24:98:ac:9f:46:4c:dd:32:f4:c8: f4:fe:cd:24:d3:99:c8:97:d1:f5:d3:0a:ef:48:99: dd:bf:4a:d7:1d:02:2b:30:79:95:cf:7a:fe:d7:7e: c6:56:53:7d:46:53:54:b0:54:b0:9b:6a:69:e1:7f: 1b:7f:7a:d2:99:bd:5c:d6:9d:1d:e1:7d:d3:4c:be: 3f:b9:23:c5:8a:f9:67:64:26:e4:47:1f:2a:66:da: af:ee:96:75:66:4b:65:2c:22:a9:d9:b4:03:53:e9: 27:e5:ed:81:43:89:95:22:5e:33:b0:31:9f:15:28: 7e:11:2f:0d:04:71:9c:ca:d9:ec:25:ad:f9:8a:8b: 95:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:D2:74:E8:8C:11:35:9A:85:BE:64:77:1B:4D:42:CA:02:9C:69:91 X509v3 Authority Key Identifier: keyid:42:AC:18:87:DF:2C:9F:F4:68:C0:0E:BC:06:55:9A:E1:79:0B:7D:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EA3B/89D0060A261611EEBE76105CC4F9AE02/QqwYh98sn_RowA68BlWa4XkLfUE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QqwYh98sn_RowA68BlWa4XkLfUE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EA3B/89D0060A261611EEBE76105CC4F9AE02/QqwYh98sn_RowA68BlWa4XkLfUE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:47:70:e0:5d:90:7a:d6:f8:37:a5:a2:18:76:80:47:18:a9: 18:bc:21:bf:b4:14:39:7b:a4:3b:f7:18:34:1e:e2:cd:82:da: 65:29:d4:28:bf:b4:c8:0e:10:03:fd:b7:30:a2:c1:e0:28:2c: 89:3b:78:2c:d3:8a:ed:24:06:8a:41:93:a8:37:38:22:4c:bc: ed:3a:75:66:8d:b6:71:52:02:98:11:41:3a:5e:3b:d4:ed:90: 26:73:f5:3b:ff:d4:77:5a:d4:18:f5:8a:81:10:26:99:f9:aa: 42:13:a1:e4:31:5e:7e:9c:e8:84:5d:24:8c:0d:9d:d7:f3:90: 5f:88:f0:a2:b9:39:ac:c2:cc:65:3d:f6:3e:10:95:54:4a:1b: 94:90:b7:1a:c0:3d:9f:fd:c2:46:dc:83:8f:cf:8f:34:31:17: 3d:e0:f3:39:b8:2d:f9:2e:f9:f0:be:74:e6:c2:47:46:ca:14: f9:b5:d8:40:c7:df:4c:cd:99:d2:d8:02:e8:a7:03:bc:3c:0f: 3b:3b:47:06:bb:34:af:f6:0e:89:9d:5f:fa:b4:39:96:60:d6: a0:91:8f:a0:be:1a:09:fd:59:ec:5f:7f:48:e5:4e:2b:7a:e6: d4:bd:c8:3b:d3:5c:ef:e5:89:e5:34:30:c1:a5:f3:98:69:84: 51:92:44:79 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVBM0IxMTAvBgNVBAUTKDQyQUMxODg3REYyQzlGRjQ2OEMwMEVCQzA2NTU5QUUx NzkwQjdENDEwHhcNMjUxMjA1MDExNjE0WhcNMjUxMjEyMDExNjE0WjAYMRYwFAYD VQQDEw02OTMyMzI1ZS0wOGY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3Ak5X+pQb8GNkMflwdP7TCX4ts9SgqxCy2CaZfM/xF3sIftCsIgkQ6T6HQd+ PPGhvPdKF2wxp/vHNcqMTwc8WS+L3eJhIyrlahZThx0jWA6MHtwcpIL1WSo4S6zE E5+5q1YVXG/bnju/kn0ywmUR3r3SF7g/Xgkdl8ihMiSYrJ9GTN0y9Mj0/s0k05nI l9H10wrvSJndv0rXHQIrMHmVz3r+137GVlN9RlNUsFSwm2pp4X8bf3rSmb1c1p0d 4X3TTL4/uSPFivlnZCbkRx8qZtqv7pZ1ZktlLCKp2bQDU+kn5e2BQ4mVIl4zsDGf FSh+ES8NBHGcytnsJa35iouVGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJrSdOiM ETWahb5kdxtNQsoCnGmRMB8GA1UdIwQYMBaAFEKsGIffLJ/0aMAOvAZVmuF5C31B MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUEzQi84OUQwMDYwQTI2 MTYxMUVFQkU3NjEwNUNDNEY5QUUwMi9RcXdZaDk4c25fUm93QTY4QmxXYTRYa0xm VUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Fxd1loOThzbl9Sb3dBNjhCbFdhNFhrTGZVRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RUEzQi84OUQwMDYwQTI2MTYxMUVFQkU3NjEwNUNDNEY5QUUwMi9RcXdZaDk4c25f Um93QTY4QmxXYTRYa0xmVUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBtR3DgXZB61vg3paIYdoBHGKkYvCG/tBQ5e6Q79xg0HuLNgtplKdQo v7TIDhAD/bcwosHgKCyJO3gs04rtJAaKQZOoNzgiTLztOnVmjbZxUgKYEUE6XjvU 7ZAmc/U7/9R3WtQY9YqBECaZ+apCE6HkMV5+nOiEXSSMDZ3X85BfiPCiuTmswsxl PfY+EJVUShuUkLcawD2f/cJG3IOPz480MRc94PM5uC35LvnwvnTmwkdGyhT5tdhA x99MzZnS2ALopwO8PA87O0cGuzSv9g6JnV/6tDmWYNagkY+gvhoJ/VnsX39I5U4r eubUvcg701zv5YnlNDDBpfOYaYRRkkR5 -----END CERTIFICATE-----Generated at Sat Dec 6 20:24:39 2025 by rpki-client