This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/QELCSQ19r-wzIDFu1ap04L7Kqak.mft File: QELCSQ19r-wzIDFu1ap04L7Kqak.mft (raw, json) Hash identifier: 0SkYIAVZzCemPYfyqnEpjsEtFCOBw+I01BoEKzWdw54= Subject key identifier: 93:6F:F0:57:34:01:88:43:E9:CF:A5:94:C4:F2:29:20:3B:8F:63:A4 Authority key identifier: 40:42:C2:49:0D:7D:AF:EC:33:20:31:6E:D5:AA:74:E0:BE:CA:A9:A9 Certificate issuer: /CN=A91A7169/serialNumber=4042C2490D7DAFEC3320316ED5AA74E0BECAA9A9 Certificate serial: 01B4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QELCSQ19r-wzIDFu1ap04L7Kqak.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/QELCSQ19r-wzIDFu1ap04L7Kqak.mft Manifest number: 0179 Signing time: Fri 05 Dec 2025 02:33:08 +0000 Manifest this update: Fri 05 Dec 2025 02:33:07 +0000 Manifest next update: Fri 12 Dec 2025 02:33:07 +0000 Files and hashes: 1: QELCSQ19r-wzIDFu1ap04L7Kqak.crl (hash: 5wpJB066Yc9t/fw5iAeIcuKzooE78zpkI2nIz21p94w=) 2: FCF99042301011EFBC350682C4F9AE02.roa (hash: L2/9JjFiWgQt59AFuV+uoqbPdz+ScN9QlotCi7wxs3k=) 3: 3B8DEBA06FD511F0BF33C829C4F9AE02.roa (hash: TD3x6cqMZ5LdB5sZi2QZSzPZxBxaRneEmC2qFVxnzxU=) 4: 3D937A30EBB211EEA93D9B14C4F9AE02.roa (hash: govSB7bwBcjLhKLkQmAfX8Kv8Fg3iLmAfWNtXCpGOvc=) 5: 72E97B3A1BDB11F0B77B1344C4F9AE02.roa (hash: dLZr6fxQD9+vNX/nMzjBW+2uiS4zZgIOchhbHeELI7w=) 6: 3E0BA21CEBB211EEA93D9B14C4F9AE02.roa (hash: N/ID+SY0JAy45rWeP36Bw1B7q4m3VaCJNW1Sv52Yw6c=) 7: 3C0376CC6FD511F0BF33C829C4F9AE02.roa (hash: tcVwqZZLgzM/JYa8wH8nV+ejGoZFhH0k2MAzqkTeLmo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/QELCSQ19r-wzIDFu1ap04L7Kqak.crl rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/QELCSQ19r-wzIDFu1ap04L7Kqak.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QELCSQ19r-wzIDFu1ap04L7Kqak.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 02:33:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 436 (0x1b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7169, serialNumber=4042C2490D7DAFEC3320316ED5AA74E0BECAA9A9 Validity Not Before: Dec 5 02:33:07 2025 GMT Not After : Dec 12 02:33:07 2025 GMT Subject: CN=69324464-3924 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:90:61:62:50:09:a6:e3:7e:02:0a:bc:6f:20: 14:e7:d2:08:1e:90:cb:25:43:c1:ea:81:ca:57:72: c8:fe:a9:80:54:4d:5c:68:7e:f1:31:0c:54:25:a6: 34:75:32:11:be:0d:13:8e:78:8c:63:a5:c9:c6:bd: 80:ef:c2:3b:18:b6:3c:1b:4d:e1:4b:e5:d2:c6:27: 7b:46:10:67:39:72:8d:de:4f:36:2e:71:c0:f5:70: e4:9f:33:17:86:6d:29:b9:78:72:ae:0a:d2:46:b7: 08:6e:1e:f0:7d:56:6a:9c:a2:4e:0f:7b:c2:db:d9: f2:4e:ee:42:08:d3:0c:73:b5:27:2a:bb:52:fa:5f: 94:58:75:b8:83:12:54:20:93:62:41:90:70:fe:24: e7:97:18:1f:ce:7e:79:f0:c2:2f:85:21:65:57:77: 28:d4:af:a2:7f:d5:5e:84:6f:36:35:41:09:e3:77: 09:c1:65:88:d7:52:47:0b:4a:3e:eb:4b:05:de:71: 62:0d:bc:07:51:6e:78:55:07:2f:34:a4:4b:32:2a: 01:08:54:ad:02:7e:4b:76:67:a9:cf:73:5d:4c:54: 41:43:bd:16:d9:3b:9e:2f:ef:d1:d6:1c:c3:12:73: 05:33:37:8d:ba:d2:7f:14:15:fe:90:21:50:80:03: e2:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:6F:F0:57:34:01:88:43:E9:CF:A5:94:C4:F2:29:20:3B:8F:63:A4 X509v3 Authority Key Identifier: keyid:40:42:C2:49:0D:7D:AF:EC:33:20:31:6E:D5:AA:74:E0:BE:CA:A9:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/QELCSQ19r-wzIDFu1ap04L7Kqak.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QELCSQ19r-wzIDFu1ap04L7Kqak.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/QELCSQ19r-wzIDFu1ap04L7Kqak.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:b4:76:32:a0:d1:64:8f:6d:be:1c:f8:07:82:77:26:d6:33: c5:16:88:a8:04:a9:e5:a8:cc:25:25:43:b0:8a:b1:76:fa:2b: a3:2f:4a:c1:a8:f9:34:0c:dc:40:96:a5:eb:f2:8b:74:7f:13: 29:40:d3:e9:49:9e:8c:b9:a0:7a:5d:04:d7:3b:ab:23:1f:09: de:a9:c8:80:70:bf:42:d5:60:6e:3c:c1:b9:03:4f:32:a5:4e: ca:71:50:08:b1:a4:3c:69:70:87:36:7d:13:6c:8a:6a:26:55: 8c:df:7c:78:c8:ee:3f:00:a4:5f:f7:ba:e0:d4:6d:9c:02:7d: 73:75:2f:ef:34:3c:a1:31:4f:65:a7:7f:83:05:94:1c:3f:d0: 4a:62:dd:ae:a8:7e:a3:51:f7:4e:67:84:12:f9:f2:5f:4e:1a: 21:1b:e3:b4:d4:2a:24:bd:d8:5c:30:56:74:38:98:85:50:fe: 2c:e6:0c:a7:c0:e4:3a:0a:20:5c:b2:97:97:34:1a:4a:b1:d7: 4e:5d:7f:3f:33:ac:fa:7b:68:b6:bc:bc:c5:bd:e5:55:f4:98: f5:62:b0:1e:47:c0:ed:0d:f2:d6:ac:24:a2:a8:c5:09:8c:f9: 59:5e:81:f3:9d:39:7d:da:73:79:98:e8:83:8b:a5:01:f3:27: fe:5d:88:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTcxNjkxMTAvBgNVBAUTKDQwNDJDMjQ5MEQ3REFGRUMzMzIwMzE2RUQ1QUE3NEUw QkVDQUE5QTkwHhcNMjUxMjA1MDIzMzA3WhcNMjUxMjEyMDIzMzA3WjAYMRYwFAYD VQQDEw02OTMyNDQ2NC0zOTI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+ZBhYlAJpuN+Agq8byAU59IIHpDLJUPB6oHKV3LI/qmAVE1caH7xMQxUJaY0 dTIRvg0TjniMY6XJxr2A78I7GLY8G03hS+XSxid7RhBnOXKN3k82LnHA9XDknzMX hm0puXhyrgrSRrcIbh7wfVZqnKJOD3vC29nyTu5CCNMMc7UnKrtS+l+UWHW4gxJU IJNiQZBw/iTnlxgfzn558MIvhSFlV3co1K+if9VehG82NUEJ43cJwWWI11JHC0o+ 60sF3nFiDbwHUW54VQcvNKRLMioBCFStAn5Ldmepz3NdTFRBQ70W2TueL+/R1hzD EnMFMzeNutJ/FBX+kCFQgAPiJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJNv8Fc0 AYhD6c+llMTyKSA7j2OkMB8GA1UdIwQYMBaAFEBCwkkNfa/sMyAxbtWqdOC+yqmp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzE2OS82MjMzREQzRUVC QUUxMUVFOEEwRUQ5NjRDNEY5QUUwMi9RRUxDU1ExOXItd3pJREZ1MWFwMDRMN0tx YWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FFTENTUTE5ci13eklERnUxYXAwNEw3S3Fhay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NzE2OS82MjMzREQzRUVCQUUxMUVFOEEwRUQ5NjRDNEY5QUUwMi9RRUxDU1ExOXIt d3pJREZ1MWFwMDRMN0txYWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1tHYyoNFkj22+HPgHgncm1jPFFoioBKnlqMwlJUOwirF2+iujL0rB qPk0DNxAlqXr8ot0fxMpQNPpSZ6MuaB6XQTXO6sjHwneqciAcL9C1WBuPMG5A08y pU7KcVAIsaQ8aXCHNn0TbIpqJlWM33x4yO4/AKRf97rg1G2cAn1zdS/vNDyhMU9l p3+DBZQcP9BKYt2uqH6jUfdOZ4QS+fJfThohG+O01CokvdhcMFZ0OJiFUP4s5gyn wOQ6CiBcspeXNBpKsddOXX8/M6z6e2i2vLzFveVV9Jj1YrAeR8DtDfLWrCSiqMUJ jPlZXoHznTl92nN5mOiDi6UB8yf+XYjW -----END CERTIFICATE-----Generated at Sat Dec 6 13:40:30 2025 by rpki-client