This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.mft File: QeHsF957pw-MEkF3aWN3AjclGd4.mft (raw, json) Hash identifier: qerOocMOfqeRVvIR801l71TB5vFcFkxmTvY5QW20BZM= Subject key identifier: 53:BF:FB:D6:47:2D:83:E7:4D:E4:C2:48:21:18:44:9D:3A:1B:B3:67 Authority key identifier: 41:E1:EC:17:DE:7B:A7:0F:8C:12:41:77:69:63:77:02:37:25:19:DE Certificate issuer: /CN=A913AE23/serialNumber=41E1EC17DE7BA70F8C12417769637702372519DE Certificate serial: 011B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QeHsF957pw-MEkF3aWN3AjclGd4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.mft Manifest number: 0116 Signing time: Wed 03 Dec 2025 03:17:30 +0000 Manifest this update: Wed 03 Dec 2025 03:17:30 +0000 Manifest next update: Wed 10 Dec 2025 03:17:30 +0000 Files and hashes: 1: QeHsF957pw-MEkF3aWN3AjclGd4.crl (hash: HrA7zL26eaCd/zJ7pIGYvF8uu/My+KL7nw0joV1uFQc=) 2: 8CF832322C6C11EFB50AD22EC4F9AE02.roa (hash: 2CA+qteNBX78NJxTKhwS/FKIzkSLCeJanQWnrGhStgI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.crl rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QeHsF957pw-MEkF3aWN3AjclGd4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 03:17:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 283 (0x11b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913AE23, serialNumber=41E1EC17DE7BA70F8C12417769637702372519DE Validity Not Before: Dec 3 03:17:30 2025 GMT Not After : Dec 10 03:17:30 2025 GMT Subject: CN=692fabca-87fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:db:f6:d3:21:6b:bd:5d:c7:67:ea:e2:40:3a: eb:a5:21:79:4b:4d:58:4c:29:44:4c:95:e5:96:0b: 92:b5:20:68:9a:c4:ef:45:9b:5a:ef:e1:31:d5:cd: 9e:3f:a1:38:13:90:cd:21:ee:64:e1:ce:98:07:b1: e8:f9:61:ea:ea:6a:9b:e0:90:92:10:b0:c4:29:b6: 00:e2:24:56:d6:d7:2a:aa:40:da:47:f6:e9:be:bb: cc:49:34:71:57:23:37:95:be:73:44:95:26:00:d3: 5d:39:74:83:28:e5:f6:9c:68:f9:3c:cf:84:bf:9a: a3:bc:c4:84:34:05:1a:21:63:27:98:9c:ce:85:ce: 26:8f:b8:13:e0:35:21:9c:a6:56:93:54:ce:a9:23: 4c:31:8a:d1:14:80:0d:c7:c1:27:84:5e:e8:dc:c9: 6d:c6:19:3c:ae:67:1a:ea:f8:19:8c:6b:02:3b:0a: b7:6d:a0:5b:a2:99:b5:6c:82:ef:57:6d:d0:37:f6: 1e:25:d0:d3:2f:e2:14:b6:fb:84:4a:d8:a6:97:ee: da:4a:ab:32:59:82:30:6f:dd:5f:7a:fa:58:5a:15: 77:52:ff:52:3b:80:27:57:9e:f9:c6:32:a6:51:af: 1c:bc:bb:ae:15:59:aa:e0:49:b8:22:6e:06:e6:2e: dc:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:BF:FB:D6:47:2D:83:E7:4D:E4:C2:48:21:18:44:9D:3A:1B:B3:67 X509v3 Authority Key Identifier: keyid:41:E1:EC:17:DE:7B:A7:0F:8C:12:41:77:69:63:77:02:37:25:19:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QeHsF957pw-MEkF3aWN3AjclGd4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:4e:a7:eb:d3:e7:ec:8b:40:12:13:c9:6b:7b:dd:81:fc:c8: 30:b9:df:42:e4:c7:3b:1b:1e:3d:79:05:09:43:7b:a1:db:c8: 5e:af:f5:24:82:f6:f2:cb:6f:89:cb:c3:4b:b0:4c:fc:30:0a: a8:24:9b:ab:c5:88:c8:87:bc:85:15:92:f4:e6:14:dd:48:80: 04:08:5b:d4:a3:74:1c:eb:93:9b:82:78:d2:57:d4:55:8c:6d: c7:f9:fb:40:10:ce:27:11:70:fa:3d:72:00:61:81:ea:e2:87: b6:d1:7d:b2:af:3b:0d:98:08:02:83:1c:17:50:c2:a2:d0:56: 2f:7e:a7:ae:9b:3d:03:0e:92:34:57:41:9b:ae:b5:dd:97:e1: f8:a6:81:b0:3f:ed:9a:4b:8d:4d:94:c1:db:d4:c3:87:66:e8: 02:04:c5:37:6e:d0:11:5b:aa:6c:17:81:d9:8a:47:29:dc:54: ce:de:20:36:5a:28:3b:ed:4d:42:68:4d:a7:9b:73:cf:cf:af: 62:01:68:19:02:3e:fb:19:74:f3:52:29:0d:04:d4:e9:ab:cb: f4:bd:6b:f0:e1:1c:0d:88:f8:92:30:02:60:6e:0b:53:8d:6d: 68:35:d2:d8:27:29:76:7f:9f:cd:e7:b0:7a:54:93:af:3d:7f: e7:b8:7a:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0FFMjMxMTAvBgNVBAUTKDQxRTFFQzE3REU3QkE3MEY4QzEyNDE3NzY5NjM3NzAy MzcyNTE5REUwHhcNMjUxMjAzMDMxNzMwWhcNMjUxMjEwMDMxNzMwWjAYMRYwFAYD VQQDEw02OTJmYWJjYS04N2ZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqtv20yFrvV3HZ+riQDrrpSF5S01YTClETJXllguStSBomsTvRZta7+Ex1c2e P6E4E5DNIe5k4c6YB7Ho+WHq6mqb4JCSELDEKbYA4iRW1tcqqkDaR/bpvrvMSTRx VyM3lb5zRJUmANNdOXSDKOX2nGj5PM+Ev5qjvMSENAUaIWMnmJzOhc4mj7gT4DUh nKZWk1TOqSNMMYrRFIANx8EnhF7o3Mltxhk8rmca6vgZjGsCOwq3baBbopm1bILv V23QN/YeJdDTL+IUtvuEStiml+7aSqsyWYIwb91fevpYWhV3Uv9SO4AnV575xjKm Ua8cvLuuFVmq4Em4Im4G5i7cXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFO/+9ZH LYPnTeTCSCEYRJ06G7NnMB8GA1UdIwQYMBaAFEHh7Bfee6cPjBJBd2ljdwI3JRne MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQUUyMy8zMDFBMUU0QTJD NkMxMUVGQTM0Njk0MkRDNEY5QUUwMi9RZUhzRjk1N3B3LU1Fa0YzYVdOM0FqY2xH ZDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FlSHNGOTU3cHctTUVrRjNhV04zQWpjbEdkNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QUUyMy8zMDFBMUU0QTJDNkMxMUVGQTM0Njk0MkRDNEY5QUUwMi9RZUhzRjk1N3B3 LU1Fa0YzYVdOM0FqY2xHZDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTTqfr0+fsi0ASE8lre92B/Mgwud9C5Mc7Gx49eQUJQ3uh28her/Uk gvbyy2+Jy8NLsEz8MAqoJJurxYjIh7yFFZL05hTdSIAECFvUo3Qc65ObgnjSV9RV jG3H+ftAEM4nEXD6PXIAYYHq4oe20X2yrzsNmAgCgxwXUMKi0FYvfqeumz0DDpI0 V0GbrrXdl+H4poGwP+2aS41NlMHb1MOHZugCBMU3btARW6psF4HZikcp3FTO3iA2 Wig77U1CaE2nm3PPz69iAWgZAj77GXTzUikNBNTpq8v0vWvw4RwNiPiSMAJgbgtT jW1oNdLYJyl2f5/N57B6VJOvPX/nuHpg -----END CERTIFICATE-----Generated at Wed Dec 3 15:32:21 2025 by rpki-client