This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.mft File: QELW5jee2AQkizYN7Zhe9_VlIBE.mft (raw, json) Hash identifier: rEGnq0nAx0e0JtOK5YOG1FQwbvtIhiMnr41L9aior5g= Subject key identifier: E6:0A:40:BE:46:2D:40:32:44:BC:06:ED:6F:3A:16:43:3C:7D:46:03 Authority key identifier: 40:42:D6:E6:37:9E:D8:04:24:8B:36:0D:ED:98:5E:F7:F5:65:20:11 Certificate issuer: /CN=A9148465/serialNumber=4042D6E6379ED804248B360DED985EF7F5652011 Certificate serial: 02A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QELW5jee2AQkizYN7Zhe9_VlIBE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.mft Manifest number: 029C Signing time: Tue 23 Dec 2025 00:31:01 +0000 Manifest this update: Tue 23 Dec 2025 00:31:00 +0000 Manifest next update: Tue 30 Dec 2025 00:31:00 +0000 Files and hashes: 1: QELW5jee2AQkizYN7Zhe9_VlIBE.crl (hash: tb76qtLRGkHxDfsV9Rm7kPohXC2u3EpujvmQxljNa+Y=) 2: 7777513828C011EDBEC6D287C4F9AE02.roa (hash: KysVMiyZcH0HX0OV6c/BvTG9IGFmIflJ1zJN81z9Xf0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.crl rsync://rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QELW5jee2AQkizYN7Zhe9_VlIBE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 00:31:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 672 (0x2a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148465, serialNumber=4042D6E6379ED804248B360DED985EF7F5652011 Validity Not Before: Dec 23 00:31:00 2025 GMT Not After : Dec 30 00:31:00 2025 GMT Subject: CN=6949e2c5-3066 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:fe:d3:11:06:4b:92:3c:6f:6e:cf:a5:6a:bc: 61:b6:1a:6c:3a:2e:1d:b8:3e:91:2f:e0:48:19:f6: a9:77:7f:2c:75:9c:fe:9f:fc:d8:09:2e:42:a9:cb: 03:e0:56:3b:f3:96:c6:27:c7:e7:f3:cf:65:2b:fd: 79:4e:b3:f7:37:30:71:b7:a5:06:8c:b2:b2:4e:0f: d7:eb:e3:e8:10:d6:6e:98:32:e1:fb:ba:f0:1a:d2: ff:47:f1:50:83:cc:e6:dc:d2:8f:02:a3:9f:dc:17: a6:08:6b:f7:af:86:f6:fa:44:df:a4:38:c2:3f:36: ee:c1:57:10:8a:f0:25:39:05:f7:6e:16:05:79:24: d1:88:33:ef:9b:62:df:07:8d:dc:79:d5:32:ab:3c: 5e:a9:43:49:12:97:1f:51:37:af:a9:5f:34:26:78: 9a:d5:9d:d8:8c:41:3b:08:a4:fd:22:9d:50:2f:1c: c4:d6:e8:11:e2:9b:bd:e6:39:26:6f:fd:f2:66:26: 5a:0f:26:c8:70:49:6b:2e:0d:eb:e5:0f:08:cd:14: f5:48:e4:ab:05:37:78:35:e1:78:0d:64:f2:ab:9d: 99:5b:ea:2a:a4:58:62:4e:7b:39:ef:03:84:fe:dd: 6a:76:e4:1d:3f:c3:39:26:68:4f:17:16:79:cf:b0: 8e:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:0A:40:BE:46:2D:40:32:44:BC:06:ED:6F:3A:16:43:3C:7D:46:03 X509v3 Authority Key Identifier: keyid:40:42:D6:E6:37:9E:D8:04:24:8B:36:0D:ED:98:5E:F7:F5:65:20:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QELW5jee2AQkizYN7Zhe9_VlIBE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:99:dd:7f:14:0e:35:87:2a:d1:6b:5f:f8:7f:79:be:07:4f: cf:2d:87:62:42:6b:53:3b:71:19:ff:83:4f:51:67:9e:a9:a1: 05:aa:e5:82:82:f0:7d:70:1b:31:a8:ac:da:db:c3:97:ce:6b: 31:b1:f5:d8:80:53:07:e3:51:9a:cb:7e:f2:7e:11:8f:13:8d: 78:58:01:16:e1:cc:65:78:68:67:7f:1c:d3:ee:86:dd:a3:3e: 06:0d:d3:8c:1d:7b:8d:21:f1:b5:c9:63:52:6c:92:bc:d7:6b: a9:b2:49:40:b1:fb:a3:50:28:b4:93:d1:8a:13:8c:23:98:38: 6a:39:aa:59:f7:bd:eb:b3:b1:f1:61:04:c3:05:29:43:a7:91: 0b:bf:13:7e:0b:51:e1:9e:92:9f:17:01:b0:21:97:21:09:4f: 1b:e5:b0:24:fb:1c:16:20:2c:ff:25:60:26:59:4c:68:74:60: a3:a0:49:7e:d4:14:8c:a1:1a:4c:31:05:ad:8f:2d:84:8f:4d: 6f:51:e0:6a:63:ee:fd:c3:fb:40:f2:c0:c8:b5:bf:40:e4:2e: 1d:7b:96:44:70:45:4d:f8:b4:64:46:23:43:c8:d5:db:9c:6b: d1:5c:36:50:e8:b3:1e:e4:0e:3a:3c:72:a5:09:82:07:d1:46: 28:6d:45:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAqAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDg0NjUxMTAvBgNVBAUTKDQwNDJENkU2Mzc5RUQ4MDQyNDhCMzYwREVEOTg1RUY3 RjU2NTIwMTEwHhcNMjUxMjIzMDAzMTAwWhcNMjUxMjMwMDAzMTAwWjAYMRYwFAYD VQQDDA02OTQ5ZTJjNS0zMDY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjf7TEQZLkjxvbs+larxhthpsOi4duD6RL+BIGfapd38sdZz+n/zYCS5CqcsD 4FY785bGJ8fn889lK/15TrP3NzBxt6UGjLKyTg/X6+PoENZumDLh+7rwGtL/R/FQ g8zm3NKPAqOf3BemCGv3r4b2+kTfpDjCPzbuwVcQivAlOQX3bhYFeSTRiDPvm2Lf B43cedUyqzxeqUNJEpcfUTevqV80Jnia1Z3YjEE7CKT9Ip1QLxzE1ugR4pu95jkm b/3yZiZaDybIcElrLg3r5Q8IzRT1SOSrBTd4NeF4DWTyq52ZW+oqpFhiTns57wOE /t1qduQdP8M5JmhPFxZ5z7COHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOYKQL5G LUAyRLwG7W86FkM8fUYDMB8GA1UdIwQYMBaAFEBC1uY3ntgEJIs2De2YXvf1ZSAR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0ODQ2NS9ENjBGMDI3MjI4 QkIxMUVEQTU5QzMwODFDNEY5QUUwMi9RRUxXNWplZTJBUWtpellON1poZTlfVmxJ QkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FFTFc1amVlMkFRa2l6WU43WmhlOV9WbElCRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 ODQ2NS9ENjBGMDI3MjI4QkIxMUVEQTU5QzMwODFDNEY5QUUwMi9RRUxXNWplZTJB UWtpellON1poZTlfVmxJQkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAemd1/FA41hyrRa1/4f3m+B0/PLYdiQmtTO3EZ/4NPUWeeqaEFquWC gvB9cBsxqKza28OXzmsxsfXYgFMH41Gay37yfhGPE414WAEW4cxleGhnfxzT7obd oz4GDdOMHXuNIfG1yWNSbJK812upsklAsfujUCi0k9GKE4wjmDhqOapZ973rs7Hx YQTDBSlDp5ELvxN+C1HhnpKfFwGwIZchCU8b5bAk+xwWICz/JWAmWUxodGCjoEl+ 1BSMoRpMMQWtjy2Ej01vUeBqY+79w/tA8sDItb9A5C4de5ZEcEVN+LRkRiNDyNXb nGvRXDZQ6LMe5A46PHKlCYIH0UYobUWz -----END CERTIFICATE-----Generated at Wed Dec 24 14:14:47 2025 by rpki-client