This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A915D963/90E80BC897E211EB9B39D531C4F9AE02/QMW9PelSuS6VkhpP1t99sHtKKSE.mft File: QMW9PelSuS6VkhpP1t99sHtKKSE.mft (raw, json) Hash identifier: opR6E1eEp2oJZecUm5yY+7DGjBwZGR0AJidpUqnVPdE= Subject key identifier: AB:EB:73:72:D4:D8:53:B6:40:50:87:51:1D:6F:E8:5A:6D:28:4B:3B Authority key identifier: 40:C5:BD:3D:E9:52:B9:2E:95:92:1A:4F:D6:DF:7D:B0:7B:4A:29:21 Certificate issuer: /CN=A915D963/serialNumber=40C5BD3DE952B92E95921A4FD6DF7DB07B4A2921 Certificate serial: 06A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QMW9PelSuS6VkhpP1t99sHtKKSE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D963/90E80BC897E211EB9B39D531C4F9AE02/QMW9PelSuS6VkhpP1t99sHtKKSE.mft Manifest number: 0822 Signing time: Mon 22 Dec 2025 21:38:01 +0000 Manifest this update: Mon 22 Dec 2025 21:38:00 +0000 Manifest next update: Mon 29 Dec 2025 21:38:00 +0000 Files and hashes: 1: QMW9PelSuS6VkhpP1t99sHtKKSE.crl (hash: ucfXIJpB3HAxGUwOOXF2s3yS4GNLE+gH7VPX9WV9d/w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D963/90E80BC897E211EB9B39D531C4F9AE02/QMW9PelSuS6VkhpP1t99sHtKKSE.crl rsync://rpki.apnic.net/member_repository/A915D963/90E80BC897E211EB9B39D531C4F9AE02/QMW9PelSuS6VkhpP1t99sHtKKSE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QMW9PelSuS6VkhpP1t99sHtKKSE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 21:38:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1698 (0x6a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D963, serialNumber=40C5BD3DE952B92E95921A4FD6DF7DB07B4A2921 Validity Not Before: Dec 22 21:38:00 2025 GMT Not After : Dec 29 21:38:00 2025 GMT Subject: CN=6949ba39-697f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:37:94:1a:51:95:61:4c:58:04:6b:e5:40:54: d6:d5:48:5d:7a:c3:30:14:07:32:bb:cb:5d:dc:48: 38:03:b2:a6:64:0f:16:6a:b0:87:e2:da:a8:be:be: 1f:03:4e:7f:7c:2b:e9:73:0c:36:05:af:83:c3:ec: d5:eb:ed:c3:9b:48:3e:fb:1c:da:7c:bb:68:e2:08: 2b:39:57:91:22:00:7b:46:86:df:8a:75:81:d2:ff: 06:9b:e8:a4:dc:58:55:13:5d:a2:e4:23:78:bd:a6: b3:ee:7d:4c:03:b4:c3:a2:2e:05:b2:49:61:12:f4: 09:fa:60:4c:39:12:b0:37:a1:4d:20:79:27:22:e0: 43:9e:8f:9c:c8:5d:f6:66:8e:0c:96:ab:a9:1b:8a: 65:53:52:8b:54:25:6a:a0:81:29:c3:8f:43:da:8e: 08:e5:70:75:54:20:65:e6:f8:47:6d:8f:88:e3:a4: 5c:50:cb:75:67:7e:ca:7a:bd:dc:cd:3d:70:ea:2b: 6d:8b:6c:cb:a4:bd:05:9d:46:e3:a5:be:0f:35:42: 9c:f0:42:7a:d7:7e:2c:91:ce:72:95:d8:c6:ea:81: c8:67:d3:0d:1c:ae:32:43:72:63:9a:a5:11:6f:06: 5f:4f:db:d8:f5:b6:34:88:a0:59:2a:c8:7f:19:78: 25:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:EB:73:72:D4:D8:53:B6:40:50:87:51:1D:6F:E8:5A:6D:28:4B:3B X509v3 Authority Key Identifier: keyid:40:C5:BD:3D:E9:52:B9:2E:95:92:1A:4F:D6:DF:7D:B0:7B:4A:29:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D963/90E80BC897E211EB9B39D531C4F9AE02/QMW9PelSuS6VkhpP1t99sHtKKSE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QMW9PelSuS6VkhpP1t99sHtKKSE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D963/90E80BC897E211EB9B39D531C4F9AE02/QMW9PelSuS6VkhpP1t99sHtKKSE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption da:cb:06:fa:cb:1f:eb:3b:40:48:3c:59:ca:f0:d8:3c:ff:b1: cd:30:ea:fa:d8:92:2c:5b:f8:6f:bc:3f:a6:85:df:b2:4b:3b: 38:24:48:ea:04:96:2a:30:05:bd:17:93:55:ea:ec:36:ca:02: cc:49:c5:9c:fb:9f:9c:aa:7f:20:4e:e2:fe:29:07:52:87:6f: 73:2f:6c:db:ba:4a:a9:d8:6b:ef:67:48:0d:70:f8:86:15:79: ba:84:d2:e1:cb:50:24:48:df:94:fd:1b:86:0f:c5:6a:81:ce: 3c:75:9a:96:9d:15:df:56:4a:23:3f:5d:5c:46:65:d5:e3:22: 8e:bd:6b:2a:6a:a7:51:83:a2:f9:02:73:d7:f9:bd:6e:96:96: bb:16:e5:dc:51:fc:b7:f4:af:3f:f8:0c:89:c8:3a:db:31:bd: 34:df:24:9c:2d:6d:95:27:ad:c4:df:89:a2:ee:e8:df:d1:34: 2a:11:15:4c:00:7e:4c:51:85:37:22:0f:08:04:29:98:7b:dd: 68:9f:f7:16:7f:16:d0:62:6b:b4:e7:a7:3d:be:12:88:af:1a: ce:45:88:17:eb:ae:f7:a4:d4:69:0b:b4:e5:f8:84:f7:bb:10: 7d:22:a2:fa:31:c6:84:47:82:76:49:e5:51:b2:c5:cf:bc:38: fd:92:ad:eb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBqIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQ5NjMxMTAvBgNVBAUTKDQwQzVCRDNERTk1MkI5MkU5NTkyMUE0RkQ2REY3REIw N0I0QTI5MjEwHhcNMjUxMjIyMjEzODAwWhcNMjUxMjI5MjEzODAwWjAYMRYwFAYD VQQDDA02OTQ5YmEzOS02OTdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxjeUGlGVYUxYBGvlQFTW1UhdesMwFAcyu8td3Eg4A7KmZA8WarCH4tqovr4f A05/fCvpcww2Ba+Dw+zV6+3Dm0g++xzafLto4ggrOVeRIgB7RobfinWB0v8Gm+ik 3FhVE12i5CN4vaaz7n1MA7TDoi4FsklhEvQJ+mBMORKwN6FNIHknIuBDno+cyF32 Zo4MlqupG4plU1KLVCVqoIEpw49D2o4I5XB1VCBl5vhHbY+I46RcUMt1Z37Ker3c zT1w6itti2zLpL0FnUbjpb4PNUKc8EJ6134skc5yldjG6oHIZ9MNHK4yQ3JjmqUR bwZfT9vY9bY0iKBZKsh/GXgl8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKvrc3LU 2FO2QFCHUR1v6FptKEs7MB8GA1UdIwQYMBaAFEDFvT3pUrkulZIaT9bffbB7Sikh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDk2My85MEU4MEJDODk3 RTIxMUVCOUIzOUQ1MzFDNEY5QUUwMi9RTVc5UGVsU3VTNlZraHBQMXQ5OXNIdEtL U0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FNVzlQZWxTdVM2VmtocFAxdDk5c0h0S0tTRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RDk2My85MEU4MEJDODk3RTIxMUVCOUIzOUQ1MzFDNEY5QUUwMi9RTVc5UGVsU3VT NlZraHBQMXQ5OXNIdEtLU0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDaywb6yx/rO0BIPFnK8Ng8/7HNMOr62JIsW/hvvD+mhd+ySzs4JEjq BJYqMAW9F5NV6uw2ygLMScWc+5+cqn8gTuL+KQdSh29zL2zbukqp2GvvZ0gNcPiG FXm6hNLhy1AkSN+U/RuGD8Vqgc48dZqWnRXfVkojP11cRmXV4yKOvWsqaqdRg6L5 AnPX+b1ulpa7FuXcUfy39K8/+AyJyDrbMb003yScLW2VJ63E34mi7ujf0TQqERVM AH5MUYU3Ig8IBCmYe91on/cWfxbQYmu056c9vhKIrxrORYgX6673pNRpC7Tl+IT3 uxB9IqL6McaER4J2SeVRssXPvDj9kq3r -----END CERTIFICATE-----Generated at Wed Dec 24 17:37:57 2025 by rpki-client