This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91323E4/190B0D06F26211EAA522345AC4F9AE02/QBS8tK-bGBlk17ekDRv51vieCP8.mft File: QBS8tK-bGBlk17ekDRv51vieCP8.mft (raw, json) Hash identifier: QdluAca81N9wLStnlJS30qXt/7Lbktlrdea3B771ucg= Subject key identifier: E4:8C:FD:86:63:D0:41:CE:86:68:2F:97:37:42:5E:38:E0:04:CB:72 Authority key identifier: 40:14:BC:B4:AF:9B:18:19:64:D7:B7:A4:0D:1B:F9:D6:F8:9E:08:FF Certificate issuer: /CN=A91323E4/serialNumber=4014BCB4AF9B181964D7B7A40D1BF9D6F89E08FF Certificate serial: 0836 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QBS8tK-bGBlk17ekDRv51vieCP8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91323E4/190B0D06F26211EAA522345AC4F9AE02/QBS8tK-bGBlk17ekDRv51vieCP8.mft Manifest number: 0834 Signing time: Thu 18 Dec 2025 20:18:36 +0000 Manifest this update: Thu 18 Dec 2025 20:18:36 +0000 Manifest next update: Thu 25 Dec 2025 20:18:36 +0000 Files and hashes: 1: QBS8tK-bGBlk17ekDRv51vieCP8.crl (hash: U3sHSGtbXBRbZKnEXKNHjtthR6zvSBvNz3cXsPO6P4g=) 2: 6944587246B311F090CDB927C4F9AE02.roa (hash: N5DJ/lWFfI48sdx6BvFVpFHkaPP8kCCAOxZfmLMaFUw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91323E4/190B0D06F26211EAA522345AC4F9AE02/QBS8tK-bGBlk17ekDRv51vieCP8.crl rsync://rpki.apnic.net/member_repository/A91323E4/190B0D06F26211EAA522345AC4F9AE02/QBS8tK-bGBlk17ekDRv51vieCP8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QBS8tK-bGBlk17ekDRv51vieCP8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 20:18:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2102 (0x836) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91323E4, serialNumber=4014BCB4AF9B181964D7B7A40D1BF9D6F89E08FF Validity Not Before: Dec 18 20:18:36 2025 GMT Not After : Dec 25 20:18:36 2025 GMT Subject: CN=6944619c-8eec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:c5:f3:dc:ff:1b:d8:b0:01:3f:6d:72:8b:04: 27:1b:ae:10:71:66:75:fc:f2:35:80:30:fe:3a:79: b7:f6:bb:06:3d:60:a2:1c:cb:03:f1:4a:bc:7d:4f: 76:36:60:68:94:25:63:26:6f:f0:db:2a:72:6b:e5: 02:10:38:af:62:db:84:d7:f0:48:ab:e3:63:d6:33: 07:c0:48:43:4f:a1:6e:1a:b7:93:37:c0:7c:57:d0: b1:ed:11:b1:f8:48:71:48:f8:c5:5a:60:25:71:78: 5d:fb:4b:c7:99:36:cc:a7:25:a2:55:bd:a8:cd:de: 65:29:5d:ac:25:da:d3:9f:d3:ca:9b:aa:01:cb:2a: f5:0b:bd:5f:f9:d1:b7:f7:5c:fb:61:e2:91:f8:f0: 00:22:b4:29:1e:35:69:b3:56:4a:df:4b:73:6f:b4: d3:66:45:fc:bc:3e:56:82:5a:64:42:af:72:3c:04: a0:73:d2:e9:dd:42:88:41:fc:91:d6:0a:1e:f2:f0: 67:60:38:b1:98:fd:ae:28:7a:29:35:7b:cd:64:3b: 3f:c8:de:6e:55:a9:18:4f:14:82:8e:b4:ca:09:9e: 3d:00:13:4e:fc:cf:43:a9:fd:ce:0b:a9:d0:eb:2c: ba:6a:1d:c6:39:4d:3d:32:3a:91:4d:8d:17:b3:7c: a7:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:8C:FD:86:63:D0:41:CE:86:68:2F:97:37:42:5E:38:E0:04:CB:72 X509v3 Authority Key Identifier: keyid:40:14:BC:B4:AF:9B:18:19:64:D7:B7:A4:0D:1B:F9:D6:F8:9E:08:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91323E4/190B0D06F26211EAA522345AC4F9AE02/QBS8tK-bGBlk17ekDRv51vieCP8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QBS8tK-bGBlk17ekDRv51vieCP8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91323E4/190B0D06F26211EAA522345AC4F9AE02/QBS8tK-bGBlk17ekDRv51vieCP8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:3d:15:1a:a2:bd:13:03:2e:c6:26:8c:0d:f3:ce:37:55:db: 81:1b:d8:10:f4:a4:6d:94:0a:2c:8b:f5:03:b1:3a:17:94:b5: 41:1f:65:55:f1:6a:9a:9a:81:c0:97:07:b5:14:a0:be:7c:15: d4:f0:1c:e7:37:e8:53:51:db:79:ba:86:22:63:79:ee:e4:f1: a3:70:fc:90:a1:ed:50:04:9a:3f:0a:db:d9:58:ed:73:6f:74: 88:fd:9b:a1:32:ad:d6:1b:99:4c:e0:89:7e:15:42:7c:be:3b: 96:21:11:98:be:31:29:23:5e:5d:4f:9b:82:12:7a:89:8f:e0: a4:f0:76:53:02:b2:6a:6b:bb:97:0b:85:93:c9:1f:09:09:88: 89:41:c6:6e:7c:f4:9f:32:5b:a4:6b:cd:8b:dd:f1:25:3a:a5: b5:64:53:ac:86:c2:6c:dd:1c:aa:bc:15:1f:a1:ac:01:33:c7: 73:a2:86:2d:6a:0e:8c:3a:d1:14:3b:18:92:0d:07:93:ad:0d: ad:ec:e2:73:3a:ee:ec:60:36:d6:86:2a:e6:fb:88:5e:bd:3f: e8:f0:e4:8e:ad:4b:3b:09:c2:dd:bd:56:3f:24:22:72:5c:d0: b0:59:61:b2:dd:df:0d:53:0b:b6:4c:fa:44:80:eb:e6:9d:e1: af:8b:fd:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCDYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzIzRTQxMTAvBgNVBAUTKDQwMTRCQ0I0QUY5QjE4MTk2NEQ3QjdBNDBEMUJGOUQ2 Rjg5RTA4RkYwHhcNMjUxMjE4MjAxODM2WhcNMjUxMjI1MjAxODM2WjAYMRYwFAYD VQQDDA02OTQ0NjE5Yy04ZWVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAk8Xz3P8b2LABP21yiwQnG64QcWZ1/PI1gDD+Onm39rsGPWCiHMsD8Uq8fU92 NmBolCVjJm/w2ypya+UCEDivYtuE1/BIq+Nj1jMHwEhDT6FuGreTN8B8V9Cx7RGx +EhxSPjFWmAlcXhd+0vHmTbMpyWiVb2ozd5lKV2sJdrTn9PKm6oByyr1C71f+dG3 91z7YeKR+PAAIrQpHjVps1ZK30tzb7TTZkX8vD5WglpkQq9yPASgc9Lp3UKIQfyR 1goe8vBnYDixmP2uKHopNXvNZDs/yN5uVakYTxSCjrTKCZ49ABNO/M9Dqf3OC6nQ 6yy6ah3GOU09MjqRTY0Xs3ynwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOSM/YZj 0EHOhmgvlzdCXjjgBMtyMB8GA1UdIwQYMBaAFEAUvLSvmxgZZNe3pA0b+db4ngj/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMjNFNC8xOTBCMEQwNkYy NjIxMUVBQTUyMjM0NUFDNEY5QUUwMi9RQlM4dEstYkdCbGsxN2VrRFJ2NTF2aWVD UDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FCUzh0Sy1iR0JsazE3ZWtEUnY1MXZpZUNQOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MjNFNC8xOTBCMEQwNkYyNjIxMUVBQTUyMjM0NUFDNEY5QUUwMi9RQlM4dEstYkdC bGsxN2VrRFJ2NTF2aWVDUDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHPRUaor0TAy7GJowN8843VduBG9gQ9KRtlAosi/UDsToXlLVBH2VV 8WqamoHAlwe1FKC+fBXU8BznN+hTUdt5uoYiY3nu5PGjcPyQoe1QBJo/CtvZWO1z b3SI/ZuhMq3WG5lM4Il+FUJ8vjuWIRGYvjEpI15dT5uCEnqJj+Ck8HZTArJqa7uX C4WTyR8JCYiJQcZufPSfMluka82L3fElOqW1ZFOshsJs3RyqvBUfoawBM8dzooYt ag6MOtEUOxiSDQeTrQ2t7OJzOu7sYDbWhirm+4hevT/o8OSOrUs7CcLdvVY/JCJy XNCwWWGy3d8NUwu2TPpEgOvmneGvi/0k -----END CERTIFICATE-----Generated at Fri Dec 19 19:04:27 2025 by rpki-client