This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.mft File: QeHsF957pw-MEkF3aWN3AjclGd4.mft (raw, json) Hash identifier: cPPUGHb2BXjy/F2XcjlOMPIIzoBA35p4s3nhoeJBJug= Subject key identifier: 64:64:A2:4A:C6:B0:0A:5E:C5:33:ED:18:96:B5:C9:A6:E4:8F:4C:BA Authority key identifier: 41:E1:EC:17:DE:7B:A7:0F:8C:12:41:77:69:63:77:02:37:25:19:DE Certificate issuer: /CN=A913AE23/serialNumber=41E1EC17DE7BA70F8C12417769637702372519DE Certificate serial: 0123 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QeHsF957pw-MEkF3aWN3AjclGd4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.mft Manifest number: 011E Signing time: Fri 19 Dec 2025 03:55:05 +0000 Manifest this update: Fri 19 Dec 2025 03:55:05 +0000 Manifest next update: Fri 26 Dec 2025 03:55:05 +0000 Files and hashes: 1: QeHsF957pw-MEkF3aWN3AjclGd4.crl (hash: BHaXV1Slf6VheF5xNog3afsW/N8V62M6WlVyh/zzWg4=) 2: 8CF832322C6C11EFB50AD22EC4F9AE02.roa (hash: 2CA+qteNBX78NJxTKhwS/FKIzkSLCeJanQWnrGhStgI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.crl rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QeHsF957pw-MEkF3aWN3AjclGd4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 03:55:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 291 (0x123) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913AE23, serialNumber=41E1EC17DE7BA70F8C12417769637702372519DE Validity Not Before: Dec 19 03:55:05 2025 GMT Not After : Dec 26 03:55:05 2025 GMT Subject: CN=6944cc99-8095 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:c1:66:a6:67:a7:9e:4c:ee:14:75:b1:a4:06: 21:ab:b5:f2:70:be:88:9e:89:6f:38:69:9f:7c:80: c2:44:25:12:5f:94:63:a7:f0:ed:44:4a:68:12:41: 66:b0:27:ff:4b:ce:b0:e0:21:21:75:cd:8c:a5:ec: 4c:ef:a7:11:73:be:b3:65:ed:a0:09:3c:66:a6:d7: 5d:ae:2e:9d:32:64:3a:c9:6c:c8:2c:21:24:7f:83: a2:11:20:e2:70:9b:d6:b9:53:8a:4e:46:85:0e:d8: cc:f7:24:d8:87:bb:2f:8d:18:7e:57:52:84:d6:3d: 36:92:db:90:b2:bf:49:2f:7a:a2:c6:b6:61:d5:e1: ef:ef:88:35:7d:46:fb:3c:a0:23:43:ec:9e:d2:9a: 6c:54:24:1d:91:52:ae:b6:1a:27:8d:98:2f:5b:14: cb:f4:46:72:8d:95:fd:d9:fb:4c:f6:6a:f5:dd:40: 7c:48:1b:1b:1d:17:22:99:7e:19:af:38:c8:e1:bc: 11:de:b7:69:df:d6:9c:0e:b4:83:92:3d:27:92:fe: fa:9c:67:c7:3f:8a:a2:d7:3b:6e:f2:8c:63:d6:23: 8e:76:b9:95:80:91:73:55:07:de:2d:d7:bd:38:19: 13:0b:21:25:4f:30:bd:cf:e4:20:d4:24:6c:0f:5c: e8:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:64:A2:4A:C6:B0:0A:5E:C5:33:ED:18:96:B5:C9:A6:E4:8F:4C:BA X509v3 Authority Key Identifier: keyid:41:E1:EC:17:DE:7B:A7:0F:8C:12:41:77:69:63:77:02:37:25:19:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QeHsF957pw-MEkF3aWN3AjclGd4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:c4:81:9d:58:79:c9:46:21:6a:e6:3f:ca:a4:c6:72:b5:b7: da:0e:38:c3:75:00:44:34:db:1f:f7:bc:7a:2d:90:04:9f:7a: 54:2a:af:6f:d1:51:48:4f:86:e5:8c:55:a0:42:a3:35:20:d8: 7b:82:36:24:bf:7f:3e:07:65:66:ad:01:33:7e:1f:05:5c:ed: ac:70:ea:1b:da:37:a6:52:8d:dd:cd:a7:c0:5e:e4:d2:a0:ee: 5b:0f:c0:b9:36:5a:4d:07:5f:a9:29:01:21:0e:18:3e:66:d0: d9:7b:c0:38:79:76:5b:f3:05:04:3e:ad:4b:b2:51:1e:07:4b: 09:b0:44:c1:3b:ce:71:50:46:e6:28:f0:02:d6:9e:db:bd:7c: 93:d8:94:bc:1b:ff:7f:87:c6:54:72:a8:87:1d:fd:4d:5b:7f: 25:05:10:dd:e0:d9:f9:16:64:28:10:7a:b7:21:dd:02:b9:d0: 02:69:91:22:b5:e0:9d:31:06:63:6c:2a:02:fc:b0:8a:96:ce: 30:db:2f:44:c7:e5:58:f6:2b:05:3b:1c:89:66:6c:95:16:a3: 13:08:8f:9f:20:97:96:6a:d5:78:ea:8d:e6:fd:7f:17:b9:31: 75:c0:90:f9:a3:f5:d2:3a:90:14:f9:d8:13:b9:30:7c:f7:fe: 64:29:2b:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0FFMjMxMTAvBgNVBAUTKDQxRTFFQzE3REU3QkE3MEY4QzEyNDE3NzY5NjM3NzAy MzcyNTE5REUwHhcNMjUxMjE5MDM1NTA1WhcNMjUxMjI2MDM1NTA1WjAYMRYwFAYD VQQDDA02OTQ0Y2M5OS04MDk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq8FmpmennkzuFHWxpAYhq7XycL6InolvOGmffIDCRCUSX5Rjp/DtREpoEkFm sCf/S86w4CEhdc2MpexM76cRc76zZe2gCTxmptddri6dMmQ6yWzILCEkf4OiESDi cJvWuVOKTkaFDtjM9yTYh7svjRh+V1KE1j02ktuQsr9JL3qixrZh1eHv74g1fUb7 PKAjQ+ye0ppsVCQdkVKuthonjZgvWxTL9EZyjZX92ftM9mr13UB8SBsbHRcimX4Z rzjI4bwR3rdp39acDrSDkj0nkv76nGfHP4qi1ztu8oxj1iOOdrmVgJFzVQfeLde9 OBkTCyElTzC9z+Qg1CRsD1zoJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGRkokrG sApexTPtGJa1yabkj0y6MB8GA1UdIwQYMBaAFEHh7Bfee6cPjBJBd2ljdwI3JRne MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQUUyMy8zMDFBMUU0QTJD NkMxMUVGQTM0Njk0MkRDNEY5QUUwMi9RZUhzRjk1N3B3LU1Fa0YzYVdOM0FqY2xH ZDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FlSHNGOTU3cHctTUVrRjNhV04zQWpjbEdkNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QUUyMy8zMDFBMUU0QTJDNkMxMUVGQTM0Njk0MkRDNEY5QUUwMi9RZUhzRjk1N3B3 LU1Fa0YzYVdOM0FqY2xHZDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCRxIGdWHnJRiFq5j/KpMZytbfaDjjDdQBENNsf97x6LZAEn3pUKq9v 0VFIT4bljFWgQqM1INh7gjYkv38+B2VmrQEzfh8FXO2scOob2jemUo3dzafAXuTS oO5bD8C5NlpNB1+pKQEhDhg+ZtDZe8A4eXZb8wUEPq1LslEeB0sJsETBO85xUEbm KPAC1p7bvXyT2JS8G/9/h8ZUcqiHHf1NW38lBRDd4Nn5FmQoEHq3Id0CudACaZEi teCdMQZjbCoC/LCKls4w2y9Ex+VY9isFOxyJZmyVFqMTCI+fIJeWatV46o3m/X8X uTF1wJD5o/XSOpAU+dgTuTB89/5kKSuK -----END CERTIFICATE-----Generated at Sat Dec 20 00:55:17 2025 by rpki-client