This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.mft File: Q2ssXwP5HKdBxqJJ3AFabVRKYqY.mft (raw, json) Hash identifier: 4c7pLPe8Rld291yjz7EdtonPa/gMVjiKOe+Pj3nx9bk= Subject key identifier: D1:41:51:4D:81:9D:FE:8F:1B:21:BD:97:EF:6D:51:3D:A1:31:78:96 Authority key identifier: 43:6B:2C:5F:03:F9:1C:A7:41:C6:A2:49:DC:01:5A:6D:54:4A:62:A6 Certificate issuer: /CN=A911647C/serialNumber=436B2C5F03F91CA741C6A249DC015A6D544A62A6 Certificate serial: 0B37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.mft Manifest number: 0A87 Signing time: Thu 18 Dec 2025 19:23:22 +0000 Manifest this update: Thu 18 Dec 2025 19:23:22 +0000 Manifest next update: Thu 25 Dec 2025 19:23:22 +0000 Files and hashes: 1: Q2ssXwP5HKdBxqJJ3AFabVRKYqY.crl (hash: z/jTUDJGlgNPRScBHn6/JTrNhXW99ZI650fte5oH0zk=) 2: 553170245AC511EBA052F663C4F9AE02.roa (hash: 1WjAWoIgFya9zcz3aaAfAZPj3TaOx48UOEMbOt7aBvY=) 3: 8626FFC65AE511EBA452D33EC4F9AE02.roa (hash: 9X7I+brkK/zM7IstcmQqkt3f3WU83UlUm6djQdlHWFo=) 4: C3E2252E205F11EE8117111CC4F9AE02.roa (hash: 5nE372F+0IwqYdLJZogWsDWbHc80At5gKYtw/eBlXZE=) 5: DCF88EAE5ED811EBAB677671C4F9AE02.roa (hash: HSmuGZlq2yjbC7oby/mLDwMQgWOMUuKo8bggRUwHe8s=) 6: 61EFB2ACAC3611EDA5995F3FC4F9AE02.roa (hash: dOCznw/J4c94cUvosSW/kOC2oIL6jbmFAL2+O7rkhag=) 7: 84023C06D24611EABDDF5344C4F9AE02.roa (hash: ejIz9Yuuvy/Lj5GU8AUntC0tFJ+QHqAuBe5ozlZ4Gxw=) 8: 0DE32D9C2B1E11F0AFEB852DC4F9AE02.roa (hash: UfxAxapspNfCULgapde2dhkYeQjgb9Bzqtz/tQtQdPw=) 9: 0EA44D4E5ADD11EBB9CEE568C4F9AE02.roa (hash: L+W6w2B2/2JqZHEEy+XRZ0tQqm2y+76IdcVbyBsuS1w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.crl rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 19:23:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2871 (0xb37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911647C, serialNumber=436B2C5F03F91CA741C6A249DC015A6D544A62A6 Validity Not Before: Dec 18 19:23:22 2025 GMT Not After : Dec 25 19:23:22 2025 GMT Subject: CN=694454aa-71ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:81:ff:e0:82:0d:7a:2b:31:16:a8:f7:7c:3a: 9d:fe:a1:76:96:44:ae:65:78:5d:39:e3:bf:7a:46: a4:09:16:70:48:93:93:a0:2f:53:af:b3:97:71:70: 7b:b2:d8:70:40:9b:c2:26:d8:7c:03:6d:d0:5e:e1: 05:fc:64:32:7f:9f:be:ff:74:7c:97:38:7d:17:1c: 5b:fc:4c:d1:74:f6:6f:7f:ee:1a:e2:6c:4c:f7:2c: a7:90:c1:c7:c6:c9:8e:d4:40:28:dc:65:68:b7:3d: d8:e7:ac:e4:3b:64:ed:cf:01:4c:98:51:13:3c:53: fb:3a:ef:9d:4b:0f:d6:16:07:b1:92:17:32:20:13: 7e:ca:cc:c8:24:a9:eb:fe:53:b8:fc:9b:e9:15:b2: 7b:d6:d2:e9:ba:3d:86:f1:e7:71:79:7c:d5:03:a5: 99:a0:df:cf:78:b9:77:f4:24:b7:9e:d5:98:13:14: 6a:ad:cf:27:ef:03:91:40:32:46:4c:9f:5e:ca:6f: 4a:f5:e7:e1:0d:d7:97:43:98:fd:a7:be:6c:bc:a8: 30:86:8b:8d:2d:7c:0c:c5:e8:fb:41:33:b1:84:ee: 25:e7:b0:b0:93:d7:67:2e:a5:b1:76:ba:9d:71:ad: 5c:2d:d5:2e:98:f6:51:2d:80:64:c0:d4:c4:6d:fe: 6b:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:41:51:4D:81:9D:FE:8F:1B:21:BD:97:EF:6D:51:3D:A1:31:78:96 X509v3 Authority Key Identifier: keyid:43:6B:2C:5F:03:F9:1C:A7:41:C6:A2:49:DC:01:5A:6D:54:4A:62:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:99:4a:03:5d:ae:e6:a7:b8:26:30:3c:d9:ac:b6:b1:90:48: 85:9b:ef:c8:23:16:c7:bd:ee:80:34:4b:a4:29:0f:1d:a4:34: 68:19:b5:05:46:78:fb:59:7b:fc:49:14:be:11:a7:57:7a:b8: 4a:39:00:06:46:ee:e4:76:7a:29:88:7e:4a:0a:14:dd:8c:3a: 8f:1c:20:cc:5e:2c:00:52:ca:e3:e4:d0:40:47:94:2b:83:b3: 24:fc:40:59:d0:fc:b1:c3:7e:f9:cf:73:0e:a1:c2:6d:74:e8: ce:92:de:39:cd:d7:97:08:05:02:4c:60:ab:12:04:ea:7d:a8: 28:dc:10:13:cf:61:d0:e9:9a:51:f3:b1:db:a7:e3:09:4f:a0: e5:7e:46:33:06:1b:54:ba:4f:6f:89:1c:1f:9e:53:2a:11:c5: da:c6:77:fa:ba:42:9a:94:0c:30:35:3c:47:9e:de:93:1c:b8: bb:ac:8a:ea:2c:c4:10:01:5f:72:47:70:29:73:5d:85:8c:7a: b2:f6:61:4f:71:b6:5a:0e:d9:b3:03:bf:3d:2e:f1:4c:0d:06: cf:22:26:cf:36:0e:9b:99:ec:de:4d:d2:dc:e4:8c:ca:6c:97: 58:1e:2a:8c:1f:24:be:32:d8:1c:5c:c6:ac:af:9d:8d:a6:00: 7c:01:3d:e4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCzcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTY0N0MxMTAvBgNVBAUTKDQzNkIyQzVGMDNGOTFDQTc0MUM2QTI0OURDMDE1QTZE NTQ0QTYyQTYwHhcNMjUxMjE4MTkyMzIyWhcNMjUxMjI1MTkyMzIyWjAYMRYwFAYD VQQDDA02OTQ0NTRhYS03MWFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmIH/4IINeisxFqj3fDqd/qF2lkSuZXhdOeO/ekakCRZwSJOToC9Tr7OXcXB7 sthwQJvCJth8A23QXuEF/GQyf5++/3R8lzh9Fxxb/EzRdPZvf+4a4mxM9yynkMHH xsmO1EAo3GVotz3Y56zkO2TtzwFMmFETPFP7Ou+dSw/WFgexkhcyIBN+yszIJKnr /lO4/JvpFbJ71tLpuj2G8edxeXzVA6WZoN/PeLl39CS3ntWYExRqrc8n7wORQDJG TJ9eym9K9efhDdeXQ5j9p75svKgwhouNLXwMxej7QTOxhO4l57Cwk9dnLqWxdrqd ca1cLdUumPZRLYBkwNTEbf5rHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNFBUU2B nf6PGyG9l+9tUT2hMXiWMB8GA1UdIwQYMBaAFENrLF8D+RynQcaiSdwBWm1USmKm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjQ3Qy80MzdDQzQwNjg1 MTMxMUVBQUEwQjBBN0ZDNEY5QUUwMi9RMnNzWHdQNUhLZEJ4cUpKM0FGYWJWUktZ cVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Eyc3NYd1A1SEtkQnhxSkozQUZhYlZSS1lxWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NjQ3Qy80MzdDQzQwNjg1MTMxMUVBQUEwQjBBN0ZDNEY5QUUwMi9RMnNzWHdQNUhL ZEJ4cUpKM0FGYWJWUktZcVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC7mUoDXa7mp7gmMDzZrLaxkEiFm+/IIxbHve6ANEukKQ8dpDRoGbUF Rnj7WXv8SRS+EadXerhKOQAGRu7kdnopiH5KChTdjDqPHCDMXiwAUsrj5NBAR5Qr g7Mk/EBZ0Pyxw375z3MOocJtdOjOkt45zdeXCAUCTGCrEgTqfago3BATz2HQ6ZpR 87Hbp+MJT6DlfkYzBhtUuk9viRwfnlMqEcXaxnf6ukKalAwwNTxHnt6THLi7rIrq LMQQAV9yR3Apc12FjHqy9mFPcbZaDtmzA789LvFMDQbPIibPNg6bmezeTdLc5IzK bJdYHiqMHyS+MtgcXMasr52NpgB8AT3k -----END CERTIFICATE-----Generated at Sat Dec 20 03:25:14 2025 by rpki-client