This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.mft File: Q2XRedW3PoqX7eBQXynvAMLWPvk.mft (raw, json) Hash identifier: uqmu0dcd9YFuj/MBJDz0hKClWMnltfdrE5H9YlGL4Zo= Subject key identifier: D3:85:5F:0D:98:1B:9C:DD:02:79:BE:DB:CE:40:7E:8E:AD:DA:26:E0 Authority key identifier: 43:65:D1:79:D5:B7:3E:8A:97:ED:E0:50:5F:29:EF:00:C2:D6:3E:F9 Certificate issuer: /CN=A9139555/serialNumber=4365D179D5B73E8A97EDE0505F29EF00C2D63EF9 Certificate serial: 030D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2XRedW3PoqX7eBQXynvAMLWPvk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.mft Manifest number: 0304 Signing time: Sun 21 Dec 2025 00:25:14 +0000 Manifest this update: Sun 21 Dec 2025 00:25:13 +0000 Manifest next update: Sun 28 Dec 2025 00:25:13 +0000 Files and hashes: 1: Q2XRedW3PoqX7eBQXynvAMLWPvk.crl (hash: GQzym/1ch4vG3q/Tq1vAzcjeM7rjVAXVONMfWY5RPUM=) 2: E9A9531644D611F0ABB89277C4F9AE02.roa (hash: GeKHBnqKWQ5odcVSCSiPOuNHSoS5ENhlNwIJeq+zQ50=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.crl rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2XRedW3PoqX7eBQXynvAMLWPvk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 00:25:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 781 (0x30d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9139555, serialNumber=4365D179D5B73E8A97EDE0505F29EF00C2D63EF9 Validity Not Before: Dec 21 00:25:13 2025 GMT Not After : Dec 28 00:25:13 2025 GMT Subject: CN=69473e6a-1dd7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:7a:bb:2b:2a:99:93:31:88:75:1a:8d:ed:86: bf:f9:d6:d4:19:59:cf:25:79:a3:97:48:df:74:81: ae:c3:cb:ae:23:ee:13:a2:c9:f5:5e:f4:60:ae:72: 71:37:c7:a2:7e:91:44:19:49:1e:6b:e1:fa:98:b6: db:56:25:2f:1c:74:31:bd:86:06:f8:04:a6:17:47: 2d:b0:01:ea:1a:10:8f:05:47:84:54:41:46:7b:f3: 7a:24:a9:55:53:57:d4:84:c3:ed:f8:65:cc:5a:64: c9:58:d1:74:b5:39:d3:6f:01:dc:ef:3f:c1:15:8f: c3:da:ec:b6:ef:0e:79:b1:12:dc:c5:73:a1:c9:0c: 9b:b6:94:59:94:f4:aa:22:76:9a:4c:c7:1a:a6:4d: 98:89:79:37:fa:ff:3e:ba:e2:62:8b:fe:f8:6a:4b: a8:17:8b:15:6b:34:66:71:3c:9b:23:4f:00:06:17: 89:1c:b4:37:c2:fe:26:bc:c8:db:56:d2:a8:be:cf: 89:96:92:4c:2b:d1:52:b2:cb:99:c9:72:dc:8f:ab: 84:91:ef:79:f6:c1:10:db:4c:27:29:30:6d:27:d4: 85:a9:0f:99:7a:b9:a0:db:d7:7a:52:71:9b:3c:0e: ed:07:40:93:25:c1:b1:45:25:0d:49:72:5b:e6:c9: e2:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:85:5F:0D:98:1B:9C:DD:02:79:BE:DB:CE:40:7E:8E:AD:DA:26:E0 X509v3 Authority Key Identifier: keyid:43:65:D1:79:D5:B7:3E:8A:97:ED:E0:50:5F:29:EF:00:C2:D6:3E:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2XRedW3PoqX7eBQXynvAMLWPvk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:a5:3a:73:8f:55:70:f6:d0:17:21:5b:10:8d:22:b9:23:ee: bb:bb:9b:32:81:f2:41:31:50:49:de:f7:98:85:b6:38:23:f4: b1:59:e5:4c:fb:02:af:99:d1:8b:6d:a7:52:8b:6f:83:69:f0: 42:9c:ab:8d:45:65:58:f5:72:65:21:db:fa:dd:af:f0:07:00: a9:9d:89:6e:4d:4c:97:5b:65:c2:27:bc:33:59:c1:b2:78:8c: 49:30:e4:23:cb:77:77:90:52:a3:71:1b:18:65:34:36:78:1d: 22:37:32:54:3c:a1:69:b6:5b:c7:e0:8f:83:05:eb:b5:63:e9: 7a:2b:bf:90:bf:be:fe:cf:6e:d6:ef:e4:d1:a9:1d:78:35:61: ee:5e:99:59:3a:bf:06:5d:02:98:ca:07:62:3f:d8:9a:47:67: c7:94:92:a6:13:76:5d:b7:fd:88:f1:4e:53:6b:63:da:88:ee: f0:78:ab:72:a6:bb:e7:da:e0:66:d7:7a:cb:d8:68:be:04:e7: 10:49:79:c1:6b:ad:70:5c:fc:d3:b6:a6:db:a5:63:a1:bc:aa: 87:b5:6b:6e:75:80:23:09:29:83:5d:c3:3c:e2:35:91:76:1f: 12:03:00:ee:13:ce:f4:6d:2d:8d:b8:a7:8d:57:6b:40:72:a8: 62:07:8f:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAw0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzk1NTUxMTAvBgNVBAUTKDQzNjVEMTc5RDVCNzNFOEE5N0VERTA1MDVGMjlFRjAw QzJENjNFRjkwHhcNMjUxMjIxMDAyNTEzWhcNMjUxMjI4MDAyNTEzWjAYMRYwFAYD VQQDDA02OTQ3M2U2YS0xZGQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtHq7KyqZkzGIdRqN7Ya/+dbUGVnPJXmjl0jfdIGuw8uuI+4Tosn1XvRgrnJx N8eifpFEGUkea+H6mLbbViUvHHQxvYYG+ASmF0ctsAHqGhCPBUeEVEFGe/N6JKlV U1fUhMPt+GXMWmTJWNF0tTnTbwHc7z/BFY/D2uy27w55sRLcxXOhyQybtpRZlPSq InaaTMcapk2YiXk3+v8+uuJii/74akuoF4sVazRmcTybI08ABheJHLQ3wv4mvMjb VtKovs+JlpJMK9FSssuZyXLcj6uEke959sEQ20wnKTBtJ9SFqQ+Zermg29d6UnGb PA7tB0CTJcGxRSUNSXJb5sniMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNOFXw2Y G5zdAnm+285Afo6t2ibgMB8GA1UdIwQYMBaAFENl0XnVtz6Kl+3gUF8p7wDC1j75 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTU1NS9EQzdEMTQ1QTAy MkQxMUVEOUQ2NDZCNTdDNEY5QUUwMi9RMlhSZWRXM1BvcVg3ZUJRWHludkFNTFdQ dmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1EyWFJlZFczUG9xWDdlQlFYeW52QU1MV1B2ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OTU1NS9EQzdEMTQ1QTAyMkQxMUVEOUQ2NDZCNTdDNEY5QUUwMi9RMlhSZWRXM1Bv cVg3ZUJRWHludkFNTFdQdmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0pTpzj1Vw9tAXIVsQjSK5I+67u5sygfJBMVBJ3veYhbY4I/SxWeVM +wKvmdGLbadSi2+DafBCnKuNRWVY9XJlIdv63a/wBwCpnYluTUyXW2XCJ7wzWcGy eIxJMOQjy3d3kFKjcRsYZTQ2eB0iNzJUPKFptlvH4I+DBeu1Y+l6K7+Qv77+z27W 7+TRqR14NWHuXplZOr8GXQKYygdiP9iaR2fHlJKmE3Zdt/2I8U5Ta2PaiO7weKty prvn2uBm13rL2Gi+BOcQSXnBa61wXPzTtqbbpWOhvKqHtWtudYAjCSmDXcM84jWR dh8SAwDuE870bS2NuKeNV2tAcqhiB48D -----END CERTIFICATE-----Generated at Sun Dec 21 17:16:57 2025 by rpki-client