This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914A140/CC1DCCE8C77411E69816B068C4F9AE02/BQIPvxAg_WO-V9oblwSwqoEDREo.mft File: BQIPvxAg_WO-V9oblwSwqoEDREo.mft (raw, json) Hash identifier: jCrETKfy88ChUKft8PUMeuc63kFHFAtfF9BahczotrE= Subject key identifier: 6F:1E:3E:4A:93:AA:9B:52:72:BF:09:FF:E1:FA:67:75:C1:46:3A:DC Authority key identifier: 05:02:0F:BF:10:20:FD:63:BE:57:DA:1B:97:04:B0:AA:81:03:44:4A Certificate issuer: /CN=A914A140/serialNumber=05020FBF1020FD63BE57DA1B9704B0AA8103444A Certificate serial: 1D4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQIPvxAg_WO-V9oblwSwqoEDREo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914A140/CC1DCCE8C77411E69816B068C4F9AE02/BQIPvxAg_WO-V9oblwSwqoEDREo.mft Manifest number: 1D3D Signing time: Sat 20 Dec 2025 15:57:49 +0000 Manifest this update: Sat 20 Dec 2025 15:57:48 +0000 Manifest next update: Sat 27 Dec 2025 15:57:48 +0000 Files and hashes: 1: BQIPvxAg_WO-V9oblwSwqoEDREo.crl (hash: cpZWMrlVVhB4NOMsBy52sy8VACTNl8oKU6b2hgEnd4g=) 2: 8E652A7AC77611E68B1CDE6AC4F9AE02.roa (hash: y/2fN4L/gwSzwwCp0pT43OYe5/fuip0ysiHVGh2xquc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914A140/CC1DCCE8C77411E69816B068C4F9AE02/BQIPvxAg_WO-V9oblwSwqoEDREo.crl rsync://rpki.apnic.net/member_repository/A914A140/CC1DCCE8C77411E69816B068C4F9AE02/BQIPvxAg_WO-V9oblwSwqoEDREo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQIPvxAg_WO-V9oblwSwqoEDREo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 15:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7503 (0x1d4f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914A140, serialNumber=05020FBF1020FD63BE57DA1B9704B0AA8103444A Validity Not Before: Dec 20 15:57:48 2025 GMT Not After : Dec 27 15:57:48 2025 GMT Subject: CN=6946c77d-d1df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:b0:6c:c9:90:6c:3b:1c:9c:06:46:3e:49:d7: 15:55:a7:59:59:cd:cc:72:32:b5:12:1e:3d:d6:96: 03:ab:ac:a7:cf:70:d4:5a:14:e7:64:a9:01:e8:ca: 69:97:8c:37:1e:a6:9d:44:19:e8:e0:94:de:53:3f: 73:d5:6f:cd:52:8d:a9:d6:3e:88:b1:88:c3:ae:57: e6:f7:eb:ba:31:5b:b1:b0:35:b5:f1:e2:97:8d:8e: ae:3a:e9:c3:75:72:56:70:88:1f:1e:26:5f:67:d4: 37:36:85:40:6f:57:6a:24:9b:1c:d5:ce:46:a8:5a: b4:3f:bf:35:62:94:87:86:f2:d0:84:b5:4e:ce:dc: 0d:e0:50:54:db:f7:6c:26:26:52:30:ba:7e:7b:b9: cf:7c:ec:42:17:54:a4:d5:c4:85:03:45:50:ab:1b: c4:29:d8:da:e9:e9:e3:f5:89:2d:ae:97:5e:4b:79: b1:c6:c8:0a:bc:f1:cb:f7:ec:77:d6:cf:09:d6:63: 81:21:e4:22:7d:1d:a9:0b:59:b0:ad:a1:fb:d0:85: 12:42:22:5f:41:96:71:d0:85:6e:d3:e6:01:db:7b: 49:46:2c:10:14:1e:85:dd:89:2a:a7:01:2c:08:d7: 4f:a1:70:c1:30:09:cf:25:0f:b9:57:3c:87:7e:f4: c9:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:1E:3E:4A:93:AA:9B:52:72:BF:09:FF:E1:FA:67:75:C1:46:3A:DC X509v3 Authority Key Identifier: keyid:05:02:0F:BF:10:20:FD:63:BE:57:DA:1B:97:04:B0:AA:81:03:44:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914A140/CC1DCCE8C77411E69816B068C4F9AE02/BQIPvxAg_WO-V9oblwSwqoEDREo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQIPvxAg_WO-V9oblwSwqoEDREo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914A140/CC1DCCE8C77411E69816B068C4F9AE02/BQIPvxAg_WO-V9oblwSwqoEDREo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e1:9a:8a:b0:ea:63:4e:ff:4d:84:a1:fb:22:88:fa:7d:5e:ea: 29:ec:fd:5f:16:34:8e:7a:30:8e:9f:2d:91:04:db:b9:8e:fc: e6:eb:a0:6a:f4:4d:a8:3a:5f:b2:5b:c2:2e:35:3a:98:4a:1e: e7:e8:93:1f:29:63:ac:0a:e1:8e:7b:cc:59:f4:db:f8:9e:11: ad:f1:66:91:2e:3e:06:f8:3f:4c:40:b2:21:aa:a6:ef:8c:d0: 86:47:dd:8a:c6:49:ee:14:38:56:f9:6e:80:8e:39:c1:db:bf: 31:1b:25:26:ba:95:46:da:f6:85:d3:25:8c:ea:a0:9d:33:12: 2a:f8:ac:ff:ee:6a:2e:ed:b6:22:38:6c:97:70:c3:f8:98:c0: dd:c2:6b:17:61:fe:ae:8d:19:7f:b3:04:d2:e0:1c:52:84:ff: e1:27:3f:49:ce:4f:df:54:80:9d:b6:75:8e:56:62:92:60:81: f1:a6:72:05:1b:ad:1f:e3:35:b2:94:31:2f:ba:39:21:2c:3a: c4:e5:0f:c7:e2:72:e3:37:ea:d4:24:b2:d5:ce:e0:63:8f:d2: 2d:98:cc:18:dc:1d:eb:04:08:9e:40:8e:14:1a:c5:11:5c:4b: ac:f7:47:73:1a:31:c3:7c:e5:89:2b:f6:6c:a0:a1:77:d5:d0: c9:c8:94:a4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHU8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEExNDAxMTAvBgNVBAUTKDA1MDIwRkJGMTAyMEZENjNCRTU3REExQjk3MDRCMEFB ODEwMzQ0NEEwHhcNMjUxMjIwMTU1NzQ4WhcNMjUxMjI3MTU1NzQ4WjAYMRYwFAYD VQQDDA02OTQ2Yzc3ZC1kMWRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq7BsyZBsOxycBkY+SdcVVadZWc3McjK1Eh491pYDq6ynz3DUWhTnZKkB6Mpp l4w3HqadRBno4JTeUz9z1W/NUo2p1j6IsYjDrlfm9+u6MVuxsDW18eKXjY6uOunD dXJWcIgfHiZfZ9Q3NoVAb1dqJJsc1c5GqFq0P781YpSHhvLQhLVOztwN4FBU2/ds JiZSMLp+e7nPfOxCF1Sk1cSFA0VQqxvEKdja6enj9YktrpdeS3mxxsgKvPHL9+x3 1s8J1mOBIeQifR2pC1mwraH70IUSQiJfQZZx0IVu0+YB23tJRiwQFB6F3YkqpwEs CNdPoXDBMAnPJQ+5VzyHfvTJ1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG8ePkqT qptScr8J/+H6Z3XBRjrcMB8GA1UdIwQYMBaAFAUCD78QIP1jvlfaG5cEsKqBA0RK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QTE0MC9DQzFEQ0NFOEM3 NzQxMUU2OTgxNkIwNjhDNEY5QUUwMi9CUUlQdnhBZ19XTy1WOW9ibHdTd3FvRURS RW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JRSVB2eEFnX1dPLVY5b2Jsd1N3cW9FRFJFby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QTE0MC9DQzFEQ0NFOEM3NzQxMUU2OTgxNkIwNjhDNEY5QUUwMi9CUUlQdnhBZ19X Ty1WOW9ibHdTd3FvRURSRW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDhmoqw6mNO/02EofsiiPp9Xuop7P1fFjSOejCOny2RBNu5jvzm66Bq 9E2oOl+yW8IuNTqYSh7n6JMfKWOsCuGOe8xZ9Nv4nhGt8WaRLj4G+D9MQLIhqqbv jNCGR92KxknuFDhW+W6AjjnB278xGyUmupVG2vaF0yWM6qCdMxIq+Kz/7mou7bYi OGyXcMP4mMDdwmsXYf6ujRl/swTS4BxShP/hJz9Jzk/fVICdtnWOVmKSYIHxpnIF G60f4zWylDEvujkhLDrE5Q/H4nLjN+rUJLLVzuBjj9ItmMwY3B3rBAieQI4UGsUR XEus90dzGjHDfOWJK/ZsoKF31dDJyJSk -----END CERTIFICATE-----Generated at Mon Dec 22 09:46:03 2025 by rpki-client