This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9172989/EFFDD714D6D511F0B06384B581D3641D/q2nHQCVImv1hdH_5M1sUfiC7JdQ.mft File: q2nHQCVImv1hdH_5M1sUfiC7JdQ.mft (raw, json) Hash identifier: /42BB1QnzNUum2NwWpvlv71Dle8t4xUfqYFvn0hG89s= Subject key identifier: 48:54:37:FF:32:06:F2:B6:77:0C:59:67:E0:80:49:96:95:65:FA:81 Authority key identifier: AB:69:C7:40:25:48:9A:FD:61:74:7F:F9:33:5B:14:7E:20:BB:25:D4 Certificate issuer: /CN=A9172989/serialNumber=AB69C74025489AFD61747FF9335B147E20BB25D4 Certificate serial: 07 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2nHQCVImv1hdH_5M1sUfiC7JdQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172989/EFFDD714D6D511F0B06384B581D3641D/q2nHQCVImv1hdH_5M1sUfiC7JdQ.mft Manifest number: 05 Signing time: Mon 15 Dec 2025 07:33:12 +0000 Manifest this update: Mon 15 Dec 2025 07:33:11 +0000 Manifest next update: Mon 22 Dec 2025 07:33:11 +0000 Files and hashes: 1: q2nHQCVImv1hdH_5M1sUfiC7JdQ.crl (hash: zVe06owfHM9MK9HqQ5cA595Z8bzdWPbiHS11bjTpGSY=) 2: 3CBCF5BED6D911F0B064CD5C85D3641D.roa (hash: dyqXFCcUaP0MyJCMf/CgPJbAs32ejMPFahUoO/mRaLE=) 3: 0FB60AEED6D711F085B1D0E884D3641D.roa (hash: OQ9vc68P9a8kEML8WxvcO6y/ABGhLAWink2psJnWsk4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172989/EFFDD714D6D511F0B06384B581D3641D/q2nHQCVImv1hdH_5M1sUfiC7JdQ.crl rsync://rpki.apnic.net/member_repository/A9172989/EFFDD714D6D511F0B06384B581D3641D/q2nHQCVImv1hdH_5M1sUfiC7JdQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2nHQCVImv1hdH_5M1sUfiC7JdQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Dec 2025 07:33:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7 (0x7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172989, serialNumber=AB69C74025489AFD61747FF9335B147E20BB25D4 Validity Not Before: Dec 15 07:33:11 2025 GMT Not After : Dec 22 07:33:11 2025 GMT Subject: CN=693fb9b8-0555 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:ee:f2:ee:77:6a:7f:94:6c:09:07:fe:dc:a2: b4:ef:3b:ce:4b:d8:00:19:f7:5c:93:56:fe:4f:a4: 87:f3:40:47:4d:c0:ae:76:ab:59:6d:ef:b2:59:cd: f8:85:da:32:52:d6:09:5e:92:56:e9:95:ab:a6:3b: e8:69:9a:c9:34:a2:de:50:0e:4a:a8:7a:85:91:5a: 7c:2b:82:3c:d1:d4:26:0a:44:68:21:d3:a1:5e:21: 21:af:3f:b5:f2:fe:48:73:52:d5:31:0f:c3:72:08: 3b:18:7b:97:12:76:15:75:90:83:da:ec:35:62:8d: 20:0d:e3:c8:11:f4:f2:a6:9f:e9:b8:03:2f:56:cb: dc:85:c1:0b:fc:04:b9:e2:1f:4f:27:74:5c:5c:ed: 26:1a:6d:9c:12:48:e3:d8:9b:5c:75:06:52:38:e0: 69:a2:8a:0b:94:f8:7f:7a:f2:a9:dd:c0:46:37:ed: 3c:78:34:1e:e7:f9:4c:a0:bf:7b:ea:0e:f6:c5:f3: 75:f2:77:6e:0a:ec:08:d2:e2:fb:7d:ce:06:6a:04: d6:42:6a:31:76:5f:56:74:ed:69:01:4a:43:00:ef: bc:22:46:7b:0c:84:e7:a5:30:f4:c6:c4:ed:84:06: 57:6d:71:8b:bc:95:21:2a:7a:8a:c4:5b:3e:b5:5b: 57:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:54:37:FF:32:06:F2:B6:77:0C:59:67:E0:80:49:96:95:65:FA:81 X509v3 Authority Key Identifier: keyid:AB:69:C7:40:25:48:9A:FD:61:74:7F:F9:33:5B:14:7E:20:BB:25:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172989/EFFDD714D6D511F0B06384B581D3641D/q2nHQCVImv1hdH_5M1sUfiC7JdQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2nHQCVImv1hdH_5M1sUfiC7JdQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172989/EFFDD714D6D511F0B06384B581D3641D/q2nHQCVImv1hdH_5M1sUfiC7JdQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:0f:9c:14:ba:72:29:dd:9b:8e:4e:b8:a7:94:82:16:be:95: aa:09:20:5b:30:ad:25:47:03:0e:7e:af:40:f9:15:18:5f:68: 8f:21:88:a3:bc:10:72:b5:ce:c7:2a:ab:2b:ad:cf:84:4e:8f: e6:14:fb:7e:d6:c3:fc:2c:c3:46:54:2b:0e:0e:69:e9:e3:42: 89:41:b3:d0:34:e8:40:4b:47:c1:72:ed:26:62:92:b0:39:07: 53:20:7f:61:cc:0c:fe:23:23:70:9d:b2:26:0d:7f:ef:d9:bb: 71:89:5e:34:a5:d7:06:1e:a6:f4:7d:2c:01:b5:ee:f5:14:05: 69:83:98:6f:5f:a2:51:32:08:ef:8e:d8:30:19:10:f3:20:de: 40:e8:35:3f:92:1e:a1:b2:75:d5:34:bd:61:60:79:34:9f:44: 04:2a:89:3e:24:58:4a:03:2b:03:96:65:cd:75:69:aa:ce:c2: ae:c4:20:3c:c9:2b:b1:83:36:ef:92:3a:40:2d:aa:bd:91:e7: ae:e3:45:4b:ae:fc:2e:f2:3a:63:76:75:0e:c6:92:e0:fd:0d: 0e:29:7c:e4:b4:b8:81:65:2b:90:cc:39:c3:16:33:52:eb:57: 4d:56:05:a3:f6:27:0e:0c:55:13:e0:5e:ad:d6:16:2d:41:59: 8f:d6:1b:d8 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBBzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 Mjk4OTExMC8GA1UEBRMoQUI2OUM3NDAyNTQ4OUFGRDYxNzQ3RkY5MzM1QjE0N0Uy MEJCMjVENDAeFw0yNTEyMTUwNzMzMTFaFw0yNTEyMjIwNzMzMTFaMBgxFjAUBgNV BAMMDTY5M2ZiOWI4LTA1NTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCe7vLud2p/lGwJB/7corTvO85L2AAZ91yTVv5PpIfzQEdNwK52q1lt77JZzfiF 2jJS1gleklbplaumO+hpmsk0ot5QDkqoeoWRWnwrgjzR1CYKRGgh06FeISGvP7Xy /khzUtUxD8NyCDsYe5cSdhV1kIPa7DVijSAN48gR9PKmn+m4Ay9Wy9yFwQv8BLni H08ndFxc7SYabZwSSOPYm1x1BlI44GmiiguU+H968qndwEY37Tx4NB7n+Uygv3vq DvbF83Xyd24K7AjS4vt9zgZqBNZCajF2X1Z07WkBSkMA77wiRnsMhOelMPTGxO2E BldtcYu8lSEqeorEWz61W1cXAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUSFQ3/zIG 8rZ3DFln4IBJlpVl+oEwHwYDVR0jBBgwFoAUq2nHQCVImv1hdH/5M1sUfiC7JdQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcyOTg5L0VGRkRENzE0RDZE NTExRjBCMDYzODRCNTgxRDM2NDFEL3EybkhRQ1ZJbXYxaGRIXzVNMXNVZmlDN0pk US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcTJuSFFDVkltdjFoZEhfNU0xc1VmaUM3SmRRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcy OTg5L0VGRkRENzE0RDZENTExRjBCMDYzODRCNTgxRDM2NDFEL3EybkhRQ1ZJbXYx aGRIXzVNMXNVZmlDN0pkUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAcPnBS6cindm45OuKeUgha+laoJIFswrSVHAw5+r0D5FRhfaI8hiKO8 EHK1zscqqyutz4ROj+YU+37Ww/wsw0ZUKw4OaenjQolBs9A06EBLR8Fy7SZikrA5 B1Mgf2HMDP4jI3CdsiYNf+/Zu3GJXjSl1wYepvR9LAG17vUUBWmDmG9folEyCO+O 2DAZEPMg3kDoNT+SHqGyddU0vWFgeTSfRAQqiT4kWEoDKwOWZc11aarOwq7EIDzJ K7GDNu+SOkAtqr2R567jRUuu/C7yOmN2dQ7GkuD9DQ4pfOS0uIFlK5DMOcMWM1Lr V01WBaP2Jw4MVRPgXq3WFi1BWY/WG9g= -----END CERTIFICATE-----Generated at Wed Dec 17 12:49:43 2025 by rpki-client