This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft File: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft (raw, json) Hash identifier: pe09pQ2hnc5nZTRbTHH6CCo0hD0ddjN6RzeJW7Yal4I= Subject key identifier: 2D:0B:5F:B0:B1:1E:6A:C1:A2:E9:20:E8:38:7E:75:86:77:F1:B8:3A Authority key identifier: AB:C6:FB:A4:B7:84:28:38:79:19:0D:C7:17:E3:4B:4C:D8:82:DA:08 Certificate issuer: /CN=A9172CE3/serialNumber=ABC6FBA4B784283879190DC717E34B4CD882DA08 Certificate serial: 04F6 Authority info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft Manifest number: 04F0 Signing time: Sat 20 Dec 2025 22:59:36 +0000 Manifest this update: Sat 20 Dec 2025 22:59:35 +0000 Manifest next update: Sat 27 Dec 2025 22:59:35 +0000 Files and hashes: 1: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.crl (hash: i+bfgUJtI/MYepF3cp+2pMcy1nv40e0tv/IsnpT6HmQ=) 2: 887BE0D0405D11ECA642D813C4F9AE02.roa (hash: qxVcUGlCZn4SUG82SOAXq9RSMSYslC+bAGjT3ytadTQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.crl rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 22:59:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1270 (0x4f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172CE3, serialNumber=ABC6FBA4B784283879190DC717E34B4CD882DA08 Validity Not Before: Dec 20 22:59:35 2025 GMT Not After : Dec 27 22:59:35 2025 GMT Subject: CN=69472a57-7a08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:ec:a6:9a:f4:df:b2:53:e8:14:a2:c9:ec:44: ae:f2:9f:3c:c1:2e:e5:4b:5c:4c:21:36:5f:93:d7: 94:fd:49:0b:5e:95:78:01:50:e0:b9:4e:d5:99:7b: 2f:08:b8:a2:19:2f:6f:e4:19:c4:35:25:72:43:d2: 0a:85:88:67:89:6b:00:1b:95:b4:8c:36:30:c7:02: 55:b4:57:de:f1:55:41:e9:2f:f3:1a:48:34:89:75: ce:f9:38:25:18:44:66:f3:af:43:79:ce:89:54:41: 01:8d:5c:87:92:e1:f0:ac:31:61:9f:f8:43:70:f1: d1:62:d8:cb:6f:9c:42:58:ae:3e:43:76:4a:cd:10: 8c:1c:1b:bb:2d:16:6c:c5:71:85:94:39:a4:1f:aa: 68:88:74:83:0d:9c:18:78:6f:f6:9e:13:02:0e:b2: 82:37:e7:4e:2b:24:c5:00:66:cf:92:35:bb:ff:7f: 52:9d:fc:1d:d1:79:ab:79:bf:de:01:3e:15:b1:10: 8d:f4:c6:e1:bf:af:70:f6:57:18:da:f6:6f:8a:ae: 3d:8d:05:e8:0b:4c:ba:ec:d7:42:c0:8a:77:f6:47: a4:df:e0:4d:39:4e:a3:5f:d9:d8:2f:9a:08:ae:96: 5a:e0:8e:ec:ad:b3:b9:5c:cd:63:b6:d1:0c:44:fd: 21:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:0B:5F:B0:B1:1E:6A:C1:A2:E9:20:E8:38:7E:75:86:77:F1:B8:3A X509v3 Authority Key Identifier: keyid:AB:C6:FB:A4:B7:84:28:38:79:19:0D:C7:17:E3:4B:4C:D8:82:DA:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:d9:b4:3c:18:a9:54:28:f2:fb:49:2c:22:3b:6e:22:9b:93: 24:44:a7:e6:01:ad:86:98:26:ba:10:6d:76:c8:c3:1f:95:70: 83:46:a9:c6:c3:5e:dc:df:dc:65:37:e7:17:9a:e0:87:97:4b: 68:ce:20:bb:85:68:01:71:da:4b:08:52:51:d4:bd:a2:59:12: d8:98:77:89:41:31:0b:0e:85:e8:f4:11:07:12:74:0e:23:c4: d5:b5:11:95:84:90:f1:74:68:f5:2f:8a:2b:b9:70:34:d9:b6: b2:3c:c2:dd:5a:2f:47:31:9e:07:a3:08:49:e9:67:53:fd:38: 11:75:20:d7:6a:03:ab:16:cc:d1:49:44:18:f3:30:0e:1d:b4: 4f:c9:92:25:9c:86:9f:2c:bc:29:85:e7:c8:98:eb:7c:29:bd: 10:7d:9f:35:90:7a:85:3c:f0:61:2c:b7:78:50:ad:84:c8:dd: f1:35:b8:28:d7:da:13:dd:30:6a:97:10:c7:a0:02:e7:77:05: 35:71:2f:f7:f0:85:f1:6f:1f:20:8f:49:22:99:e0:47:fe:96: 02:54:c5:f0:1d:18:06:8c:41:20:d5:82:b6:c6:6d:5f:5e:8f: 78:a7:df:cd:e0:f8:76:ae:5b:77:7e:b7:22:87:39:73:dc:3b: 95:ed:3d:7e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBPYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJDRTMxMTAvBgNVBAUTKEFCQzZGQkE0Qjc4NDI4Mzg3OTE5MERDNzE3RTM0QjRD RDg4MkRBMDgwHhcNMjUxMjIwMjI1OTM1WhcNMjUxMjI3MjI1OTM1WjAYMRYwFAYD VQQDDA02OTQ3MmE1Ny03YTA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr+ymmvTfslPoFKLJ7ESu8p88wS7lS1xMITZfk9eU/UkLXpV4AVDguU7VmXsv CLiiGS9v5BnENSVyQ9IKhYhniWsAG5W0jDYwxwJVtFfe8VVB6S/zGkg0iXXO+Tgl GERm869Dec6JVEEBjVyHkuHwrDFhn/hDcPHRYtjLb5xCWK4+Q3ZKzRCMHBu7LRZs xXGFlDmkH6poiHSDDZwYeG/2nhMCDrKCN+dOKyTFAGbPkjW7/39Snfwd0Xmreb/e AT4VsRCN9Mbhv69w9lcY2vZviq49jQXoC0y67NdCwIp39kek3+BNOU6jX9nYL5oI rpZa4I7srbO5XM1jttEMRP0hPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC0LX7Cx HmrBoukg6Dh+dYZ38bg6MB8GA1UdIwQYMBaAFKvG+6S3hCg4eRkNxxfjS0zYgtoI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkNFMy81RDc4OTlGNDQw NTkxMUVDQTBBRkFBNERDNEY5QUUwMi9xOGI3cExlRUtEaDVHUTNIRi1OTFROaUMy Z2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I0MUZFNjEwMUQ2NjExRTJBNjJGODc3Qzcy RkQxRkYyL3E4YjdwTGVFS0RoNUdRM0hGLU5MVE5pQzJnZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MkNFMy81RDc4OTlGNDQwNTkxMUVDQTBBRkFBNERDNEY5QUUwMi9xOGI3cExlRUtE aDVHUTNIRi1OTFROaUMyZ2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBR2bQ8GKlUKPL7SSwiO24im5MkRKfmAa2GmCa6EG12yMMflXCDRqnG w17c39xlN+cXmuCHl0toziC7hWgBcdpLCFJR1L2iWRLYmHeJQTELDoXo9BEHEnQO I8TVtRGVhJDxdGj1L4oruXA02bayPMLdWi9HMZ4HowhJ6WdT/TgRdSDXagOrFszR SUQY8zAOHbRPyZIlnIafLLwphefImOt8Kb0QfZ81kHqFPPBhLLd4UK2EyN3xNbgo 19oT3TBqlxDHoALndwU1cS/38IXxbx8gj0kimeBH/pYCVMXwHRgGjEEg1YK2xm1f Xo94p9/N4Ph2rlt3frcihzlz3DuV7T1+ -----END CERTIFICATE-----Generated at Sun Dec 21 12:53:47 2025 by rpki-client