This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft File: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft (raw, json) Hash identifier: iRIvNyhTkooEnQWKXuDy3o57iB6yCLCv/fpRiDb9wfM= Subject key identifier: 05:67:12:3B:91:56:C9:E0:39:3F:F6:74:79:2E:6A:CB:A1:C7:4A:DA Authority key identifier: AB:C6:FB:A4:B7:84:28:38:79:19:0D:C7:17:E3:4B:4C:D8:82:DA:08 Certificate issuer: /CN=A9172CE3/serialNumber=ABC6FBA4B784283879190DC717E34B4CD882DA08 Certificate serial: 04FC Authority info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft Manifest number: 04F6 Signing time: Wed 31 Dec 2025 23:12:00 +0000 Manifest this update: Wed 31 Dec 2025 23:11:59 +0000 Manifest next update: Wed 07 Jan 2026 23:11:59 +0000 Files and hashes: 1: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.crl (hash: ZlfMnrYuJ1XJiOk1Q5J7mu7psQt3CNG9O3owKqOV5a0=) 2: 887BE0D0405D11ECA642D813C4F9AE02.roa (hash: qxVcUGlCZn4SUG82SOAXq9RSMSYslC+bAGjT3ytadTQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.crl rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 07 Jan 2026 23:11:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1276 (0x4fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172CE3, serialNumber=ABC6FBA4B784283879190DC717E34B4CD882DA08 Validity Not Before: Dec 31 23:11:59 2025 GMT Not After : Jan 7 23:11:59 2026 GMT Subject: CN=6955adc0-a861 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:78:01:bd:8c:13:d3:dc:b6:5f:59:73:c3:3e: 46:c3:39:33:2b:2a:0a:21:59:a9:5c:53:7f:85:be: 03:b9:00:ef:19:5d:f4:60:84:e7:d0:58:8f:29:ec: cb:b6:3d:26:b2:d5:2b:20:68:e3:fa:25:b2:b4:58: 19:08:83:63:d4:49:cd:30:ef:ed:d3:83:f4:42:b1: 31:0b:2c:d6:33:9a:fa:e0:03:a4:79:43:92:f7:e8: de:b6:93:83:cd:d1:ce:05:dd:c1:19:0b:ad:e6:02: 0a:2b:6c:c1:8a:13:98:84:6d:a2:9b:90:40:f2:f5: 73:1c:49:ee:2d:c2:27:95:ba:d7:88:ed:ea:fb:86: 9e:2c:ee:e2:cc:60:0d:86:6b:fc:50:5b:79:6c:6d: 4d:a1:25:30:4c:2d:5d:65:5e:d4:4e:77:62:ab:95: 70:1c:1f:db:e0:7c:b7:31:82:f6:11:6a:57:30:5a: c2:e4:44:e1:aa:a2:4e:41:b9:7f:41:b3:da:1f:a6: 37:c1:50:76:b3:22:28:ff:4c:79:90:ec:a3:e4:6a: 84:70:0a:06:d5:d8:88:6e:82:f2:7c:7e:d7:b3:16: c5:7f:1b:ca:c6:17:a5:ff:b6:9e:82:9a:6a:07:1f: b9:04:b7:53:bd:4e:98:9b:40:78:5b:38:56:0c:67: 9c:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:67:12:3B:91:56:C9:E0:39:3F:F6:74:79:2E:6A:CB:A1:C7:4A:DA X509v3 Authority Key Identifier: keyid:AB:C6:FB:A4:B7:84:28:38:79:19:0D:C7:17:E3:4B:4C:D8:82:DA:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:a6:7a:84:bf:96:8a:e0:79:8b:e0:69:08:31:b7:4b:10:12: cb:5a:59:8d:5d:ff:68:1a:1f:58:85:01:71:7b:d3:c8:22:35: 6c:a5:7f:31:c0:68:58:09:d8:fe:46:4d:60:41:80:19:87:3d: 95:fb:0b:e3:aa:7a:95:52:a3:25:b5:3c:d1:5f:51:2f:f4:6e: 01:b5:7e:c4:bc:dd:e9:d3:c9:19:2f:20:47:20:df:56:4c:f0: 7d:6b:b2:40:dd:ef:90:c6:88:ea:c9:dc:00:13:5c:0a:17:de: 48:c0:84:8c:6e:ec:46:9f:a8:78:75:21:79:81:99:96:f4:d2: 7f:61:ee:30:e8:15:00:01:35:c4:a1:a4:aa:a4:ef:b2:3f:d1: ac:48:7c:64:c9:cd:9b:60:05:ba:fb:c3:03:9e:bd:bd:a0:33: 56:3d:8b:29:0e:07:67:c7:53:1b:e5:a8:af:6c:d5:f8:25:f7: 17:ec:b5:36:ab:63:ab:11:e8:db:38:6b:3a:1d:26:d1:a5:eb: 59:63:d7:25:21:ff:ab:3b:f5:c0:70:30:d5:eb:fd:40:01:2c: d1:b9:1c:11:71:5b:4b:32:e4:6d:a0:54:2f:13:78:23:6e:98: bd:1c:e8:3f:2b:bd:4d:04:f7:88:e9:ae:8b:a4:ae:20:2c:3d: 75:8a:c1:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBPwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJDRTMxMTAvBgNVBAUTKEFCQzZGQkE0Qjc4NDI4Mzg3OTE5MERDNzE3RTM0QjRD RDg4MkRBMDgwHhcNMjUxMjMxMjMxMTU5WhcNMjYwMTA3MjMxMTU5WjAYMRYwFAYD VQQDDA02OTU1YWRjMC1hODYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyXgBvYwT09y2X1lzwz5GwzkzKyoKIVmpXFN/hb4DuQDvGV30YITn0FiPKezL tj0mstUrIGjj+iWytFgZCINj1EnNMO/t04P0QrExCyzWM5r64AOkeUOS9+jetpOD zdHOBd3BGQut5gIKK2zBihOYhG2im5BA8vVzHEnuLcInlbrXiO3q+4aeLO7izGAN hmv8UFt5bG1NoSUwTC1dZV7UTndiq5VwHB/b4Hy3MYL2EWpXMFrC5EThqqJOQbl/ QbPaH6Y3wVB2syIo/0x5kOyj5GqEcAoG1diIboLyfH7XsxbFfxvKxhel/7aegppq Bx+5BLdTvU6Ym0B4WzhWDGeccQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAVnEjuR VsngOT/2dHkuasuhx0raMB8GA1UdIwQYMBaAFKvG+6S3hCg4eRkNxxfjS0zYgtoI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkNFMy81RDc4OTlGNDQw NTkxMUVDQTBBRkFBNERDNEY5QUUwMi9xOGI3cExlRUtEaDVHUTNIRi1OTFROaUMy Z2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I0MUZFNjEwMUQ2NjExRTJBNjJGODc3Qzcy RkQxRkYyL3E4YjdwTGVFS0RoNUdRM0hGLU5MVE5pQzJnZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MkNFMy81RDc4OTlGNDQwNTkxMUVDQTBBRkFBNERDNEY5QUUwMi9xOGI3cExlRUtE aDVHUTNIRi1OTFROaUMyZ2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6pnqEv5aK4HmL4GkIMbdLEBLLWlmNXf9oGh9YhQFxe9PIIjVspX8x wGhYCdj+Rk1gQYAZhz2V+wvjqnqVUqMltTzRX1Ev9G4BtX7EvN3p08kZLyBHIN9W TPB9a7JA3e+QxojqydwAE1wKF95IwISMbuxGn6h4dSF5gZmW9NJ/Ye4w6BUAATXE oaSqpO+yP9GsSHxkyc2bYAW6+8MDnr29oDNWPYspDgdnx1Mb5aivbNX4JfcX7LU2 q2OrEejbOGs6HSbRpetZY9clIf+rO/XAcDDV6/1AASzRuRwRcVtLMuRtoFQvE3gj bpi9HOg/K71NBPeI6a6LpK4gLD11isHo -----END CERTIFICATE-----Generated at Thu Jan 1 14:27:35 2026 by rpki-client