This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9188A46/D64E5A7EDC8411EFB908503BC4F9AE02/qI7iP_jXCCjO28cB54yAdH_8Eco.mft File: qI7iP_jXCCjO28cB54yAdH_8Eco.mft (raw, json) Hash identifier: w16FhIc2Z0ej94Y7gskHJSI3ePexQZ3TH1zxyoxkg+8= Subject key identifier: A2:BE:03:F8:4E:AB:4D:26:E6:F1:97:E7:93:E7:DE:87:CF:EA:DA:C8 Authority key identifier: A8:8E:E2:3F:F8:D7:08:28:CE:DB:C7:01:E7:8C:80:74:7F:FC:11:CA Certificate issuer: /CN=A9188A46/serialNumber=A88EE23FF8D70828CEDBC701E78C80747FFC11CA Certificate serial: B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qI7iP_jXCCjO28cB54yAdH_8Eco.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9188A46/D64E5A7EDC8411EFB908503BC4F9AE02/qI7iP_jXCCjO28cB54yAdH_8Eco.mft Manifest number: AD Signing time: Sun 21 Dec 2025 05:19:07 +0000 Manifest this update: Sun 21 Dec 2025 05:19:07 +0000 Manifest next update: Sun 28 Dec 2025 05:19:07 +0000 Files and hashes: 1: qI7iP_jXCCjO28cB54yAdH_8Eco.crl (hash: f9PMkVv4t6eXyY1/MTbEEbFMZmqIMCJ4SaDa5Yb7W98=) 2: 31F9C990668B11F0B10A9677C4F9AE02.roa (hash: 5kn9FhpcD7D1t2P/JHjtJqDW2vPt9hT35/pvgbXUmgI=) 3: 1BE631B0668C11F092BB0479C4F9AE02.roa (hash: +RhAbNo/D383SiAPxxNaU93kgislLiW5JgaMp61Et+s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9188A46/D64E5A7EDC8411EFB908503BC4F9AE02/qI7iP_jXCCjO28cB54yAdH_8Eco.crl rsync://rpki.apnic.net/member_repository/A9188A46/D64E5A7EDC8411EFB908503BC4F9AE02/qI7iP_jXCCjO28cB54yAdH_8Eco.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qI7iP_jXCCjO28cB54yAdH_8Eco.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 05:19:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 179 (0xb3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9188A46, serialNumber=A88EE23FF8D70828CEDBC701E78C80747FFC11CA Validity Not Before: Dec 21 05:19:07 2025 GMT Not After : Dec 28 05:19:07 2025 GMT Subject: CN=6947834b-caf2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:97:06:30:5f:3c:75:17:3d:14:5a:16:34:b5: ef:d3:3a:0b:10:ec:c7:a6:e3:79:9d:cd:ad:66:33: 46:f1:a4:87:40:40:67:e7:68:82:32:42:87:5a:13: 4f:8d:c1:2a:31:f8:87:81:3e:c2:64:48:35:5b:56: b2:0b:46:38:cb:52:c7:5d:a9:40:1f:2e:ee:27:81: 83:3d:3c:3f:4d:52:7e:43:2f:de:4e:d2:13:cf:7e: ba:73:c7:21:b8:02:05:1a:9e:96:eb:43:35:95:92: 2f:d3:71:42:87:71:db:a9:aa:e2:64:bc:b3:26:b1: 79:f4:27:32:2a:b3:57:ba:f3:37:33:cd:6d:6f:dc: 5c:b4:d4:9d:97:a3:6f:7f:ac:48:cd:73:39:2f:90: d5:c2:c5:60:2a:c5:9f:5d:21:54:75:5f:f3:ed:e2: e8:81:ba:d8:9f:9a:2c:d3:55:0d:6d:0b:b7:f7:bc: b8:9d:4d:db:91:28:15:ff:9b:c7:c9:9c:77:3a:38: 70:a5:75:9d:71:55:fe:2c:31:1d:0a:56:5c:0d:95: bf:da:62:59:61:f0:58:e4:9f:55:b1:79:d8:df:51: 57:c0:3c:a5:f2:1c:d6:e9:df:6b:3e:50:50:22:7c: de:55:8d:8d:78:a6:5a:ff:90:35:d1:7f:7f:f6:54: ea:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:BE:03:F8:4E:AB:4D:26:E6:F1:97:E7:93:E7:DE:87:CF:EA:DA:C8 X509v3 Authority Key Identifier: keyid:A8:8E:E2:3F:F8:D7:08:28:CE:DB:C7:01:E7:8C:80:74:7F:FC:11:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9188A46/D64E5A7EDC8411EFB908503BC4F9AE02/qI7iP_jXCCjO28cB54yAdH_8Eco.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qI7iP_jXCCjO28cB54yAdH_8Eco.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9188A46/D64E5A7EDC8411EFB908503BC4F9AE02/qI7iP_jXCCjO28cB54yAdH_8Eco.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:94:68:41:63:6b:2c:b3:88:b9:94:3a:ca:80:19:29:81:1a: 82:e7:62:40:3a:6d:18:75:69:4f:19:d9:c5:3c:1d:9f:5e:6c: 30:95:77:19:e3:cc:94:5f:1f:67:d6:2b:32:0a:30:3b:f1:1a: 3f:5c:95:84:36:c0:13:2a:bf:e5:e0:40:e4:f7:32:79:11:88: 32:a9:01:ce:bc:fb:02:57:04:35:2a:3c:23:82:67:bd:f9:dd: 5d:50:a5:b5:e7:0f:e0:90:dc:82:4f:4c:03:8d:20:60:18:2e: 78:73:b5:14:66:c7:1c:64:33:8e:d9:0b:ed:46:44:ca:b0:c5: dd:ff:a0:f4:d8:b3:62:1f:c0:70:8b:2a:00:27:06:01:4b:28: b9:95:90:84:c3:83:ea:fd:bf:aa:1a:a2:af:59:a1:2c:6f:88: f3:81:d9:31:f2:db:64:ec:12:db:23:dd:a2:b9:11:2b:d4:09: 99:db:57:a1:90:ef:fa:b5:eb:c2:3f:46:18:5f:43:6d:27:b1: 1e:f7:de:bd:e2:3e:02:00:9f:d0:a9:89:0a:a2:fb:01:90:b7: 21:de:fc:a3:e1:26:ec:c2:d2:4d:44:d7:37:1a:69:15:ba:3e: 46:45:21:71:21:5a:b9:1b:5c:f5:df:2a:68:d1:ae:fa:2f:a8: ba:ff:8f:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODhBNDYxMTAvBgNVBAUTKEE4OEVFMjNGRjhENzA4MjhDRURCQzcwMUU3OEM4MDc0 N0ZGQzExQ0EwHhcNMjUxMjIxMDUxOTA3WhcNMjUxMjI4MDUxOTA3WjAYMRYwFAYD VQQDDA02OTQ3ODM0Yi1jYWYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA55cGMF88dRc9FFoWNLXv0zoLEOzHpuN5nc2tZjNG8aSHQEBn52iCMkKHWhNP jcEqMfiHgT7CZEg1W1ayC0Y4y1LHXalAHy7uJ4GDPTw/TVJ+Qy/eTtITz366c8ch uAIFGp6W60M1lZIv03FCh3HbqariZLyzJrF59CcyKrNXuvM3M81tb9xctNSdl6Nv f6xIzXM5L5DVwsVgKsWfXSFUdV/z7eLogbrYn5os01UNbQu397y4nU3bkSgV/5vH yZx3OjhwpXWdcVX+LDEdClZcDZW/2mJZYfBY5J9VsXnY31FXwDyl8hzW6d9rPlBQ InzeVY2NeKZa/5A10X9/9lTqxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKK+A/hO q00m5vGX55Pn3ofP6trIMB8GA1UdIwQYMBaAFKiO4j/41wgoztvHAeeMgHR//BHK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OEE0Ni9ENjRFNUE3RURD ODQxMUVGQjkwODUwM0JDNEY5QUUwMi9xSTdpUF9qWENDak8yOGNCNTR5QWRIXzhF Y28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FJN2lQX2pYQ0NqTzI4Y0I1NHlBZEhfOEVjby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OEE0Ni9ENjRFNUE3RURDODQxMUVGQjkwODUwM0JDNEY5QUUwMi9xSTdpUF9qWEND ak8yOGNCNTR5QWRIXzhFY28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAklGhBY2sss4i5lDrKgBkpgRqC52JAOm0YdWlPGdnFPB2fXmwwlXcZ 48yUXx9n1isyCjA78Ro/XJWENsATKr/l4EDk9zJ5EYgyqQHOvPsCVwQ1Kjwjgme9 +d1dUKW15w/gkNyCT0wDjSBgGC54c7UUZsccZDOO2QvtRkTKsMXd/6D02LNiH8Bw iyoAJwYBSyi5lZCEw4Pq/b+qGqKvWaEsb4jzgdkx8ttk7BLbI92iuREr1AmZ21eh kO/6tevCP0YYX0NtJ7Ee99694j4CAJ/QqYkKovsBkLch3vyj4SbswtJNRNc3GmkV uj5GRSFxIVq5G1z13ypo0a76L6i6/4/A -----END CERTIFICATE-----Generated at Mon Dec 22 01:28:36 2025 by rpki-client