This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9188A46/D64E5A7EDC8411EFB908503BC4F9AE02/qI7iP_jXCCjO28cB54yAdH_8Eco.mft File: qI7iP_jXCCjO28cB54yAdH_8Eco.mft (raw, json) Hash identifier: 3hJsZ+jLHWJ1QeYkNBUyPQUQEJPeovsi+Pcs7mpZqU0= Subject key identifier: DD:C0:FB:61:5B:4E:7D:80:6C:B1:91:22:05:B8:7B:23:A8:00:B7:BE Authority key identifier: A8:8E:E2:3F:F8:D7:08:28:CE:DB:C7:01:E7:8C:80:74:7F:FC:11:CA Certificate issuer: /CN=A9188A46/serialNumber=A88EE23FF8D70828CEDBC701E78C80747FFC11CA Certificate serial: B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qI7iP_jXCCjO28cB54yAdH_8Eco.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9188A46/D64E5A7EDC8411EFB908503BC4F9AE02/qI7iP_jXCCjO28cB54yAdH_8Eco.mft Manifest number: B1 Signing time: Mon 29 Dec 2025 05:14:48 +0000 Manifest this update: Mon 29 Dec 2025 05:14:48 +0000 Manifest next update: Mon 05 Jan 2026 05:14:48 +0000 Files and hashes: 1: qI7iP_jXCCjO28cB54yAdH_8Eco.crl (hash: mLLzcHtu5NKvwuLSVOqoE2E+XI30E0IY4x5ys84hBQY=) 2: 31F9C990668B11F0B10A9677C4F9AE02.roa (hash: 5kn9FhpcD7D1t2P/JHjtJqDW2vPt9hT35/pvgbXUmgI=) 3: 1BE631B0668C11F092BB0479C4F9AE02.roa (hash: +RhAbNo/D383SiAPxxNaU93kgislLiW5JgaMp61Et+s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9188A46/D64E5A7EDC8411EFB908503BC4F9AE02/qI7iP_jXCCjO28cB54yAdH_8Eco.crl rsync://rpki.apnic.net/member_repository/A9188A46/D64E5A7EDC8411EFB908503BC4F9AE02/qI7iP_jXCCjO28cB54yAdH_8Eco.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qI7iP_jXCCjO28cB54yAdH_8Eco.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 Jan 2026 05:14:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 183 (0xb7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9188A46, serialNumber=A88EE23FF8D70828CEDBC701E78C80747FFC11CA Validity Not Before: Dec 29 05:14:48 2025 GMT Not After : Jan 5 05:14:48 2026 GMT Subject: CN=69520e48-7591 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:1f:2e:ac:3b:16:12:81:d6:95:7e:3a:c8:b6: c2:dd:7a:ea:59:55:b6:2f:17:63:fc:e1:ca:bb:a1: 01:f9:a0:ea:90:48:30:e5:17:1a:56:dc:20:55:a9: 37:b5:66:35:96:28:40:c0:cc:2f:ca:b0:f4:bc:04: e3:ed:be:64:ee:6c:e1:39:21:1d:04:27:80:88:86: e6:5e:17:47:35:24:3a:b7:bc:f6:1d:46:03:75:03: 4a:cf:e0:a5:e2:40:65:d3:79:98:64:10:df:0f:9f: 7e:c0:9d:4e:08:5c:37:1b:83:5e:5b:cb:98:d9:ea: ea:bd:48:42:ad:8f:bf:ae:f7:52:53:79:14:3b:ab: 1d:ec:c5:3d:ff:f0:0d:64:08:61:dd:1d:f9:d5:e4: 25:24:42:10:e0:24:2d:97:64:fc:c2:0a:c9:b7:0f: 83:b9:97:34:45:31:b6:79:35:ee:a5:fe:ff:9a:6c: 59:8d:5a:26:4f:f8:42:42:11:50:8e:50:6e:12:11: e0:28:0a:5e:31:b3:24:11:bb:62:d6:0e:92:77:b8: 18:9a:40:b4:6c:a2:82:36:16:49:56:85:d2:5a:ac: d7:a1:d0:c9:0b:53:f0:b5:1f:cd:db:3c:76:3a:89: c5:ec:1f:95:64:74:b1:b3:11:3f:c3:e8:43:88:c7: 3c:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:C0:FB:61:5B:4E:7D:80:6C:B1:91:22:05:B8:7B:23:A8:00:B7:BE X509v3 Authority Key Identifier: keyid:A8:8E:E2:3F:F8:D7:08:28:CE:DB:C7:01:E7:8C:80:74:7F:FC:11:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9188A46/D64E5A7EDC8411EFB908503BC4F9AE02/qI7iP_jXCCjO28cB54yAdH_8Eco.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qI7iP_jXCCjO28cB54yAdH_8Eco.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9188A46/D64E5A7EDC8411EFB908503BC4F9AE02/qI7iP_jXCCjO28cB54yAdH_8Eco.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:5f:1f:87:17:ed:f7:c5:a6:5a:9f:54:e6:dd:08:58:18:df: c9:e3:27:82:39:36:28:4a:64:d4:cb:2b:e4:28:6f:24:81:50: 9d:77:86:8b:f9:c1:3b:c1:1e:4c:ff:c6:33:83:06:d5:39:26: 43:12:3e:b8:2c:50:69:49:a8:77:78:26:aa:6c:2e:24:78:82: f4:24:1a:5d:5a:4c:41:ed:aa:99:6d:9f:24:e8:c0:c1:42:bc: 53:49:71:c0:25:96:cd:60:4e:30:9a:6a:cd:d5:ed:c5:02:ae: 52:43:81:64:f7:2b:11:06:3f:86:74:e8:8d:12:53:2c:e6:84: 2e:6c:c5:c7:95:58:32:7b:bb:61:ee:b4:30:f6:0a:18:1b:90: bd:59:3e:80:aa:b6:95:c8:7f:0a:42:ac:ab:17:b0:f8:11:f2: 73:de:d1:7e:05:61:ca:27:80:6c:bc:19:e7:76:72:b7:64:d9: 0c:23:bf:fe:e7:96:d8:8b:a3:ee:01:b0:91:1a:aa:b3:18:dd: c4:ad:61:f5:c0:3b:25:e1:69:9f:1f:c8:c9:57:a0:6b:b1:20: b7:cf:cd:b5:1d:fd:1c:9f:e2:28:80:a8:50:d0:8b:0a:59:b2: 8d:94:8b:ba:c5:50:03:ab:ff:b1:bf:d0:62:da:71:5d:ac:db: 2a:3a:ff:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODhBNDYxMTAvBgNVBAUTKEE4OEVFMjNGRjhENzA4MjhDRURCQzcwMUU3OEM4MDc0 N0ZGQzExQ0EwHhcNMjUxMjI5MDUxNDQ4WhcNMjYwMTA1MDUxNDQ4WjAYMRYwFAYD VQQDDA02OTUyMGU0OC03NTkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApB8urDsWEoHWlX46yLbC3XrqWVW2Lxdj/OHKu6EB+aDqkEgw5RcaVtwgVak3 tWY1lihAwMwvyrD0vATj7b5k7mzhOSEdBCeAiIbmXhdHNSQ6t7z2HUYDdQNKz+Cl 4kBl03mYZBDfD59+wJ1OCFw3G4NeW8uY2erqvUhCrY+/rvdSU3kUO6sd7MU9//AN ZAhh3R351eQlJEIQ4CQtl2T8wgrJtw+DuZc0RTG2eTXupf7/mmxZjVomT/hCQhFQ jlBuEhHgKApeMbMkEbti1g6Sd7gYmkC0bKKCNhZJVoXSWqzXodDJC1PwtR/N2zx2 OonF7B+VZHSxsxE/w+hDiMc85wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN3A+2Fb Tn2AbLGRIgW4eyOoALe+MB8GA1UdIwQYMBaAFKiO4j/41wgoztvHAeeMgHR//BHK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OEE0Ni9ENjRFNUE3RURD ODQxMUVGQjkwODUwM0JDNEY5QUUwMi9xSTdpUF9qWENDak8yOGNCNTR5QWRIXzhF Y28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FJN2lQX2pYQ0NqTzI4Y0I1NHlBZEhfOEVjby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OEE0Ni9ENjRFNUE3RURDODQxMUVGQjkwODUwM0JDNEY5QUUwMi9xSTdpUF9qWEND ak8yOGNCNTR5QWRIXzhFY28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjXx+HF+33xaZan1Tm3QhYGN/J4yeCOTYoSmTUyyvkKG8kgVCdd4aL +cE7wR5M/8YzgwbVOSZDEj64LFBpSah3eCaqbC4keIL0JBpdWkxB7aqZbZ8k6MDB QrxTSXHAJZbNYE4wmmrN1e3FAq5SQ4Fk9ysRBj+GdOiNElMs5oQubMXHlVgye7th 7rQw9goYG5C9WT6AqraVyH8KQqyrF7D4EfJz3tF+BWHKJ4BsvBnndnK3ZNkMI7/+ 55bYi6PuAbCRGqqzGN3ErWH1wDsl4WmfH8jJV6BrsSC3z821Hf0cn+IogKhQ0IsK WbKNlIu6xVADq/+xv9Bi2nFdrNsqOv/0 -----END CERTIFICATE-----Generated at Tue Dec 30 01:32:38 2025 by rpki-client