This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft File: BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft (raw, json) Hash identifier: xHpAIdHIG4gCZOFKIH9R5QgQ2+msevvBbE/lM4AWNh8= Subject key identifier: C0:58:5C:DA:A4:83:42:F8:D3:CB:7F:DC:90:B9:D8:44:3C:B3:C7:23 Authority key identifier: 05:0D:C0:3B:5D:59:45:A3:3E:AB:95:18:17:F1:67:9B:D9:10:C6:AC Certificate issuer: /CN=A91AB8D7/serialNumber=050DC03B5D5945A33EAB951817F1679BD910C6AC Certificate serial: 0231 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft Manifest number: 022C Signing time: Sat 27 Dec 2025 01:09:23 +0000 Manifest this update: Sat 27 Dec 2025 01:09:22 +0000 Manifest next update: Sat 03 Jan 2026 01:09:22 +0000 Files and hashes: 1: BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.crl (hash: UZe25HjvsKqHLDgQNFct5S5PA3HPJ5jMVoHejRzw3Go=) 2: 1ED3BAF898A011ED9D31B05CC4F9AE02.roa (hash: GynF0Ay+F7v6ZNuRVcxpGuP9OQi3GMJtHrKy3/D7ZPM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.crl rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 Jan 2026 01:09:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 561 (0x231) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB8D7, serialNumber=050DC03B5D5945A33EAB951817F1679BD910C6AC Validity Not Before: Dec 27 01:09:22 2025 GMT Not After : Jan 3 01:09:22 2026 GMT Subject: CN=694f31c3-e067 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:f2:bb:47:cc:5d:a7:01:73:d9:cd:d3:ca:16: 0f:11:e1:f2:96:3f:46:24:00:48:45:f2:71:28:25: 2c:98:25:55:df:12:7f:ba:12:26:73:c2:13:75:51: 28:7a:44:11:f4:20:61:6e:96:b2:94:c7:b1:27:7a: bd:2f:41:73:a1:35:e1:f4:f7:d4:81:65:b9:d2:72: 73:f2:9d:c2:a1:94:80:c5:87:6d:bd:d7:a7:c4:4c: 9d:32:0b:c2:23:7b:e6:1d:68:14:57:b0:14:26:f9: 7a:0f:36:82:88:14:ff:57:04:35:2d:74:b1:d5:df: ef:a0:03:26:0b:c3:47:5c:d8:c7:f9:b9:58:9f:49: 89:8d:0a:66:6d:d7:02:09:06:52:d3:de:e7:30:ad: c6:bf:04:b9:73:dc:dd:8d:3e:f5:3d:50:59:8e:9c: df:e2:a9:fb:f8:2d:ef:30:8a:d6:fb:36:64:6c:7c: e8:e7:2e:46:2b:f1:b2:67:d6:59:5d:17:a9:28:c0: ba:13:2e:18:6b:1d:7c:bd:bd:f7:78:e6:78:1d:bb: 50:da:fe:d8:48:59:e1:7a:84:69:d8:7a:a1:33:66: 30:9e:b2:93:cb:fb:6b:ff:ad:90:9e:4e:06:c0:cc: 0a:a0:c6:39:2b:6a:07:88:4b:fd:74:c6:82:c0:e4: f1:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:58:5C:DA:A4:83:42:F8:D3:CB:7F:DC:90:B9:D8:44:3C:B3:C7:23 X509v3 Authority Key Identifier: keyid:05:0D:C0:3B:5D:59:45:A3:3E:AB:95:18:17:F1:67:9B:D9:10:C6:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:05:61:f0:dc:73:8a:d5:d8:03:04:3e:1b:da:1f:18:64:88: ab:e3:26:e1:6c:06:74:33:ce:2e:dd:5c:33:cd:0c:67:ec:b2: 73:30:14:2c:fe:11:a5:e4:19:39:19:e2:38:52:66:81:cf:bc: 93:5e:ac:40:b6:89:2f:df:1a:a5:29:4b:76:7d:cb:17:c0:7e: 87:00:b6:67:de:4f:7f:6b:e7:bc:4a:df:56:95:fb:21:1a:b3: 00:b8:8c:6f:fe:c9:85:78:ce:10:f7:8d:7f:a3:ce:5e:d4:20: 18:5b:65:54:f3:fa:1d:7c:dc:8d:0e:e0:44:ea:9e:ae:f2:14: d9:0a:33:0e:95:7e:1d:e7:5c:59:21:5f:cf:aa:8c:57:9a:9b: cf:e9:2f:66:1b:85:e3:fb:88:0d:d8:1c:a3:c7:e4:9f:f4:79: 3a:46:05:03:3a:f9:4f:ec:23:c9:93:fe:94:a2:98:b9:97:5f: 7f:be:fe:7f:38:74:08:4b:a5:4c:79:d8:67:ca:ae:a8:97:81: 88:56:0c:32:db:38:e3:84:af:7b:91:c5:f6:f7:bd:65:cf:2a: 96:f8:80:07:c8:c5:88:5d:c8:36:26:47:30:97:42:91:56:8c: c4:8e:dc:10:83:90:a8:de:e4:c0:3d:0a:5f:50:de:df:36:67: c6:a7:5d:d0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI4RDcxMTAvBgNVBAUTKDA1MERDMDNCNUQ1OTQ1QTMzRUFCOTUxODE3RjE2NzlC RDkxMEM2QUMwHhcNMjUxMjI3MDEwOTIyWhcNMjYwMTAzMDEwOTIyWjAYMRYwFAYD VQQDDA02OTRmMzFjMy1lMDY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvvK7R8xdpwFz2c3TyhYPEeHylj9GJABIRfJxKCUsmCVV3xJ/uhImc8ITdVEo ekQR9CBhbpaylMexJ3q9L0FzoTXh9PfUgWW50nJz8p3CoZSAxYdtvdenxEydMgvC I3vmHWgUV7AUJvl6DzaCiBT/VwQ1LXSx1d/voAMmC8NHXNjH+blYn0mJjQpmbdcC CQZS097nMK3GvwS5c9zdjT71PVBZjpzf4qn7+C3vMIrW+zZkbHzo5y5GK/GyZ9ZZ XRepKMC6Ey4Yax18vb33eOZ4HbtQ2v7YSFnheoRp2HqhM2YwnrKTy/tr/62Qnk4G wMwKoMY5K2oHiEv9dMaCwOTxJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMBYXNqk g0L408t/3JC52EQ8s8cjMB8GA1UdIwQYMBaAFAUNwDtdWUWjPquVGBfxZ5vZEMas MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjhENy9CNjdGMzAxQTk4 OUQxMUVEQjRFMzBGNUNDNEY5QUUwMi9CUTNBTzExWlJhTS1xNVVZRl9Gbm05a1F4 cXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JRM0FPMTFaUmFNLXE1VVlGX0ZubTlrUXhxdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjhENy9CNjdGMzAxQTk4OUQxMUVEQjRFMzBGNUNDNEY5QUUwMi9CUTNBTzExWlJh TS1xNVVZRl9Gbm05a1F4cXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8BWHw3HOK1dgDBD4b2h8YZIir4ybhbAZ0M84u3VwzzQxn7LJzMBQs /hGl5Bk5GeI4UmaBz7yTXqxAtokv3xqlKUt2fcsXwH6HALZn3k9/a+e8St9Wlfsh GrMAuIxv/smFeM4Q941/o85e1CAYW2VU8/odfNyNDuBE6p6u8hTZCjMOlX4d51xZ IV/PqoxXmpvP6S9mG4Xj+4gN2Byjx+Sf9Hk6RgUDOvlP7CPJk/6Uopi5l19/vv5/ OHQIS6VMedhnyq6ol4GIVgwy2zjjhK97kcX2971lzyqW+IAHyMWIXcg2Jkcwl0KR VozEjtwQg5Co3uTAPQpfUN7fNmfGp13Q -----END CERTIFICATE-----Generated at Sun Dec 28 03:01:12 2025 by rpki-client