This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft File: BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft (raw, json) Hash identifier: 7vA5mJFQZhhwan8gtTiXZvHoy854Sr7KP9m+P7WNuLw= Subject key identifier: EE:99:D9:C4:66:4E:A8:98:D6:F6:80:0C:B2:88:65:D8:E7:9F:4D:AD Authority key identifier: 05:0D:C0:3B:5D:59:45:A3:3E:AB:95:18:17:F1:67:9B:D9:10:C6:AC Certificate issuer: /CN=A91AB8D7/serialNumber=050DC03B5D5945A33EAB951817F1679BD910C6AC Certificate serial: 0224 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft Manifest number: 0220 Signing time: Sun 07 Dec 2025 00:43:34 +0000 Manifest this update: Sun 07 Dec 2025 00:43:34 +0000 Manifest next update: Sun 14 Dec 2025 00:43:34 +0000 Files and hashes: 1: BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.crl (hash: sWtmOFJdAZLcOp7Nm9V/S9/skzPxqbEaO9gteAJ9jFI=) 2: 1ED3BAF898A011ED9D31B05CC4F9AE02.roa (hash: uh86cXyNLUaa3Xl47qiV2uyaXTpPI55uWsM8f80qnzg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.crl rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 00:24:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 548 (0x224) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB8D7, serialNumber=050DC03B5D5945A33EAB951817F1679BD910C6AC Validity Not Before: Dec 7 00:43:34 2025 GMT Not After : Dec 14 00:43:34 2025 GMT Subject: CN=6934cdb6-0ab4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:2f:f9:7b:23:c1:c0:06:c2:c0:14:84:f2:b3: fb:14:a2:a7:78:bd:33:06:7c:67:98:9e:0b:0e:bb: 72:a9:14:d3:94:bb:a0:20:f8:de:3c:49:e2:00:f1: ff:e8:cd:19:68:36:c6:f0:d6:9d:f3:94:0a:6e:99: bd:eb:31:1b:53:ba:c4:9f:e5:53:41:70:f3:c5:6b: 34:25:de:5d:00:78:c2:a8:2c:4d:11:64:a9:43:7e: 7a:6e:15:1b:95:0c:51:4c:0d:8f:b1:b9:e5:b5:5e: 73:be:83:a2:f6:f6:57:89:d9:a8:cd:c8:94:82:49: 04:26:fb:ef:83:f5:63:db:e9:e4:f0:33:6a:54:aa: 87:20:5e:30:34:07:e7:ee:cd:35:b0:91:05:0c:e1: 95:7a:04:96:2c:18:e0:cb:3a:98:87:07:83:a6:1b: a3:2a:b3:06:ae:93:a5:a8:ad:d5:8a:61:e7:97:34: 66:e5:01:7f:f0:2d:cc:5e:80:90:c4:0d:72:19:9b: 36:ef:45:45:3b:94:2d:6e:1f:27:ba:52:6e:7d:da: 16:96:d0:ce:e6:22:0b:e5:f9:19:e8:6d:46:98:eb: 65:d4:81:e4:5d:0a:6f:d8:1c:f5:32:14:56:8d:23: f4:7d:2a:73:84:97:d1:f5:1d:b0:50:f3:8f:2b:c3: f6:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:99:D9:C4:66:4E:A8:98:D6:F6:80:0C:B2:88:65:D8:E7:9F:4D:AD X509v3 Authority Key Identifier: keyid:05:0D:C0:3B:5D:59:45:A3:3E:AB:95:18:17:F1:67:9B:D9:10:C6:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:5d:10:c3:24:58:b1:17:cb:41:49:68:b9:57:a0:1d:eb:75: 9e:6a:65:ab:dc:30:df:10:40:d1:1c:67:3b:2d:51:e4:70:dc: 09:db:44:55:27:98:3e:02:16:ca:be:52:31:d9:05:74:bc:36: 38:e8:db:c2:f9:fe:73:26:03:83:e0:88:a4:3d:71:65:4d:d9: 5b:70:2e:47:73:55:1d:3e:99:60:3e:a2:9d:02:dc:1e:a9:9e: 8d:b6:de:dd:22:2e:18:61:fd:e1:ed:42:e9:c7:a0:f4:6b:e3: 44:47:97:65:76:7f:f6:45:5b:52:32:21:d3:f4:6e:09:68:32: 12:09:40:a4:d0:76:7a:c2:db:67:4b:a4:a6:d1:8d:bd:b3:57: e9:86:9f:67:6a:f5:6d:b2:e1:8c:40:ed:d6:03:d3:80:93:de: 5b:03:66:7b:e7:6c:e7:c2:40:c4:4b:8a:ff:85:83:67:47:bf: 83:1c:f0:7f:ed:f1:88:74:a6:9a:80:ab:f9:a3:59:8e:a6:a2: c3:14:82:0b:86:ff:2b:6f:55:b2:7f:6b:5f:0a:90:6c:9f:4e: fa:83:34:ff:c3:54:a9:e2:7d:1c:43:db:91:a9:ef:bd:80:b2: ae:d0:ba:ab:d8:70:9b:78:2f:95:a9:3c:7c:e7:5d:4a:bd:2a: 12:1f:98:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI4RDcxMTAvBgNVBAUTKDA1MERDMDNCNUQ1OTQ1QTMzRUFCOTUxODE3RjE2NzlC RDkxMEM2QUMwHhcNMjUxMjA3MDA0MzM0WhcNMjUxMjE0MDA0MzM0WjAYMRYwFAYD VQQDEw02OTM0Y2RiNi0wYWI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAty/5eyPBwAbCwBSE8rP7FKKneL0zBnxnmJ4LDrtyqRTTlLugIPjePEniAPH/ 6M0ZaDbG8Nad85QKbpm96zEbU7rEn+VTQXDzxWs0Jd5dAHjCqCxNEWSpQ356bhUb lQxRTA2PsbnltV5zvoOi9vZXidmozciUgkkEJvvvg/Vj2+nk8DNqVKqHIF4wNAfn 7s01sJEFDOGVegSWLBjgyzqYhweDphujKrMGrpOlqK3VimHnlzRm5QF/8C3MXoCQ xA1yGZs270VFO5Qtbh8nulJufdoWltDO5iIL5fkZ6G1GmOtl1IHkXQpv2Bz1MhRW jSP0fSpzhJfR9R2wUPOPK8P2+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO6Z2cRm TqiY1vaADLKIZdjnn02tMB8GA1UdIwQYMBaAFAUNwDtdWUWjPquVGBfxZ5vZEMas MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjhENy9CNjdGMzAxQTk4 OUQxMUVEQjRFMzBGNUNDNEY5QUUwMi9CUTNBTzExWlJhTS1xNVVZRl9Gbm05a1F4 cXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JRM0FPMTFaUmFNLXE1VVlGX0ZubTlrUXhxdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjhENy9CNjdGMzAxQTk4OUQxMUVEQjRFMzBGNUNDNEY5QUUwMi9CUTNBTzExWlJh TS1xNVVZRl9Gbm05a1F4cXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAiXRDDJFixF8tBSWi5V6Ad63WeamWr3DDfEEDRHGc7LVHkcNwJ20RV J5g+AhbKvlIx2QV0vDY46NvC+f5zJgOD4IikPXFlTdlbcC5Hc1UdPplgPqKdAtwe qZ6Ntt7dIi4YYf3h7ULpx6D0a+NER5dldn/2RVtSMiHT9G4JaDISCUCk0HZ6wttn S6Sm0Y29s1fphp9navVtsuGMQO3WA9OAk95bA2Z752znwkDES4r/hYNnR7+DHPB/ 7fGIdKaagKv5o1mOpqLDFIILhv8rb1Wyf2tfCpBsn076gzT/w1Sp4n0cQ9uRqe+9 gLKu0Lqr2HCbeC+VqTx8511KvSoSH5iH -----END CERTIFICATE-----Generated at Sun Dec 7 03:48:52 2025 by rpki-client