This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.mft File: Q2XRedW3PoqX7eBQXynvAMLWPvk.mft (raw, json) Hash identifier: 1Jl4yG39O/XYg4DUxps+JYhxWsTsthqHhV5L2eFYqbM= Subject key identifier: C1:D6:A0:6E:B9:6B:38:71:DF:DF:5E:4B:84:B7:18:05:39:08:5A:2A Authority key identifier: 43:65:D1:79:D5:B7:3E:8A:97:ED:E0:50:5F:29:EF:00:C2:D6:3E:F9 Certificate issuer: /CN=A9139555/serialNumber=4365D179D5B73E8A97EDE0505F29EF00C2D63EF9 Certificate serial: 030E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2XRedW3PoqX7eBQXynvAMLWPvk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.mft Manifest number: 0305 Signing time: Tue 23 Dec 2025 00:11:44 +0000 Manifest this update: Tue 23 Dec 2025 00:11:44 +0000 Manifest next update: Tue 30 Dec 2025 00:11:44 +0000 Files and hashes: 1: Q2XRedW3PoqX7eBQXynvAMLWPvk.crl (hash: RbJr0eMK+yax0k5fph+fuU46jhkBNcSD5MEvpQJzRX8=) 2: E9A9531644D611F0ABB89277C4F9AE02.roa (hash: GeKHBnqKWQ5odcVSCSiPOuNHSoS5ENhlNwIJeq+zQ50=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.crl rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2XRedW3PoqX7eBQXynvAMLWPvk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 00:11:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 782 (0x30e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9139555, serialNumber=4365D179D5B73E8A97EDE0505F29EF00C2D63EF9 Validity Not Before: Dec 23 00:11:44 2025 GMT Not After : Dec 30 00:11:44 2025 GMT Subject: CN=6949de40-8673 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:d0:0c:06:c5:8e:d9:a4:36:62:df:1e:b8:f9: 2c:24:0b:cf:ce:7b:40:4b:12:ae:b7:33:ea:5f:d4: e9:4d:24:5b:59:72:d9:04:64:5b:36:91:db:9e:f9: 39:a6:1b:bb:ef:5c:f9:34:06:d6:fe:ac:d9:1c:cb: 89:d0:b2:5d:9a:c5:3f:2b:f2:a5:4e:fd:db:df:c2: ec:0c:46:24:da:3e:88:39:01:46:b7:e9:01:4e:f0: b6:ca:26:91:03:62:94:7f:85:12:e3:1f:28:d5:5a: 12:f6:8f:73:02:da:7b:85:22:b5:4a:77:09:c0:98: af:d3:60:bd:5f:78:b1:18:51:21:89:70:20:e0:26: 76:63:ec:56:3d:bf:aa:b3:70:26:86:29:d9:7b:23: ce:ac:c6:b1:3b:13:e9:9c:38:33:38:13:d5:4b:46: c9:c1:2a:94:7b:c4:88:03:62:c4:56:48:95:0e:ae: 2f:9d:58:c0:e0:d8:b8:05:4f:7c:ad:52:76:bb:13: 20:1a:ce:21:30:3b:b5:58:1e:87:de:e7:1d:f8:e1: 5d:e0:d8:c3:80:f8:fd:7d:16:39:bb:0c:e0:df:80: fd:39:89:87:5d:f5:67:b5:47:39:ff:1f:24:b4:7d: 99:0c:e7:10:b5:00:ec:4d:84:76:4a:7e:c2:b3:d3: af:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:D6:A0:6E:B9:6B:38:71:DF:DF:5E:4B:84:B7:18:05:39:08:5A:2A X509v3 Authority Key Identifier: keyid:43:65:D1:79:D5:B7:3E:8A:97:ED:E0:50:5F:29:EF:00:C2:D6:3E:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2XRedW3PoqX7eBQXynvAMLWPvk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:fd:ac:d3:97:47:a7:72:eb:00:96:70:15:cf:ba:5d:83:df: ac:a9:64:50:8d:57:7d:1b:69:a2:ae:45:a8:b4:7c:4e:26:94: e7:f8:04:d5:87:3b:6b:90:ba:c1:fc:fa:76:b6:a8:ca:41:e0: 52:5d:4e:56:51:79:3e:2b:9c:bf:02:1d:3c:38:2c:92:90:83: 3a:d4:d6:3b:4e:00:6b:9d:cf:fa:fb:0a:64:2d:1b:4f:c1:b1: 0e:ad:80:7d:42:ed:39:98:7a:d9:62:b4:4a:92:54:cb:03:88: 1d:bd:1e:db:a0:ff:89:b4:2b:e0:58:50:f2:e4:7e:55:99:4c: f2:fc:37:a4:e8:c3:13:2a:57:7f:fc:16:9d:f5:99:cb:00:4c: c5:f9:81:38:d6:10:e6:c9:f4:e6:47:4c:0b:17:45:22:63:61: 82:cc:61:aa:08:07:66:7e:b4:e4:22:29:a0:41:c1:25:fb:e0: 35:ba:04:38:07:93:e8:2b:43:01:e3:c7:14:3e:b8:a8:6a:80: 33:6d:b1:c7:9d:bc:b7:b4:70:25:50:bd:78:2e:e4:3f:3e:b5: d3:1d:e0:ca:8b:6d:2c:23:f5:57:9f:13:04:3a:dc:50:e8:d4: 2f:ba:c7:67:15:3b:c0:1b:07:d8:de:e0:53:87:15:55:00:57: fb:17:7e:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAw4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzk1NTUxMTAvBgNVBAUTKDQzNjVEMTc5RDVCNzNFOEE5N0VERTA1MDVGMjlFRjAw QzJENjNFRjkwHhcNMjUxMjIzMDAxMTQ0WhcNMjUxMjMwMDAxMTQ0WjAYMRYwFAYD VQQDDA02OTQ5ZGU0MC04NjczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlNAMBsWO2aQ2Yt8euPksJAvPzntASxKutzPqX9TpTSRbWXLZBGRbNpHbnvk5 phu771z5NAbW/qzZHMuJ0LJdmsU/K/KlTv3b38LsDEYk2j6IOQFGt+kBTvC2yiaR A2KUf4US4x8o1VoS9o9zAtp7hSK1SncJwJiv02C9X3ixGFEhiXAg4CZ2Y+xWPb+q s3AmhinZeyPOrMaxOxPpnDgzOBPVS0bJwSqUe8SIA2LEVkiVDq4vnVjA4Ni4BU98 rVJ2uxMgGs4hMDu1WB6H3ucd+OFd4NjDgPj9fRY5uwzg34D9OYmHXfVntUc5/x8k tH2ZDOcQtQDsTYR2Sn7Cs9OviQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMHWoG65 azhx399eS4S3GAU5CFoqMB8GA1UdIwQYMBaAFENl0XnVtz6Kl+3gUF8p7wDC1j75 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTU1NS9EQzdEMTQ1QTAy MkQxMUVEOUQ2NDZCNTdDNEY5QUUwMi9RMlhSZWRXM1BvcVg3ZUJRWHludkFNTFdQ dmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1EyWFJlZFczUG9xWDdlQlFYeW52QU1MV1B2ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OTU1NS9EQzdEMTQ1QTAyMkQxMUVEOUQ2NDZCNTdDNEY5QUUwMi9RMlhSZWRXM1Bv cVg3ZUJRWHludkFNTFdQdmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAR/azTl0encusAlnAVz7pdg9+sqWRQjVd9G2mirkWotHxOJpTn+ATV hztrkLrB/Pp2tqjKQeBSXU5WUXk+K5y/Ah08OCySkIM61NY7TgBrnc/6+wpkLRtP wbEOrYB9Qu05mHrZYrRKklTLA4gdvR7boP+JtCvgWFDy5H5VmUzy/Dek6MMTKld/ /Bad9ZnLAEzF+YE41hDmyfTmR0wLF0UiY2GCzGGqCAdmfrTkIimgQcEl++A1ugQ4 B5PoK0MB48cUPrioaoAzbbHHnby3tHAlUL14LuQ/PrXTHeDKi20sI/VXnxMEOtxQ 6NQvusdnFTvAGwfY3uBThxVVAFf7F35k -----END CERTIFICATE-----Generated at Wed Dec 24 14:09:51 2025 by rpki-client