This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914A140/CC1DCCE8C77411E69816B068C4F9AE02/BQIPvxAg_WO-V9oblwSwqoEDREo.mft File: BQIPvxAg_WO-V9oblwSwqoEDREo.mft (raw, json) Hash identifier: bGnP6NQdcNOAazHtqo9r0BCfiWPPyo8rtbm+79orSF8= Subject key identifier: 17:33:53:59:7A:06:FD:32:95:1C:AE:9C:8F:FF:04:93:60:C7:9A:72 Authority key identifier: 05:02:0F:BF:10:20:FD:63:BE:57:DA:1B:97:04:B0:AA:81:03:44:4A Certificate issuer: /CN=A914A140/serialNumber=05020FBF1020FD63BE57DA1B9704B0AA8103444A Certificate serial: 1D4E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQIPvxAg_WO-V9oblwSwqoEDREo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914A140/CC1DCCE8C77411E69816B068C4F9AE02/BQIPvxAg_WO-V9oblwSwqoEDREo.mft Manifest number: 1D3C Signing time: Thu 18 Dec 2025 16:02:58 +0000 Manifest this update: Thu 18 Dec 2025 16:02:57 +0000 Manifest next update: Thu 25 Dec 2025 16:02:57 +0000 Files and hashes: 1: BQIPvxAg_WO-V9oblwSwqoEDREo.crl (hash: L1cS0TOrCSDAPXEu5NrmHVR7sacS2FwqqG8xdw1qCLE=) 2: 8E652A7AC77611E68B1CDE6AC4F9AE02.roa (hash: y/2fN4L/gwSzwwCp0pT43OYe5/fuip0ysiHVGh2xquc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914A140/CC1DCCE8C77411E69816B068C4F9AE02/BQIPvxAg_WO-V9oblwSwqoEDREo.crl rsync://rpki.apnic.net/member_repository/A914A140/CC1DCCE8C77411E69816B068C4F9AE02/BQIPvxAg_WO-V9oblwSwqoEDREo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQIPvxAg_WO-V9oblwSwqoEDREo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 16:02:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7502 (0x1d4e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914A140, serialNumber=05020FBF1020FD63BE57DA1B9704B0AA8103444A Validity Not Before: Dec 18 16:02:57 2025 GMT Not After : Dec 25 16:02:57 2025 GMT Subject: CN=694425b1-cf75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:af:bc:42:ea:3b:e2:20:c8:21:55:bc:ee:c6: 76:3c:37:0d:23:94:4c:31:05:03:82:58:01:83:f1: 4e:d5:11:87:4d:e9:cb:e0:b9:b1:37:08:20:e3:f6: 12:41:06:29:e4:2c:a4:6c:ae:6e:18:1f:ea:29:57: 7b:cb:95:73:92:20:a6:7c:66:27:26:38:bc:82:23: 68:61:cc:50:44:70:1a:e5:91:c4:45:b6:31:08:48: 66:9a:e5:36:d7:94:6b:69:bf:7b:84:3e:2c:f1:4d: 80:2e:26:47:ec:75:69:74:d6:f0:38:c1:06:52:2c: f9:d7:32:08:32:59:ca:66:b1:9a:8f:33:2d:f9:e7: 44:64:67:ed:fb:83:46:28:21:3b:84:99:99:3a:9f: 93:cb:3b:91:5b:0f:b2:2c:1b:1a:53:4d:fb:4d:b5: a2:95:34:e1:b3:c7:c1:82:5a:6d:a2:d8:c4:fd:85: 88:ab:06:40:03:d8:7b:59:dd:88:6e:05:c9:54:58: 81:ff:af:f7:4d:98:3b:6e:c3:4b:59:7b:56:76:6b: 65:8c:2a:83:50:08:2f:c2:32:6c:82:69:c9:af:ec: 20:8a:22:37:32:55:5e:b3:20:85:8b:24:f7:bd:05: 5b:ac:ec:bf:8a:1b:ee:73:d8:d6:21:3d:70:2d:9c: b5:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:33:53:59:7A:06:FD:32:95:1C:AE:9C:8F:FF:04:93:60:C7:9A:72 X509v3 Authority Key Identifier: keyid:05:02:0F:BF:10:20:FD:63:BE:57:DA:1B:97:04:B0:AA:81:03:44:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914A140/CC1DCCE8C77411E69816B068C4F9AE02/BQIPvxAg_WO-V9oblwSwqoEDREo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQIPvxAg_WO-V9oblwSwqoEDREo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914A140/CC1DCCE8C77411E69816B068C4F9AE02/BQIPvxAg_WO-V9oblwSwqoEDREo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:0c:15:9f:57:ab:b5:c2:4e:81:7b:c2:f1:46:c5:fa:18:c6: 64:26:ce:96:5e:6f:89:90:cb:bb:66:99:4d:53:fa:1f:26:83: 44:c2:1a:26:93:67:61:54:0e:0b:57:09:01:af:89:df:57:77: c7:61:f6:82:2d:10:a7:5c:9d:86:9f:c7:16:25:37:2c:a0:63: f9:d4:0a:91:92:96:37:37:d9:b8:b9:c1:ab:db:dc:bc:bd:9b: 7b:d3:95:c2:e4:f9:81:44:b0:67:66:01:fe:89:c9:22:27:d0: 06:ec:bf:22:8f:11:ab:4e:be:5a:85:fc:d7:2b:f8:40:25:37: d6:21:95:b5:44:9f:4b:fa:9e:27:00:5c:c9:65:7d:ee:e4:5a: 76:03:c5:d5:fd:6f:02:de:01:f7:4b:33:a6:c4:f8:99:22:89: 58:40:bf:fb:b6:b3:c2:4b:1b:51:e0:5f:b7:4e:02:11:2a:f6: 37:cd:b2:e5:b1:3d:fd:d4:4a:dc:54:86:90:fa:81:14:ac:4c: 73:8c:4c:e9:50:51:e0:3f:7e:74:ed:5b:7c:89:0d:63:be:38: 37:1e:10:ea:03:06:0c:89:e6:31:a6:a5:18:e2:f7:5c:b1:33: 63:63:5d:36:d6:a2:6d:07:32:09:b8:6c:74:e7:9d:bc:a4:aa: 5d:a9:ab:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHU4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEExNDAxMTAvBgNVBAUTKDA1MDIwRkJGMTAyMEZENjNCRTU3REExQjk3MDRCMEFB ODEwMzQ0NEEwHhcNMjUxMjE4MTYwMjU3WhcNMjUxMjI1MTYwMjU3WjAYMRYwFAYD VQQDDA02OTQ0MjViMS1jZjc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo6+8Quo74iDIIVW87sZ2PDcNI5RMMQUDglgBg/FO1RGHTenL4LmxNwgg4/YS QQYp5CykbK5uGB/qKVd7y5VzkiCmfGYnJji8giNoYcxQRHAa5ZHERbYxCEhmmuU2 15Rrab97hD4s8U2ALiZH7HVpdNbwOMEGUiz51zIIMlnKZrGajzMt+edEZGft+4NG KCE7hJmZOp+TyzuRWw+yLBsaU037TbWilTThs8fBglptotjE/YWIqwZAA9h7Wd2I bgXJVFiB/6/3TZg7bsNLWXtWdmtljCqDUAgvwjJsgmnJr+wgiiI3MlVesyCFiyT3 vQVbrOy/ihvuc9jWIT1wLZy1lQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBczU1l6 Bv0ylRyunI//BJNgx5pyMB8GA1UdIwQYMBaAFAUCD78QIP1jvlfaG5cEsKqBA0RK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QTE0MC9DQzFEQ0NFOEM3 NzQxMUU2OTgxNkIwNjhDNEY5QUUwMi9CUUlQdnhBZ19XTy1WOW9ibHdTd3FvRURS RW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JRSVB2eEFnX1dPLVY5b2Jsd1N3cW9FRFJFby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QTE0MC9DQzFEQ0NFOEM3NzQxMUU2OTgxNkIwNjhDNEY5QUUwMi9CUUlQdnhBZ19X Ty1WOW9ibHdTd3FvRURSRW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC6DBWfV6u1wk6Be8LxRsX6GMZkJs6WXm+JkMu7ZplNU/ofJoNEwhom k2dhVA4LVwkBr4nfV3fHYfaCLRCnXJ2Gn8cWJTcsoGP51AqRkpY3N9m4ucGr29y8 vZt705XC5PmBRLBnZgH+ickiJ9AG7L8ijxGrTr5ahfzXK/hAJTfWIZW1RJ9L+p4n AFzJZX3u5Fp2A8XV/W8C3gH3SzOmxPiZIolYQL/7trPCSxtR4F+3TgIRKvY3zbLl sT391ErcVIaQ+oEUrExzjEzpUFHgP3507Vt8iQ1jvjg3HhDqAwYMieYxpqUY4vdc sTNjY1021qJtBzIJuGx05528pKpdqauS -----END CERTIFICATE-----Generated at Fri Dec 19 17:58:16 2025 by rpki-client