This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft File: BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft (raw, json) Hash identifier: /D23OjLQXwF8Q9Xeebdxjn4oWPm2RdDEzzNF8VMZ5hg= Subject key identifier: CD:54:22:2B:9B:84:9F:B7:0A:B1:DE:13:EE:F6:86:19:7A:7B:D1:E0 Authority key identifier: 05:03:7E:4C:DE:44:EC:66:42:C4:16:9F:A8:51:37:2D:78:FB:FC:AB Certificate issuer: /CN=A915E77C/serialNumber=05037E4CDE44EC6642C4169FA851372D78FBFCAB Certificate serial: 023A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQN-TN5E7GZCxBafqFE3LXj7_Ks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft Manifest number: 0237 Signing time: Fri 19 Dec 2025 01:09:07 +0000 Manifest this update: Fri 19 Dec 2025 01:09:07 +0000 Manifest next update: Fri 26 Dec 2025 01:09:07 +0000 Files and hashes: 1: BQN-TN5E7GZCxBafqFE3LXj7_Ks.crl (hash: 6yIX0sb6ebtxi/3CsPcVIe5pdKgCSK3WqxBD2Dv9+Ao=) 2: A20DDFE2725911ED8CB4D763C4F9AE02.roa (hash: YLNPavuZCOudMxVfyqmjZm9NJz/Z+dCM3fPBM36z61c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.crl rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQN-TN5E7GZCxBafqFE3LXj7_Ks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 01:09:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 570 (0x23a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915E77C, serialNumber=05037E4CDE44EC6642C4169FA851372D78FBFCAB Validity Not Before: Dec 19 01:09:07 2025 GMT Not After : Dec 26 01:09:07 2025 GMT Subject: CN=6944a5b3-7064 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:a5:a9:ca:62:df:ba:b7:b5:f9:69:5e:32:8b: e9:79:a8:ea:a5:df:56:fb:d2:00:9d:6f:b3:14:91: 83:cf:da:10:53:d8:83:83:4f:ef:00:6b:a5:90:8d: 40:08:cc:ba:ca:b4:c5:b9:d7:c8:7a:46:42:85:66: 4f:b8:3f:8e:0c:ad:33:6c:20:cb:c4:d6:a5:91:6f: 7d:5b:65:ba:44:fc:d7:1d:a0:29:37:21:bb:38:2e: 63:b4:a2:ac:ac:8c:73:b7:ad:d0:2f:94:0f:18:15: dc:58:f2:a1:d8:e1:bb:c9:63:83:b6:1a:74:4b:7a: b5:a4:79:a1:6c:96:d0:52:60:51:63:b8:4f:6a:b8: d2:05:28:b3:47:38:61:d9:cc:59:70:50:51:00:82: 50:a3:6c:db:13:2d:d5:ed:ce:45:b4:b8:86:36:93: 4f:6d:d8:d6:74:32:c8:c2:52:94:aa:04:08:27:9f: c2:3b:01:95:74:62:91:40:de:87:c1:f1:d6:ad:e5: 37:e8:f3:81:be:98:b6:ed:b8:06:e4:d4:6d:4a:5c: 82:0d:f8:75:17:7a:2f:d5:93:f2:b4:d0:a9:e4:d0: bd:58:17:8e:1b:59:a7:ea:11:28:a9:54:98:22:d4: 39:8e:7d:6d:78:9c:e6:af:1b:7b:25:ff:77:a1:ae: 9a:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:54:22:2B:9B:84:9F:B7:0A:B1:DE:13:EE:F6:86:19:7A:7B:D1:E0 X509v3 Authority Key Identifier: keyid:05:03:7E:4C:DE:44:EC:66:42:C4:16:9F:A8:51:37:2D:78:FB:FC:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQN-TN5E7GZCxBafqFE3LXj7_Ks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:5b:3e:81:3d:e7:81:11:db:c0:5d:e0:5c:47:61:2c:d7:64: f5:6e:b6:db:cb:1a:91:4b:40:b5:1f:c2:90:60:e2:15:55:8f: c8:20:dd:ca:ba:d0:40:0b:a2:f5:dc:a3:e5:8b:d4:47:d7:e0: 4d:ef:f1:82:64:88:00:be:13:3f:5e:5f:a1:2c:9c:cb:fe:b0: c2:7b:f8:6c:51:51:89:9f:ec:69:4d:84:dd:7d:53:80:c8:5e: 24:dc:1b:bb:58:06:70:63:32:69:49:b5:6a:a2:50:d3:49:97: 8c:6b:3a:37:92:d7:f3:fd:e2:8f:62:23:a8:f1:eb:b3:03:cd: 14:d5:a2:54:b6:fb:7d:f1:09:cb:92:c8:68:1e:bb:49:8b:d6: 7e:fd:b8:cd:4e:d7:81:7e:ce:8c:e9:ff:ca:42:2c:96:6c:03: c7:f5:37:63:99:79:88:17:63:16:9c:81:de:7b:98:0b:1d:3f: 3e:0a:e8:7b:8d:37:94:fd:b9:05:ea:c1:9d:53:cc:04:a5:a2: 67:ef:82:e6:76:da:67:4c:3f:51:aa:20:37:db:d2:ff:5b:ef: 25:6a:2c:0c:29:d9:8d:e9:14:4f:70:4d:94:b5:a7:54:98:5f: 91:10:5a:c8:6d:29:cb:64:e0:c3:28:20:4b:22:4a:d9:b8:85: 54:f2:d9:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUU3N0MxMTAvBgNVBAUTKDA1MDM3RTRDREU0NEVDNjY0MkM0MTY5RkE4NTEzNzJE NzhGQkZDQUIwHhcNMjUxMjE5MDEwOTA3WhcNMjUxMjI2MDEwOTA3WjAYMRYwFAYD VQQDDA02OTQ0YTViMy03MDY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtqWpymLfure1+WleMovpeajqpd9W+9IAnW+zFJGDz9oQU9iDg0/vAGulkI1A CMy6yrTFudfIekZChWZPuD+ODK0zbCDLxNalkW99W2W6RPzXHaApNyG7OC5jtKKs rIxzt63QL5QPGBXcWPKh2OG7yWODthp0S3q1pHmhbJbQUmBRY7hParjSBSizRzhh 2cxZcFBRAIJQo2zbEy3V7c5FtLiGNpNPbdjWdDLIwlKUqgQIJ5/COwGVdGKRQN6H wfHWreU36POBvpi27bgG5NRtSlyCDfh1F3ov1ZPytNCp5NC9WBeOG1mn6hEoqVSY ItQ5jn1teJzmrxt7Jf93oa6aFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM1UIiub hJ+3CrHeE+72hhl6e9HgMB8GA1UdIwQYMBaAFAUDfkzeROxmQsQWn6hRNy14+/yr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RTc3Qy9GNzAwQTlFQzcy NTYxMUVEOTAyMTE1NjJDNEY5QUUwMi9CUU4tVE41RTdHWkN4QmFmcUZFM0xYajdf S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JRTi1UTjVFN0daQ3hCYWZxRkUzTFhqN19Lcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RTc3Qy9GNzAwQTlFQzcyNTYxMUVEOTAyMTE1NjJDNEY5QUUwMi9CUU4tVE41RTdH WkN4QmFmcUZFM0xYajdfS3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCuWz6BPeeBEdvAXeBcR2Es12T1brbbyxqRS0C1H8KQYOIVVY/IIN3K utBAC6L13KPli9RH1+BN7/GCZIgAvhM/Xl+hLJzL/rDCe/hsUVGJn+xpTYTdfVOA yF4k3Bu7WAZwYzJpSbVqolDTSZeMazo3ktfz/eKPYiOo8euzA80U1aJUtvt98QnL kshoHrtJi9Z+/bjNTteBfs6M6f/KQiyWbAPH9TdjmXmIF2MWnIHee5gLHT8+Cuh7 jTeU/bkF6sGdU8wEpaJn74LmdtpnTD9RqiA329L/W+8laiwMKdmN6RRPcE2UtadU mF+REFrIbSnLZODDKCBLIkrZuIVU8tn1 -----END CERTIFICATE-----Generated at Fri Dec 19 17:59:38 2025 by rpki-client