This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft File: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft (raw, json) Hash identifier: FU73oC+B9lnPGkWbdG6/mDpEMi0U/5fl9voMpNpK4Fc= Subject key identifier: 63:01:BE:00:D8:37:E7:D0:D0:99:FA:B1:B5:49:5C:01:37:97:F7:D0 Authority key identifier: AB:C6:FB:A4:B7:84:28:38:79:19:0D:C7:17:E3:4B:4C:D8:82:DA:08 Certificate issuer: /CN=A9172CE3/serialNumber=ABC6FBA4B784283879190DC717E34B4CD882DA08 Certificate serial: 04EF Authority info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft Manifest number: 04E9 Signing time: Sat 06 Dec 2025 22:29:03 +0000 Manifest this update: Sat 06 Dec 2025 22:29:02 +0000 Manifest next update: Sat 13 Dec 2025 22:29:02 +0000 Files and hashes: 1: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.crl (hash: ISGQrkCxeuj38XBKQ4ldxqr4qZozuNTF2F2Rb4kkWT0=) 2: 887BE0D0405D11ECA642D813C4F9AE02.roa (hash: qxVcUGlCZn4SUG82SOAXq9RSMSYslC+bAGjT3ytadTQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.crl rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 22:29:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1263 (0x4ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172CE3, serialNumber=ABC6FBA4B784283879190DC717E34B4CD882DA08 Validity Not Before: Dec 6 22:29:02 2025 GMT Not After : Dec 13 22:29:02 2025 GMT Subject: CN=6934ae2f-5b0b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:87:ca:ce:3e:0f:00:95:cd:5e:6e:40:83:42: af:99:4e:b6:e5:6a:35:66:41:51:55:ab:10:2d:1f: 31:04:65:26:78:49:ff:a6:22:e0:72:53:fa:17:29: a3:8f:bc:f7:75:b1:e3:06:ad:50:73:01:e4:66:ee: 79:d7:19:ac:46:74:a1:52:88:5a:fe:c3:00:47:6e: 8d:5d:f7:ff:7f:c9:6a:03:30:ed:af:d0:41:bb:b3: b7:98:e5:b3:8c:f3:1c:07:b3:54:b4:78:bf:49:ab: 6e:4d:33:33:d2:28:27:cd:cf:0d:6d:5d:31:bb:9a: 78:5f:c9:80:81:ac:22:58:c8:09:ba:07:a2:1c:78: cc:9e:94:8c:74:e3:94:ac:f5:82:e7:20:3c:b8:eb: c4:7e:00:49:50:59:be:52:4d:09:f3:e0:ab:46:a7: 86:ec:7e:18:1b:e6:2a:3b:e8:5b:85:2f:02:a1:c2: fe:bb:75:d0:26:fb:bf:19:d2:14:30:0c:78:2a:95: ae:58:51:1e:80:ec:c6:2c:b6:c0:ba:b3:c2:49:52: 20:1b:c9:76:ac:7a:6c:a7:ea:9d:e3:11:75:16:b4: bf:4f:40:bf:81:67:dd:db:ee:15:f5:19:ee:dc:3a: 02:2a:33:1a:9f:f5:d7:9e:7d:27:cf:30:0f:88:8a: 43:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:01:BE:00:D8:37:E7:D0:D0:99:FA:B1:B5:49:5C:01:37:97:F7:D0 X509v3 Authority Key Identifier: keyid:AB:C6:FB:A4:B7:84:28:38:79:19:0D:C7:17:E3:4B:4C:D8:82:DA:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:a0:40:dc:7f:4b:51:5f:6a:76:22:c2:d2:7b:d1:d9:dd:5c: f6:5e:65:9d:f8:9b:c2:81:13:35:30:3e:6e:43:90:d5:63:fa: b4:11:2a:42:69:d8:8a:92:f1:49:dc:8e:a1:d9:35:12:8f:64: 6d:99:38:85:3c:f5:a3:a8:55:b6:7a:b9:06:c0:6f:00:ec:e3: a2:6b:d3:34:2e:62:f6:e7:70:5a:c0:06:83:57:ec:ba:e2:cc: 68:1d:9e:c2:89:85:96:d2:2f:05:7c:40:5f:0c:bd:00:5c:62: 65:e0:6e:95:b7:8a:3f:fa:60:e1:5c:58:01:9b:71:96:c0:f6: ea:0d:9d:f4:5c:22:b8:51:2c:62:a9:fc:cd:87:c4:7c:58:8a: de:94:51:02:81:e1:ad:9c:c2:09:85:ff:7c:46:ac:37:78:dd: cd:b2:ab:e8:42:a8:58:50:4a:0f:0d:fc:32:a4:5a:35:b5:4e: 40:fb:9e:5d:01:9b:33:27:b9:58:0d:62:05:69:db:cf:39:05: d2:28:af:2b:fb:c2:33:fc:51:37:43:6e:33:a9:a9:ef:dd:b3: 6d:ac:22:37:38:95:4b:81:97:a7:04:bf:98:9f:f6:cc:a6:12: 4f:2f:3c:7f:11:58:f3:88:b3:bc:44:a8:19:ee:cd:a2:25:04: e0:32:cb:47 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBO8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJDRTMxMTAvBgNVBAUTKEFCQzZGQkE0Qjc4NDI4Mzg3OTE5MERDNzE3RTM0QjRD RDg4MkRBMDgwHhcNMjUxMjA2MjIyOTAyWhcNMjUxMjEzMjIyOTAyWjAYMRYwFAYD VQQDEw02OTM0YWUyZi01YjBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzYfKzj4PAJXNXm5Ag0KvmU625Wo1ZkFRVasQLR8xBGUmeEn/piLgclP6Fymj j7z3dbHjBq1QcwHkZu551xmsRnShUoha/sMAR26NXff/f8lqAzDtr9BBu7O3mOWz jPMcB7NUtHi/SatuTTMz0ignzc8NbV0xu5p4X8mAgawiWMgJugeiHHjMnpSMdOOU rPWC5yA8uOvEfgBJUFm+Uk0J8+CrRqeG7H4YG+YqO+hbhS8CocL+u3XQJvu/GdIU MAx4KpWuWFEegOzGLLbAurPCSVIgG8l2rHpsp+qd4xF1FrS/T0C/gWfd2+4V9Rnu 3DoCKjMan/XXnn0nzzAPiIpD1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGMBvgDY N+fQ0Jn6sbVJXAE3l/fQMB8GA1UdIwQYMBaAFKvG+6S3hCg4eRkNxxfjS0zYgtoI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkNFMy81RDc4OTlGNDQw NTkxMUVDQTBBRkFBNERDNEY5QUUwMi9xOGI3cExlRUtEaDVHUTNIRi1OTFROaUMy Z2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I0MUZFNjEwMUQ2NjExRTJBNjJGODc3Qzcy RkQxRkYyL3E4YjdwTGVFS0RoNUdRM0hGLU5MVE5pQzJnZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MkNFMy81RDc4OTlGNDQwNTkxMUVDQTBBRkFBNERDNEY5QUUwMi9xOGI3cExlRUtE aDVHUTNIRi1OTFROaUMyZ2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCqoEDcf0tRX2p2IsLSe9HZ3Vz2XmWd+JvCgRM1MD5uQ5DVY/q0ESpC adiKkvFJ3I6h2TUSj2RtmTiFPPWjqFW2erkGwG8A7OOia9M0LmL253BawAaDV+y6 4sxoHZ7CiYWW0i8FfEBfDL0AXGJl4G6Vt4o/+mDhXFgBm3GWwPbqDZ30XCK4USxi qfzNh8R8WIrelFECgeGtnMIJhf98Rqw3eN3NsqvoQqhYUEoPDfwypFo1tU5A+55d AZszJ7lYDWIFadvPOQXSKK8r+8Iz/FE3Q24zqanv3bNtrCI3OJVLgZenBL+Yn/bM phJPLzx/EVjziLO8RKgZ7s2iJQTgMstH -----END CERTIFICATE-----Generated at Mon Dec 8 10:05:28 2025 by rpki-client