This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.mft File: qkNqr8aIBFv1FIhhVG-j_cqYQI4.mft (raw, json) Hash identifier: GsOhJjGrkD3YTUCS5yKYEr7yO3Cdq9QSjDXgQzmm6/g= Subject key identifier: 2B:4E:31:3B:AA:64:AA:33:73:5F:40:5F:0F:DF:B8:35:84:09:9C:C5 Authority key identifier: AA:43:6A:AF:C6:88:04:5B:F5:14:88:61:54:6F:A3:FD:CA:98:40:8E Certificate issuer: /CN=A917E4BA/serialNumber=AA436AAFC688045BF5148861546FA3FDCA98408E Certificate serial: 0B3F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkNqr8aIBFv1FIhhVG-j_cqYQI4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.mft Manifest number: 0B30 Signing time: Mon 22 Dec 2025 18:47:23 +0000 Manifest this update: Mon 22 Dec 2025 18:47:22 +0000 Manifest next update: Mon 29 Dec 2025 18:47:22 +0000 Files and hashes: 1: qkNqr8aIBFv1FIhhVG-j_cqYQI4.crl (hash: 4mVhYDkkZzLnFIYJ+rSR+WPVjsFKKPyojY4Nmxk1M70=) 2: 2512D04C22BE11EC9240097DC4F9AE02.roa (hash: CrylrybJXUyUqaeayMNhPjaFY6Npk3CjmQ0j2NnHemA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.crl rsync://rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkNqr8aIBFv1FIhhVG-j_cqYQI4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 18:47:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2879 (0xb3f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E4BA, serialNumber=AA436AAFC688045BF5148861546FA3FDCA98408E Validity Not Before: Dec 22 18:47:22 2025 GMT Not After : Dec 29 18:47:22 2025 GMT Subject: CN=6949923a-2c1f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:b0:b2:82:7a:f9:2e:43:53:7b:43:66:4b:a8: cb:24:9f:f3:9e:91:f5:16:50:d7:6b:db:d7:2f:ee: e0:8e:5d:f1:25:f9:7a:59:28:93:f5:2c:60:4d:30: 57:ad:65:47:1e:0c:a0:dd:96:ce:ef:7e:f1:4c:ad: d5:3d:b3:7e:db:c6:75:14:06:e1:fb:4f:c6:5f:45: 21:8c:cf:d0:83:81:e5:ab:0a:79:ed:11:d7:07:c2: 75:7c:e8:73:24:af:6f:ec:2e:af:85:86:0d:8b:94: 43:44:36:d8:99:82:78:cf:ac:77:24:7f:ec:4c:51: 04:9f:93:80:8b:b7:fe:b2:92:fb:39:64:f7:b9:0e: 35:82:d7:4b:4b:ee:7a:9c:79:a2:68:5f:0a:23:21: 21:4b:35:dd:45:76:b2:f5:b1:4d:c2:1d:fe:f7:1f: 5f:5e:2a:73:71:e8:d2:05:0d:cd:a8:c9:62:10:a1: 66:1a:8b:c9:d3:e2:e9:ef:ff:83:3c:c3:dc:f2:28: 2b:09:52:28:d2:82:f5:f9:dd:b9:d0:17:88:a5:be: e7:7c:bc:aa:22:ae:a9:93:58:2c:7a:13:e2:5b:35: d2:12:06:12:78:40:e4:a7:2b:d8:e3:e7:66:4b:ab: d8:ac:95:7c:9e:4e:c8:63:77:2c:0a:2b:40:36:d6: 9c:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:4E:31:3B:AA:64:AA:33:73:5F:40:5F:0F:DF:B8:35:84:09:9C:C5 X509v3 Authority Key Identifier: keyid:AA:43:6A:AF:C6:88:04:5B:F5:14:88:61:54:6F:A3:FD:CA:98:40:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkNqr8aIBFv1FIhhVG-j_cqYQI4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:a5:e2:29:dd:23:d5:d8:36:be:f1:42:5a:99:19:a4:b0:ad: 3f:a6:9a:72:60:cf:c5:ce:9a:17:19:81:0e:0f:75:01:1b:a0: 42:3d:b7:89:9b:3c:78:73:c0:02:67:3d:6c:4a:0c:78:6f:0a: 3c:11:c0:26:19:7c:17:52:52:ab:fd:b7:51:ae:06:11:ec:7f: e5:c4:78:5f:4a:d2:b4:dc:7e:e9:96:07:6a:a8:41:8d:e7:45: 31:6e:be:79:a2:9f:82:24:61:c2:60:94:15:8c:41:be:83:c3: c4:2b:42:f6:42:ea:f0:bf:b2:b3:10:0d:bb:86:27:52:c2:c2: ff:ca:6f:4f:a0:85:42:a3:08:4a:88:8f:51:d9:67:ca:c5:f3: f9:73:56:f5:14:74:04:a0:e6:e3:7f:8b:e7:5c:5a:2f:0f:d4: 21:ca:53:60:de:41:fc:ab:f1:f4:8c:80:e6:cc:67:d3:a2:d4: 66:ce:ce:4e:b8:4a:dd:8b:38:8f:71:2e:7a:0c:66:49:e2:22: 54:2d:0d:ad:6d:47:6a:44:02:b0:b9:6d:3c:e3:c7:8e:32:30: df:5c:2e:75:04:1a:83:70:b2:fe:c1:b4:70:e3:91:37:35:b2: ea:9e:4d:29:6d:15:51:90:5f:b8:40:80:c0:b4:80:a1:dc:ed: 81:da:e7:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCz8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U0QkExMTAvBgNVBAUTKEFBNDM2QUFGQzY4ODA0NUJGNTE0ODg2MTU0NkZBM0ZE Q0E5ODQwOEUwHhcNMjUxMjIyMTg0NzIyWhcNMjUxMjI5MTg0NzIyWjAYMRYwFAYD VQQDDA02OTQ5OTIzYS0yYzFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmrCygnr5LkNTe0NmS6jLJJ/znpH1FlDXa9vXL+7gjl3xJfl6WSiT9SxgTTBX rWVHHgyg3ZbO737xTK3VPbN+28Z1FAbh+0/GX0UhjM/Qg4Hlqwp57RHXB8J1fOhz JK9v7C6vhYYNi5RDRDbYmYJ4z6x3JH/sTFEEn5OAi7f+spL7OWT3uQ41gtdLS+56 nHmiaF8KIyEhSzXdRXay9bFNwh3+9x9fXipzcejSBQ3NqMliEKFmGovJ0+Lp7/+D PMPc8igrCVIo0oL1+d250BeIpb7nfLyqIq6pk1gsehPiWzXSEgYSeEDkpyvY4+dm S6vYrJV8nk7IY3csCitANtacUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCtOMTuq ZKozc19AXw/fuDWECZzFMB8GA1UdIwQYMBaAFKpDaq/GiARb9RSIYVRvo/3KmECO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTRCQS9EMDZCRjMyODUy REMxMUVBODI2MDFCMEZDNEY5QUUwMi9xa05xcjhhSUJGdjFGSWhoVkctal9jcVlR STQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FrTnFyOGFJQkZ2MUZJaGhWRy1qX2NxWVFJNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTRCQS9EMDZCRjMyODUyREMxMUVBODI2MDFCMEZDNEY5QUUwMi9xa05xcjhhSUJG djFGSWhoVkctal9jcVlRSTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC1peIp3SPV2Da+8UJamRmksK0/pppyYM/FzpoXGYEOD3UBG6BCPbeJ mzx4c8ACZz1sSgx4bwo8EcAmGXwXUlKr/bdRrgYR7H/lxHhfStK03H7plgdqqEGN 50Uxbr55op+CJGHCYJQVjEG+g8PEK0L2Qurwv7KzEA27hidSwsL/ym9PoIVCowhK iI9R2WfKxfP5c1b1FHQEoObjf4vnXFovD9QhylNg3kH8q/H0jIDmzGfTotRmzs5O uErdiziPcS56DGZJ4iJULQ2tbUdqRAKwuW0848eOMjDfXC51BBqDcLL+wbRw45E3 NbLqnk0pbRVRkF+4QIDAtICh3O2B2ueg -----END CERTIFICATE-----Generated at Tue Dec 23 14:40:15 2025 by rpki-client