This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9120BC1/DAC603888C7211F0A2B0AE56C4F9AE02/BKjyj1J-GJFnrMkDDL7a2KnEF7k.mft File: BKjyj1J-GJFnrMkDDL7a2KnEF7k.mft (raw, json) Hash identifier: 60K0LKDYOpPdtV8st6PkAuxZkP1Lqx5f/LNdWOHRwL8= Subject key identifier: 3D:7B:29:31:A2:AC:BC:00:08:35:7F:68:73:D5:59:95:3D:0C:0A:F4 Authority key identifier: 04:A8:F2:8F:52:7E:18:91:67:AC:C9:03:0C:BE:DA:D8:A9:C4:17:B9 Certificate issuer: /CN=A9120BC1/serialNumber=04A8F28F527E189167ACC9030CBEDAD8A9C417B9 Certificate serial: 34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKjyj1J-GJFnrMkDDL7a2KnEF7k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120BC1/DAC603888C7211F0A2B0AE56C4F9AE02/BKjyj1J-GJFnrMkDDL7a2KnEF7k.mft Manifest number: 31 Signing time: Fri 05 Dec 2025 05:27:04 +0000 Manifest this update: Fri 05 Dec 2025 05:27:03 +0000 Manifest next update: Fri 12 Dec 2025 05:27:03 +0000 Files and hashes: 1: BKjyj1J-GJFnrMkDDL7a2KnEF7k.crl (hash: J0ILhs/gLIp6rKxR2YbMWHzLN+33h295qUy7jWq6Ko0=) 2: 309260868C7311F0A82E0E57C4F9AE02.roa (hash: pmJN4rlyAjyIEwtIxMwQqfFU7tME7Agin1X2d5LeW2c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120BC1/DAC603888C7211F0A2B0AE56C4F9AE02/BKjyj1J-GJFnrMkDDL7a2KnEF7k.crl rsync://rpki.apnic.net/member_repository/A9120BC1/DAC603888C7211F0A2B0AE56C4F9AE02/BKjyj1J-GJFnrMkDDL7a2KnEF7k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKjyj1J-GJFnrMkDDL7a2KnEF7k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 05:27:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52 (0x34) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120BC1, serialNumber=04A8F28F527E189167ACC9030CBEDAD8A9C417B9 Validity Not Before: Dec 5 05:27:03 2025 GMT Not After : Dec 12 05:27:03 2025 GMT Subject: CN=69326d28-3d50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:4d:3f:f1:67:9d:4c:e0:ed:f7:74:3f:53:e8: e0:bf:29:bb:62:9d:01:06:04:cf:28:ba:79:5e:d8: 77:fb:78:e5:0f:b3:00:0f:f9:fb:86:72:15:98:e7: 78:3b:05:d8:c4:f6:fb:0d:e7:40:3d:94:13:cf:a7: e2:69:f1:ee:12:e4:28:7d:ff:a3:7b:3b:83:29:70: ea:30:69:f7:c0:5d:78:d8:22:18:1a:43:76:7c:94: d6:5f:d3:89:73:ce:90:9b:bd:5c:9b:fe:fb:f0:16: 8a:ab:d3:32:28:d0:33:f9:89:8b:24:25:e6:76:9b: f2:99:e4:52:1a:7a:ab:79:7f:e9:49:b8:d0:6e:30: ee:d6:c9:dc:02:35:00:75:a2:07:30:3f:80:92:96: d4:6b:de:5c:9d:c2:46:ee:09:9f:b6:21:3f:bb:55: 14:f2:f2:c1:af:5d:d2:92:a6:92:e4:a0:a7:cc:5b: e6:87:1b:38:90:fa:30:56:1f:b6:84:c9:75:f5:0c: e9:23:94:b0:73:57:9e:fd:96:dc:f6:ef:8b:9a:88: cd:0f:ac:86:76:83:ff:dc:cd:63:33:a7:86:37:ae: d3:de:b7:c4:f7:2d:04:85:81:5a:21:59:97:d4:10: c3:52:7c:23:25:ec:1b:7d:1b:36:8c:1b:a0:f0:ab: 0e:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:7B:29:31:A2:AC:BC:00:08:35:7F:68:73:D5:59:95:3D:0C:0A:F4 X509v3 Authority Key Identifier: keyid:04:A8:F2:8F:52:7E:18:91:67:AC:C9:03:0C:BE:DA:D8:A9:C4:17:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120BC1/DAC603888C7211F0A2B0AE56C4F9AE02/BKjyj1J-GJFnrMkDDL7a2KnEF7k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKjyj1J-GJFnrMkDDL7a2KnEF7k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120BC1/DAC603888C7211F0A2B0AE56C4F9AE02/BKjyj1J-GJFnrMkDDL7a2KnEF7k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:09:aa:9a:a4:c1:21:7c:f8:84:a9:a3:98:bc:88:fd:7f:45: a3:38:dd:2b:f6:6c:d5:96:06:d8:64:0c:b7:f9:0a:c0:96:ca: 97:9c:21:de:01:0f:89:28:7c:c9:a1:22:c2:13:5a:83:e5:d7: 77:f8:ec:3e:f9:31:65:64:2d:66:e2:18:ed:05:bd:af:5a:a8: 61:c9:60:11:60:30:1f:8a:2c:48:71:81:22:96:c7:8b:e4:c6: 68:7a:9c:05:0c:43:9f:a5:db:83:1d:4e:0b:d4:d6:fe:66:0a: 12:e4:fe:72:fc:17:16:05:0e:01:27:a2:b5:39:75:d0:f7:fe: d8:31:42:c4:d0:7e:a1:04:b1:ec:ce:27:52:90:95:ac:e7:33: d1:99:d0:01:8b:9a:fe:1e:5e:01:ed:3d:11:09:64:30:5d:4f: 8a:e8:eb:a5:70:de:98:de:47:53:4f:9d:35:aa:01:a3:3b:54: 36:34:85:c5:cc:06:82:06:70:69:f1:21:23:9d:35:8a:d2:04: be:c4:ad:7a:8f:43:ef:7c:88:5c:1f:20:b8:43:82:04:b6:4a: f7:65:38:a2:8f:3f:21:a9:59:aa:ba:07:05:e9:a3:de:6f:01: 2c:ec:bf:e0:7f:8e:af:32:8b:a9:4b:09:a4:db:85:82:76:7b: 55:ea:03:52 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy MEJDMTExMC8GA1UEBRMoMDRBOEYyOEY1MjdFMTg5MTY3QUNDOTAzMENCRURBRDhB OUM0MTdCOTAeFw0yNTEyMDUwNTI3MDNaFw0yNTEyMTIwNTI3MDNaMBgxFjAUBgNV BAMTDTY5MzI2ZDI4LTNkNTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDOTT/xZ51M4O33dD9T6OC/KbtinQEGBM8ounle2Hf7eOUPswAP+fuGchWY53g7 BdjE9vsN50A9lBPPp+Jp8e4S5Ch9/6N7O4MpcOowaffAXXjYIhgaQ3Z8lNZf04lz zpCbvVyb/vvwFoqr0zIo0DP5iYskJeZ2m/KZ5FIaeqt5f+lJuNBuMO7WydwCNQB1 ogcwP4CSltRr3lydwkbuCZ+2IT+7VRTy8sGvXdKSppLkoKfMW+aHGziQ+jBWH7aE yXX1DOkjlLBzV579ltz274uaiM0PrIZ2g//czWMzp4Y3rtPet8T3LQSFgVohWZfU EMNSfCMl7Bt9GzaMG6Dwqw4dAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUPXspMaKs vAAINX9oc9VZlT0MCvQwHwYDVR0jBBgwFoAUBKjyj1J+GJFnrMkDDL7a2KnEF7kw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTIwQkMxL0RBQzYwMzg4OEM3 MjExRjBBMkIwQUU1NkM0RjlBRTAyL0JLanlqMUotR0pGbnJNa0RETDdhMktuRUY3 ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQktqeWoxSi1HSkZuck1rRERMN2EyS25FRjdrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTIw QkMxL0RBQzYwMzg4OEM3MjExRjBBMkIwQUU1NkM0RjlBRTAyL0JLanlqMUotR0pG bnJNa0RETDdhMktuRUY3ay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAA8JqpqkwSF8+ISpo5i8iP1/RaM43Sv2bNWWBthkDLf5CsCWypecId4B D4kofMmhIsITWoPl13f47D75MWVkLWbiGO0Fva9aqGHJYBFgMB+KLEhxgSKWx4vk xmh6nAUMQ5+l24MdTgvU1v5mChLk/nL8FxYFDgEnorU5ddD3/tgxQsTQfqEEsezO J1KQlaznM9GZ0AGLmv4eXgHtPREJZDBdT4ro66Vw3pjeR1NPnTWqAaM7VDY0hcXM BoIGcGnxISOdNYrSBL7ErXqPQ+98iFwfILhDggS2SvdlOKKPPyGpWaq6BwXpo95v ASzsv+B/jq8yi6lLCaTbhYJ2e1XqA1I= -----END CERTIFICATE-----Generated at Sun Dec 7 01:55:08 2025 by rpki-client