This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912978E/D5AE7FAC53CA11EE8049935EC4F9AE02/bfCTVmC1JNKoCAZDaLCvxWU4ppo.mft File: bfCTVmC1JNKoCAZDaLCvxWU4ppo.mft (raw, json) Hash identifier: rRNKOuRxtPukvsHkHH2dgv3mRuNcd3Ek1zJ9bzUePvs= Subject key identifier: 0F:41:01:3D:F4:36:51:04:EF:20:09:D3:12:A6:04:A6:62:45:F8:15 Authority key identifier: 6D:F0:93:56:60:B5:24:D2:A8:08:06:43:68:B0:AF:C5:65:38:A6:9A Certificate issuer: /CN=A912978E/serialNumber=6DF0935660B524D2A808064368B0AFC56538A69A Certificate serial: 01B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bfCTVmC1JNKoCAZDaLCvxWU4ppo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912978E/D5AE7FAC53CA11EE8049935EC4F9AE02/bfCTVmC1JNKoCAZDaLCvxWU4ppo.mft Manifest number: 01AD Signing time: Sun 21 Dec 2025 02:29:20 +0000 Manifest this update: Sun 21 Dec 2025 02:29:19 +0000 Manifest next update: Sun 28 Dec 2025 02:29:19 +0000 Files and hashes: 1: bfCTVmC1JNKoCAZDaLCvxWU4ppo.crl (hash: YYWMFLWaVITxkRIVcYGYPtwugs48MaLeHnkVqLj6nsE=) 2: 59923F2CA72011EEA63ABF4AC4F9AE02.roa (hash: eNZ801LzfUJJfFcQXfd+LEPeNYyxq0IQnV6OW/T3oK8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912978E/D5AE7FAC53CA11EE8049935EC4F9AE02/bfCTVmC1JNKoCAZDaLCvxWU4ppo.crl rsync://rpki.apnic.net/member_repository/A912978E/D5AE7FAC53CA11EE8049935EC4F9AE02/bfCTVmC1JNKoCAZDaLCvxWU4ppo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bfCTVmC1JNKoCAZDaLCvxWU4ppo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 02:29:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 435 (0x1b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912978E, serialNumber=6DF0935660B524D2A808064368B0AFC56538A69A Validity Not Before: Dec 21 02:29:19 2025 GMT Not After : Dec 28 02:29:19 2025 GMT Subject: CN=69475b80-faeb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:ce:50:dd:5b:e1:6f:df:17:5d:eb:b3:7e:24: a4:d0:02:cd:a2:01:1c:e6:21:2b:4d:06:18:a3:0c: 47:bf:bf:04:a3:c7:78:10:44:f4:bf:fd:c4:ca:04: 07:fb:be:a9:9c:55:1d:c3:ee:e0:c5:b5:1e:99:ea: e4:72:7b:71:4d:0d:b0:b6:53:a2:db:4a:ae:4a:52: f5:05:69:76:b7:d2:88:8b:bd:db:69:2c:f8:a0:95: 48:48:ca:38:14:b4:e3:fa:44:5a:80:25:92:1c:9f: 9d:71:eb:ff:1b:4b:2e:04:99:ae:12:0b:2f:4d:62: 67:66:1a:12:8d:33:23:c7:48:e4:71:1e:68:1c:30: dd:75:77:3d:86:46:4f:aa:dc:0a:fb:a4:51:61:c1: 7a:75:ad:a6:bf:4b:18:ea:63:22:74:4e:54:10:a6: 29:05:c8:39:67:11:70:80:1d:54:03:4e:a7:a8:c6: 7a:c8:07:f0:8a:01:8c:29:9b:16:33:3f:41:69:f2: 4d:b4:6b:0c:dd:8c:a5:8a:2b:16:40:fc:7b:b0:6e: 6f:f4:9b:bf:98:f0:b2:82:4c:5b:df:3b:0e:d2:fa: 9e:bc:f8:26:2f:aa:d9:de:74:41:d5:bd:c2:2a:87: d1:96:98:7c:75:24:06:5b:69:6b:ce:46:db:da:df: d3:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:41:01:3D:F4:36:51:04:EF:20:09:D3:12:A6:04:A6:62:45:F8:15 X509v3 Authority Key Identifier: keyid:6D:F0:93:56:60:B5:24:D2:A8:08:06:43:68:B0:AF:C5:65:38:A6:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912978E/D5AE7FAC53CA11EE8049935EC4F9AE02/bfCTVmC1JNKoCAZDaLCvxWU4ppo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bfCTVmC1JNKoCAZDaLCvxWU4ppo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912978E/D5AE7FAC53CA11EE8049935EC4F9AE02/bfCTVmC1JNKoCAZDaLCvxWU4ppo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:f6:bb:98:d5:5c:83:d8:af:49:aa:5a:13:3d:23:91:11:a0: 73:b9:ec:84:b0:55:b2:7b:3e:19:8f:1d:79:77:f8:43:91:62: 35:14:ff:c1:b8:ca:06:e9:e6:a5:f6:ed:ad:b7:ef:9d:99:c6: b0:c6:a4:41:ba:51:ec:af:09:89:3c:8e:95:45:df:f0:73:c2: 33:63:10:9b:4d:c5:db:0d:7b:c5:5a:3f:46:73:5f:27:c6:3d: 6d:09:b2:d6:27:22:54:7c:91:0a:d3:57:c8:ba:c5:74:46:96: 9d:e1:31:24:7e:99:18:34:ff:8d:7f:44:72:2f:96:ae:00:cc: 0f:fa:c1:bd:da:81:88:ba:99:10:8f:d4:36:00:51:4a:09:95: e5:ed:81:a7:5f:82:ee:d2:46:53:74:2b:e0:7e:89:a9:fd:66: 7b:2a:0a:8d:f9:13:2f:c6:b5:07:a6:88:74:f9:ec:af:fe:bb: 09:18:e7:8c:d6:b6:bc:f9:99:4c:e2:f7:65:6e:45:4b:e7:ec: 31:e4:e1:e1:e9:53:0d:fc:dd:8c:db:68:8e:f3:77:b8:78:b6: e3:f8:e7:ea:ff:f0:da:f9:d6:c3:86:ed:93:1c:9c:2d:aa:6b: 48:d7:93:c7:c8:ca:4b:e4:98:04:b7:1a:87:72:60:5b:9b:fc: fe:19:73:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjk3OEUxMTAvBgNVBAUTKDZERjA5MzU2NjBCNTI0RDJBODA4MDY0MzY4QjBBRkM1 NjUzOEE2OUEwHhcNMjUxMjIxMDIyOTE5WhcNMjUxMjI4MDIyOTE5WjAYMRYwFAYD VQQDDA02OTQ3NWI4MC1mYWViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA185Q3Vvhb98XXeuzfiSk0ALNogEc5iErTQYYowxHv78Eo8d4EET0v/3EygQH +76pnFUdw+7gxbUemerkcntxTQ2wtlOi20quSlL1BWl2t9KIi73baSz4oJVISMo4 FLTj+kRagCWSHJ+dcev/G0suBJmuEgsvTWJnZhoSjTMjx0jkcR5oHDDddXc9hkZP qtwK+6RRYcF6da2mv0sY6mMidE5UEKYpBcg5ZxFwgB1UA06nqMZ6yAfwigGMKZsW Mz9BafJNtGsM3YyliisWQPx7sG5v9Ju/mPCygkxb3zsO0vqevPgmL6rZ3nRB1b3C KofRlph8dSQGW2lrzkbb2t/TzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA9BAT30 NlEE7yAJ0xKmBKZiRfgVMB8GA1UdIwQYMBaAFG3wk1ZgtSTSqAgGQ2iwr8VlOKaa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOTc4RS9ENUFFN0ZBQzUz Q0ExMUVFODA0OTkzNUVDNEY5QUUwMi9iZkNUVm1DMUpOS29DQVpEYUxDdnhXVTRw cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JmQ1RWbUMxSk5Lb0NBWkRhTEN2eFdVNHBwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OTc4RS9ENUFFN0ZBQzUzQ0ExMUVFODA0OTkzNUVDNEY5QUUwMi9iZkNUVm1DMUpO S29DQVpEYUxDdnhXVTRwcG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAD9ruY1VyD2K9JqloTPSOREaBzueyEsFWyez4Zjx15d/hDkWI1FP/B uMoG6eal9u2tt++dmcawxqRBulHsrwmJPI6VRd/wc8IzYxCbTcXbDXvFWj9Gc18n xj1tCbLWJyJUfJEK01fIusV0Rpad4TEkfpkYNP+Nf0RyL5auAMwP+sG92oGIupkQ j9Q2AFFKCZXl7YGnX4Lu0kZTdCvgfomp/WZ7KgqN+RMvxrUHpoh0+eyv/rsJGOeM 1ra8+ZlM4vdlbkVL5+wx5OHh6VMN/N2M22iO83e4eLbj+Ofq//Da+dbDhu2THJwt qmtI15PHyMpL5JgEtxqHcmBbm/z+GXNN -----END CERTIFICATE-----Generated at Sun Dec 21 06:06:08 2025 by rpki-client