This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912978E/D5AE7FAC53CA11EE8049935EC4F9AE02/bfCTVmC1JNKoCAZDaLCvxWU4ppo.mft File: bfCTVmC1JNKoCAZDaLCvxWU4ppo.mft (raw, json) Hash identifier: DsHDUI0KbACBkjygsiVBWIcH1LTNfYC25btEo77hfX4= Subject key identifier: A9:47:87:2B:33:FB:30:E1:10:87:7D:3A:D1:3E:88:6A:AF:C6:01:07 Authority key identifier: 6D:F0:93:56:60:B5:24:D2:A8:08:06:43:68:B0:AF:C5:65:38:A6:9A Certificate issuer: /CN=A912978E/serialNumber=6DF0935660B524D2A808064368B0AFC56538A69A Certificate serial: 01AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bfCTVmC1JNKoCAZDaLCvxWU4ppo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912978E/D5AE7FAC53CA11EE8049935EC4F9AE02/bfCTVmC1JNKoCAZDaLCvxWU4ppo.mft Manifest number: 01A5 Signing time: Fri 05 Dec 2025 01:33:17 +0000 Manifest this update: Fri 05 Dec 2025 01:33:16 +0000 Manifest next update: Fri 12 Dec 2025 01:33:16 +0000 Files and hashes: 1: bfCTVmC1JNKoCAZDaLCvxWU4ppo.crl (hash: ajgz1Zg8pw5X+n3bjrA4wATpCiW4ofd5ByiV+annXSQ=) 2: 59923F2CA72011EEA63ABF4AC4F9AE02.roa (hash: eNZ801LzfUJJfFcQXfd+LEPeNYyxq0IQnV6OW/T3oK8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912978E/D5AE7FAC53CA11EE8049935EC4F9AE02/bfCTVmC1JNKoCAZDaLCvxWU4ppo.crl rsync://rpki.apnic.net/member_repository/A912978E/D5AE7FAC53CA11EE8049935EC4F9AE02/bfCTVmC1JNKoCAZDaLCvxWU4ppo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bfCTVmC1JNKoCAZDaLCvxWU4ppo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 01:33:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 427 (0x1ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912978E, serialNumber=6DF0935660B524D2A808064368B0AFC56538A69A Validity Not Before: Dec 5 01:33:16 2025 GMT Not After : Dec 12 01:33:16 2025 GMT Subject: CN=6932365d-f61e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:c8:72:1c:92:e0:35:46:16:3d:47:b2:32:e6: aa:0a:d5:ef:0d:08:d3:3c:0d:0d:5a:9b:89:d4:2c: 78:76:77:79:76:67:50:73:ff:3c:66:c7:32:4b:c5: ee:f2:be:9a:e1:ae:98:76:c2:43:b0:cf:ce:37:b1: 61:10:dc:d2:e9:90:7c:aa:26:94:22:45:60:d7:9a: d0:ee:06:a7:85:ae:92:70:59:7c:a1:3b:24:c6:bb: 78:cd:53:47:8b:96:79:83:4e:72:02:dd:bf:66:3a: 01:ef:40:e6:2d:5e:d9:fc:76:6b:b2:5c:4a:5e:3b: 76:f0:b0:c1:30:6c:41:7b:ad:0d:6f:26:c6:f5:5f: 6d:f3:d0:52:3b:9e:04:7b:a1:61:1c:c2:15:66:0c: eb:88:ca:4f:2b:b7:9e:d8:c2:dc:25:e2:78:4b:84: 74:38:e0:e6:5c:2f:60:f2:c0:76:73:72:92:c4:b3: 33:92:ca:bc:fa:3e:2b:b7:55:d8:b3:c1:8c:93:a8: 7d:09:58:73:08:56:c9:31:32:b5:c3:14:07:6e:fc: aa:da:39:08:53:4f:54:88:3b:0c:53:e7:32:40:0f: 6c:c2:8f:07:08:1a:80:a0:1b:fe:1f:7d:bd:11:a9: 05:a3:96:28:96:c5:bf:49:99:33:11:c9:68:72:6b: 06:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:47:87:2B:33:FB:30:E1:10:87:7D:3A:D1:3E:88:6A:AF:C6:01:07 X509v3 Authority Key Identifier: keyid:6D:F0:93:56:60:B5:24:D2:A8:08:06:43:68:B0:AF:C5:65:38:A6:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912978E/D5AE7FAC53CA11EE8049935EC4F9AE02/bfCTVmC1JNKoCAZDaLCvxWU4ppo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bfCTVmC1JNKoCAZDaLCvxWU4ppo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912978E/D5AE7FAC53CA11EE8049935EC4F9AE02/bfCTVmC1JNKoCAZDaLCvxWU4ppo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:ce:d9:53:53:8e:37:c8:66:3e:81:7d:63:31:ae:f0:cc:0f: 90:8c:7a:01:32:7e:cf:ff:f7:4a:fc:bf:a3:92:a6:56:8b:ed: 96:f3:82:9d:c2:c6:87:84:cf:93:3e:f8:a8:d5:09:23:4b:2b: 95:4a:b4:40:5a:45:f1:73:f2:25:63:4f:d3:aa:52:37:dc:f5: 18:82:c4:c0:77:cb:b1:35:f7:af:c1:78:09:b6:2a:ee:40:63: a5:57:22:dc:b0:a3:a3:00:e6:82:d9:8b:d0:b2:0e:dc:d0:7a: 78:44:22:35:a8:a3:d4:f3:45:eb:32:35:3f:dd:95:4b:a4:05: c6:25:58:a0:3f:f2:4f:80:71:17:3b:6f:f7:74:fc:f4:e2:ef: a3:b3:79:c3:16:85:f2:01:4a:0d:cc:83:bc:c2:c5:9b:e0:bb: 68:a3:aa:52:bb:bf:0b:a5:c3:b2:f1:8f:17:58:83:a3:77:b9: dd:ac:b4:9b:87:24:c8:63:63:27:8e:a3:4e:12:1e:bd:42:94: fe:8c:56:c3:fb:2d:b7:5c:33:ee:30:46:31:04:14:9c:06:fe: 75:b3:ce:96:9e:01:b2:20:08:4e:df:5d:bd:02:1d:cf:a6:37: 20:49:4d:18:9d:b0:c0:bb:fd:23:6c:b7:f6:71:73:a5:42:4b: 7f:a7:46:a5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjk3OEUxMTAvBgNVBAUTKDZERjA5MzU2NjBCNTI0RDJBODA4MDY0MzY4QjBBRkM1 NjUzOEE2OUEwHhcNMjUxMjA1MDEzMzE2WhcNMjUxMjEyMDEzMzE2WjAYMRYwFAYD VQQDEw02OTMyMzY1ZC1mNjFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3shyHJLgNUYWPUeyMuaqCtXvDQjTPA0NWpuJ1Cx4dnd5dmdQc/88ZscyS8Xu 8r6a4a6YdsJDsM/ON7FhENzS6ZB8qiaUIkVg15rQ7ganha6ScFl8oTskxrt4zVNH i5Z5g05yAt2/ZjoB70DmLV7Z/HZrslxKXjt28LDBMGxBe60NbybG9V9t89BSO54E e6FhHMIVZgzriMpPK7ee2MLcJeJ4S4R0OODmXC9g8sB2c3KSxLMzksq8+j4rt1XY s8GMk6h9CVhzCFbJMTK1wxQHbvyq2jkIU09UiDsMU+cyQA9swo8HCBqAoBv+H329 EakFo5YolsW/SZkzEclocmsGPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKlHhysz +zDhEId9OtE+iGqvxgEHMB8GA1UdIwQYMBaAFG3wk1ZgtSTSqAgGQ2iwr8VlOKaa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOTc4RS9ENUFFN0ZBQzUz Q0ExMUVFODA0OTkzNUVDNEY5QUUwMi9iZkNUVm1DMUpOS29DQVpEYUxDdnhXVTRw cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JmQ1RWbUMxSk5Lb0NBWkRhTEN2eFdVNHBwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OTc4RS9ENUFFN0ZBQzUzQ0ExMUVFODA0OTkzNUVDNEY5QUUwMi9iZkNUVm1DMUpO S29DQVpEYUxDdnhXVTRwcG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPztlTU443yGY+gX1jMa7wzA+QjHoBMn7P//dK/L+jkqZWi+2W84Kd wsaHhM+TPvio1QkjSyuVSrRAWkXxc/IlY0/TqlI33PUYgsTAd8uxNfevwXgJtiru QGOlVyLcsKOjAOaC2YvQsg7c0Hp4RCI1qKPU80XrMjU/3ZVLpAXGJVigP/JPgHEX O2/3dPz04u+js3nDFoXyAUoNzIO8wsWb4Ltoo6pSu78LpcOy8Y8XWIOjd7ndrLSb hyTIY2MnjqNOEh69QpT+jFbD+y23XDPuMEYxBBScBv51s86WngGyIAhO3129Ah3P pjcgSU0YnbDAu/0jbLf2cXOlQkt/p0al -----END CERTIFICATE-----Generated at Sat Dec 6 16:00:52 2025 by rpki-client