This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.mft File: BN7ay9uvpcHBT5KBe5b39QMQCig.mft (raw, json) Hash identifier: nbDtwxC4z4SxD7NnCrTg/jA3KZnJZ8j/SxfsHmrOHAE= Subject key identifier: 46:84:68:D1:7D:7A:B3:C2:42:9B:A8:A3:15:99:74:3C:FB:2A:86:47 Authority key identifier: 04:DE:DA:CB:DB:AF:A5:C1:C1:4F:92:81:7B:96:F7:F5:03:10:0A:28 Certificate issuer: /CN=A912DD36/serialNumber=04DEDACBDBAFA5C1C14F92817B96F7F503100A28 Certificate serial: 011E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BN7ay9uvpcHBT5KBe5b39QMQCig.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.mft Manifest number: 011A Signing time: Fri 05 Dec 2025 02:53:50 +0000 Manifest this update: Fri 05 Dec 2025 02:53:49 +0000 Manifest next update: Fri 12 Dec 2025 02:53:49 +0000 Files and hashes: 1: BN7ay9uvpcHBT5KBe5b39QMQCig.crl (hash: X6qWQtiKG7qiiybSBGvK+HxwX0G8kBLau8IP6Loaf+Q=) 2: 09EC8E16662211EFB6FA446CC4F9AE02.roa (hash: KgWGTanyX6yUWjTf/f+n7HM6qpw4Ft2mJJiD1oMoEsc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.crl rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BN7ay9uvpcHBT5KBe5b39QMQCig.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 02:53:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 286 (0x11e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DD36, serialNumber=04DEDACBDBAFA5C1C14F92817B96F7F503100A28 Validity Not Before: Dec 5 02:53:49 2025 GMT Not After : Dec 12 02:53:49 2025 GMT Subject: CN=6932493d-3580 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:1d:8c:07:cb:a7:a0:66:aa:dc:71:c8:90:cf: ba:60:55:5a:6f:3d:8b:a9:db:e2:09:31:d8:f8:97: e0:7c:f9:ee:5c:50:ea:28:ea:10:bd:49:8f:0e:65: a8:4b:74:f9:61:91:f8:47:d4:64:3b:82:0e:a9:dd: 28:9e:ae:28:c9:c3:95:5c:e0:34:84:78:c4:ee:70: d8:a5:cc:85:8b:d2:e4:fb:b9:49:5b:d6:13:8e:45: 86:15:f9:ba:89:b3:eb:b8:47:d7:e9:27:12:06:f5: e0:76:cf:07:99:34:03:b5:f4:b2:b7:ce:46:b0:f5: ed:2e:8f:5b:5d:d4:e7:66:39:17:be:13:d6:48:7d: 40:4d:69:97:2b:c8:61:52:ce:ab:75:35:5f:c5:ad: aa:b9:ff:43:28:ef:ed:e4:9d:0b:f2:da:a7:4a:4d: 4d:df:11:d9:f1:28:50:13:cf:8c:27:81:60:e4:c5: 4b:23:4a:a7:31:7d:71:c9:dc:c1:12:4a:ea:83:b9: 9a:4e:b4:2d:85:58:2b:26:d9:cc:25:9f:27:42:3c: 82:84:35:87:9a:f9:e4:b4:ce:bd:84:2c:39:d9:0e: ae:a5:02:42:de:5d:26:c6:ce:12:c4:fe:bf:37:ca: 5e:dd:b2:25:a2:c3:ae:fe:7a:b5:56:66:3c:da:99: 04:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:84:68:D1:7D:7A:B3:C2:42:9B:A8:A3:15:99:74:3C:FB:2A:86:47 X509v3 Authority Key Identifier: keyid:04:DE:DA:CB:DB:AF:A5:C1:C1:4F:92:81:7B:96:F7:F5:03:10:0A:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BN7ay9uvpcHBT5KBe5b39QMQCig.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:78:fb:80:66:00:fc:c8:4b:a3:72:cd:b8:e1:ba:ee:9f:30: 13:e4:37:93:74:1f:5c:d2:45:53:01:23:6e:b8:08:bf:44:58: b1:d8:18:51:3d:49:88:ed:9e:9c:ce:17:79:57:43:69:ce:68: 78:30:89:34:03:8a:30:41:b6:6d:f0:79:92:bf:c2:62:3f:f0: 20:85:02:f9:98:69:00:e1:de:3f:4b:ca:1f:03:7b:4a:a4:81: 6e:9c:cc:c7:6b:6a:82:38:bf:2d:7f:63:85:6e:cc:b3:75:10: b1:91:b4:b7:88:96:01:e7:f6:65:99:0f:7c:d3:36:81:49:ae: 37:cd:b7:7b:4b:ff:4e:3d:b6:2f:10:f5:92:c3:4e:cb:04:be: f4:21:97:77:16:f3:6d:e9:7e:58:6d:c7:e4:2a:af:c0:57:8f: 0f:80:ff:80:1d:3d:35:fe:76:bb:2f:e7:2c:29:79:62:bd:5c: b7:8c:cc:43:62:2d:e7:59:2e:1e:cc:b9:61:36:a3:e6:9e:0a: 62:05:47:7a:c2:cd:6f:00:e7:51:b1:a0:af:98:bf:5c:4f:33: 37:d0:8c:f8:d8:d7:3b:72:6b:bb:46:1c:1c:83:fa:8e:c3:9c: 7b:fb:a7:3d:7e:8c:d7:2d:a9:fe:68:84:a5:5c:96:29:72:91: 42:b8:ee:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAR4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkREMzYxMTAvBgNVBAUTKDA0REVEQUNCREJBRkE1QzFDMTRGOTI4MTdCOTZGN0Y1 MDMxMDBBMjgwHhcNMjUxMjA1MDI1MzQ5WhcNMjUxMjEyMDI1MzQ5WjAYMRYwFAYD VQQDEw02OTMyNDkzZC0zNTgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmB2MB8unoGaq3HHIkM+6YFVabz2LqdviCTHY+JfgfPnuXFDqKOoQvUmPDmWo S3T5YZH4R9RkO4IOqd0onq4oycOVXOA0hHjE7nDYpcyFi9Lk+7lJW9YTjkWGFfm6 ibPruEfX6ScSBvXgds8HmTQDtfSyt85GsPXtLo9bXdTnZjkXvhPWSH1ATWmXK8hh Us6rdTVfxa2quf9DKO/t5J0L8tqnSk1N3xHZ8ShQE8+MJ4Fg5MVLI0qnMX1xydzB Ekrqg7maTrQthVgrJtnMJZ8nQjyChDWHmvnktM69hCw52Q6upQJC3l0mxs4SxP6/ N8pe3bIlosOu/nq1VmY82pkEWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEaEaNF9 erPCQpuooxWZdDz7KoZHMB8GA1UdIwQYMBaAFATe2svbr6XBwU+SgXuW9/UDEAoo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyREQzNi83RjQwMjNGMjI1 MzIxMUVGQkM5MzIxMUFDNEY5QUUwMi9CTjdheTl1dnBjSEJUNUtCZTViMzlRTVFD aWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JON2F5OXV2cGNIQlQ1S0JlNWIzOVFNUUNpZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy REQzNi83RjQwMjNGMjI1MzIxMUVGQkM5MzIxMUFDNEY5QUUwMi9CTjdheTl1dnBj SEJUNUtCZTViMzlRTVFDaWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAEePuAZgD8yEujcs244brunzAT5DeTdB9c0kVTASNuuAi/RFix2BhR PUmI7Z6czhd5V0Npzmh4MIk0A4owQbZt8HmSv8JiP/AghQL5mGkA4d4/S8ofA3tK pIFunMzHa2qCOL8tf2OFbsyzdRCxkbS3iJYB5/ZlmQ980zaBSa43zbd7S/9OPbYv EPWSw07LBL70IZd3FvNt6X5YbcfkKq/AV48PgP+AHT01/na7L+csKXlivVy3jMxD Yi3nWS4ezLlhNqPmngpiBUd6ws1vAOdRsaCvmL9cTzM30Iz42Nc7cmu7Rhwcg/qO w5x7+6c9fozXLan+aISlXJYpcpFCuO4o -----END CERTIFICATE-----Generated at Sat Dec 6 17:42:50 2025 by rpki-client