This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft File: BKm4kZsiD18-q9D03YXi9b28VQA.mft (raw, json) Hash identifier: u3nLa5dItEqB6xT/U0uik62b4PDdu18MXIelbA0Jvfw= Subject key identifier: 7C:83:7B:9A:C2:2C:80:9E:19:FC:59:7E:12:DE:8E:17:D2:AD:A6:55 Authority key identifier: 04:A9:B8:91:9B:22:0F:5F:3E:AB:D0:F4:DD:85:E2:F5:BD:BC:55:00 Certificate issuer: /CN=A913837F/serialNumber=04A9B8919B220F5F3EABD0F4DD85E2F5BDBC5500 Certificate serial: 01AE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BKm4kZsiD18-q9D03YXi9b28VQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft Manifest number: 01AA Signing time: Fri 05 Dec 2025 01:27:53 +0000 Manifest this update: Fri 05 Dec 2025 01:27:52 +0000 Manifest next update: Fri 12 Dec 2025 01:27:52 +0000 Files and hashes: 1: BKm4kZsiD18-q9D03YXi9b28VQA.crl (hash: gBn1wp6ZlDnKjpjX+fvCJyDR6eOZvthpUA4Ku2elogA=) 2: 3D83357646E411EE82ED8843C4F9AE02.roa (hash: 34LR4muDkvBv1o97MuicPyBMy45vufYYnTs0rk2DkdE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.crl rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BKm4kZsiD18-q9D03YXi9b28VQA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 01:27:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 430 (0x1ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913837F, serialNumber=04A9B8919B220F5F3EABD0F4DD85E2F5BDBC5500 Validity Not Before: Dec 5 01:27:52 2025 GMT Not After : Dec 12 01:27:52 2025 GMT Subject: CN=69323518-bd1a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:c1:1c:84:c3:fa:9d:60:b8:21:28:34:74:00: 3b:16:06:0e:96:0c:a3:32:31:28:7e:e1:63:3d:39: 4a:a7:25:99:fa:fd:8a:42:20:9e:72:3a:34:9e:67: 10:75:fc:52:e6:dd:70:6a:bf:73:d0:c3:f6:82:af: 59:4a:a7:09:69:df:4d:21:eb:98:fb:0b:a5:68:d8: 9f:75:64:68:07:32:37:96:56:4f:be:f6:c1:49:ac: f1:96:32:f9:12:55:24:da:1b:e2:f3:b4:67:fe:eb: 14:f0:0a:57:71:c4:03:47:cb:11:fc:60:7c:7f:14: 84:d2:74:8e:91:f8:30:55:67:50:07:5b:ae:88:02: 3f:c1:9c:3d:c0:e4:8a:51:b4:15:6d:9c:1c:fe:48: 34:64:d9:87:16:0a:c4:ee:1c:1c:86:cd:ac:86:9f: 34:40:6c:f8:5f:0d:f2:bf:cf:e5:bd:2f:17:a0:b2: dd:42:b6:14:21:f0:a5:87:55:48:4b:64:fe:21:53: ef:e3:99:1d:5b:0c:68:f5:24:12:47:af:15:97:9d: cf:f9:96:0c:bc:50:27:7b:1a:e0:31:3b:67:1a:8e: 17:69:3a:12:19:20:84:fc:5e:67:49:b2:f2:a7:82: d0:e9:c4:f1:c5:e9:d0:f2:1c:a3:6a:f4:7f:7d:44: 3c:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:83:7B:9A:C2:2C:80:9E:19:FC:59:7E:12:DE:8E:17:D2:AD:A6:55 X509v3 Authority Key Identifier: keyid:04:A9:B8:91:9B:22:0F:5F:3E:AB:D0:F4:DD:85:E2:F5:BD:BC:55:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BKm4kZsiD18-q9D03YXi9b28VQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:38:18:a9:f4:9b:cd:8a:7a:0b:08:61:f4:55:d5:5a:00:a5: 05:63:56:ac:29:dc:82:c1:29:33:e7:ff:38:95:ef:0b:c2:ad: 76:a0:61:d2:d4:12:a4:6f:62:f5:70:5a:32:42:b5:d1:71:cd: 1b:e2:41:d3:7d:25:10:b4:93:72:0a:a1:f2:89:c0:2b:dc:fe: b5:63:17:c5:a9:68:44:0a:e7:34:b9:06:aa:f2:b6:93:50:e0: fe:be:8c:d5:a9:d3:1f:eb:98:a9:87:b2:b8:13:b2:d7:0a:66: 2c:9e:a1:cc:09:5d:81:4f:68:21:99:3d:fe:14:cd:cc:76:2f: 62:7a:42:88:87:65:58:ff:1f:78:2f:f6:9c:f0:49:43:28:a3: 21:62:e9:68:1a:50:b6:d3:e3:9f:83:a5:b0:c2:31:20:bc:73: 75:d8:1f:e8:9d:86:2a:bb:ba:f1:71:e7:ad:9f:be:2f:d9:b2: 47:1c:63:9c:02:d8:fd:73:de:e7:91:a3:56:34:3b:de:a8:f1: 95:40:b2:53:8a:b0:64:fc:83:b6:26:16:66:fd:af:42:65:c5: 18:87:fa:dc:39:0d:d3:d3:b9:32:9b:a1:06:71:69:81:74:a7: 64:e2:49:f5:09:cb:18:b5:65:aa:75:c5:16:1e:18:e2:0a:0a: b5:a0:e1:84 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAa4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzgzN0YxMTAvBgNVBAUTKDA0QTlCODkxOUIyMjBGNUYzRUFCRDBGNEREODVFMkY1 QkRCQzU1MDAwHhcNMjUxMjA1MDEyNzUyWhcNMjUxMjEyMDEyNzUyWjAYMRYwFAYD VQQDEw02OTMyMzUxOC1iZDFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtsEchMP6nWC4ISg0dAA7FgYOlgyjMjEofuFjPTlKpyWZ+v2KQiCecjo0nmcQ dfxS5t1war9z0MP2gq9ZSqcJad9NIeuY+wulaNifdWRoBzI3llZPvvbBSazxljL5 ElUk2hvi87Rn/usU8ApXccQDR8sR/GB8fxSE0nSOkfgwVWdQB1uuiAI/wZw9wOSK UbQVbZwc/kg0ZNmHFgrE7hwchs2shp80QGz4Xw3yv8/lvS8XoLLdQrYUIfClh1VI S2T+IVPv45kdWwxo9SQSR68Vl53P+ZYMvFAnexrgMTtnGo4XaToSGSCE/F5nSbLy p4LQ6cTxxenQ8hyjavR/fUQ8PwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHyDe5rC LICeGfxZfhLejhfSraZVMB8GA1UdIwQYMBaAFASpuJGbIg9fPqvQ9N2F4vW9vFUA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODM3Ri82NDU5MEMxMjQ2 RTMxMUVFQjVFNDE2NDJDNEY5QUUwMi9CS200a1pzaUQxOC1xOUQwM1lYaTliMjhW UUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JLbTRrWnNpRDE4LXE5RDAzWVhpOWIyOFZRQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODM3Ri82NDU5MEMxMjQ2RTMxMUVFQjVFNDE2NDJDNEY5QUUwMi9CS200a1pzaUQx OC1xOUQwM1lYaTliMjhWUUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCkOBip9JvNinoLCGH0VdVaAKUFY1asKdyCwSkz5/84le8Lwq12oGHS 1BKkb2L1cFoyQrXRcc0b4kHTfSUQtJNyCqHyicAr3P61YxfFqWhECuc0uQaq8raT UOD+vozVqdMf65iph7K4E7LXCmYsnqHMCV2BT2ghmT3+FM3Mdi9iekKIh2VY/x94 L/ac8ElDKKMhYuloGlC20+Ofg6WwwjEgvHN12B/onYYqu7rxceetn74v2bJHHGOc Atj9c97nkaNWNDveqPGVQLJTirBk/IO2JhZm/a9CZcUYh/rcOQ3T07kym6EGcWmB dKdk4kn1CcsYtWWqdcUWHhjiCgq1oOGE -----END CERTIFICATE-----Generated at Sat Dec 6 23:42:21 2025 by rpki-client