This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.mft File: baFr8M0J73aPkCE7ZtjLw86TQgY.mft (raw, json) Hash identifier: m8/Ik5SqOGH504cy0bqg/NiR3rCuGWFF3pvr5i2E2DM= Subject key identifier: 3F:9A:A4:FA:48:DC:8B:B5:A1:53:DB:CB:14:7D:7C:E3:0B:E8:2C:21 Authority key identifier: 6D:A1:6B:F0:CD:09:EF:76:8F:90:21:3B:66:D8:CB:C3:CE:93:42:06 Certificate issuer: /CN=A9151B71/serialNumber=6DA16BF0CD09EF768F90213B66D8CBC3CE934206 Certificate serial: 07AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/baFr8M0J73aPkCE7ZtjLw86TQgY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.mft Manifest number: 07A2 Signing time: Sat 06 Dec 2025 20:30:19 +0000 Manifest this update: Sat 06 Dec 2025 20:30:19 +0000 Manifest next update: Sat 13 Dec 2025 20:30:19 +0000 Files and hashes: 1: baFr8M0J73aPkCE7ZtjLw86TQgY.crl (hash: I7AjlbHZSEIX7tB2MSD1/0VklwCcqVy5q9qSpAQ5tng=) 2: C2C5450E608B11F0BF46DC2EC4F9AE02.roa (hash: D1qcgVGZql5RrIKafCkI4bM9fu5CZK6G546UdqksHKg=) 3: 0A866A522EAB11EBAB198239C4F9AE02.roa (hash: 9PkY3r845C6Gg3gR8AKgajQ8wsvmdGvtBQ6YZXFN9yE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.crl rsync://rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/baFr8M0J73aPkCE7ZtjLw86TQgY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1965 (0x7ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9151B71, serialNumber=6DA16BF0CD09EF768F90213B66D8CBC3CE934206 Validity Not Before: Dec 6 20:30:19 2025 GMT Not After : Dec 13 20:30:19 2025 GMT Subject: CN=6934925b-4c7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:43:14:12:55:67:1e:cc:44:1e:64:9e:39:09: df:e9:05:32:98:c7:ad:65:66:ca:27:96:b7:07:99: 67:36:d4:08:a1:6e:08:28:75:f2:59:5d:8d:88:25: 9c:50:b4:54:ac:4c:eb:a8:5a:9e:08:31:07:4b:81: 3b:1d:02:fc:22:76:b5:b1:e3:0e:44:e0:8e:09:91: 09:96:75:68:03:a6:8d:79:4b:bb:2b:d2:30:e0:89: a8:e2:cc:87:c6:41:79:5c:5d:30:d7:b8:72:46:c0: 17:32:1c:de:87:04:71:f6:af:e2:3f:68:7e:5d:7e: d5:ac:36:ad:bd:3b:5d:e5:a9:4f:f2:e3:b2:a1:d6: cd:5f:8b:53:12:af:f4:d3:5d:4f:80:ef:a6:3e:40: db:d3:6a:9a:63:c4:b7:65:d7:da:bc:c1:08:ea:62: e3:5e:f1:78:d5:4c:b9:96:8d:14:df:c2:6b:26:70: bb:97:81:69:41:5b:7f:3c:e6:c1:d2:6a:98:8b:9d: 02:3a:bc:2f:55:fb:aa:8b:c4:51:1f:c2:85:5f:a6: cd:35:e3:d9:aa:f2:09:bb:d1:d7:fd:fe:e3:21:a4: cc:f3:0a:ee:8b:cd:59:1d:cb:8e:f4:a9:ff:f3:a4: 50:3a:28:3d:36:21:41:3b:c7:65:3b:fc:31:84:a2: ec:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:9A:A4:FA:48:DC:8B:B5:A1:53:DB:CB:14:7D:7C:E3:0B:E8:2C:21 X509v3 Authority Key Identifier: keyid:6D:A1:6B:F0:CD:09:EF:76:8F:90:21:3B:66:D8:CB:C3:CE:93:42:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/baFr8M0J73aPkCE7ZtjLw86TQgY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:8f:f6:28:83:69:b9:7c:54:4e:83:2d:ae:84:bf:15:e3:b6: d4:5e:7b:4c:d6:11:0b:86:c3:94:ca:56:b3:48:5f:a8:6c:b1: 27:29:1b:53:5c:9a:84:bb:98:65:b7:0c:7c:a7:c9:5a:cc:ef: 74:e2:6f:ac:9b:63:6e:31:fb:bc:57:b8:29:58:d4:a2:b8:34: 5b:18:e2:a1:ac:18:f4:e6:71:3f:aa:5f:84:26:40:4e:18:53: fd:c4:91:3d:75:c5:19:4e:de:a0:42:fa:70:8a:63:e1:52:6c: ac:10:ce:91:48:6f:5a:5e:28:d8:ff:55:af:a9:2e:40:ca:74: 61:8b:96:5f:58:51:5c:a2:43:64:49:62:a8:e4:07:b9:50:ea: db:91:75:f2:c4:74:14:a8:3f:b5:fb:71:0a:8f:5b:76:99:0d: f7:0b:f5:92:c5:91:3a:cb:4e:05:a6:8d:8f:7e:42:7f:1e:84: 84:ab:bd:8e:53:db:4c:3b:a0:74:99:4e:68:3c:dc:17:fc:14: db:ca:df:b6:e8:79:13:56:a8:44:93:69:11:9f:b5:4c:2f:fc: 97:91:83:de:ee:0d:26:90:e9:91:fe:fa:15:73:5e:1c:da:87: 63:eb:e8:58:45:b5:04:19:00:5b:8e:5d:3f:42:5f:db:1e:5a: a3:b3:db:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB60wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTFCNzExMTAvBgNVBAUTKDZEQTE2QkYwQ0QwOUVGNzY4RjkwMjEzQjY2RDhDQkMz Q0U5MzQyMDYwHhcNMjUxMjA2MjAzMDE5WhcNMjUxMjEzMjAzMDE5WjAYMRYwFAYD VQQDEw02OTM0OTI1Yi00YzdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv0MUElVnHsxEHmSeOQnf6QUymMetZWbKJ5a3B5lnNtQIoW4IKHXyWV2NiCWc ULRUrEzrqFqeCDEHS4E7HQL8Ina1seMOROCOCZEJlnVoA6aNeUu7K9Iw4Imo4syH xkF5XF0w17hyRsAXMhzehwRx9q/iP2h+XX7VrDatvTtd5alP8uOyodbNX4tTEq/0 011PgO+mPkDb02qaY8S3ZdfavMEI6mLjXvF41Uy5lo0U38JrJnC7l4FpQVt/PObB 0mqYi50COrwvVfuqi8RRH8KFX6bNNePZqvIJu9HX/f7jIaTM8wrui81ZHcuO9Kn/ 86RQOig9NiFBO8dlO/wxhKLsgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD+apPpI 3Iu1oVPbyxR9fOML6CwhMB8GA1UdIwQYMBaAFG2ha/DNCe92j5AhO2bYy8POk0IG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MUI3MS85RkQ1RjgwRTJF QTkxMUVCOTE2OEZCMzdDNEY5QUUwMi9iYUZyOE0wSjczYVBrQ0U3WnRqTHc4NlRR Z1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JhRnI4TTBKNzNhUGtDRTdadGpMdzg2VFFnWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MUI3MS85RkQ1RjgwRTJFQTkxMUVCOTE2OEZCMzdDNEY5QUUwMi9iYUZyOE0wSjcz YVBrQ0U3WnRqTHc4NlRRZ1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCej/Yog2m5fFROgy2uhL8V47bUXntM1hELhsOUylazSF+obLEnKRtT XJqEu5hltwx8p8lazO904m+sm2NuMfu8V7gpWNSiuDRbGOKhrBj05nE/ql+EJkBO GFP9xJE9dcUZTt6gQvpwimPhUmysEM6RSG9aXijY/1WvqS5AynRhi5ZfWFFcokNk SWKo5Ae5UOrbkXXyxHQUqD+1+3EKj1t2mQ33C/WSxZE6y04Fpo2PfkJ/HoSEq72O U9tMO6B0mU5oPNwX/BTbyt+26HkTVqhEk2kRn7VML/yXkYPe7g0mkOmR/voVc14c 2odj6+hYRbUEGQBbjl0/Ql/bHlqjs9s9 -----END CERTIFICATE-----Generated at Sat Dec 6 22:45:02 2025 by rpki-client