This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9156854/DD90C3C0CB2311EF9E86682EC4F9AE02/badIHjljLTOANmkPe0OixINj22g.mft File: badIHjljLTOANmkPe0OixINj22g.mft (raw, json) Hash identifier: WRNsdXj5q5Sh2QNkjJF361wciRBpQLaomBpVB/l+5rk= Subject key identifier: 38:BD:31:64:DE:4E:96:67:EC:46:83:F8:3D:88:17:A1:05:AB:F8:AD Authority key identifier: 6D:A7:48:1E:39:63:2D:33:80:36:69:0F:7B:43:A2:C4:83:63:DB:68 Certificate issuer: /CN=A9156854/serialNumber=6DA7481E39632D338036690F7B43A2C48363DB68 Certificate serial: AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/badIHjljLTOANmkPe0OixINj22g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156854/DD90C3C0CB2311EF9E86682EC4F9AE02/badIHjljLTOANmkPe0OixINj22g.mft Manifest number: AA Signing time: Fri 05 Dec 2025 04:08:07 +0000 Manifest this update: Fri 05 Dec 2025 04:08:06 +0000 Manifest next update: Fri 12 Dec 2025 04:08:06 +0000 Files and hashes: 1: badIHjljLTOANmkPe0OixINj22g.crl (hash: TqGw929G/hyMYvIapcnY1jhcC7qXIp6DjiFZbL4L4l0=) 2: CCE068D6CB2411EF93F63631C4F9AE02.roa (hash: ZSOsUiVtVH7stSF1LBrKEfbqy25tB+towx5vwiTWj1U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156854/DD90C3C0CB2311EF9E86682EC4F9AE02/badIHjljLTOANmkPe0OixINj22g.crl rsync://rpki.apnic.net/member_repository/A9156854/DD90C3C0CB2311EF9E86682EC4F9AE02/badIHjljLTOANmkPe0OixINj22g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/badIHjljLTOANmkPe0OixINj22g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:08:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 171 (0xab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156854, serialNumber=6DA7481E39632D338036690F7B43A2C48363DB68 Validity Not Before: Dec 5 04:08:06 2025 GMT Not After : Dec 12 04:08:06 2025 GMT Subject: CN=69325aa7-e7f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:c0:26:e4:87:56:c7:4e:c8:a7:f0:87:9b:68: 35:eb:6c:c4:25:d3:80:3c:21:5f:6d:a5:24:4a:1d: 72:c3:31:8e:08:7b:f5:24:a8:2e:54:4b:44:6b:b5: 89:bc:88:2a:9a:c1:32:98:63:12:bb:34:05:37:68: c8:51:18:89:68:50:34:fb:1e:fd:c1:e0:39:05:9f: 65:c4:11:f5:bd:55:02:54:5d:fd:57:58:f5:c9:f0: 9c:60:1b:22:af:94:20:c8:21:7d:37:48:0b:22:1c: 16:bf:f6:8b:3e:40:67:0f:c6:f7:6e:06:cd:3d:b6: d8:d7:73:3f:e8:9f:29:cd:37:05:76:05:f8:75:5f: 6e:3f:a5:38:22:af:0a:2c:5b:4e:b8:14:ac:fa:52: 92:40:83:be:53:32:4c:81:f4:eb:27:b2:36:a0:15: b2:e3:a8:5b:3a:1f:dd:24:cd:af:ae:74:4c:ce:9c: b7:5d:4f:33:ff:c6:31:df:bd:d7:09:7e:8e:59:92: 02:b8:d7:ed:3f:90:98:62:47:99:88:98:5a:c5:40: bf:df:3b:d8:c1:e3:60:3b:11:51:52:65:72:84:ea: 0b:79:ae:02:8e:59:0d:e9:c5:00:51:db:4a:27:d0: 2e:37:14:f3:50:28:81:98:b1:4c:ad:e5:fe:3b:07: 02:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:BD:31:64:DE:4E:96:67:EC:46:83:F8:3D:88:17:A1:05:AB:F8:AD X509v3 Authority Key Identifier: keyid:6D:A7:48:1E:39:63:2D:33:80:36:69:0F:7B:43:A2:C4:83:63:DB:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156854/DD90C3C0CB2311EF9E86682EC4F9AE02/badIHjljLTOANmkPe0OixINj22g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/badIHjljLTOANmkPe0OixINj22g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156854/DD90C3C0CB2311EF9E86682EC4F9AE02/badIHjljLTOANmkPe0OixINj22g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:32:9a:ad:a9:d9:4f:2b:13:e1:dc:77:9a:ea:ca:c0:49:e7: 81:b1:48:89:8e:53:03:76:21:f0:6e:b2:37:30:32:74:03:90: 06:be:22:ed:34:32:7f:99:93:90:cc:05:21:ba:e1:ec:2d:06: cc:ca:d8:b9:9a:10:7a:d2:b3:1d:56:f4:56:22:03:bf:da:39: 61:85:06:0e:43:28:44:3e:8e:42:99:cd:ab:de:22:26:ac:b8: ca:37:c3:78:a1:e4:b2:ce:6d:5e:79:b1:c1:fb:26:b2:42:9e: 11:b4:a7:af:8d:fc:5d:8f:fe:15:00:35:fe:1e:88:c0:da:19: 72:28:1d:6d:2a:61:51:a4:77:d6:84:79:86:4e:15:68:ff:28: 04:48:ad:b7:a6:f7:03:da:6c:d7:00:20:c1:d3:a4:3a:b9:08: fd:14:10:64:49:f5:dc:bf:9c:3e:e3:7b:e2:01:47:0a:ff:3b: 25:8e:5f:c3:fc:d1:83:6d:16:4c:47:28:8d:42:83:a9:05:91: 9d:5d:aa:b1:dc:bd:34:cc:ac:f2:cf:f8:cc:0d:7c:0f:4b:05: 7d:fc:c2:41:81:9f:f8:f7:83:53:12:28:24:68:a8:4b:1d:5f: 67:87:35:19:e5:fb:53:75:39:ad:37:6c:8a:dd:f3:e4:98:a4: 77:76:cd:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTY4NTQxMTAvBgNVBAUTKDZEQTc0ODFFMzk2MzJEMzM4MDM2NjkwRjdCNDNBMkM0 ODM2M0RCNjgwHhcNMjUxMjA1MDQwODA2WhcNMjUxMjEyMDQwODA2WjAYMRYwFAYD VQQDEw02OTMyNWFhNy1lN2Y4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA08Am5IdWx07Ip/CHm2g162zEJdOAPCFfbaUkSh1ywzGOCHv1JKguVEtEa7WJ vIgqmsEymGMSuzQFN2jIURiJaFA0+x79weA5BZ9lxBH1vVUCVF39V1j1yfCcYBsi r5QgyCF9N0gLIhwWv/aLPkBnD8b3bgbNPbbY13M/6J8pzTcFdgX4dV9uP6U4Iq8K LFtOuBSs+lKSQIO+UzJMgfTrJ7I2oBWy46hbOh/dJM2vrnRMzpy3XU8z/8Yx373X CX6OWZICuNftP5CYYkeZiJhaxUC/3zvYweNgOxFRUmVyhOoLea4CjlkN6cUAUdtK J9AuNxTzUCiBmLFMreX+OwcCcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDi9MWTe TpZn7EaD+D2IF6EFq/itMB8GA1UdIwQYMBaAFG2nSB45Yy0zgDZpD3tDosSDY9to MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Njg1NC9ERDkwQzNDMENC MjMxMUVGOUU4NjY4MkVDNEY5QUUwMi9iYWRJSGpsakxUT0FObWtQZTBPaXhJTmoy MmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JhZElIamxqTFRPQU5ta1BlME9peElOajIyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Njg1NC9ERDkwQzNDMENCMjMxMUVGOUU4NjY4MkVDNEY5QUUwMi9iYWRJSGpsakxU T0FObWtQZTBPaXhJTmoyMmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC4MpqtqdlPKxPh3Hea6srASeeBsUiJjlMDdiHwbrI3MDJ0A5AGviLt NDJ/mZOQzAUhuuHsLQbMyti5mhB60rMdVvRWIgO/2jlhhQYOQyhEPo5Cmc2r3iIm rLjKN8N4oeSyzm1eebHB+yayQp4RtKevjfxdj/4VADX+HojA2hlyKB1tKmFRpHfW hHmGThVo/ygESK23pvcD2mzXACDB06Q6uQj9FBBkSfXcv5w+43viAUcK/zsljl/D /NGDbRZMRyiNQoOpBZGdXaqx3L00zKzyz/jMDXwPSwV9/MJBgZ/494NTEigkaKhL HV9nhzUZ5ftTdTmtN2yK3fPkmKR3ds0q -----END CERTIFICATE-----Generated at Sun Dec 7 03:45:37 2025 by rpki-client