This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9157724/D7398728958711EEAD3BB262C4F9AE02/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.mft File: BdJLO4oiJ7b-6S3NJdVL8F7oaMo.mft (raw, json) Hash identifier: vCedJOhcP13sE+G00b5eQwwR7yIkvjGyBtoaJC8RGjY= Subject key identifier: 86:33:69:B5:6A:B4:2E:21:E9:05:38:86:2A:CF:49:B9:C7:95:14:50 Authority key identifier: 05:D2:4B:3B:8A:22:27:B6:FE:E9:2D:CD:25:D5:4B:F0:5E:E8:68:CA Certificate issuer: /CN=A9157724/serialNumber=05D24B3B8A2227B6FEE92DCD25D54BF05EE868CA Certificate serial: 0182 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157724/D7398728958711EEAD3BB262C4F9AE02/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.mft Manifest number: 017C Signing time: Fri 05 Dec 2025 02:00:07 +0000 Manifest this update: Fri 05 Dec 2025 02:00:06 +0000 Manifest next update: Fri 12 Dec 2025 02:00:06 +0000 Files and hashes: 1: BdJLO4oiJ7b-6S3NJdVL8F7oaMo.crl (hash: 8cdbA9Extw687NIw3xWNPUXSV2Jba46NK+66geGcStc=) 2: 6063C75CB6E411EE94471D14C4F9AE02.roa (hash: 5GVQ1bIBa+U3v3tASIB7alCOpvULFOKmUN8ptv6R1ws=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157724/D7398728958711EEAD3BB262C4F9AE02/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.crl rsync://rpki.apnic.net/member_repository/A9157724/D7398728958711EEAD3BB262C4F9AE02/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 02:00:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 386 (0x182) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157724, serialNumber=05D24B3B8A2227B6FEE92DCD25D54BF05EE868CA Validity Not Before: Dec 5 02:00:06 2025 GMT Not After : Dec 12 02:00:06 2025 GMT Subject: CN=69323ca6-65b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:d0:0a:b7:9d:68:71:29:fc:8b:a3:c8:08:1c: b4:96:70:08:6c:d5:ca:a0:b0:29:7b:82:7f:89:60: 6c:ac:70:5c:3b:31:ea:54:72:95:03:19:e6:70:5a: 81:e1:bc:d5:b7:33:bf:58:4b:93:6b:7b:5b:9c:e7: 76:06:5a:d8:b2:66:9c:6d:11:e9:57:af:be:61:55: 42:d5:51:20:b2:77:8e:59:29:48:c8:43:eb:31:b5: 8c:29:08:06:c0:fb:91:28:bc:79:de:75:b2:d5:e2: 25:d6:21:27:27:82:bc:9c:e5:94:83:91:f0:2c:75: 80:3f:57:1b:6b:ca:d4:5c:c3:1e:46:ad:bd:16:e6: ec:7c:53:56:cf:bb:b7:e5:73:83:99:b6:31:dc:f4: f0:f3:61:8d:1e:a1:e1:6f:f9:f5:7f:31:97:c8:11: 0b:da:c4:91:e2:49:94:6b:c3:5b:5a:b6:3d:44:66: a7:64:ea:75:89:e3:bc:01:66:e1:07:0a:dc:ae:3a: ff:fc:a1:7a:cc:d2:84:a4:4e:74:69:6a:ab:13:19: 50:f7:76:63:f3:dd:cb:c6:4e:e6:a5:7e:5f:d0:93: 39:f0:bd:25:3d:90:eb:93:8d:df:ba:80:16:0e:10: 1e:b1:af:68:72:6a:ff:b7:3b:7d:d7:7a:ce:08:ab: a5:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:33:69:B5:6A:B4:2E:21:E9:05:38:86:2A:CF:49:B9:C7:95:14:50 X509v3 Authority Key Identifier: keyid:05:D2:4B:3B:8A:22:27:B6:FE:E9:2D:CD:25:D5:4B:F0:5E:E8:68:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157724/D7398728958711EEAD3BB262C4F9AE02/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157724/D7398728958711EEAD3BB262C4F9AE02/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:52:f3:4e:01:81:e2:45:8b:f5:cf:22:89:7c:16:4c:0e:e1: 40:bc:62:62:63:cd:7e:e2:78:f0:e5:03:f9:26:ec:3d:bd:4c: fe:26:00:19:22:6f:02:f3:77:4c:56:7a:35:14:2d:9c:17:6e: d3:35:ba:59:2f:eb:01:69:10:2e:2e:b7:a3:25:ea:1a:f9:72: b5:44:7a:32:37:a6:05:5c:95:b1:78:02:9c:2b:7b:ec:c1:18: c6:58:22:31:b7:3a:ad:1e:83:12:0a:3d:ff:45:c7:c0:b4:4e: 38:70:75:15:a7:e0:a9:03:78:0d:3b:8f:17:e0:de:f1:26:d7: 8b:f8:06:c6:df:54:d9:d8:27:7b:18:11:d5:4c:a7:4b:93:dd: c9:66:05:64:4e:03:56:7d:f7:7b:3d:95:2f:08:26:96:ac:10: 7e:7b:c9:8d:de:52:c4:bb:f3:26:27:0e:e4:37:2f:3f:05:62: 67:fc:96:f0:6f:03:bd:1d:89:fe:ed:24:47:33:c9:84:5d:3d: a4:76:2c:82:e0:f9:43:5e:a3:85:d1:a3:91:5f:ea:a4:9b:20: 6f:38:c4:17:c9:9e:be:7a:d9:ee:c2:94:4c:9c:b7:19:c4:32: 35:32:ef:5c:45:5a:64:78:c6:73:1e:bc:61:66:1e:ac:f3:e7: 87:09:aa:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTc3MjQxMTAvBgNVBAUTKDA1RDI0QjNCOEEyMjI3QjZGRUU5MkRDRDI1RDU0QkYw NUVFODY4Q0EwHhcNMjUxMjA1MDIwMDA2WhcNMjUxMjEyMDIwMDA2WjAYMRYwFAYD VQQDEw02OTMyM2NhNi02NWI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApdAKt51ocSn8i6PICBy0lnAIbNXKoLApe4J/iWBsrHBcOzHqVHKVAxnmcFqB 4bzVtzO/WEuTa3tbnOd2BlrYsmacbRHpV6++YVVC1VEgsneOWSlIyEPrMbWMKQgG wPuRKLx53nWy1eIl1iEnJ4K8nOWUg5HwLHWAP1cba8rUXMMeRq29FubsfFNWz7u3 5XODmbYx3PTw82GNHqHhb/n1fzGXyBEL2sSR4kmUa8NbWrY9RGanZOp1ieO8AWbh Bwrcrjr//KF6zNKEpE50aWqrExlQ93Zj893Lxk7mpX5f0JM58L0lPZDrk43fuoAW DhAesa9ocmr/tzt913rOCKulnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIYzabVq tC4h6QU4hirPSbnHlRRQMB8GA1UdIwQYMBaAFAXSSzuKIie2/uktzSXVS/Be6GjK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NzcyNC9ENzM5ODcyODk1 ODcxMUVFQUQzQkIyNjJDNEY5QUUwMi9CZEpMTzRvaUo3Yi02UzNOSmRWTDhGN29h TW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JkSkxPNG9pSjdiLTZTM05KZFZMOEY3b2FNby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NzcyNC9ENzM5ODcyODk1ODcxMUVFQUQzQkIyNjJDNEY5QUUwMi9CZEpMTzRvaUo3 Yi02UzNOSmRWTDhGN29hTW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSUvNOAYHiRYv1zyKJfBZMDuFAvGJiY81+4njw5QP5Juw9vUz+JgAZ Im8C83dMVno1FC2cF27TNbpZL+sBaRAuLrejJeoa+XK1RHoyN6YFXJWxeAKcK3vs wRjGWCIxtzqtHoMSCj3/RcfAtE44cHUVp+CpA3gNO48X4N7xJteL+AbG31TZ2Cd7 GBHVTKdLk93JZgVkTgNWffd7PZUvCCaWrBB+e8mN3lLEu/MmJw7kNy8/BWJn/Jbw bwO9HYn+7SRHM8mEXT2kdiyC4PlDXqOF0aORX+qkmyBvOMQXyZ6+etnuwpRMnLcZ xDI1Mu9cRVpkeMZzHrxhZh6s8+eHCarP -----END CERTIFICATE-----Generated at Sat Dec 6 12:23:38 2025 by rpki-client