This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.mft File: bifP0YnuRkQx1LkBO8wHWKgCZOY.mft (raw, json) Hash identifier: rkQgV+FPxcQIg9X8eGnjrFjyqFposA7jWugFiSzYOp4= Subject key identifier: A7:7E:D9:09:AF:41:B3:41:49:ED:F9:71:21:2B:88:F5:11:8E:20:27 Authority key identifier: 6E:27:CF:D1:89:EE:46:44:31:D4:B9:01:3B:CC:07:58:A8:02:64:E6 Certificate issuer: /CN=A9157D13/serialNumber=6E27CFD189EE464431D4B9013BCC0758A80264E6 Certificate serial: 1917 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bifP0YnuRkQx1LkBO8wHWKgCZOY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.mft Manifest number: 1901 Signing time: Thu 04 Dec 2025 16:09:28 +0000 Manifest this update: Thu 04 Dec 2025 16:09:27 +0000 Manifest next update: Thu 11 Dec 2025 16:09:27 +0000 Files and hashes: 1: bifP0YnuRkQx1LkBO8wHWKgCZOY.crl (hash: O+MZhQDy2NtJtz8EEbNEh88YF7oxQsTBAiUxo8fOfwg=) 2: 33E73FAAE50B11EF838B6642C4F9AE02.roa (hash: hGExMUb+w4JyWjME6Pb9a+xtMzWk7NBawSO3YXbXwM4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.crl rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bifP0YnuRkQx1LkBO8wHWKgCZOY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 16:09:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6423 (0x1917) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157D13, serialNumber=6E27CFD189EE464431D4B9013BCC0758A80264E6 Validity Not Before: Dec 4 16:09:27 2025 GMT Not After : Dec 11 16:09:27 2025 GMT Subject: CN=6931b237-6f8e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:2c:ea:c1:88:b1:c1:4b:45:3d:58:a7:8f:9d: df:34:d6:0e:fa:85:01:1a:1a:c4:14:d0:73:f5:8a: b3:22:dc:ee:3b:7a:8b:55:c1:12:4a:69:6f:12:ca: 20:62:c2:ba:08:e8:96:2e:0d:84:bf:56:bd:7d:5e: ad:ea:c9:de:59:3e:57:00:ee:ff:98:b3:6c:0b:fa: 05:ed:61:b1:cd:d7:6d:a8:29:a9:9f:f8:b2:f0:4d: 15:04:21:0e:d9:7c:63:78:1b:ec:70:10:a4:2a:87: 02:b2:66:12:f4:02:46:38:44:62:7b:17:00:25:e5: 3f:77:7f:4f:c4:84:7e:5d:37:2d:2a:b5:f5:02:6a: 9c:08:d7:ed:43:69:17:5c:a2:fb:90:78:25:ce:3f: d6:f4:fe:26:0e:0a:ee:53:e5:c5:3b:01:0a:88:07: 43:e5:f0:ce:bb:5b:f7:72:d5:d3:a2:34:4f:24:be: eb:6e:b8:6a:b4:64:75:7b:ed:e2:ad:99:cf:8e:ec: 25:44:78:ad:58:f8:46:85:33:be:1a:ed:17:48:db: 88:cb:9e:15:0d:9e:e8:76:40:cc:5d:2e:45:e4:b4: 7b:bb:b2:1c:a6:52:95:13:0e:64:f8:1c:19:8e:02: 83:51:97:9e:a9:67:6e:25:4c:7a:96:1b:db:31:99: f5:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:7E:D9:09:AF:41:B3:41:49:ED:F9:71:21:2B:88:F5:11:8E:20:27 X509v3 Authority Key Identifier: keyid:6E:27:CF:D1:89:EE:46:44:31:D4:B9:01:3B:CC:07:58:A8:02:64:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bifP0YnuRkQx1LkBO8wHWKgCZOY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:04:ae:9c:05:f1:28:a5:57:53:ff:95:ff:6d:97:c9:2a:7d: 33:fa:28:e3:7a:18:c1:a7:94:d7:90:8a:16:63:08:ed:7a:01: 23:51:28:54:6b:be:bd:e8:c6:55:61:db:fd:8e:28:5a:ab:76: 6f:75:51:ba:b6:19:b1:b2:d4:31:f2:65:d9:43:af:ad:22:fe: 87:f5:3f:b5:d2:4f:57:3f:5c:6b:89:3d:6f:22:79:8e:b3:1f: 3e:3c:b8:be:6d:a4:7a:a1:44:cb:50:da:57:ca:b9:e9:bb:57: 67:c7:7f:4e:c5:75:0f:f3:f0:d9:1f:15:9c:ad:8c:b5:09:5c: b2:38:3b:cf:40:0c:ff:1a:78:77:64:a0:85:13:b8:6d:41:5d: 2c:aa:b5:11:f4:09:c3:6d:44:3a:4f:a5:dc:fe:3f:c6:12:68: bb:d1:de:59:a9:e9:f9:e7:39:73:e3:f3:f9:e9:26:7e:89:e0: 03:bc:73:18:3b:df:a3:91:41:38:fa:53:2b:64:c3:d2:fb:a6: 54:1e:24:b3:a3:b6:69:e7:00:48:27:7d:7c:f0:3e:27:0a:1b: 10:9d:79:be:08:67:05:7c:5d:67:eb:b1:82:66:37:fa:97:31: f5:5a:8d:36:a7:fa:e4:9b:40:ed:af:82:33:1d:45:f8:6f:f3: ff:27:c7:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGRcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEMTMxMTAvBgNVBAUTKDZFMjdDRkQxODlFRTQ2NDQzMUQ0QjkwMTNCQ0MwNzU4 QTgwMjY0RTYwHhcNMjUxMjA0MTYwOTI3WhcNMjUxMjExMTYwOTI3WjAYMRYwFAYD VQQDEw02OTMxYjIzNy02ZjhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0CzqwYixwUtFPVinj53fNNYO+oUBGhrEFNBz9YqzItzuO3qLVcESSmlvEsog YsK6COiWLg2Ev1a9fV6t6sneWT5XAO7/mLNsC/oF7WGxzddtqCmpn/iy8E0VBCEO 2XxjeBvscBCkKocCsmYS9AJGOERiexcAJeU/d39PxIR+XTctKrX1AmqcCNftQ2kX XKL7kHglzj/W9P4mDgruU+XFOwEKiAdD5fDOu1v3ctXTojRPJL7rbrhqtGR1e+3i rZnPjuwlRHitWPhGhTO+Gu0XSNuIy54VDZ7odkDMXS5F5LR7u7IcplKVEw5k+BwZ jgKDUZeeqWduJUx6lhvbMZn1bwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKd+2Qmv QbNBSe35cSEriPURjiAnMB8GA1UdIwQYMBaAFG4nz9GJ7kZEMdS5ATvMB1ioAmTm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0QxMy9BQTI1REYxQzk4 RkQxMUU3QTgxNDU1NjBDNEY5QUUwMi9iaWZQMFludVJrUXgxTGtCTzh3SFdLZ0Na T1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JpZlAwWW51UmtReDFMa0JPOHdIV0tnQ1pPWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0QxMy9BQTI1REYxQzk4RkQxMUU3QTgxNDU1NjBDNEY5QUUwMi9iaWZQMFludVJr UXgxTGtCTzh3SFdLZ0NaT1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNBK6cBfEopVdT/5X/bZfJKn0z+ijjehjBp5TXkIoWYwjtegEjUShU a7696MZVYdv9jihaq3ZvdVG6thmxstQx8mXZQ6+tIv6H9T+10k9XP1xriT1vInmO sx8+PLi+baR6oUTLUNpXyrnpu1dnx39OxXUP8/DZHxWcrYy1CVyyODvPQAz/Gnh3 ZKCFE7htQV0sqrUR9AnDbUQ6T6Xc/j/GEmi70d5Zqen55zlz4/P56SZ+ieADvHMY O9+jkUE4+lMrZMPS+6ZUHiSzo7Zp5wBIJ3188D4nChsQnXm+CGcFfF1n67GCZjf6 lzH1Wo02p/rkm0Dtr4IzHUX4b/P/J8fV -----END CERTIFICATE-----Generated at Sat Dec 6 12:07:55 2025 by rpki-client