This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9167C9C/9B6C4280DC1B11EBA635504EC4F9AE02/bd7GoXEpIw7u_lCK8Rli-0wPb8I.mft File: bd7GoXEpIw7u_lCK8Rli-0wPb8I.mft (raw, json) Hash identifier: n7BQc5gcKQ3z+4l+jZny4O7ioEQERWFXUxMr8mefBu8= Subject key identifier: B3:C9:1F:4E:F3:51:3C:E3:82:1D:74:FA:8F:B2:5F:92:1A:C2:10:E7 Authority key identifier: 6D:DE:C6:A1:71:29:23:0E:EE:FE:50:8A:F1:19:62:FB:4C:0F:6F:C2 Certificate issuer: /CN=A9167C9C/serialNumber=6DDEC6A17129230EEEFE508AF11962FB4C0F6FC2 Certificate serial: 05E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bd7GoXEpIw7u_lCK8Rli-0wPb8I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167C9C/9B6C4280DC1B11EBA635504EC4F9AE02/bd7GoXEpIw7u_lCK8Rli-0wPb8I.mft Manifest number: 05DC Signing time: Thu 04 Dec 2025 21:42:48 +0000 Manifest this update: Thu 04 Dec 2025 21:42:47 +0000 Manifest next update: Thu 11 Dec 2025 21:42:47 +0000 Files and hashes: 1: bd7GoXEpIw7u_lCK8Rli-0wPb8I.crl (hash: a7d8VI0qJ7s1lddwAAYRRlniM5en6BLuBuoS6OKLGvE=) 2: BF811486DC1E11EBB2C72F52C4F9AE02.roa (hash: tkST3vaKxeiP20POIYCSnEB6Q6omsC/qv/TzKr9coAY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167C9C/9B6C4280DC1B11EBA635504EC4F9AE02/bd7GoXEpIw7u_lCK8Rli-0wPb8I.crl rsync://rpki.apnic.net/member_repository/A9167C9C/9B6C4280DC1B11EBA635504EC4F9AE02/bd7GoXEpIw7u_lCK8Rli-0wPb8I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bd7GoXEpIw7u_lCK8Rli-0wPb8I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 21:42:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1505 (0x5e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167C9C, serialNumber=6DDEC6A17129230EEEFE508AF11962FB4C0F6FC2 Validity Not Before: Dec 4 21:42:47 2025 GMT Not After : Dec 11 21:42:47 2025 GMT Subject: CN=69320057-80e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:23:ef:32:cc:a9:dd:24:3f:3e:55:25:8f:9b: 4e:1c:68:2f:2a:69:79:ef:05:76:14:5f:f1:be:69: ae:86:cb:ca:6e:a3:35:06:f8:7f:f0:60:42:dc:e5: 3c:d3:0e:21:6e:74:11:e8:65:87:66:19:17:f1:1f: bd:6a:d0:01:76:31:5b:b2:72:03:91:90:0b:20:74: 42:75:dd:17:5a:01:41:67:78:e7:1e:ac:a1:db:f1: 7e:82:b2:b7:7d:b9:45:13:9d:0e:b0:03:07:da:0c: e1:f7:25:81:3d:a2:06:0e:2e:ad:83:f8:1d:da:4a: 09:4d:b9:0c:73:5c:1e:da:e3:90:c6:88:b5:4c:85: f7:aa:31:e7:f8:4d:5f:e8:b1:02:da:ad:4c:4a:2a: 4e:1f:a8:f6:67:58:8e:51:f9:93:11:11:1c:a1:e1: 7f:ae:56:58:ca:b6:8a:10:14:f2:9c:d2:b7:1b:2c: 8d:4d:1a:17:ee:f0:b5:cf:c5:9f:c9:fd:16:5f:d5: 7e:94:d0:98:4d:5a:92:3d:2b:3f:5e:69:cf:22:ee: 64:b9:26:79:fa:2f:bf:31:6d:91:99:1e:91:41:b2: 11:1c:e9:64:7d:54:c2:5d:ca:d1:ff:95:7a:1a:22: 26:6e:86:1c:0e:d4:88:6c:bf:c7:db:60:19:84:96: 10:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:C9:1F:4E:F3:51:3C:E3:82:1D:74:FA:8F:B2:5F:92:1A:C2:10:E7 X509v3 Authority Key Identifier: keyid:6D:DE:C6:A1:71:29:23:0E:EE:FE:50:8A:F1:19:62:FB:4C:0F:6F:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167C9C/9B6C4280DC1B11EBA635504EC4F9AE02/bd7GoXEpIw7u_lCK8Rli-0wPb8I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bd7GoXEpIw7u_lCK8Rli-0wPb8I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167C9C/9B6C4280DC1B11EBA635504EC4F9AE02/bd7GoXEpIw7u_lCK8Rli-0wPb8I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:10:ba:0a:cb:ba:91:5a:19:c6:3b:86:5c:39:25:db:69:83: 5c:8b:ee:46:ba:52:cd:64:2f:21:ab:0a:01:bb:c0:9c:72:c0: cf:5d:c0:f9:63:75:00:e9:0a:b0:df:32:1e:8e:f0:33:c5:1a: 6d:dd:19:ff:ef:8d:af:e5:49:1d:83:e2:b6:98:f1:35:8b:f1: 59:f8:af:53:34:19:7b:a8:b4:b9:83:a0:89:7f:4d:93:d8:77: 8c:3c:a7:fe:fb:5f:31:e9:94:af:bc:82:be:69:a0:c4:5b:17: f1:82:0b:0b:1a:c5:b0:15:b6:19:94:bb:bd:7b:11:cd:b1:7b: 97:22:81:dc:3f:5f:21:49:0d:58:6c:0a:4e:5c:5b:c3:94:71: 32:b3:37:ce:d7:c9:9d:48:c4:51:90:c7:42:17:97:a3:ee:81: 1c:6c:51:0b:e5:e4:af:2a:57:37:8a:e1:53:f4:5c:3b:d6:e9: 11:a6:24:d6:0c:5b:09:d9:f7:2c:ad:92:f4:c8:3f:fe:ee:29: 61:44:57:25:2f:7a:d0:98:01:30:04:bd:c7:b6:f0:be:29:f6: 92:7e:ef:ba:c9:80:93:05:9b:f1:1f:e2:53:a7:c2:ee:89:d8: 36:ea:51:fa:7e:e2:0f:ed:cf:72:3f:0e:c2:15:51:3f:cb:84: 12:d2:bc:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBeEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdDOUMxMTAvBgNVBAUTKDZEREVDNkExNzEyOTIzMEVFRUZFNTA4QUYxMTk2MkZC NEMwRjZGQzIwHhcNMjUxMjA0MjE0MjQ3WhcNMjUxMjExMjE0MjQ3WjAYMRYwFAYD VQQDEw02OTMyMDA1Ny04MGU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtCPvMsyp3SQ/PlUlj5tOHGgvKml57wV2FF/xvmmuhsvKbqM1Bvh/8GBC3OU8 0w4hbnQR6GWHZhkX8R+9atABdjFbsnIDkZALIHRCdd0XWgFBZ3jnHqyh2/F+grK3 fblFE50OsAMH2gzh9yWBPaIGDi6tg/gd2koJTbkMc1we2uOQxoi1TIX3qjHn+E1f 6LEC2q1MSipOH6j2Z1iOUfmTEREcoeF/rlZYyraKEBTynNK3GyyNTRoX7vC1z8Wf yf0WX9V+lNCYTVqSPSs/XmnPIu5kuSZ5+i+/MW2RmR6RQbIRHOlkfVTCXcrR/5V6 GiImboYcDtSIbL/H22AZhJYQkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLPJH07z UTzjgh10+o+yX5IawhDnMB8GA1UdIwQYMBaAFG3exqFxKSMO7v5QivEZYvtMD2/C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0M5Qy85QjZDNDI4MERD MUIxMUVCQTYzNTUwNEVDNEY5QUUwMi9iZDdHb1hFcEl3N3VfbENLOFJsaS0wd1Bi OEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JkN0dvWEVwSXc3dV9sQ0s4UmxpLTB3UGI4SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0M5Qy85QjZDNDI4MERDMUIxMUVCQTYzNTUwNEVDNEY5QUUwMi9iZDdHb1hFcEl3 N3VfbENLOFJsaS0wd1BiOEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBuELoKy7qRWhnGO4ZcOSXbaYNci+5GulLNZC8hqwoBu8CccsDPXcD5 Y3UA6Qqw3zIejvAzxRpt3Rn/742v5Ukdg+K2mPE1i/FZ+K9TNBl7qLS5g6CJf02T 2HeMPKf++18x6ZSvvIK+aaDEWxfxggsLGsWwFbYZlLu9exHNsXuXIoHcP18hSQ1Y bApOXFvDlHEyszfO18mdSMRRkMdCF5ej7oEcbFEL5eSvKlc3iuFT9Fw71ukRpiTW DFsJ2fcsrZL0yD/+7ilhRFclL3rQmAEwBL3HtvC+KfaSfu+6yYCTBZvxH+JTp8Lu idg26lH6fuIP7c9yPw7CFVE/y4QS0rzY -----END CERTIFICATE-----Generated at Sat Dec 6 22:05:05 2025 by rpki-client