This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A916B2C1/2EA51D5620DC11EC9B3CE973C4F9AE02/BtehAtOMEJaAT42lLiz3jYkaxyE.mft File: BtehAtOMEJaAT42lLiz3jYkaxyE.mft (raw, json) Hash identifier: 5y2xdxBK5i7nr8scjuEOGPwWmhL7HgDxYHBB5C9q6V8= Subject key identifier: 55:28:86:6F:19:AC:39:1B:12:D9:D0:8C:06:1D:AB:E7:4B:6A:95:1E Authority key identifier: 06:D7:A1:02:D3:8C:10:96:80:4F:8D:A5:2E:2C:F7:8D:89:1A:C7:21 Certificate issuer: /CN=A916B2C1/serialNumber=06D7A102D38C1096804F8DA52E2CF78D891AC721 Certificate serial: 0539 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BtehAtOMEJaAT42lLiz3jYkaxyE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B2C1/2EA51D5620DC11EC9B3CE973C4F9AE02/BtehAtOMEJaAT42lLiz3jYkaxyE.mft Manifest number: 0533 Signing time: Sat 06 Dec 2025 22:16:17 +0000 Manifest this update: Sat 06 Dec 2025 22:16:17 +0000 Manifest next update: Sat 13 Dec 2025 22:16:17 +0000 Files and hashes: 1: BtehAtOMEJaAT42lLiz3jYkaxyE.crl (hash: dfhk0zQhLf/OHiHbPIqypW63lGEY6Ceg7JZpUz+goAc=) 2: 551FA6B620DE11EC8CA3EC74C4F9AE02.roa (hash: Bfjs/rTdpDPTDnJIoWaxeafLKa6QSKWFHwoAGDnn1AU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B2C1/2EA51D5620DC11EC9B3CE973C4F9AE02/BtehAtOMEJaAT42lLiz3jYkaxyE.crl rsync://rpki.apnic.net/member_repository/A916B2C1/2EA51D5620DC11EC9B3CE973C4F9AE02/BtehAtOMEJaAT42lLiz3jYkaxyE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BtehAtOMEJaAT42lLiz3jYkaxyE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 22:16:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1337 (0x539) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B2C1, serialNumber=06D7A102D38C1096804F8DA52E2CF78D891AC721 Validity Not Before: Dec 6 22:16:17 2025 GMT Not After : Dec 13 22:16:17 2025 GMT Subject: CN=6934ab31-04a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:26:fb:96:cb:fa:56:92:97:4a:88:50:32:07: 8d:e7:94:80:a9:0a:f2:1e:81:2e:cb:7f:d5:f0:29: 36:db:01:3d:6e:4e:64:e8:89:1a:d4:05:e1:73:c7: 01:70:17:28:72:6a:58:13:9c:cb:33:28:74:70:17: a1:3d:dd:bb:71:db:a4:5a:7c:39:76:d3:99:8d:65: b8:fc:eb:a6:bf:fa:8c:64:0c:88:6b:b2:ab:7b:e1: f9:da:37:a2:ab:e9:7f:e5:e0:e5:12:f5:92:40:9d: 6a:2b:d8:24:a0:1a:9c:d9:95:85:c2:9b:2d:d7:20: f3:d2:d0:bd:b0:2a:8b:e7:d6:a8:a7:7c:61:85:f7: 9a:19:76:89:f8:c3:35:d3:d2:ce:b2:3a:14:63:89: 1c:8a:64:a3:70:ba:7b:80:2d:7f:76:5b:63:71:0d: fb:67:52:a9:1a:4a:ee:05:90:cf:a7:ab:9e:93:16: 14:c1:76:dd:87:db:2b:49:f4:ea:cb:fe:a1:79:e2: 82:ad:aa:4f:ba:98:83:21:64:d4:3e:e8:60:98:94: cf:7c:27:97:03:22:96:e1:47:e8:be:84:4a:79:a1: 6e:6b:b7:37:78:f4:b1:63:ed:bf:29:e0:b3:a9:dc: 41:ec:c9:61:27:af:7c:48:e0:30:74:cc:e5:d7:a6: 76:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:28:86:6F:19:AC:39:1B:12:D9:D0:8C:06:1D:AB:E7:4B:6A:95:1E X509v3 Authority Key Identifier: keyid:06:D7:A1:02:D3:8C:10:96:80:4F:8D:A5:2E:2C:F7:8D:89:1A:C7:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B2C1/2EA51D5620DC11EC9B3CE973C4F9AE02/BtehAtOMEJaAT42lLiz3jYkaxyE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BtehAtOMEJaAT42lLiz3jYkaxyE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B2C1/2EA51D5620DC11EC9B3CE973C4F9AE02/BtehAtOMEJaAT42lLiz3jYkaxyE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c0:ca:45:12:5d:73:4a:cf:45:ce:28:22:65:25:b1:cb:2f:fb: f0:df:f5:49:72:43:88:78:74:d9:5d:68:9c:cb:30:c1:aa:00: 49:38:6f:3d:54:ac:0c:2b:dc:7c:a8:ff:7d:69:67:5b:c6:4d: 45:a5:ba:a7:2c:79:4d:9b:9d:86:e6:12:2d:40:31:d9:c2:91: 3d:7d:90:27:0e:61:b2:b9:05:8e:a0:a0:a0:75:b1:6c:b0:b2: 44:7c:47:6b:00:bf:8c:cd:28:91:41:a1:ac:bf:eb:ff:cd:ae: d2:08:df:e0:c7:b4:df:b6:e4:d7:e4:6c:32:0f:55:6f:13:cd: a3:49:44:8e:55:e0:5b:eb:e5:07:32:e1:ee:ae:00:0f:ee:b3: 3f:dc:4f:b6:70:68:7d:f6:81:29:59:6d:ac:a2:cd:26:6b:f6: a1:7e:bc:9e:1a:64:07:0d:d9:84:95:06:e8:36:a9:22:c2:78: e7:98:1b:75:19:fd:00:69:7e:e1:36:bb:2e:e1:2e:98:b3:4b: 36:35:f3:e8:bc:5f:0e:d1:b5:fa:93:9d:8b:f7:0c:9b:3c:ea: bc:93:c5:47:8e:f3:36:91:b1:f5:8a:87:c3:d7:a5:4c:67:f9: 6a:50:96:51:f2:ab:d4:7a:b5:78:7f:85:ba:bc:00:d5:ee:00: 45:89:26:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBTkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkIyQzExMTAvBgNVBAUTKDA2RDdBMTAyRDM4QzEwOTY4MDRGOERBNTJFMkNGNzhE ODkxQUM3MjEwHhcNMjUxMjA2MjIxNjE3WhcNMjUxMjEzMjIxNjE3WjAYMRYwFAYD VQQDEw02OTM0YWIzMS0wNGE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvyb7lsv6VpKXSohQMgeN55SAqQryHoEuy3/V8Ck22wE9bk5k6Ika1AXhc8cB cBcocmpYE5zLMyh0cBehPd27cdukWnw5dtOZjWW4/Oumv/qMZAyIa7Kre+H52jei q+l/5eDlEvWSQJ1qK9gkoBqc2ZWFwpst1yDz0tC9sCqL59aop3xhhfeaGXaJ+MM1 09LOsjoUY4kcimSjcLp7gC1/dltjcQ37Z1KpGkruBZDPp6uekxYUwXbdh9srSfTq y/6heeKCrapPupiDIWTUPuhgmJTPfCeXAyKW4UfovoRKeaFua7c3ePSxY+2/KeCz qdxB7MlhJ698SOAwdMzl16Z2oQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFUohm8Z rDkbEtnQjAYdq+dLapUeMB8GA1UdIwQYMBaAFAbXoQLTjBCWgE+NpS4s942JGsch MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjJDMS8yRUE1MUQ1NjIw REMxMUVDOUIzQ0U5NzNDNEY5QUUwMi9CdGVoQXRPTUVKYUFUNDJsTGl6M2pZa2F4 eUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0J0ZWhBdE9NRUphQVQ0MmxMaXozallrYXh5RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QjJDMS8yRUE1MUQ1NjIwREMxMUVDOUIzQ0U5NzNDNEY5QUUwMi9CdGVoQXRPTUVK YUFUNDJsTGl6M2pZa2F4eUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDAykUSXXNKz0XOKCJlJbHLL/vw3/VJckOIeHTZXWicyzDBqgBJOG89 VKwMK9x8qP99aWdbxk1FpbqnLHlNm52G5hItQDHZwpE9fZAnDmGyuQWOoKCgdbFs sLJEfEdrAL+MzSiRQaGsv+v/za7SCN/gx7TftuTX5GwyD1VvE82jSUSOVeBb6+UH MuHurgAP7rM/3E+2cGh99oEpWW2sos0ma/ahfryeGmQHDdmElQboNqkiwnjnmBt1 Gf0AaX7hNrsu4S6Ys0s2NfPovF8O0bX6k52L9wybPOq8k8VHjvM2kbH1iofD16VM Z/lqUJZR8qvUerV4f4W6vADV7gBFiSba -----END CERTIFICATE-----Generated at Sun Dec 7 02:59:12 2025 by rpki-client