This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9171882/B238A184F0B311EEA4C72F84C4F9AE02/BPDYqTArIrYOMPRlG4KumZ_3TJs.mft File: BPDYqTArIrYOMPRlG4KumZ_3TJs.mft (raw, json) Hash identifier: WlIBiWTtcpW+az602u3Z7ai3dNWdEzD9iqRxvzbkyDM= Subject key identifier: 40:A8:C9:BC:EE:57:4D:B7:84:26:39:B0:24:C8:C0:EC:30:DB:56:75 Authority key identifier: 04:F0:D8:A9:30:2B:22:B6:0E:30:F4:65:1B:82:AE:99:9F:F7:4C:9B Certificate issuer: /CN=A9171882/serialNumber=04F0D8A9302B22B60E30F4651B82AE999FF74C9B Certificate serial: 013A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BPDYqTArIrYOMPRlG4KumZ_3TJs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171882/B238A184F0B311EEA4C72F84C4F9AE02/BPDYqTArIrYOMPRlG4KumZ_3TJs.mft Manifest number: 0138 Signing time: Fri 05 Dec 2025 02:34:42 +0000 Manifest this update: Fri 05 Dec 2025 02:34:42 +0000 Manifest next update: Fri 12 Dec 2025 02:34:42 +0000 Files and hashes: 1: BPDYqTArIrYOMPRlG4KumZ_3TJs.crl (hash: YOG6OTbtP49Cb+uXvVZDVn4doW0KsJGjaHV2Dk+tLKI=) 2: 08D1870EF0B411EE962EE784C4F9AE02.roa (hash: nrFzYe2K6I+fVS0WsJAv1h0mXVgQBFKENnTmsnUT3Jo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171882/B238A184F0B311EEA4C72F84C4F9AE02/BPDYqTArIrYOMPRlG4KumZ_3TJs.crl rsync://rpki.apnic.net/member_repository/A9171882/B238A184F0B311EEA4C72F84C4F9AE02/BPDYqTArIrYOMPRlG4KumZ_3TJs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BPDYqTArIrYOMPRlG4KumZ_3TJs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 02:34:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 314 (0x13a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171882, serialNumber=04F0D8A9302B22B60E30F4651B82AE999FF74C9B Validity Not Before: Dec 5 02:34:42 2025 GMT Not After : Dec 12 02:34:42 2025 GMT Subject: CN=693244c2-074f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:65:cc:0e:2b:14:bc:67:9b:11:5c:17:c3:33: 76:4a:a5:c5:87:21:8b:bf:64:df:32:7e:10:d2:b7: a4:08:ce:dd:9e:06:71:33:04:df:45:f4:90:5f:a8: 68:bf:0d:4d:fe:8b:b6:d0:32:5f:86:81:43:b3:00: f9:44:e7:e9:fe:03:33:54:5c:66:b7:56:17:7c:2c: f4:d7:5e:d2:f7:90:9d:0b:fd:0d:ec:ba:40:5d:bd: ba:5f:6d:2b:f6:c8:5d:ad:ca:05:ce:d5:ef:b8:32: 39:5b:39:ff:28:c8:cf:f2:07:89:4c:23:f8:93:37: 44:03:0c:7e:e8:88:2a:66:c4:b2:d8:9d:5a:8c:fc: e4:c4:75:d8:bb:58:23:b9:2b:0e:4c:49:cf:3b:3b: 8a:4a:86:7a:b6:49:97:79:f7:ac:33:ef:c2:a6:2b: d4:06:41:70:e8:2e:39:de:21:0c:f5:38:57:64:49: 7b:5c:39:ef:35:29:ac:27:9a:3f:aa:61:4f:3c:0b: 5f:9b:7e:1b:f3:88:df:f9:0a:d1:fd:45:86:3e:b1: 5d:cf:74:61:35:9c:d2:13:ad:fc:a3:98:40:64:dc: 9f:8f:39:57:a9:0f:5f:21:5a:32:b1:89:24:f1:47: 14:c8:de:2d:ea:c8:a1:39:6a:de:b9:e0:4d:6f:ea: 3e:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:A8:C9:BC:EE:57:4D:B7:84:26:39:B0:24:C8:C0:EC:30:DB:56:75 X509v3 Authority Key Identifier: keyid:04:F0:D8:A9:30:2B:22:B6:0E:30:F4:65:1B:82:AE:99:9F:F7:4C:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171882/B238A184F0B311EEA4C72F84C4F9AE02/BPDYqTArIrYOMPRlG4KumZ_3TJs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BPDYqTArIrYOMPRlG4KumZ_3TJs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171882/B238A184F0B311EEA4C72F84C4F9AE02/BPDYqTArIrYOMPRlG4KumZ_3TJs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:05:f3:e8:4d:18:36:1e:88:e0:a2:ba:a5:1c:29:46:ff:7d: a5:66:e3:7e:a6:b6:9b:5b:b2:9a:51:1e:5e:d1:f7:8f:47:b7: a0:80:a9:94:29:3f:8d:83:f5:73:3e:b0:8a:0d:e9:d7:5d:81: bc:6a:5e:5e:44:f3:1c:a5:d9:05:f9:19:de:ca:fe:78:c2:95: 81:89:2a:57:6c:b0:93:7c:a1:06:01:30:ef:29:c0:f5:94:19: 7e:62:cc:98:f8:25:25:8b:2b:00:14:8b:c3:dc:bb:c2:11:5c: 45:f9:13:36:18:fa:43:eb:e7:76:b1:af:02:d4:87:d5:b3:3a: 09:a0:35:5f:e4:74:d3:c9:6e:c7:97:1c:7b:38:31:0e:36:24: 8a:e9:6e:74:0b:6b:25:3a:9d:a1:a2:4c:45:45:6d:a2:05:b5: 8c:1b:39:4c:cd:d5:cd:c7:af:50:4d:f6:0b:5a:af:85:3c:bb: 32:d4:68:58:b6:72:d0:6c:d2:8a:fe:f1:79:4e:8d:2e:e8:1e: 5b:2a:49:02:ad:f5:49:21:e9:5b:f0:c9:b2:5d:2d:48:0c:10: c3:15:e0:73:ab:61:a5:e4:96:f3:98:02:a6:a8:46:c5:3e:52: 29:53:34:bd:a7:27:59:ea:8b:84:69:03:d4:e3:ca:37:38:5a: bf:16:fa:12 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE4ODIxMTAvBgNVBAUTKDA0RjBEOEE5MzAyQjIyQjYwRTMwRjQ2NTFCODJBRTk5 OUZGNzRDOUIwHhcNMjUxMjA1MDIzNDQyWhcNMjUxMjEyMDIzNDQyWjAYMRYwFAYD VQQDEw02OTMyNDRjMi0wNzRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqWXMDisUvGebEVwXwzN2SqXFhyGLv2TfMn4Q0rekCM7dngZxMwTfRfSQX6ho vw1N/ou20DJfhoFDswD5ROfp/gMzVFxmt1YXfCz0117S95CdC/0N7LpAXb26X20r 9shdrcoFztXvuDI5Wzn/KMjP8geJTCP4kzdEAwx+6IgqZsSy2J1ajPzkxHXYu1gj uSsOTEnPOzuKSoZ6tkmXefesM+/CpivUBkFw6C453iEM9ThXZEl7XDnvNSmsJ5o/ qmFPPAtfm34b84jf+QrR/UWGPrFdz3RhNZzSE638o5hAZNyfjzlXqQ9fIVoysYkk 8UcUyN4t6sihOWreueBNb+o+vQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFECoybzu V023hCY5sCTIwOww21Z1MB8GA1UdIwQYMBaAFATw2KkwKyK2DjD0ZRuCrpmf90yb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTg4Mi9CMjM4QTE4NEYw QjMxMUVFQTRDNzJGODRDNEY5QUUwMi9CUERZcVRBcklyWU9NUFJsRzRLdW1aXzNU SnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JQRFlxVEFySXJZT01QUmxHNEt1bVpfM1RKcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTg4Mi9CMjM4QTE4NEYwQjMxMUVFQTRDNzJGODRDNEY5QUUwMi9CUERZcVRBckly WU9NUFJsRzRLdW1aXzNUSnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8BfPoTRg2HojgorqlHClG/32lZuN+prabW7KaUR5e0fePR7eggKmU KT+Ng/VzPrCKDenXXYG8al5eRPMcpdkF+Rneyv54wpWBiSpXbLCTfKEGATDvKcD1 lBl+YsyY+CUliysAFIvD3LvCEVxF+RM2GPpD6+d2sa8C1IfVszoJoDVf5HTTyW7H lxx7ODEONiSK6W50C2slOp2hokxFRW2iBbWMGzlMzdXNx69QTfYLWq+FPLsy1GhY tnLQbNKK/vF5To0u6B5bKkkCrfVJIelb8MmyXS1IDBDDFeBzq2Gl5JbzmAKmqEbF PlIpUzS9pydZ6ouEaQPU48o3OFq/FvoS -----END CERTIFICATE-----Generated at Sat Dec 6 22:28:46 2025 by rpki-client