This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917D958/6F628388B39B11EF80F6435EC4F9AE02/bBH4O5qMvdIVMt3w6mHek4jRPGs.mft File: bBH4O5qMvdIVMt3w6mHek4jRPGs.mft (raw, json) Hash identifier: UsbyD/E2LGV0W+xBK59Ggyo+KHZ9I5GYxQBOHWO2No4= Subject key identifier: CA:80:71:C7:F6:37:91:C5:B1:4C:14:2E:AF:93:06:DB:84:05:AF:5B Authority key identifier: 6C:11:F8:3B:9A:8C:BD:D2:15:32:DD:F0:EA:61:DE:93:88:D1:3C:6B Certificate issuer: /CN=A917D958/serialNumber=6C11F83B9A8CBDD21532DDF0EA61DE9388D13C6B Certificate serial: BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBH4O5qMvdIVMt3w6mHek4jRPGs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D958/6F628388B39B11EF80F6435EC4F9AE02/bBH4O5qMvdIVMt3w6mHek4jRPGs.mft Manifest number: BA Signing time: Fri 05 Dec 2025 04:00:25 +0000 Manifest this update: Fri 05 Dec 2025 04:00:25 +0000 Manifest next update: Fri 12 Dec 2025 04:00:25 +0000 Files and hashes: 1: bBH4O5qMvdIVMt3w6mHek4jRPGs.crl (hash: rQ/HE/F6vhn8Mirhwj7lJr3vjJtJTfUrTWt9EItGWw4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D958/6F628388B39B11EF80F6435EC4F9AE02/bBH4O5qMvdIVMt3w6mHek4jRPGs.crl rsync://rpki.apnic.net/member_repository/A917D958/6F628388B39B11EF80F6435EC4F9AE02/bBH4O5qMvdIVMt3w6mHek4jRPGs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBH4O5qMvdIVMt3w6mHek4jRPGs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:00:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 186 (0xba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D958, serialNumber=6C11F83B9A8CBDD21532DDF0EA61DE9388D13C6B Validity Not Before: Dec 5 04:00:25 2025 GMT Not After : Dec 12 04:00:25 2025 GMT Subject: CN=693258d9-96bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:d5:d6:cf:3c:fc:55:d2:dc:30:52:83:ac:d7: 86:a1:1b:fc:62:5f:89:49:69:8a:33:1c:24:94:85: b7:30:87:a9:73:42:45:03:62:aa:10:b8:f1:58:11: df:77:61:25:86:99:24:e3:de:6c:dc:2f:8f:b2:c4: 8b:cb:54:c0:1b:40:41:d1:46:01:d4:c4:b4:01:81: 32:60:34:57:35:f7:4c:97:26:c0:d2:5d:db:ce:23: 39:94:71:95:c2:33:3a:1f:31:78:f4:e5:9d:8b:58: 00:c5:a9:58:71:df:e0:8e:c9:32:cf:68:46:39:73: 8b:14:3e:65:b5:30:14:2e:23:03:08:39:5b:d1:f5: 29:7d:08:b6:48:24:47:ea:63:6c:c1:88:5b:89:f5: 29:93:1c:76:30:a2:a0:bc:f1:e2:83:29:37:e7:fc: f5:5a:da:b7:63:4a:19:1e:74:c6:3d:17:24:65:84: 45:e5:58:55:b8:2c:65:4f:20:7c:f9:ae:0f:58:3f: f0:f6:0a:8d:89:67:d1:e0:d5:75:eb:2d:97:a9:1a: e1:d8:4b:7b:cf:ec:75:de:57:eb:69:7d:1d:2a:96: d7:38:eb:ed:48:35:7a:97:33:08:e3:c2:ba:be:4a: fe:86:ff:27:1f:01:26:74:9f:b6:a8:5b:8b:0b:be: c4:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:80:71:C7:F6:37:91:C5:B1:4C:14:2E:AF:93:06:DB:84:05:AF:5B X509v3 Authority Key Identifier: keyid:6C:11:F8:3B:9A:8C:BD:D2:15:32:DD:F0:EA:61:DE:93:88:D1:3C:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D958/6F628388B39B11EF80F6435EC4F9AE02/bBH4O5qMvdIVMt3w6mHek4jRPGs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBH4O5qMvdIVMt3w6mHek4jRPGs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D958/6F628388B39B11EF80F6435EC4F9AE02/bBH4O5qMvdIVMt3w6mHek4jRPGs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:96:f8:e4:6a:36:2d:0c:53:66:ba:d5:e3:bf:21:7a:76:6a: 7d:6c:66:90:de:b7:4c:8c:eb:81:50:97:d9:6f:ab:b7:6d:f2: 71:c2:e9:78:dc:55:da:fd:10:20:9c:e2:d2:7e:51:ef:b6:f2: fe:35:37:b9:e0:51:c6:df:76:ad:72:13:ff:d4:35:5c:65:ef: 2d:8a:38:d4:f9:ca:c1:da:75:e5:20:6b:96:79:47:52:a4:9d: 48:34:f5:79:1d:6f:b6:68:33:de:a4:40:5e:dd:86:b2:80:7c: fd:d8:45:42:de:e9:8e:b3:82:90:f4:5f:80:a5:8f:a6:a3:b2: 06:b4:b6:55:9a:a1:19:f5:f5:ea:e4:b6:c9:f9:a2:ef:13:b1: 0d:9a:7a:59:1f:f8:88:8c:61:7f:1a:98:37:de:ab:7f:e6:4c: 59:4c:53:4c:3c:1c:50:1f:9e:95:dd:7d:28:12:10:83:e8:af: f5:c9:72:72:58:b5:b8:8a:d2:8d:88:05:f2:4e:b8:b0:15:7b: 77:a7:52:96:2f:5d:9c:91:95:1c:53:ac:aa:54:42:ef:b4:8d: ae:61:c3:23:c4:b4:d4:2a:9f:f1:c3:57:97:e6:c9:24:79:58: 41:43:0c:ee:3e:5d:bd:21:89:fd:23:9e:a4:f4:17:46:95:2a: 97:9a:b1:10 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Q5NTgxMTAvBgNVBAUTKDZDMTFGODNCOUE4Q0JERDIxNTMyRERGMEVBNjFERTkz ODhEMTNDNkIwHhcNMjUxMjA1MDQwMDI1WhcNMjUxMjEyMDQwMDI1WjAYMRYwFAYD VQQDEw02OTMyNThkOS05NmJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAotXWzzz8VdLcMFKDrNeGoRv8Yl+JSWmKMxwklIW3MIepc0JFA2KqELjxWBHf d2Elhpkk495s3C+PssSLy1TAG0BB0UYB1MS0AYEyYDRXNfdMlybA0l3bziM5lHGV wjM6HzF49OWdi1gAxalYcd/gjskyz2hGOXOLFD5ltTAULiMDCDlb0fUpfQi2SCRH 6mNswYhbifUpkxx2MKKgvPHigyk35/z1Wtq3Y0oZHnTGPRckZYRF5VhVuCxlTyB8 +a4PWD/w9gqNiWfR4NV16y2XqRrh2Et7z+x13lfraX0dKpbXOOvtSDV6lzMI48K6 vkr+hv8nHwEmdJ+2qFuLC77ERwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMqAccf2 N5HFsUwULq+TBtuEBa9bMB8GA1UdIwQYMBaAFGwR+DuajL3SFTLd8Oph3pOI0Txr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDk1OC82RjYyODM4OEIz OUIxMUVGODBGNjQzNUVDNEY5QUUwMi9iQkg0TzVxTXZkSVZNdDN3Nm1IZWs0alJQ R3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JCSDRPNXFNdmRJVk10M3c2bUhlazRqUlBHcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDk1OC82RjYyODM4OEIzOUIxMUVGODBGNjQzNUVDNEY5QUUwMi9iQkg0TzVxTXZk SVZNdDN3Nm1IZWs0alJQR3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAClvjkajYtDFNmutXjvyF6dmp9bGaQ3rdMjOuBUJfZb6u3bfJxwul4 3FXa/RAgnOLSflHvtvL+NTe54FHG33atchP/1DVcZe8tijjU+crB2nXlIGuWeUdS pJ1INPV5HW+2aDPepEBe3YaygHz92EVC3umOs4KQ9F+ApY+mo7IGtLZVmqEZ9fXq 5LbJ+aLvE7ENmnpZH/iIjGF/Gpg33qt/5kxZTFNMPBxQH56V3X0oEhCD6K/1yXJy WLW4itKNiAXyTriwFXt3p1KWL12ckZUcU6yqVELvtI2uYcMjxLTUKp/xw1eX5skk eVhBQwzuPl29IYn9I56k9BdGlSqXmrEQ -----END CERTIFICATE-----Generated at Sat Dec 6 17:06:38 2025 by rpki-client