This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA0AE/37EB0C66C96411EAA106E859C4F9AE02/BAiuYP82i4xPzZMY6lKlnIcolJw.mft File: BAiuYP82i4xPzZMY6lKlnIcolJw.mft (raw, json) Hash identifier: 6Ttz+K9KDf8dpaHK+Z7/4Ua7QQ9c0SHbyV6IyAVYYA8= Subject key identifier: 38:5C:38:F9:6A:23:F5:25:7F:B0:A1:E4:AC:83:D4:CD:F1:28:86:39 Authority key identifier: 04:08:AE:60:FF:36:8B:8C:4F:CD:93:18:EA:52:A5:9C:87:28:94:9C Certificate issuer: /CN=A91BA0AE/serialNumber=0408AE60FF368B8C4FCD9318EA52A59C8728949C Certificate serial: 08C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BAiuYP82i4xPzZMY6lKlnIcolJw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA0AE/37EB0C66C96411EAA106E859C4F9AE02/BAiuYP82i4xPzZMY6lKlnIcolJw.mft Manifest number: 0AF3 Signing time: Sat 06 Dec 2025 19:37:37 +0000 Manifest this update: Sat 06 Dec 2025 19:37:37 +0000 Manifest next update: Sat 13 Dec 2025 19:37:37 +0000 Files and hashes: 1: BAiuYP82i4xPzZMY6lKlnIcolJw.crl (hash: B/1D6PftthJ/Sjr5WEafM+e/FXXamLBFta+XtYybk1g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA0AE/37EB0C66C96411EAA106E859C4F9AE02/BAiuYP82i4xPzZMY6lKlnIcolJw.crl rsync://rpki.apnic.net/member_repository/A91BA0AE/37EB0C66C96411EAA106E859C4F9AE02/BAiuYP82i4xPzZMY6lKlnIcolJw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BAiuYP82i4xPzZMY6lKlnIcolJw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2242 (0x8c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA0AE, serialNumber=0408AE60FF368B8C4FCD9318EA52A59C8728949C Validity Not Before: Dec 6 19:37:37 2025 GMT Not After : Dec 13 19:37:37 2025 GMT Subject: CN=69348601-1980 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:46:9b:4a:ea:05:80:3e:57:00:55:20:e0:42: 12:e9:e9:d7:a8:df:8e:51:f2:18:58:e5:63:18:8a: bb:96:78:a4:8b:43:c4:2a:8a:ab:13:c4:19:e3:6a: e1:ef:6f:a6:4d:84:d3:cc:b9:72:d8:1c:c9:52:a1: 37:74:f2:f8:07:0e:8e:36:f8:2a:54:54:3a:f4:81: 60:00:a5:9b:ae:31:0a:56:36:20:9f:63:63:6c:8f: 13:a0:0b:27:8a:ed:46:fa:f3:1c:bb:ec:ed:2d:87: 12:52:57:b6:ee:73:83:69:8b:e0:64:6c:d7:8b:e0: e3:22:ae:01:59:70:a0:61:9a:70:96:08:24:bc:4e: d5:1b:d0:d3:66:02:06:b2:a5:3c:33:33:94:38:be: af:7c:1e:79:30:fa:d2:da:0f:00:d9:60:53:40:53: fb:08:63:ea:16:e1:18:0e:9d:20:85:84:2e:b3:03: 9a:1a:ef:7a:8c:0a:74:2f:99:cc:48:64:d6:73:a3: 62:1e:bc:c5:3a:70:69:4e:66:3f:f7:1f:b1:e8:bf: 99:9d:6e:ef:08:0a:d2:04:5a:1e:04:33:9e:12:8a: 46:b3:55:3a:78:7c:d5:c3:13:57:ed:7f:7d:94:fd: 7b:bb:c7:12:9c:a5:9d:df:b0:16:6b:b7:31:fe:e2: 3a:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:5C:38:F9:6A:23:F5:25:7F:B0:A1:E4:AC:83:D4:CD:F1:28:86:39 X509v3 Authority Key Identifier: keyid:04:08:AE:60:FF:36:8B:8C:4F:CD:93:18:EA:52:A5:9C:87:28:94:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA0AE/37EB0C66C96411EAA106E859C4F9AE02/BAiuYP82i4xPzZMY6lKlnIcolJw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BAiuYP82i4xPzZMY6lKlnIcolJw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA0AE/37EB0C66C96411EAA106E859C4F9AE02/BAiuYP82i4xPzZMY6lKlnIcolJw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:0b:3b:7f:ee:75:5e:9f:f5:1f:c5:25:a5:54:1b:af:d6:10: 26:3a:19:bf:da:24:7d:41:00:3b:38:c5:ca:90:0c:85:ca:dc: 5b:ba:25:20:e8:0c:c5:48:46:d5:65:9d:08:52:59:31:e9:64: ae:49:02:ac:11:41:25:de:16:d9:fd:d9:d0:60:fb:e8:bf:20: b0:9f:e5:17:dd:c9:a5:d6:87:c3:2a:88:04:61:b9:69:be:09: ac:b2:09:c6:14:e9:5c:cc:06:8a:f9:aa:8b:51:19:8c:10:c3: f1:35:77:53:1b:68:7d:d7:72:2e:86:08:e9:4f:8f:fc:ef:bb: fe:a6:17:6f:e7:23:d1:27:59:a4:6c:7a:4f:68:6e:3f:0d:75: 23:8a:8f:c9:ad:35:99:21:94:3c:5a:6c:76:d4:69:29:65:3a: 99:1e:27:04:0b:97:92:7d:01:e6:70:08:68:4c:02:f4:66:08: 8a:bb:eb:57:d7:2a:12:af:82:4d:45:eb:0e:2d:b4:9d:0d:9d: d8:c3:31:ce:14:14:5f:52:85:ce:75:1d:d3:6a:cd:ba:f6:fc: 6c:9e:2d:78:19:66:7b:13:5c:f2:1d:26:7f:1c:3c:8c:b8:37: ff:0c:99:48:2d:42:f2:ae:79:dd:69:ea:01:ee:f1:5d:b8:0b: d3:23:98:d0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCMIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkEwQUUxMTAvBgNVBAUTKDA0MDhBRTYwRkYzNjhCOEM0RkNEOTMxOEVBNTJBNTlD ODcyODk0OUMwHhcNMjUxMjA2MTkzNzM3WhcNMjUxMjEzMTkzNzM3WjAYMRYwFAYD VQQDEw02OTM0ODYwMS0xOTgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0kabSuoFgD5XAFUg4EIS6enXqN+OUfIYWOVjGIq7lniki0PEKoqrE8QZ42rh 72+mTYTTzLly2BzJUqE3dPL4Bw6ONvgqVFQ69IFgAKWbrjEKVjYgn2NjbI8ToAsn iu1G+vMcu+ztLYcSUle27nODaYvgZGzXi+DjIq4BWXCgYZpwlggkvE7VG9DTZgIG sqU8MzOUOL6vfB55MPrS2g8A2WBTQFP7CGPqFuEYDp0ghYQuswOaGu96jAp0L5nM SGTWc6NiHrzFOnBpTmY/9x+x6L+ZnW7vCArSBFoeBDOeEopGs1U6eHzVwxNX7X99 lP17u8cSnKWd37AWa7cx/uI6DQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDhcOPlq I/Ulf7Ch5KyD1M3xKIY5MB8GA1UdIwQYMBaAFAQIrmD/NouMT82TGOpSpZyHKJSc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQTBBRS8zN0VCMEM2NkM5 NjQxMUVBQTEwNkU4NTlDNEY5QUUwMi9CQWl1WVA4Mmk0eFB6Wk1ZNmxLbG5JY29s SncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JBaXVZUDgyaTR4UHpaTVk2bEtsbkljb2xKdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QTBBRS8zN0VCMEM2NkM5NjQxMUVBQTEwNkU4NTlDNEY5QUUwMi9CQWl1WVA4Mmk0 eFB6Wk1ZNmxLbG5JY29sSncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqCzt/7nVen/UfxSWlVBuv1hAmOhm/2iR9QQA7OMXKkAyFytxbuiUg 6AzFSEbVZZ0IUlkx6WSuSQKsEUEl3hbZ/dnQYPvovyCwn+UX3cml1ofDKogEYblp vgmssgnGFOlczAaK+aqLURmMEMPxNXdTG2h913IuhgjpT4/877v+phdv5yPRJ1mk bHpPaG4/DXUjio/JrTWZIZQ8Wmx21GkpZTqZHicEC5eSfQHmcAhoTAL0ZgiKu+tX 1yoSr4JNResOLbSdDZ3YwzHOFBRfUoXOdR3Tas269vxsni14GWZ7E1zyHSZ/HDyM uDf/DJlILULyrnndaeoB7vFduAvTI5jQ -----END CERTIFICATE-----Generated at Sat Dec 6 21:27:53 2025 by rpki-client