This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C146D/F4D5A67E003711F0BBD72475C4F9AE02/BKM4-nsSbgfA74urj33BycGsMiE.mft File: BKM4-nsSbgfA74urj33BycGsMiE.mft (raw, json) Hash identifier: 7/6NKxBeYfZeFqko+bWSDWO6Arfl9VyCbK6gwIect6Y= Subject key identifier: EE:9F:39:47:1B:FB:2B:01:DC:A8:F3:21:3F:5A:E8:FC:3F:4B:D1:5B Authority key identifier: 04:A3:38:FA:7B:12:6E:07:C0:EF:8B:AB:8F:7D:C1:C9:C1:AC:32:21 Certificate issuer: /CN=A91C146D/serialNumber=04A338FA7B126E07C0EF8BAB8F7DC1C9C1AC3221 Certificate serial: 88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKM4-nsSbgfA74urj33BycGsMiE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C146D/F4D5A67E003711F0BBD72475C4F9AE02/BKM4-nsSbgfA74urj33BycGsMiE.mft Manifest number: 88 Signing time: Fri 05 Dec 2025 04:33:09 +0000 Manifest this update: Fri 05 Dec 2025 04:33:09 +0000 Manifest next update: Fri 12 Dec 2025 04:33:09 +0000 Files and hashes: 1: BKM4-nsSbgfA74urj33BycGsMiE.crl (hash: FtfO3JqJ1BHCab2ED+/ChzxoB1MWyulHf2f4ZNec0F4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C146D/F4D5A67E003711F0BBD72475C4F9AE02/BKM4-nsSbgfA74urj33BycGsMiE.crl rsync://rpki.apnic.net/member_repository/A91C146D/F4D5A67E003711F0BBD72475C4F9AE02/BKM4-nsSbgfA74urj33BycGsMiE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKM4-nsSbgfA74urj33BycGsMiE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:33:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 136 (0x88) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C146D, serialNumber=04A338FA7B126E07C0EF8BAB8F7DC1C9C1AC3221 Validity Not Before: Dec 5 04:33:09 2025 GMT Not After : Dec 12 04:33:09 2025 GMT Subject: CN=69326085-b95d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:85:92:2f:fe:60:73:28:58:7b:2a:35:1f:08: 03:fb:b2:79:5f:e1:56:73:c0:5b:44:4d:59:f3:66: 81:35:3c:9c:aa:fd:d8:2b:e3:03:43:75:3c:d5:e2: 1b:51:81:df:40:b6:78:ca:de:8e:a6:b7:dd:40:68: 70:fc:6f:1b:99:99:1c:3f:48:ef:59:ad:73:30:44: 86:7c:d1:93:7d:e3:3f:bf:3f:91:12:dc:f1:f8:ac: 38:27:dc:39:b2:a1:1b:c0:f1:fa:de:fb:94:23:9e: cb:7e:3e:b3:c2:41:ba:3a:17:78:61:63:de:6a:32: 79:49:c2:35:54:d6:8d:cc:ac:12:bd:12:38:7e:92: 4f:98:a3:e1:ec:ac:98:44:83:f5:b7:c7:74:f8:34: fb:9b:0d:3f:90:d2:0a:b3:74:76:46:17:d4:d8:59: 32:9a:e7:70:af:4a:df:36:d6:6a:7a:cc:98:19:31: 22:27:15:b9:4f:5c:9a:8f:58:00:75:22:4e:95:99: e1:14:75:7b:df:cc:78:dc:ca:0b:13:91:fc:bb:c1: 55:00:25:52:d4:97:2b:18:bf:f0:af:ec:9e:98:40: bb:10:df:39:59:66:b3:69:5a:a3:89:a4:f7:b9:6e: 7e:b9:9a:c5:3d:8a:e9:64:79:99:ba:cd:a8:ea:d2: e0:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:9F:39:47:1B:FB:2B:01:DC:A8:F3:21:3F:5A:E8:FC:3F:4B:D1:5B X509v3 Authority Key Identifier: keyid:04:A3:38:FA:7B:12:6E:07:C0:EF:8B:AB:8F:7D:C1:C9:C1:AC:32:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C146D/F4D5A67E003711F0BBD72475C4F9AE02/BKM4-nsSbgfA74urj33BycGsMiE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKM4-nsSbgfA74urj33BycGsMiE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C146D/F4D5A67E003711F0BBD72475C4F9AE02/BKM4-nsSbgfA74urj33BycGsMiE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:81:a2:43:94:11:bd:5b:69:26:0f:38:65:0f:41:ba:3d:17: 79:92:58:65:11:e3:ca:76:04:4d:bd:78:31:bc:d2:5d:3f:31: a1:be:2a:0e:ce:ac:34:02:c8:ba:85:b2:c3:23:51:70:db:e7: 1a:77:42:e7:be:31:5f:9a:71:07:53:fd:7a:a3:30:3e:bd:7a: fa:b1:c0:2c:00:37:3d:f5:b7:32:72:d7:7f:f0:55:24:6e:39: 85:79:6d:72:f0:e4:d6:43:6e:8f:71:cc:5f:f2:44:c7:81:dc: 25:9d:b5:ab:39:b8:ee:fd:b2:49:7a:37:ff:b2:4a:6d:d3:47: 05:23:d0:79:3c:5b:cf:bd:8f:fe:c2:86:3d:2f:72:00:89:89: 17:0b:1e:87:ad:e0:23:f8:10:63:1a:0e:92:44:04:45:0e:2e: 7f:0f:88:83:84:9c:a0:7f:d3:50:71:d6:29:75:5b:e0:25:3a: f2:ff:bd:18:da:74:ff:cf:dc:32:52:5e:f3:d7:a6:be:c7:9a: 34:73:44:51:21:f9:8d:a3:b1:11:a4:e0:47:11:ef:e0:18:4f: 59:97:ab:75:3d:4b:d7:c5:b2:d9:3a:14:a6:30:67:9f:86:71: 54:59:9d:cd:38:94:1e:75:2f:e9:9f:b6:9b:af:c4:ef:2f:5b: 3b:57:b0:1f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzE0NkQxMTAvBgNVBAUTKDA0QTMzOEZBN0IxMjZFMDdDMEVGOEJBQjhGN0RDMUM5 QzFBQzMyMjEwHhcNMjUxMjA1MDQzMzA5WhcNMjUxMjEyMDQzMzA5WjAYMRYwFAYD VQQDEw02OTMyNjA4NS1iOTVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvoWSL/5gcyhYeyo1HwgD+7J5X+FWc8BbRE1Z82aBNTycqv3YK+MDQ3U81eIb UYHfQLZ4yt6OprfdQGhw/G8bmZkcP0jvWa1zMESGfNGTfeM/vz+REtzx+Kw4J9w5 sqEbwPH63vuUI57Lfj6zwkG6Ohd4YWPeajJ5ScI1VNaNzKwSvRI4fpJPmKPh7KyY RIP1t8d0+DT7mw0/kNIKs3R2RhfU2Fkymudwr0rfNtZqesyYGTEiJxW5T1yaj1gA dSJOlZnhFHV738x43MoLE5H8u8FVACVS1JcrGL/wr+yemEC7EN85WWazaVqjiaT3 uW5+uZrFPYrpZHmZus2o6tLgtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO6fOUcb +ysB3KjzIT9a6Pw/S9FbMB8GA1UdIwQYMBaAFASjOPp7Em4HwO+Lq499wcnBrDIh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTQ2RC9GNEQ1QTY3RTAw MzcxMUYwQkJENzI0NzVDNEY5QUUwMi9CS000LW5zU2JnZkE3NHVyajMzQnljR3NN aUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JLTTQtbnNTYmdmQTc0dXJqMzNCeWNHc01pRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MTQ2RC9GNEQ1QTY3RTAwMzcxMUYwQkJENzI0NzVDNEY5QUUwMi9CS000LW5zU2Jn ZkE3NHVyajMzQnljR3NNaUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAgaJDlBG9W2kmDzhlD0G6PRd5klhlEePKdgRNvXgxvNJdPzGhvioO zqw0Asi6hbLDI1Fw2+cad0LnvjFfmnEHU/16ozA+vXr6scAsADc99bcyctd/8FUk bjmFeW1y8OTWQ26Pccxf8kTHgdwlnbWrObju/bJJejf/skpt00cFI9B5PFvPvY/+ woY9L3IAiYkXCx6HreAj+BBjGg6SRARFDi5/D4iDhJygf9NQcdYpdVvgJTry/70Y 2nT/z9wyUl7z16a+x5o0c0RRIfmNo7ERpOBHEe/gGE9Zl6t1PUvXxbLZOhSmMGef hnFUWZ3NOJQedS/pn7abr8TvL1s7V7Af -----END CERTIFICATE-----Generated at Sat Dec 6 23:24:17 2025 by rpki-client