This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E87AB/916B0666145811EC9ED6C73BC4F9AE02/BKfrBJqTf9nyuG4Vnd310sma1B4.mft File: BKfrBJqTf9nyuG4Vnd310sma1B4.mft (raw, json) Hash identifier: 3IfhM4X+ydz5fHDRbLzRqAJZVXcaajVvzsdzmQdzNdM= Subject key identifier: BD:FF:94:47:23:84:17:08:9F:47:9B:2C:F2:4A:78:8F:73:D1:E2:FF Authority key identifier: 04:A7:EB:04:9A:93:7F:D9:F2:B8:6E:15:9D:DD:F5:D2:C9:9A:D4:1E Certificate issuer: /CN=A91E87AB/serialNumber=04A7EB049A937FD9F2B86E159DDDF5D2C99AD41E Certificate serial: 0562 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKfrBJqTf9nyuG4Vnd310sma1B4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E87AB/916B0666145811EC9ED6C73BC4F9AE02/BKfrBJqTf9nyuG4Vnd310sma1B4.mft Manifest number: 055B Signing time: Tue 16 Dec 2025 22:49:03 +0000 Manifest this update: Tue 16 Dec 2025 22:49:02 +0000 Manifest next update: Tue 23 Dec 2025 22:49:02 +0000 Files and hashes: 1: BKfrBJqTf9nyuG4Vnd310sma1B4.crl (hash: uTtrlK3pkBqiYnNAtO/1JUDoumUwuqfmvv9oZif8TE4=) 2: 709F3B2E145C11EC9A902165C4F9AE02.roa (hash: M6yv5fOW6rdXU2ZAH2K4BETuh9vZsuidxSebVax3mOc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E87AB/916B0666145811EC9ED6C73BC4F9AE02/BKfrBJqTf9nyuG4Vnd310sma1B4.crl rsync://rpki.apnic.net/member_repository/A91E87AB/916B0666145811EC9ED6C73BC4F9AE02/BKfrBJqTf9nyuG4Vnd310sma1B4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKfrBJqTf9nyuG4Vnd310sma1B4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Dec 2025 22:49:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1378 (0x562) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E87AB, serialNumber=04A7EB049A937FD9F2B86E159DDDF5D2C99AD41E Validity Not Before: Dec 16 22:49:02 2025 GMT Not After : Dec 23 22:49:02 2025 GMT Subject: CN=6941e1df-ff7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:73:10:4e:e2:6c:cf:4f:08:ce:d7:ea:a0:96: 07:50:6f:70:4c:87:0a:f6:1c:c7:24:dd:97:58:0b: 30:24:b1:d6:b4:a5:ba:a8:1d:4b:d2:a2:ec:76:8d: 78:04:80:a8:71:7f:0a:f4:25:2a:15:da:dd:7b:f9: 50:9b:5d:2a:ea:61:47:62:9c:3a:bc:f5:1f:a5:07: ad:31:bc:6b:4b:c5:a6:93:45:8b:12:a6:de:1c:a2: bf:4d:43:fe:c0:06:1b:ca:98:4d:2d:cf:cb:47:43: 0b:66:4f:81:c4:4c:cc:1f:88:fa:9b:ba:c7:cb:96: 88:58:45:42:6d:a2:20:48:22:96:46:fd:a0:a1:1f: 52:d4:5b:67:90:d2:58:4d:5c:1c:4f:13:97:72:87: 4f:37:70:08:76:17:bf:f2:0a:bc:ac:70:ef:20:8a: 9e:fc:bd:26:33:53:ca:86:a3:b8:93:30:bc:de:9c: 5e:82:31:a0:0e:d7:40:a7:be:87:cf:de:2f:65:c0: 50:24:6b:71:92:5e:9b:c6:29:46:67:6c:be:0b:ee: 1e:64:78:65:d3:25:ae:c2:73:9b:fe:62:64:62:8f: 79:c2:3a:56:e6:8b:36:77:27:3e:d0:88:aa:15:42: 97:d9:92:60:c4:21:3f:06:c4:0a:ef:13:24:d2:e8: 13:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:FF:94:47:23:84:17:08:9F:47:9B:2C:F2:4A:78:8F:73:D1:E2:FF X509v3 Authority Key Identifier: keyid:04:A7:EB:04:9A:93:7F:D9:F2:B8:6E:15:9D:DD:F5:D2:C9:9A:D4:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E87AB/916B0666145811EC9ED6C73BC4F9AE02/BKfrBJqTf9nyuG4Vnd310sma1B4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKfrBJqTf9nyuG4Vnd310sma1B4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E87AB/916B0666145811EC9ED6C73BC4F9AE02/BKfrBJqTf9nyuG4Vnd310sma1B4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:0a:ec:f9:6b:f9:f9:76:8c:57:bc:15:76:44:b2:1e:5c:e5: 83:e9:7e:32:2c:ae:e5:b3:4c:2a:38:e5:0a:c2:be:1c:c0:3c: ee:9f:00:7d:be:66:8e:54:b9:51:3d:aa:ee:a3:4a:d2:2d:c0: 02:b5:9e:ad:ed:09:23:9b:6a:b0:5a:2d:80:23:6a:1b:d2:e8: d0:2a:4f:22:35:4a:d0:0e:44:1c:f4:ad:bf:b8:7f:a5:4e:52: 49:65:09:66:60:eb:84:26:93:35:d3:38:cf:67:90:63:ef:78: 38:5f:d1:fa:60:c6:3c:c8:f9:6d:4b:c0:8c:77:d5:30:90:ce: 5b:2e:f8:a7:65:f6:a9:41:d0:9c:07:29:f3:5a:f0:4e:60:7f: 94:f2:57:22:3b:15:0d:05:53:f0:7a:53:3b:eb:df:96:ff:14: 54:3c:9d:31:7c:5e:32:74:e0:e8:d3:54:5e:6b:ba:b5:92:6c: 35:32:4b:d0:40:55:53:ce:83:fd:c8:13:1d:e7:c6:d3:2f:d4: 20:0b:64:af:52:d6:38:ed:af:84:97:76:57:69:33:50:10:95: bd:06:c1:4e:05:53:46:3b:7d:58:08:11:81:ef:f1:fd:85:d6: 1c:ad:2e:a1:dd:6e:a3:35:a2:f5:60:c4:78:79:dd:01:16:66: 63:44:58:c6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBWIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg3QUIxMTAvBgNVBAUTKDA0QTdFQjA0OUE5MzdGRDlGMkI4NkUxNTlERERGNUQy Qzk5QUQ0MUUwHhcNMjUxMjE2MjI0OTAyWhcNMjUxMjIzMjI0OTAyWjAYMRYwFAYD VQQDDA02OTQxZTFkZi1mZjdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApXMQTuJsz08IztfqoJYHUG9wTIcK9hzHJN2XWAswJLHWtKW6qB1L0qLsdo14 BICocX8K9CUqFdrde/lQm10q6mFHYpw6vPUfpQetMbxrS8Wmk0WLEqbeHKK/TUP+ wAYbyphNLc/LR0MLZk+BxEzMH4j6m7rHy5aIWEVCbaIgSCKWRv2goR9S1FtnkNJY TVwcTxOXcodPN3AIdhe/8gq8rHDvIIqe/L0mM1PKhqO4kzC83pxegjGgDtdAp76H z94vZcBQJGtxkl6bxilGZ2y+C+4eZHhl0yWuwnOb/mJkYo95wjpW5os2dyc+0Iiq FUKX2ZJgxCE/BsQK7xMk0ugTTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL3/lEcj hBcIn0ebLPJKeI9z0eL/MB8GA1UdIwQYMBaAFASn6wSak3/Z8rhuFZ3d9dLJmtQe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODdBQi85MTZCMDY2NjE0 NTgxMUVDOUVENkM3M0JDNEY5QUUwMi9CS2ZyQkpxVGY5bnl1RzRWbmQzMTBzbWEx QjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JLZnJCSnFUZjlueXVHNFZuZDMxMHNtYTFCNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF ODdBQi85MTZCMDY2NjE0NTgxMUVDOUVENkM3M0JDNEY5QUUwMi9CS2ZyQkpxVGY5 bnl1RzRWbmQzMTBzbWExQjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCuCuz5a/n5doxXvBV2RLIeXOWD6X4yLK7ls0wqOOUKwr4cwDzunwB9 vmaOVLlRParuo0rSLcACtZ6t7Qkjm2qwWi2AI2ob0ujQKk8iNUrQDkQc9K2/uH+l TlJJZQlmYOuEJpM10zjPZ5Bj73g4X9H6YMY8yPltS8CMd9UwkM5bLvinZfapQdCc BynzWvBOYH+U8lciOxUNBVPwelM769+W/xRUPJ0xfF4ydODo01Rea7q1kmw1MkvQ QFVTzoP9yBMd58bTL9QgC2SvUtY47a+El3ZXaTNQEJW9BsFOBVNGO31YCBGB7/H9 hdYcrS6h3W6jNaL1YMR4ed0BFmZjRFjG -----END CERTIFICATE-----Generated at Thu Dec 18 14:21:34 2025 by rpki-client