This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911CC61/331D1418DA3E11F08FD1E8388ED3641D/BHSTfnmp1nM1PqvYLEuEJLbGgw0.mft File: BHSTfnmp1nM1PqvYLEuEJLbGgw0.mft (raw, json) Hash identifier: naIyyrTyaPukAJnmnlN4qHAHXceGGtlofJz3i+K8eYQ= Subject key identifier: 34:4D:37:7F:7B:04:B5:E0:C6:D3:86:77:3E:88:B6:F2:AB:6E:08:66 Authority key identifier: 04:74:93:7E:79:A9:D6:73:35:3E:AB:D8:2C:4B:84:24:B6:C6:83:0D Certificate issuer: /CN=A911CC61/serialNumber=0474937E79A9D673353EABD82C4B8424B6C6830D Certificate serial: 04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BHSTfnmp1nM1PqvYLEuEJLbGgw0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CC61/331D1418DA3E11F08FD1E8388ED3641D/BHSTfnmp1nM1PqvYLEuEJLbGgw0.mft Manifest number: 02 Signing time: Tue 16 Dec 2025 05:17:38 +0000 Manifest this update: Tue 16 Dec 2025 05:17:38 +0000 Manifest next update: Tue 23 Dec 2025 05:17:38 +0000 Files and hashes: 1: BHSTfnmp1nM1PqvYLEuEJLbGgw0.crl (hash: kk4v11zISUzNi2UQgcppMckAhAB2aEXSg7FOVnl7TWc=) 2: 86A83D10DA3E11F09B1225578ED3641D.roa (hash: cYo/bv4qOhqtc2EXJ3pnpcx0v1pGJ4KX6dqhgSn3dVg=) 3: 87421F34DA3E11F09B1225578ED3641D.roa (hash: 8L4tAPrDqGgfmL4XivEBXxkIrTLCf+4aYWjfcHqE358=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CC61/331D1418DA3E11F08FD1E8388ED3641D/BHSTfnmp1nM1PqvYLEuEJLbGgw0.crl rsync://rpki.apnic.net/member_repository/A911CC61/331D1418DA3E11F08FD1E8388ED3641D/BHSTfnmp1nM1PqvYLEuEJLbGgw0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BHSTfnmp1nM1PqvYLEuEJLbGgw0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Dec 2025 05:17:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CC61, serialNumber=0474937E79A9D673353EABD82C4B8424B6C6830D Validity Not Before: Dec 16 05:17:38 2025 GMT Not After : Dec 23 05:17:38 2025 GMT Subject: CN=6940eb72-43e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:2b:a4:52:69:d8:e3:47:9e:ef:2b:7b:c3:9c: 19:a0:46:5c:fa:d1:b4:99:ab:4e:1d:d1:0e:b6:b7: 39:61:03:68:ff:c0:ac:00:ca:27:ff:3d:44:76:c1: 17:b6:9f:ed:69:19:6f:ca:8f:d2:51:52:1d:d6:ab: 01:3a:b9:88:a0:9a:77:75:af:81:ec:87:77:c9:06: 37:0c:47:6a:3a:aa:34:9f:32:0d:7d:ec:7d:9a:f3: c2:35:27:67:3a:f4:a9:26:24:f3:bb:95:19:7c:77: 20:9a:4e:8b:40:65:90:f5:b6:69:21:08:a1:79:43: 90:aa:1b:8d:d1:59:03:2d:c7:3e:a7:36:90:02:f3: dc:16:7e:b1:db:24:51:33:e2:b7:b3:91:92:76:ad: 7b:24:05:ab:1f:0f:12:c0:da:3c:46:b0:57:a5:0f: 96:78:e7:cb:9b:66:03:a3:a7:6e:82:fb:ba:52:91: b7:37:27:fe:8e:9c:45:04:f5:66:de:9f:35:08:ac: 52:0c:1b:05:fd:6b:a6:06:21:fe:d0:62:fc:be:33: 2c:ce:83:3b:c3:f0:46:09:a7:9c:20:e4:d0:f6:cb: e2:44:97:84:d8:4e:63:c9:1c:65:e7:39:86:dd:3c: 23:40:95:2c:6e:cc:f0:4f:fc:67:1c:89:75:83:cc: ba:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:4D:37:7F:7B:04:B5:E0:C6:D3:86:77:3E:88:B6:F2:AB:6E:08:66 X509v3 Authority Key Identifier: keyid:04:74:93:7E:79:A9:D6:73:35:3E:AB:D8:2C:4B:84:24:B6:C6:83:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CC61/331D1418DA3E11F08FD1E8388ED3641D/BHSTfnmp1nM1PqvYLEuEJLbGgw0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BHSTfnmp1nM1PqvYLEuEJLbGgw0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CC61/331D1418DA3E11F08FD1E8388ED3641D/BHSTfnmp1nM1PqvYLEuEJLbGgw0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:19:33:c9:8c:64:68:d9:de:f9:6f:d4:3c:9b:dd:88:3a:3e: 23:62:d4:e0:11:8e:b5:01:a0:28:d2:3d:0a:9c:5b:fe:a4:f7: b6:a4:db:1a:72:6c:8f:34:de:0c:73:41:53:5c:c9:5a:89:f8: 1c:37:ab:77:3c:8a:91:69:53:52:ec:fa:7a:2f:52:ce:5d:26: e9:a3:1b:08:46:82:26:79:7d:53:23:e6:d2:df:16:af:a6:f5: ed:a2:d8:38:73:b0:a4:6a:2c:ce:de:9a:62:80:48:60:81:a7: 6f:7f:11:5e:15:d8:4c:c6:3a:5b:49:86:e9:ee:38:ab:74:4e: 7e:8f:1a:ca:04:21:16:43:f6:c3:a4:fb:44:74:62:e8:88:40: fe:19:28:3c:07:9b:24:70:1d:02:e8:0e:47:5b:f5:4b:12:40: cf:ca:bb:8e:0b:5a:ee:86:20:98:14:a2:42:08:45:c1:1c:c7: d9:be:9b:3e:37:c4:de:04:b8:64:aa:31:f1:1c:6f:85:a6:28: b3:69:5d:3b:f4:40:ae:99:30:07:4d:c4:62:0c:ef:37:43:dd: 5d:56:56:e6:91:7e:60:4b:0a:3b:3a:22:f8:12:ee:73:9e:9a: c2:50:5a:06:d7:5e:3c:20:90:03:a5:e4:8d:a9:3a:83:41:7e: e7:54:c3:8b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx Q0M2MTExMC8GA1UEBRMoMDQ3NDkzN0U3OUE5RDY3MzM1M0VBQkQ4MkM0Qjg0MjRC NkM2ODMwRDAeFw0yNTEyMTYwNTE3MzhaFw0yNTEyMjMwNTE3MzhaMBgxFjAUBgNV BAMMDTY5NDBlYjcyLTQzZTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDcK6RSadjjR57vK3vDnBmgRlz60bSZq04d0Q62tzlhA2j/wKwAyif/PUR2wRe2 n+1pGW/Kj9JRUh3WqwE6uYigmnd1r4Hsh3fJBjcMR2o6qjSfMg197H2a88I1J2c6 9KkmJPO7lRl8dyCaTotAZZD1tmkhCKF5Q5CqG43RWQMtxz6nNpAC89wWfrHbJFEz 4rezkZJ2rXskBasfDxLA2jxGsFelD5Z458ubZgOjp26C+7pSkbc3J/6OnEUE9Wbe nzUIrFIMGwX9a6YGIf7QYvy+MyzOgzvD8EYJp5wg5ND2y+JEl4TYTmPJHGXnOYbd PCNAlSxuzPBP/GcciXWDzLofAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUNE03f3sE teDG04Z3Poi28qtuCGYwHwYDVR0jBBgwFoAUBHSTfnmp1nM1PqvYLEuEJLbGgw0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFDQzYxLzMzMUQxNDE4REEz RTExRjA4RkQxRTgzODhFRDM2NDFEL0JIU1Rmbm1wMW5NMVBxdllMRXVFSkxiR2d3 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQkhTVGZubXAxbk0xUHF2WUxFdUVKTGJHZ3cwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFD QzYxLzMzMUQxNDE4REEzRTExRjA4RkQxRTgzODhFRDM2NDFEL0JIU1Rmbm1wMW5N MVBxdllMRXVFSkxiR2d3MC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAgZM8mMZGjZ3vlv1Dyb3Yg6PiNi1OARjrUBoCjSPQqcW/6k97ak2xpy bI803gxzQVNcyVqJ+Bw3q3c8ipFpU1Ls+novUs5dJumjGwhGgiZ5fVMj5tLfFq+m 9e2i2DhzsKRqLM7emmKASGCBp29/EV4V2EzGOltJhunuOKt0Tn6PGsoEIRZD9sOk +0R0YuiIQP4ZKDwHmyRwHQLoDkdb9UsSQM/Ku44LWu6GIJgUokIIRcEcx9m+mz43 xN4EuGSqMfEcb4WmKLNpXTv0QK6ZMAdNxGIM7zdD3V1WVuaRfmBLCjs6IvgS7nOe msJQWgbXXjwgkAOl5I2pOoNBfudUw4s= -----END CERTIFICATE-----Generated at Thu Dec 18 10:04:36 2025 by rpki-client