This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9126B7C/51A9445ADF8811EDAFBF2B7FC4F9AE02/BPB0oLqHgFxQ_HmT1AQQuEoR0vY.mft File: BPB0oLqHgFxQ_HmT1AQQuEoR0vY.mft (raw, json) Hash identifier: qQfjXrMUgzCVihtVh1IeXGT9LpetfJyA5bZDsFrOkMQ= Subject key identifier: 0D:11:43:5B:78:E6:89:F4:A3:F1:DC:31:E0:4B:0A:C9:60:83:5C:D9 Authority key identifier: 04:F0:74:A0:BA:87:80:5C:50:FC:79:93:D4:04:10:B8:4A:11:D2:F6 Certificate issuer: /CN=A9126B7C/serialNumber=04F074A0BA87805C50FC7993D40410B84A11D2F6 Certificate serial: 01FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BPB0oLqHgFxQ_HmT1AQQuEoR0vY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9126B7C/51A9445ADF8811EDAFBF2B7FC4F9AE02/BPB0oLqHgFxQ_HmT1AQQuEoR0vY.mft Manifest number: 01F5 Signing time: Tue 23 Dec 2025 01:32:52 +0000 Manifest this update: Tue 23 Dec 2025 01:32:51 +0000 Manifest next update: Tue 30 Dec 2025 01:32:51 +0000 Files and hashes: 1: BPB0oLqHgFxQ_HmT1AQQuEoR0vY.crl (hash: S6ZO9ZRmkBrHGNtLb5Tb5o6YV6ZxkyjlRmMbJjRNHVk=) 2: F607A6C8DF8C11ED9EAE5884C4F9AE02.roa (hash: 0kmwTMLlfi4JUkvLZl5hjiEibE5pPoiG3TS5y+XQg4M=) 3: F57CB8F6DF8C11ED9EAE5884C4F9AE02.roa (hash: JW1dKstiHv1728tfD/7nx2W9fc+YXOuPr0l8dOY2HWI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9126B7C/51A9445ADF8811EDAFBF2B7FC4F9AE02/BPB0oLqHgFxQ_HmT1AQQuEoR0vY.crl rsync://rpki.apnic.net/member_repository/A9126B7C/51A9445ADF8811EDAFBF2B7FC4F9AE02/BPB0oLqHgFxQ_HmT1AQQuEoR0vY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BPB0oLqHgFxQ_HmT1AQQuEoR0vY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 01:32:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 509 (0x1fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9126B7C, serialNumber=04F074A0BA87805C50FC7993D40410B84A11D2F6 Validity Not Before: Dec 23 01:32:51 2025 GMT Not After : Dec 30 01:32:51 2025 GMT Subject: CN=6949f143-ae49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:4b:26:d6:6e:b9:d1:d8:23:24:c3:d8:7b:31: 74:f0:ed:6a:90:db:68:27:ff:14:4c:1d:29:29:08: fb:e1:14:73:a5:35:22:a8:51:2d:28:ee:c8:12:53: 31:2d:87:7f:f4:ae:62:5e:f1:f6:2e:3f:49:f2:66: 2a:95:52:f5:d8:de:09:99:24:46:84:76:c7:e0:2a: 1f:a8:58:94:2c:ea:b3:f5:c9:cc:98:ae:fe:14:bc: b5:9c:77:c8:ac:d1:fd:ff:7f:09:c9:f3:17:75:11: 59:02:4a:68:cc:4d:4b:c5:25:bc:cf:08:87:f1:9d: 3e:f5:63:f7:e0:6a:9a:29:25:f9:83:86:88:15:bf: a7:61:78:fa:6a:f8:23:57:c2:52:cf:fc:ad:0d:6d: 91:e7:3b:95:38:8a:18:45:30:38:33:01:f9:d8:9b: e2:ad:25:f6:03:ab:df:92:dd:ef:d2:a8:86:9b:ef: 2c:60:a6:4f:1f:c9:a1:9a:6c:ef:7d:24:c0:d0:2b: aa:cd:fe:7d:a3:e8:7a:86:44:27:53:de:21:28:39: 03:a3:d6:8a:4b:b2:10:dc:46:2a:96:f7:85:f0:a1: 5e:56:94:bd:40:dc:74:92:16:0c:54:89:c1:33:bb: c3:df:ef:7c:06:aa:fc:27:ab:fb:70:ac:cf:da:2e: 3b:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:11:43:5B:78:E6:89:F4:A3:F1:DC:31:E0:4B:0A:C9:60:83:5C:D9 X509v3 Authority Key Identifier: keyid:04:F0:74:A0:BA:87:80:5C:50:FC:79:93:D4:04:10:B8:4A:11:D2:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9126B7C/51A9445ADF8811EDAFBF2B7FC4F9AE02/BPB0oLqHgFxQ_HmT1AQQuEoR0vY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BPB0oLqHgFxQ_HmT1AQQuEoR0vY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9126B7C/51A9445ADF8811EDAFBF2B7FC4F9AE02/BPB0oLqHgFxQ_HmT1AQQuEoR0vY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:ee:4f:92:31:b3:14:db:0e:22:38:d2:66:b4:45:89:d0:4b: ef:7c:b5:f4:b4:88:85:22:2f:7a:b3:e0:1e:10:4f:cf:2a:3c: 5a:e6:7a:8e:08:2e:f4:ac:65:1e:f1:4f:a6:06:87:f3:8d:8c: ca:e9:00:c2:6b:f6:8d:f5:50:26:2d:3d:79:ee:1e:3d:5d:a9: 49:d3:83:95:02:e2:bd:52:b8:54:a7:d1:6d:8f:d7:8a:e5:ef: 59:9a:b6:e7:6c:36:97:05:58:8a:30:b7:ed:21:72:63:c9:79: c4:a9:15:af:45:bd:8b:4b:28:99:35:33:f6:d8:46:b1:5f:c0: 6d:2d:5b:80:84:aa:9a:c8:8b:e9:c9:29:00:a4:e0:a5:d5:60: e7:d7:60:26:cd:51:ac:2b:1b:99:cd:71:bc:be:a2:26:0d:19: 1d:66:33:70:47:1e:6d:56:78:d5:1a:f1:d5:33:ba:1b:cf:59: 04:06:f3:f8:24:a0:15:f4:2c:5b:b1:6e:56:e3:08:35:28:30: ee:6b:82:65:fc:66:bf:47:cf:87:77:78:47:db:25:76:76:da: fc:f9:14:18:95:fe:11:b7:f4:4c:9a:19:86:ee:38:4b:83:72: d5:ab:84:7f:3a:3c:9d:3e:f4:85:30:48:34:bc:22:00:f2:14: e0:d2:bd:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAf0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjZCN0MxMTAvBgNVBAUTKDA0RjA3NEEwQkE4NzgwNUM1MEZDNzk5M0Q0MDQxMEI4 NEExMUQyRjYwHhcNMjUxMjIzMDEzMjUxWhcNMjUxMjMwMDEzMjUxWjAYMRYwFAYD VQQDDA02OTQ5ZjE0My1hZTQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn0sm1m650dgjJMPYezF08O1qkNtoJ/8UTB0pKQj74RRzpTUiqFEtKO7IElMx LYd/9K5iXvH2Lj9J8mYqlVL12N4JmSRGhHbH4CofqFiULOqz9cnMmK7+FLy1nHfI rNH9/38JyfMXdRFZAkpozE1LxSW8zwiH8Z0+9WP34GqaKSX5g4aIFb+nYXj6avgj V8JSz/ytDW2R5zuVOIoYRTA4MwH52JvirSX2A6vfkt3v0qiGm+8sYKZPH8mhmmzv fSTA0Cuqzf59o+h6hkQnU94hKDkDo9aKS7IQ3EYqlveF8KFeVpS9QNx0khYMVInB M7vD3+98Bqr8J6v7cKzP2i47cwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA0RQ1t4 5on0o/HcMeBLCslgg1zZMB8GA1UdIwQYMBaAFATwdKC6h4BcUPx5k9QEELhKEdL2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNkI3Qy81MUE5NDQ1QURG ODgxMUVEQUZCRjJCN0ZDNEY5QUUwMi9CUEIwb0xxSGdGeFFfSG1UMUFRUXVFb1Iw dlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JQQjBvTHFIZ0Z4UV9IbVQxQVFRdUVvUjB2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NkI3Qy81MUE5NDQ1QURGODgxMUVEQUZCRjJCN0ZDNEY5QUUwMi9CUEIwb0xxSGdG eFFfSG1UMUFRUXVFb1IwdlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBt7k+SMbMU2w4iONJmtEWJ0EvvfLX0tIiFIi96s+AeEE/PKjxa5nqO CC70rGUe8U+mBofzjYzK6QDCa/aN9VAmLT157h49XalJ04OVAuK9UrhUp9Ftj9eK 5e9ZmrbnbDaXBViKMLftIXJjyXnEqRWvRb2LSyiZNTP22EaxX8BtLVuAhKqayIvp ySkApOCl1WDn12AmzVGsKxuZzXG8vqImDRkdZjNwRx5tVnjVGvHVM7obz1kEBvP4 JKAV9CxbsW5W4wg1KDDua4Jl/Ga/R8+Hd3hH2yV2dtr8+RQYlf4Rt/RMmhmG7jhL g3LVq4R/OjydPvSFMEg0vCIA8hTg0r2m -----END CERTIFICATE-----Generated at Wed Dec 24 17:37:28 2025 by rpki-client