This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9127C93/4021A4E65F2411EDB80C1921C4F9AE02/Bst2YhlvZE7eydz72HmbjHPjlwk.mft File: Bst2YhlvZE7eydz72HmbjHPjlwk.mft (raw, json) Hash identifier: G5BpLPGYdIXgvHpajKop40XG3GNwdfMPeowItinmREU= Subject key identifier: E7:ED:E6:09:6F:95:BE:E1:E3:41:25:24:05:20:3F:9C:83:D8:29:B0 Authority key identifier: 06:CB:76:62:19:6F:64:4E:DE:C9:DC:FB:D8:79:9B:8C:73:E3:97:09 Certificate issuer: /CN=A9127C93/serialNumber=06CB7662196F644EDEC9DCFBD8799B8C73E39709 Certificate serial: 0252 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bst2YhlvZE7eydz72HmbjHPjlwk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127C93/4021A4E65F2411EDB80C1921C4F9AE02/Bst2YhlvZE7eydz72HmbjHPjlwk.mft Manifest number: 024C Signing time: Tue 23 Dec 2025 00:47:23 +0000 Manifest this update: Tue 23 Dec 2025 00:47:22 +0000 Manifest next update: Tue 30 Dec 2025 00:47:22 +0000 Files and hashes: 1: Bst2YhlvZE7eydz72HmbjHPjlwk.crl (hash: BnbDa2eKFoEncCWBedV4taopvSCRyvmUyt340Lt9TjQ=) 2: 2965791E5F4011ED9361C246C4F9AE02.roa (hash: giH1vIhIIPvv5hJDOK02Raj/lgCr3oz3hTTRlbexHIs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127C93/4021A4E65F2411EDB80C1921C4F9AE02/Bst2YhlvZE7eydz72HmbjHPjlwk.crl rsync://rpki.apnic.net/member_repository/A9127C93/4021A4E65F2411EDB80C1921C4F9AE02/Bst2YhlvZE7eydz72HmbjHPjlwk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bst2YhlvZE7eydz72HmbjHPjlwk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 00:47:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 594 (0x252) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127C93, serialNumber=06CB7662196F644EDEC9DCFBD8799B8C73E39709 Validity Not Before: Dec 23 00:47:22 2025 GMT Not After : Dec 30 00:47:22 2025 GMT Subject: CN=6949e69b-0fd9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:3b:36:d9:30:a9:2e:62:57:79:c0:42:61:24: 7a:b1:7d:38:d2:9a:43:cd:f2:9c:d1:15:23:14:b5: d5:96:dc:ec:06:a3:7c:49:73:12:d0:8b:20:30:e0: 39:5e:0e:aa:a8:22:5e:f7:5f:f7:91:40:39:2e:2b: 4c:1d:25:0d:e7:f1:74:81:2a:e5:c4:b0:20:46:59: 7d:02:78:0b:c2:bf:d4:ae:62:56:d6:e3:2c:6f:72: c2:12:ec:41:70:b9:fc:e9:0c:50:ca:b5:a7:2a:78: 6a:34:e2:75:89:a8:92:c9:5c:33:1e:2a:35:82:40: 44:d1:89:67:0a:ac:69:7c:d4:11:0e:d3:fe:5f:b4: 2f:e0:87:f3:1b:76:3f:05:08:7c:4e:d0:3f:bb:1e: 08:4d:2f:eb:d9:63:82:51:44:69:63:8b:4c:bc:c8: 93:5a:6b:d0:41:2f:57:f0:ed:d5:dd:1a:6c:5b:0a: 44:17:92:f8:16:18:d1:7c:97:75:fb:b2:15:53:42: 6d:6c:4f:0c:e4:fe:e1:fe:9c:1c:db:db:5c:d4:70: 36:f0:3e:aa:96:76:cc:50:7c:61:0e:40:a4:5c:46: fa:f4:07:32:b4:16:e8:75:22:a8:ee:8b:52:72:61: b6:16:ed:23:62:f6:d6:04:4b:a2:a0:bd:d5:cf:1b: ae:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:ED:E6:09:6F:95:BE:E1:E3:41:25:24:05:20:3F:9C:83:D8:29:B0 X509v3 Authority Key Identifier: keyid:06:CB:76:62:19:6F:64:4E:DE:C9:DC:FB:D8:79:9B:8C:73:E3:97:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127C93/4021A4E65F2411EDB80C1921C4F9AE02/Bst2YhlvZE7eydz72HmbjHPjlwk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bst2YhlvZE7eydz72HmbjHPjlwk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127C93/4021A4E65F2411EDB80C1921C4F9AE02/Bst2YhlvZE7eydz72HmbjHPjlwk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:6e:6e:a6:55:9c:6c:99:a7:11:0e:84:01:6c:63:b3:b9:fc: e4:d2:32:f5:a3:ad:9d:3e:d4:79:e8:82:8e:c0:a1:86:11:5e: f1:62:04:b7:40:c6:a2:cf:57:27:bf:53:76:1e:0d:4e:1d:03: 17:6b:2b:3d:eb:fc:01:14:13:a1:c4:b7:cf:c9:c9:dc:30:5b: 1e:c3:d1:99:9c:f5:9b:b1:f2:dc:a4:e5:99:90:60:14:f8:38: 5b:47:97:95:ae:f2:2c:40:96:af:32:b1:b4:b8:15:15:15:1a: 0b:63:59:42:62:fd:39:61:64:3d:eb:5a:fe:c6:01:0f:71:5e: 90:fc:4e:12:0f:ae:c6:df:6e:59:cc:50:ec:04:25:f8:a6:b8: 4a:81:a7:23:86:8b:2a:ce:3d:00:c1:96:ee:7c:a9:2b:17:4a: 14:81:17:09:81:1b:81:60:70:05:f1:5f:13:b3:1c:19:08:42: 48:fe:19:fc:e3:c8:a9:f2:d5:16:44:7e:4b:32:bf:78:41:75: 8e:7b:81:67:28:18:cb:e8:9c:e4:7c:38:b8:e3:a4:46:8b:f3: fe:2d:b7:f7:66:9a:34:b1:b9:04:3d:46:e1:9d:d1:1e:a9:e8: 35:a6:9d:ee:16:59:19:b9:3a:34:90:f3:7b:61:49:15:92:12: 7a:21:81:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjdDOTMxMTAvBgNVBAUTKDA2Q0I3NjYyMTk2RjY0NEVERUM5RENGQkQ4Nzk5QjhD NzNFMzk3MDkwHhcNMjUxMjIzMDA0NzIyWhcNMjUxMjMwMDA0NzIyWjAYMRYwFAYD VQQDDA02OTQ5ZTY5Yi0wZmQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwzs22TCpLmJXecBCYSR6sX040ppDzfKc0RUjFLXVltzsBqN8SXMS0IsgMOA5 Xg6qqCJe91/3kUA5LitMHSUN5/F0gSrlxLAgRll9AngLwr/UrmJW1uMsb3LCEuxB cLn86QxQyrWnKnhqNOJ1iaiSyVwzHio1gkBE0YlnCqxpfNQRDtP+X7Qv4IfzG3Y/ BQh8TtA/ux4ITS/r2WOCUURpY4tMvMiTWmvQQS9X8O3V3RpsWwpEF5L4FhjRfJd1 +7IVU0JtbE8M5P7h/pwc29tc1HA28D6qlnbMUHxhDkCkXEb69AcytBbodSKo7otS cmG2Fu0jYvbWBEuioL3VzxuuQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOft5glv lb7h40ElJAUgP5yD2CmwMB8GA1UdIwQYMBaAFAbLdmIZb2RO3snc+9h5m4xz45cJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyN0M5My80MDIxQTRFNjVG MjQxMUVEQjgwQzE5MjFDNEY5QUUwMi9Cc3QyWWhsdlpFN2V5ZHo3MkhtYmpIUGps d2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JzdDJZaGx2WkU3ZXlkejcySG1iakhQamx3ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy N0M5My80MDIxQTRFNjVGMjQxMUVEQjgwQzE5MjFDNEY5QUUwMi9Cc3QyWWhsdlpF N2V5ZHo3MkhtYmpIUGpsd2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC5bm6mVZxsmacRDoQBbGOzufzk0jL1o62dPtR56IKOwKGGEV7xYgS3 QMaiz1cnv1N2Hg1OHQMXays96/wBFBOhxLfPycncMFsew9GZnPWbsfLcpOWZkGAU +DhbR5eVrvIsQJavMrG0uBUVFRoLY1lCYv05YWQ961r+xgEPcV6Q/E4SD67G325Z zFDsBCX4prhKgacjhosqzj0AwZbufKkrF0oUgRcJgRuBYHAF8V8TsxwZCEJI/hn8 48ip8tUWRH5LMr94QXWOe4FnKBjL6JzkfDi446RGi/P+Lbf3Zpo0sbkEPUbhndEe qeg1pp3uFlkZuTo0kPN7YUkVkhJ6IYE4 -----END CERTIFICATE-----Generated at Wed Dec 24 14:12:33 2025 by rpki-client