This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9130A53/71B7D470AB4A11EA89D16359C4F9AE02/bk5pvhPWE6cCdMDOdzg5I_FWJy0.mft File: bk5pvhPWE6cCdMDOdzg5I_FWJy0.mft (raw, json) Hash identifier: 9FARKPbHjkSm0UIQEGv9fZZPe4/kLmYYr8QuYYqABb4= Subject key identifier: DC:86:3A:0D:4A:83:AB:07:23:87:53:F7:50:5B:4D:60:C6:08:58:1F Authority key identifier: 6E:4E:69:BE:13:D6:13:A7:02:74:C0:CE:77:38:39:23:F1:56:27:2D Certificate issuer: /CN=A9130A53/serialNumber=6E4E69BE13D613A70274C0CE77383923F156272D Certificate serial: 0969 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bk5pvhPWE6cCdMDOdzg5I_FWJy0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130A53/71B7D470AB4A11EA89D16359C4F9AE02/bk5pvhPWE6cCdMDOdzg5I_FWJy0.mft Manifest number: 095B Signing time: Mon 22 Dec 2025 19:31:40 +0000 Manifest this update: Mon 22 Dec 2025 19:31:39 +0000 Manifest next update: Mon 29 Dec 2025 19:31:39 +0000 Files and hashes: 1: bk5pvhPWE6cCdMDOdzg5I_FWJy0.crl (hash: WtCe/YY4l3QIUubpTqjI4MMruxdIzz3LcMAxsTOVY6g=) 2: F36A0E2EAB4B11EAA2CA585BC4F9AE02.roa (hash: 9+lw98rdFugqdiBRyKbVp2oC9fkpMpQz4UV/k8IjCXg=) 3: F2CD89AAAB4B11EAA2CA585BC4F9AE02.roa (hash: AF8iSINyYs/yviryAgwAaGDxt3e7QveTWxIVOikxElk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130A53/71B7D470AB4A11EA89D16359C4F9AE02/bk5pvhPWE6cCdMDOdzg5I_FWJy0.crl rsync://rpki.apnic.net/member_repository/A9130A53/71B7D470AB4A11EA89D16359C4F9AE02/bk5pvhPWE6cCdMDOdzg5I_FWJy0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bk5pvhPWE6cCdMDOdzg5I_FWJy0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 19:31:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2409 (0x969) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130A53, serialNumber=6E4E69BE13D613A70274C0CE77383923F156272D Validity Not Before: Dec 22 19:31:39 2025 GMT Not After : Dec 29 19:31:39 2025 GMT Subject: CN=69499c9b-2565 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:6b:af:a5:92:8a:88:62:c4:ad:c4:a5:97:ce: e9:78:43:d9:32:1a:80:29:ff:41:6c:1c:1c:29:6a: e9:0a:f4:b7:c4:6b:e9:7b:57:21:46:ea:fe:02:e6: 0a:b0:61:d4:24:77:3c:8f:d9:00:0e:a8:0e:b4:a3: ac:0f:5e:d7:ca:18:c0:37:6b:3c:a9:5f:79:65:b8: 4a:fb:eb:87:80:86:75:d8:9e:69:d0:9d:e9:9a:cd: fe:ff:8f:82:7a:a3:af:fa:f7:3b:42:19:66:32:a9: 4a:95:be:78:d5:63:fb:3c:ec:c7:4c:9c:1c:36:63: 42:e5:62:46:ab:4a:35:fe:b3:5d:d7:93:a5:47:7b: 34:3a:f4:ea:60:f6:2c:21:09:39:f3:4b:8b:c5:ba: 78:bb:c9:cb:87:f6:44:a7:e0:94:85:b0:3a:c8:3e: 5a:52:b8:29:50:9f:ae:65:bb:f7:55:18:4d:57:f4: e0:28:58:00:87:bb:5a:b0:b7:ab:ac:89:72:da:95: 84:c1:48:4c:e8:66:0b:90:2e:db:1a:dc:09:7f:39: 5c:02:d7:18:5b:88:dd:fe:2d:54:39:8a:d1:29:37: 6a:ec:92:5b:4c:b8:c0:13:b6:ed:88:54:7f:90:5c: 2c:c8:e6:38:fb:32:09:0b:05:79:0b:00:ba:05:14: 0f:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:86:3A:0D:4A:83:AB:07:23:87:53:F7:50:5B:4D:60:C6:08:58:1F X509v3 Authority Key Identifier: keyid:6E:4E:69:BE:13:D6:13:A7:02:74:C0:CE:77:38:39:23:F1:56:27:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130A53/71B7D470AB4A11EA89D16359C4F9AE02/bk5pvhPWE6cCdMDOdzg5I_FWJy0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bk5pvhPWE6cCdMDOdzg5I_FWJy0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130A53/71B7D470AB4A11EA89D16359C4F9AE02/bk5pvhPWE6cCdMDOdzg5I_FWJy0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:a9:a2:8b:74:7c:70:f9:ac:76:7f:83:4b:0f:7a:2f:cb:95: bb:11:97:b6:f1:42:20:67:47:e7:96:f5:32:26:e7:02:6a:74: 9e:f6:81:a3:c3:a1:f6:3d:f0:01:55:2b:04:ee:3a:b6:92:e0: c1:f3:06:d1:22:31:89:78:64:65:f2:a7:93:0b:d2:37:38:14: 9d:02:30:8a:70:40:1c:3f:2b:67:fc:ff:ae:b7:15:dd:73:93: 0c:4c:38:96:36:e2:c4:39:48:7c:3e:bf:40:94:ae:f0:c2:3b: 9d:ef:16:82:70:1b:35:d9:41:e4:06:58:29:c8:d4:17:11:6b: ec:d4:6e:b0:36:04:ba:3b:5c:00:b8:5f:6c:db:1f:cb:11:58: 43:37:d0:69:16:68:3e:b9:80:c4:f9:f4:24:ed:d6:f4:3d:b5: d7:54:a1:5d:48:37:c6:8c:0e:1e:45:80:5b:7e:7c:56:12:60: f6:d9:57:c0:ca:db:f6:7e:c3:d2:fc:3e:e1:6b:ae:e5:e3:65: 72:a3:f1:a2:3b:50:37:43:73:be:eb:e3:2d:9f:76:a3:a6:64: 14:2c:1f:85:c9:dd:dc:9e:21:ff:28:ff:25:7a:fe:f0:01:d8: c3:6f:d5:96:13:c5:39:83:73:f7:00:c4:87:4e:a1:7a:65:78: 0d:f6:83:b9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCWkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzBBNTMxMTAvBgNVBAUTKDZFNEU2OUJFMTNENjEzQTcwMjc0QzBDRTc3MzgzOTIz RjE1NjI3MkQwHhcNMjUxMjIyMTkzMTM5WhcNMjUxMjI5MTkzMTM5WjAYMRYwFAYD VQQDDA02OTQ5OWM5Yi0yNTY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0GuvpZKKiGLErcSll87peEPZMhqAKf9BbBwcKWrpCvS3xGvpe1chRur+AuYK sGHUJHc8j9kADqgOtKOsD17XyhjAN2s8qV95ZbhK++uHgIZ12J5p0J3pms3+/4+C eqOv+vc7QhlmMqlKlb541WP7POzHTJwcNmNC5WJGq0o1/rNd15OlR3s0OvTqYPYs IQk580uLxbp4u8nLh/ZEp+CUhbA6yD5aUrgpUJ+uZbv3VRhNV/TgKFgAh7tasLer rIly2pWEwUhM6GYLkC7bGtwJfzlcAtcYW4jd/i1UOYrRKTdq7JJbTLjAE7btiFR/ kFwsyOY4+zIJCwV5CwC6BRQP7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNyGOg1K g6sHI4dT91BbTWDGCFgfMB8GA1UdIwQYMBaAFG5Oab4T1hOnAnTAznc4OSPxVict MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMEE1My83MUI3RDQ3MEFC NEExMUVBODlEMTYzNTlDNEY5QUUwMi9iazVwdmhQV0U2Y0NkTURPZHpnNUlfRldK eTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JrNXB2aFBXRTZjQ2RNRE9kemc1SV9GV0p5MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MEE1My83MUI3RDQ3MEFCNEExMUVBODlEMTYzNTlDNEY5QUUwMi9iazVwdmhQV0U2 Y0NkTURPZHpnNUlfRldKeTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC2qaKLdHxw+ax2f4NLD3ovy5W7EZe28UIgZ0fnlvUyJucCanSe9oGj w6H2PfABVSsE7jq2kuDB8wbRIjGJeGRl8qeTC9I3OBSdAjCKcEAcPytn/P+utxXd c5MMTDiWNuLEOUh8Pr9AlK7wwjud7xaCcBs12UHkBlgpyNQXEWvs1G6wNgS6O1wA uF9s2x/LEVhDN9BpFmg+uYDE+fQk7db0PbXXVKFdSDfGjA4eRYBbfnxWEmD22VfA ytv2fsPS/D7ha67l42Vyo/GiO1A3Q3O+6+Mtn3ajpmQULB+Fyd3cniH/KP8lev7w AdjDb9WWE8U5g3P3AMSHTqF6ZXgN9oO5 -----END CERTIFICATE-----Generated at Wed Dec 24 15:46:44 2025 by rpki-client