This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9131589/4158463A0CCC11EDB0993C15C4F9AE02/Bats53QFyQRH8nu2EgCypDHeStw.mft File: Bats53QFyQRH8nu2EgCypDHeStw.mft (raw, json) Hash identifier: PImTybBNIlNbOClXJda39Ptda3Gj8ID9FizRrgvkcbk= Subject key identifier: C9:0C:6C:95:B8:8C:90:0B:58:E9:E8:49:DE:0B:D2:7F:14:F0:8A:4E Authority key identifier: 05:AB:6C:E7:74:05:C9:04:47:F2:7B:B6:12:00:B2:A4:31:DE:4A:DC Certificate issuer: /CN=A9131589/serialNumber=05AB6CE77405C90447F27BB61200B2A431DE4ADC Certificate serial: 02E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bats53QFyQRH8nu2EgCypDHeStw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131589/4158463A0CCC11EDB0993C15C4F9AE02/Bats53QFyQRH8nu2EgCypDHeStw.mft Manifest number: 02E0 Signing time: Tue 23 Dec 2025 00:18:42 +0000 Manifest this update: Tue 23 Dec 2025 00:18:42 +0000 Manifest next update: Tue 30 Dec 2025 00:18:42 +0000 Files and hashes: 1: Bats53QFyQRH8nu2EgCypDHeStw.crl (hash: SEt69WBVgoXkXRxxOEXheroeRY1zjjQ4PZm4CTcxoEM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131589/4158463A0CCC11EDB0993C15C4F9AE02/Bats53QFyQRH8nu2EgCypDHeStw.crl rsync://rpki.apnic.net/member_repository/A9131589/4158463A0CCC11EDB0993C15C4F9AE02/Bats53QFyQRH8nu2EgCypDHeStw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bats53QFyQRH8nu2EgCypDHeStw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 00:18:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 736 (0x2e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131589, serialNumber=05AB6CE77405C90447F27BB61200B2A431DE4ADC Validity Not Before: Dec 23 00:18:42 2025 GMT Not After : Dec 30 00:18:42 2025 GMT Subject: CN=6949dfe2-3337 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:1d:9d:82:03:7c:29:f1:b8:f4:b5:34:9e:4e: be:0a:a0:26:f2:b8:22:0b:86:eb:58:7b:40:69:0f: ca:7f:94:9c:04:95:ec:38:4b:dc:55:ac:a4:9e:f4: 6f:19:e3:c5:53:7d:2e:16:b9:c4:e0:b7:b3:c6:78: cc:35:39:f0:cb:56:2f:2b:02:43:54:97:cc:02:4c: 21:72:b7:bb:1f:41:ea:10:e2:8b:fc:d4:45:22:34: db:fc:49:c2:f0:af:96:1f:c2:5e:fc:e4:b7:d5:fd: 4e:6e:af:e6:ec:7f:3b:da:56:6e:73:02:8c:fb:a0: b4:12:65:0c:5b:05:46:b8:66:8c:32:7a:cf:af:7e: 89:a7:18:a1:50:86:70:63:60:c0:d6:90:ba:0f:94: 59:ca:f1:66:4a:63:63:22:d5:c3:47:60:71:f9:fd: f1:54:e2:ad:e8:ea:4c:c3:3a:25:0d:89:55:03:90: a2:54:a7:81:3e:6f:2b:60:9a:65:6b:8c:63:e5:3c: 47:db:ea:86:72:10:02:05:2a:dc:cf:9b:19:c0:f4: a1:65:8c:1e:64:e3:ad:50:98:48:bc:48:6b:0e:7d: 89:ad:71:e7:d5:6b:b1:a9:4f:8c:83:55:0a:34:88: f5:0e:2a:44:aa:42:c9:26:17:9f:3f:c4:b9:db:61: a7:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:0C:6C:95:B8:8C:90:0B:58:E9:E8:49:DE:0B:D2:7F:14:F0:8A:4E X509v3 Authority Key Identifier: keyid:05:AB:6C:E7:74:05:C9:04:47:F2:7B:B6:12:00:B2:A4:31:DE:4A:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131589/4158463A0CCC11EDB0993C15C4F9AE02/Bats53QFyQRH8nu2EgCypDHeStw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bats53QFyQRH8nu2EgCypDHeStw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131589/4158463A0CCC11EDB0993C15C4F9AE02/Bats53QFyQRH8nu2EgCypDHeStw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:2b:97:a1:5c:85:4a:e9:0b:9c:b0:01:92:50:61:c8:2e:5b: 84:82:fc:c6:e5:67:e6:39:dc:ac:1d:b2:c3:11:79:43:c8:00: 38:2a:c6:ed:d6:0d:ff:cf:f1:c5:39:35:c1:18:18:2d:86:2b: 67:82:d4:53:c5:e7:10:44:da:44:cc:5f:7b:bc:13:ee:ca:9e: d2:1c:75:a8:6a:93:0d:29:a4:8f:76:0d:77:7e:09:45:cf:7f: c6:d8:3e:01:14:d3:2a:2f:45:4c:fb:28:dc:2e:a1:44:f1:48: 2a:e6:8f:e0:70:a1:72:e0:2c:8a:16:4d:67:b6:c7:16:9c:63: a3:6c:a6:6b:6e:86:45:ca:77:00:8e:2d:a6:00:f1:8c:bd:7f: bd:fa:f7:68:59:13:48:4c:96:7d:1a:d9:9b:69:af:ad:f7:57: 25:c5:9f:8d:38:41:88:ad:eb:de:f4:cf:95:2d:32:53:9c:a1: ac:ee:2a:a0:9a:cd:f8:7f:32:8b:16:2b:3e:40:19:61:d2:06: 7c:99:47:0d:29:00:d4:d3:7f:c7:17:68:6d:6f:29:a7:16:37: 86:4a:ef:1a:bb:42:c9:b4:00:d3:36:9f:3d:70:85:f5:68:19: 7b:13:80:0a:e7:7b:55:96:5f:66:4c:60:80:22:b6:a7:30:d0: 00:0a:e5:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAuAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE1ODkxMTAvBgNVBAUTKDA1QUI2Q0U3NzQwNUM5MDQ0N0YyN0JCNjEyMDBCMkE0 MzFERTRBREMwHhcNMjUxMjIzMDAxODQyWhcNMjUxMjMwMDAxODQyWjAYMRYwFAYD VQQDDA02OTQ5ZGZlMi0zMzM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArx2dggN8KfG49LU0nk6+CqAm8rgiC4brWHtAaQ/Kf5ScBJXsOEvcVayknvRv GePFU30uFrnE4LezxnjMNTnwy1YvKwJDVJfMAkwhcre7H0HqEOKL/NRFIjTb/EnC 8K+WH8Je/OS31f1Obq/m7H872lZucwKM+6C0EmUMWwVGuGaMMnrPr36JpxihUIZw Y2DA1pC6D5RZyvFmSmNjItXDR2Bx+f3xVOKt6OpMwzolDYlVA5CiVKeBPm8rYJpl a4xj5TxH2+qGchACBSrcz5sZwPShZYweZOOtUJhIvEhrDn2JrXHn1WuxqU+Mg1UK NIj1DipEqkLJJhefP8S522Gn+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMkMbJW4 jJALWOnoSd4L0n8U8IpOMB8GA1UdIwQYMBaAFAWrbOd0BckER/J7thIAsqQx3krc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTU4OS80MTU4NDYzQTBD Q0MxMUVEQjA5OTNDMTVDNEY5QUUwMi9CYXRzNTNRRnlRUkg4bnUyRWdDeXBESGVT dHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JhdHM1M1FGeVFSSDhudTJFZ0N5cERIZVN0dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MTU4OS80MTU4NDYzQTBDQ0MxMUVEQjA5OTNDMTVDNEY5QUUwMi9CYXRzNTNRRnlR Ukg4bnUyRWdDeXBESGVTdHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCoK5ehXIVK6QucsAGSUGHILluEgvzG5WfmOdysHbLDEXlDyAA4Ksbt 1g3/z/HFOTXBGBgthitngtRTxecQRNpEzF97vBPuyp7SHHWoapMNKaSPdg13fglF z3/G2D4BFNMqL0VM+yjcLqFE8Ugq5o/gcKFy4CyKFk1ntscWnGOjbKZrboZFyncA ji2mAPGMvX+9+vdoWRNITJZ9Gtmbaa+t91clxZ+NOEGIreve9M+VLTJTnKGs7iqg ms34fzKLFis+QBlh0gZ8mUcNKQDU03/HF2htbymnFjeGSu8au0LJtADTNp89cIX1 aBl7E4AK53tVll9mTGCAIranMNAACuUX -----END CERTIFICATE-----Generated at Tue Dec 23 07:55:21 2025 by rpki-client