This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft File: BKm4kZsiD18-q9D03YXi9b28VQA.mft (raw, json) Hash identifier: j+DwAQ9+i3lpbo//kg6ILCMMqhzr1FeYmQdzf4lxub8= Subject key identifier: CD:B9:3C:76:4E:A2:74:A8:1D:2F:03:13:B0:CB:76:1C:1F:C8:31:4D Authority key identifier: 04:A9:B8:91:9B:22:0F:5F:3E:AB:D0:F4:DD:85:E2:F5:BD:BC:55:00 Certificate issuer: /CN=A913837F/serialNumber=04A9B8919B220F5F3EABD0F4DD85E2F5BDBC5500 Certificate serial: 01B0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BKm4kZsiD18-q9D03YXi9b28VQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft Manifest number: 01AC Signing time: Tue 09 Dec 2025 01:23:58 +0000 Manifest this update: Tue 09 Dec 2025 01:23:57 +0000 Manifest next update: Tue 16 Dec 2025 01:23:57 +0000 Files and hashes: 1: BKm4kZsiD18-q9D03YXi9b28VQA.crl (hash: eMNO6jDX4jUaQY99RniH34yLkhwY1d9KdAPM4fvwA8M=) 2: 3D83357646E411EE82ED8843C4F9AE02.roa (hash: 34LR4muDkvBv1o97MuicPyBMy45vufYYnTs0rk2DkdE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.crl rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BKm4kZsiD18-q9D03YXi9b28VQA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Dec 2025 01:23:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 432 (0x1b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913837F, serialNumber=04A9B8919B220F5F3EABD0F4DD85E2F5BDBC5500 Validity Not Before: Dec 9 01:23:57 2025 GMT Not After : Dec 16 01:23:57 2025 GMT Subject: CN=69377a2e-2d04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:02:89:1b:72:27:c5:87:e1:9c:01:b5:5d:90: 64:ce:f8:9d:dd:63:b6:75:d6:bc:30:00:ed:e7:51: bf:03:8d:9a:5f:9a:4d:1a:24:b5:24:73:06:44:96: 0a:ba:45:e3:49:8e:dd:8b:6f:f2:b7:70:6f:51:20: 79:59:de:80:64:83:83:6b:6c:0d:64:24:9e:24:6f: 45:16:4e:e5:eb:84:44:11:c9:a0:81:77:b6:fd:44: 9d:dd:78:cc:f1:a6:cb:99:46:4e:e7:7d:24:2b:1a: 54:93:ac:3f:89:17:ef:bb:a3:f0:c7:5e:03:4e:be: fc:a4:b6:c7:2f:71:5f:c8:47:d5:7e:b1:76:5c:c4: 1b:0d:6b:c0:29:02:03:73:b9:6a:6a:52:bf:79:95: d2:f9:33:ae:92:f7:19:f1:a4:8f:c0:17:dc:dd:a9: c2:1d:4d:95:6d:2a:8c:71:9d:ec:c7:15:a5:6e:69: 36:d0:e9:83:c2:51:9d:17:86:b6:0c:b1:06:ab:ed: ad:0f:f8:2d:8a:8a:d6:cf:e4:57:ef:8d:e6:36:c5: b1:1d:39:d3:ff:e1:79:4a:19:d4:9d:11:7d:5d:dd: 46:6f:44:59:76:68:40:d6:eb:e7:aa:27:a1:c1:0d: c1:14:b0:51:18:d9:52:c1:fc:64:fc:92:03:8b:b4: cd:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:B9:3C:76:4E:A2:74:A8:1D:2F:03:13:B0:CB:76:1C:1F:C8:31:4D X509v3 Authority Key Identifier: keyid:04:A9:B8:91:9B:22:0F:5F:3E:AB:D0:F4:DD:85:E2:F5:BD:BC:55:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BKm4kZsiD18-q9D03YXi9b28VQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:23:54:77:44:25:02:3d:f9:41:7c:05:20:40:6e:b9:4f:62: 02:dc:eb:3d:cd:34:93:59:bf:d2:ab:c6:5b:78:f8:b5:b6:38: 97:3f:e7:33:0b:4c:0a:69:24:ce:6b:30:93:b5:73:8b:0c:92: 57:85:9c:12:28:a3:4e:59:02:92:88:f9:ad:e4:79:6a:58:e0: d1:fa:12:b8:da:52:f7:b3:5f:ec:ff:fd:af:4b:52:36:c8:43: 04:5b:d4:72:d0:82:83:6c:f4:a8:8e:e6:ba:a8:94:bd:3a:36: c3:9a:3b:1b:7d:02:cb:9c:4e:db:9c:92:01:15:cf:6c:57:19: 23:df:69:57:4e:98:c7:55:dc:b3:10:31:2b:72:0f:9d:ee:dd: 0a:94:95:83:d3:48:d3:f3:2d:07:12:c0:1e:d4:3c:9a:44:4e: 2a:d6:10:64:67:0b:93:0b:75:ee:5f:8f:3a:2a:4d:25:ee:9c: 62:5b:0a:f1:7b:af:e7:4a:e0:92:8a:24:25:20:b7:da:8f:d7: 72:e7:0c:52:78:49:be:b7:1e:6d:a5:7a:f9:2b:35:e9:7e:e6: 9d:63:35:d6:62:61:5c:7c:45:f8:f9:db:19:2a:80:7f:44:61: 6c:6e:bc:6f:59:bb:63:ee:ae:c5:10:e2:ee:d3:81:55:ce:d0: 44:3b:fa:37 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzgzN0YxMTAvBgNVBAUTKDA0QTlCODkxOUIyMjBGNUYzRUFCRDBGNEREODVFMkY1 QkRCQzU1MDAwHhcNMjUxMjA5MDEyMzU3WhcNMjUxMjE2MDEyMzU3WjAYMRYwFAYD VQQDEw02OTM3N2EyZS0yZDA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwQKJG3InxYfhnAG1XZBkzvid3WO2dda8MADt51G/A42aX5pNGiS1JHMGRJYK ukXjSY7di2/yt3BvUSB5Wd6AZIODa2wNZCSeJG9FFk7l64REEcmggXe2/USd3XjM 8abLmUZO530kKxpUk6w/iRfvu6Pwx14DTr78pLbHL3FfyEfVfrF2XMQbDWvAKQID c7lqalK/eZXS+TOukvcZ8aSPwBfc3anCHU2VbSqMcZ3sxxWlbmk20OmDwlGdF4a2 DLEGq+2tD/gtiorWz+RX743mNsWxHTnT/+F5ShnUnRF9Xd1Gb0RZdmhA1uvnqieh wQ3BFLBRGNlSwfxk/JIDi7TNIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM25PHZO onSoHS8DE7DLdhwfyDFNMB8GA1UdIwQYMBaAFASpuJGbIg9fPqvQ9N2F4vW9vFUA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODM3Ri82NDU5MEMxMjQ2 RTMxMUVFQjVFNDE2NDJDNEY5QUUwMi9CS200a1pzaUQxOC1xOUQwM1lYaTliMjhW UUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JLbTRrWnNpRDE4LXE5RDAzWVhpOWIyOFZRQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODM3Ri82NDU5MEMxMjQ2RTMxMUVFQjVFNDE2NDJDNEY5QUUwMi9CS200a1pzaUQx OC1xOUQwM1lYaTliMjhWUUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCxI1R3RCUCPflBfAUgQG65T2IC3Os9zTSTWb/Sq8ZbePi1tjiXP+cz C0wKaSTOazCTtXOLDJJXhZwSKKNOWQKSiPmt5HlqWODR+hK42lL3s1/s//2vS1I2 yEMEW9Ry0IKDbPSojua6qJS9OjbDmjsbfQLLnE7bnJIBFc9sVxkj32lXTpjHVdyz EDErcg+d7t0KlJWD00jT8y0HEsAe1DyaRE4q1hBkZwuTC3XuX486Kk0l7pxiWwrx e6/nSuCSiiQlILfaj9dy5wxSeEm+tx5tpXr5KzXpfuadYzXWYmFcfEX4+dsZKoB/ RGFsbrxvWbtj7q7FEOLu04FVztBEO/o3 -----END CERTIFICATE-----Generated at Wed Dec 10 06:16:51 2025 by rpki-client