This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A913E8F3/0A04F4E2549411E9B597E571C4F9AE02/-bspsKvoSef-GA4znkscKCNoxSE.mft File: -bspsKvoSef-GA4znkscKCNoxSE.mft (raw, json) Hash identifier: ctjUz1aFMdMTMd2p9y0nAR+7Hj2bvYy5WolLH4h2IIY= Subject key identifier: 5F:7A:9E:0D:D7:23:A7:34:A9:E2:62:70:77:A9:F3:2B:12:9E:1B:C0 Authority key identifier: F9:BB:29:B0:AB:E8:49:E7:FE:18:0E:33:9E:4B:1C:28:23:68:C5:21 Certificate issuer: /CN=A913E8F3/serialNumber=F9BB29B0ABE849E7FE180E339E4B1C282368C521 Certificate serial: 106A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-bspsKvoSef-GA4znkscKCNoxSE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E8F3/0A04F4E2549411E9B597E571C4F9AE02/-bspsKvoSef-GA4znkscKCNoxSE.mft Manifest number: 1050 Signing time: Mon 22 Dec 2025 17:06:25 +0000 Manifest this update: Mon 22 Dec 2025 17:06:25 +0000 Manifest next update: Mon 29 Dec 2025 17:06:25 +0000 Files and hashes: 1: -bspsKvoSef-GA4znkscKCNoxSE.crl (hash: acEGMw4tD82ID2Mt7JWmkJ1J+c9D2bQf0nmK3A8YXYw=) 2: 06093D68DC1311F09341A9F45E6F56BC.roa (hash: ecuT0IGX2EMVTv9PMGbYKsjJSoNnc8HRgFbpWMYTJo0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E8F3/0A04F4E2549411E9B597E571C4F9AE02/-bspsKvoSef-GA4znkscKCNoxSE.crl rsync://rpki.apnic.net/member_repository/A913E8F3/0A04F4E2549411E9B597E571C4F9AE02/-bspsKvoSef-GA4znkscKCNoxSE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-bspsKvoSef-GA4znkscKCNoxSE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 17:06:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4202 (0x106a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E8F3, serialNumber=F9BB29B0ABE849E7FE180E339E4B1C282368C521 Validity Not Before: Dec 22 17:06:25 2025 GMT Not After : Dec 29 17:06:25 2025 GMT Subject: CN=69497a91-ab5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:e9:a5:a9:7c:d3:1c:8a:55:a1:d8:bf:f9:85: 94:6b:70:51:fd:35:d4:b6:ca:09:b2:3d:fb:17:30: 6f:5f:0e:e0:91:89:6b:8f:04:ff:62:13:0e:ab:3b: 87:19:a2:da:78:bd:9d:7f:a9:b0:5c:ee:1e:15:2a: ee:93:85:05:0e:6d:80:be:6a:2f:96:f8:0f:9e:3d: 98:a1:00:2d:00:07:55:9d:01:4f:9e:95:89:ec:2d: e1:6c:83:c8:4a:ef:b0:fc:21:08:df:91:a6:14:6e: 62:62:99:5d:70:6f:50:a1:00:34:4b:0f:b6:6c:8b: 0e:06:9a:50:3f:8d:ad:77:2f:0d:25:06:09:44:ed: 79:11:bf:b4:1a:7c:a1:dd:e8:5d:68:f1:ad:aa:81: 7a:07:20:44:6f:19:a3:49:4e:d8:9a:c8:2c:96:2f: a1:3d:25:11:34:ee:6c:56:b8:a3:8e:12:52:23:37: 55:32:61:70:ee:95:12:0d:48:32:a1:c5:b2:39:fb: 2d:d6:2e:98:7d:03:c2:20:35:8d:45:f3:08:8c:6c: 0a:fd:05:12:a4:87:46:45:da:9b:9d:e0:50:ee:05: bf:54:fc:bf:c3:28:cd:67:cb:a1:26:62:d8:94:11: 64:d8:1a:8c:8d:d7:d1:a2:94:e8:0f:ba:32:fa:81: f2:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:7A:9E:0D:D7:23:A7:34:A9:E2:62:70:77:A9:F3:2B:12:9E:1B:C0 X509v3 Authority Key Identifier: keyid:F9:BB:29:B0:AB:E8:49:E7:FE:18:0E:33:9E:4B:1C:28:23:68:C5:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E8F3/0A04F4E2549411E9B597E571C4F9AE02/-bspsKvoSef-GA4znkscKCNoxSE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-bspsKvoSef-GA4znkscKCNoxSE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E8F3/0A04F4E2549411E9B597E571C4F9AE02/-bspsKvoSef-GA4znkscKCNoxSE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:a3:92:3b:47:4e:17:99:ff:e9:e6:6a:ee:18:9a:cd:19:37: cd:bd:0c:9c:22:3e:49:e3:ea:52:14:70:ba:da:c6:ce:46:20: e5:ac:7c:b4:23:a5:c7:d3:62:25:c5:c2:5b:ba:c3:45:c8:e8: 8f:50:89:c4:97:43:d9:88:d7:81:4e:a2:92:09:36:92:8d:6f: 6f:27:1d:95:99:17:d9:56:11:fa:77:6b:b3:f4:72:af:d9:08: 2c:5d:fa:9e:07:1e:68:1c:04:1a:ce:1b:77:b4:ed:fa:1b:26: f9:8f:12:95:4f:1b:ab:01:2a:88:23:c5:2c:9e:b0:23:7a:f8: b9:97:9c:9c:d8:1e:06:ca:e2:fc:ce:f0:89:12:5f:12:65:b7: d1:93:10:10:dd:db:74:d0:fa:c8:d8:6e:93:87:99:2b:af:1a: 3a:46:f0:d6:c2:8b:37:c5:03:00:52:7b:33:15:d0:46:43:82: fb:a5:b8:29:03:89:89:64:57:90:eb:e9:7e:a5:ef:2e:f3:d4: 25:d6:cb:fb:b6:3e:8b:ba:1b:68:de:0e:e9:e6:bb:60:f8:a0: 6d:13:34:08:b4:0b:04:87:ca:80:46:9f:ce:09:74:77:93:83: e0:f9:05:7b:a0:41:ff:2d:9e:8d:39:53:d8:61:ee:3e:33:8f: 35:4e:7b:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEGowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0U4RjMxMTAvBgNVBAUTKEY5QkIyOUIwQUJFODQ5RTdGRTE4MEUzMzlFNEIxQzI4 MjM2OEM1MjEwHhcNMjUxMjIyMTcwNjI1WhcNMjUxMjI5MTcwNjI1WjAYMRYwFAYD VQQDDA02OTQ5N2E5MS1hYjVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr+mlqXzTHIpVodi/+YWUa3BR/TXUtsoJsj37FzBvXw7gkYlrjwT/YhMOqzuH GaLaeL2df6mwXO4eFSruk4UFDm2AvmovlvgPnj2YoQAtAAdVnQFPnpWJ7C3hbIPI Su+w/CEI35GmFG5iYpldcG9QoQA0Sw+2bIsOBppQP42tdy8NJQYJRO15Eb+0Gnyh 3ehdaPGtqoF6ByBEbxmjSU7Ymsgsli+hPSURNO5sVrijjhJSIzdVMmFw7pUSDUgy ocWyOfst1i6YfQPCIDWNRfMIjGwK/QUSpIdGRdqbneBQ7gW/VPy/wyjNZ8uhJmLY lBFk2BqMjdfRopToD7oy+oHyHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF96ng3X I6c0qeJicHep8ysSnhvAMB8GA1UdIwQYMBaAFPm7KbCr6Enn/hgOM55LHCgjaMUh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRThGMy8wQTA0RjRFMjU0 OTQxMUU5QjU5N0U1NzFDNEY5QUUwMi8tYnNwc0t2b1NlZi1HQTR6bmtzY0tDTm94 U0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLy1ic3BzS3ZvU2VmLUdBNHpua3NjS0NOb3hTRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RThGMy8wQTA0RjRFMjU0OTQxMUU5QjU5N0U1NzFDNEY5QUUwMi8tYnNwc0t2b1Nl Zi1HQTR6bmtzY0tDTm94U0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPo5I7R04Xmf/p5mruGJrNGTfNvQycIj5J4+pSFHC62sbORiDlrHy0 I6XH02IlxcJbusNFyOiPUInEl0PZiNeBTqKSCTaSjW9vJx2VmRfZVhH6d2uz9HKv 2QgsXfqeBx5oHAQazht3tO36Gyb5jxKVTxurASqII8UsnrAjevi5l5yc2B4GyuL8 zvCJEl8SZbfRkxAQ3dt00PrI2G6Th5krrxo6RvDWwos3xQMAUnszFdBGQ4L7pbgp A4mJZFeQ6+l+pe8u89Ql1sv7tj6Luhto3g7p5rtg+KBtEzQItAsEh8qARp/OCXR3 k4Pg+QV7oEH/LZ6NOVPYYe4+M481TnuD -----END CERTIFICATE-----Generated at Tue Dec 23 20:40:22 2025 by rpki-client