This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.mft File: baFr8M0J73aPkCE7ZtjLw86TQgY.mft (raw, json) Hash identifier: +zqCeqvL5c3lIbRSdSgu6eLDY2nwN+Md5p4stQJxFCw= Subject key identifier: 71:76:17:82:45:C0:B5:6E:88:51:66:BF:B6:04:6F:20:A3:2E:0A:FE Authority key identifier: 6D:A1:6B:F0:CD:09:EF:76:8F:90:21:3B:66:D8:CB:C3:CE:93:42:06 Certificate issuer: /CN=A9151B71/serialNumber=6DA16BF0CD09EF768F90213B66D8CBC3CE934206 Certificate serial: 07AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/baFr8M0J73aPkCE7ZtjLw86TQgY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.mft Manifest number: 07A0 Signing time: Tue 02 Dec 2025 20:42:56 +0000 Manifest this update: Tue 02 Dec 2025 20:42:56 +0000 Manifest next update: Tue 09 Dec 2025 20:42:55 +0000 Files and hashes: 1: baFr8M0J73aPkCE7ZtjLw86TQgY.crl (hash: /D40qS5QtkiQEQJz6+o492/rLwV6vhktvONSNYS3yPQ=) 2: C2C5450E608B11F0BF46DC2EC4F9AE02.roa (hash: D1qcgVGZql5RrIKafCkI4bM9fu5CZK6G546UdqksHKg=) 3: 0A866A522EAB11EBAB198239C4F9AE02.roa (hash: 9PkY3r845C6Gg3gR8AKgajQ8wsvmdGvtBQ6YZXFN9yE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.crl rsync://rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/baFr8M0J73aPkCE7ZtjLw86TQgY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 20:42:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1963 (0x7ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9151B71, serialNumber=6DA16BF0CD09EF768F90213B66D8CBC3CE934206 Validity Not Before: Dec 2 20:42:56 2025 GMT Not After : Dec 9 20:42:55 2025 GMT Subject: CN=692f4f50-d45d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:49:b2:90:31:21:ec:2f:15:55:10:b0:69:58: 30:26:7c:92:df:4d:54:e4:dd:6f:90:a6:b8:f9:69: cd:17:ed:64:48:3f:00:df:bc:22:be:c9:32:d4:55: 66:38:a6:93:79:2b:28:f5:79:b0:08:94:ef:23:9c: 14:ad:24:56:20:89:97:f3:6e:5a:ec:cb:3a:76:85: 0d:d6:03:4b:74:16:d8:3d:dc:0c:79:89:4b:6c:4e: 77:01:72:e5:c9:d2:82:1f:15:0c:d1:6b:b5:98:5a: aa:17:e1:c4:ad:ff:c5:ce:17:9f:31:78:b0:9e:47: 8d:f4:2e:9f:e4:d6:1b:b5:0c:c1:66:b8:8f:c0:9f: d7:04:88:74:73:2d:8c:b7:21:71:12:3c:a1:26:13: 43:a7:13:f8:68:0a:53:48:f0:c8:36:ad:1a:97:9c: 9f:23:d9:75:d8:87:31:0a:11:a9:a2:8c:cd:a1:06: 98:bf:23:42:55:ae:e7:67:c7:b0:ea:4b:b2:0f:84: ce:c4:05:64:da:7f:ec:b9:8d:5d:0a:0d:44:c7:c6: 1f:d3:1a:e7:bd:44:7b:2b:28:9d:2e:6a:15:42:75: 9d:9c:15:3a:b7:39:5c:eb:89:53:1c:7f:b0:84:e0: 8b:87:43:29:c1:db:4d:1f:7e:3d:d7:6b:f5:fa:6f: 30:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:76:17:82:45:C0:B5:6E:88:51:66:BF:B6:04:6F:20:A3:2E:0A:FE X509v3 Authority Key Identifier: keyid:6D:A1:6B:F0:CD:09:EF:76:8F:90:21:3B:66:D8:CB:C3:CE:93:42:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/baFr8M0J73aPkCE7ZtjLw86TQgY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:2a:e3:4b:76:bf:7c:e8:88:4f:ae:92:98:81:57:62:39:86: 61:11:6b:03:41:22:05:e1:a2:2f:02:94:72:ce:1a:03:4d:6d: b9:87:4a:0a:9a:c2:de:47:d2:f3:3d:e8:fe:b2:34:aa:1c:75: a4:1e:3d:eb:cf:4c:e2:05:da:27:f9:da:d5:0c:e1:b4:52:af: 15:ff:28:6d:7c:78:19:a5:0f:ce:f3:2f:6c:64:22:8b:f3:c0: 43:24:fa:49:65:9e:ce:75:32:d6:84:f8:76:31:d2:0d:6a:a1: 51:38:73:0d:8e:06:d4:f4:16:17:59:43:c8:9f:8a:9f:89:b9: a7:b6:b2:d3:14:bd:bc:f6:ec:4b:30:06:20:bb:1f:56:7c:82: 24:32:ac:77:1e:71:2f:4b:76:29:d9:b8:3d:01:0d:2a:9c:40: 54:d8:12:ca:20:71:48:3c:7d:f2:45:5c:46:e6:ab:29:8f:0a: 11:10:56:c3:08:3c:a7:e3:6e:e8:a0:19:c6:b4:1a:c3:56:86: fe:20:a4:e3:da:91:ef:9d:9f:6f:15:32:d9:75:23:be:42:20: a3:a2:19:1a:34:af:52:a8:73:af:7e:67:08:73:33:d3:5e:c9: 86:5d:ab:0f:23:48:64:30:8c:bc:e1:cd:2c:30:0d:cf:18:47: 67:e2:07:84 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB6swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTFCNzExMTAvBgNVBAUTKDZEQTE2QkYwQ0QwOUVGNzY4RjkwMjEzQjY2RDhDQkMz Q0U5MzQyMDYwHhcNMjUxMjAyMjA0MjU2WhcNMjUxMjA5MjA0MjU1WjAYMRYwFAYD VQQDEw02OTJmNGY1MC1kNDVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArUmykDEh7C8VVRCwaVgwJnyS301U5N1vkKa4+WnNF+1kSD8A37wivsky1FVm OKaTeSso9XmwCJTvI5wUrSRWIImX825a7Ms6doUN1gNLdBbYPdwMeYlLbE53AXLl ydKCHxUM0Wu1mFqqF+HErf/FzhefMXiwnkeN9C6f5NYbtQzBZriPwJ/XBIh0cy2M tyFxEjyhJhNDpxP4aApTSPDINq0al5yfI9l12IcxChGpoozNoQaYvyNCVa7nZ8ew 6kuyD4TOxAVk2n/suY1dCg1Ex8Yf0xrnvUR7KyidLmoVQnWdnBU6tzlc64lTHH+w hOCLh0MpwdtNH34912v1+m8wjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHF2F4JF wLVuiFFmv7YEbyCjLgr+MB8GA1UdIwQYMBaAFG2ha/DNCe92j5AhO2bYy8POk0IG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MUI3MS85RkQ1RjgwRTJF QTkxMUVCOTE2OEZCMzdDNEY5QUUwMi9iYUZyOE0wSjczYVBrQ0U3WnRqTHc4NlRR Z1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JhRnI4TTBKNzNhUGtDRTdadGpMdzg2VFFnWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MUI3MS85RkQ1RjgwRTJFQTkxMUVCOTE2OEZCMzdDNEY5QUUwMi9iYUZyOE0wSjcz YVBrQ0U3WnRqTHc4NlRRZ1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC0KuNLdr986IhPrpKYgVdiOYZhEWsDQSIF4aIvApRyzhoDTW25h0oK msLeR9LzPej+sjSqHHWkHj3rz0ziBdon+drVDOG0Uq8V/yhtfHgZpQ/O8y9sZCKL 88BDJPpJZZ7OdTLWhPh2MdINaqFROHMNjgbU9BYXWUPIn4qfibmntrLTFL289uxL MAYgux9WfIIkMqx3HnEvS3Yp2bg9AQ0qnEBU2BLKIHFIPH3yRVxG5qspjwoREFbD CDyn427ooBnGtBrDVob+IKTj2pHvnZ9vFTLZdSO+QiCjohkaNK9SqHOvfmcIczPT XsmGXasPI0hkMIy84c0sMA3PGEdn4geE -----END CERTIFICATE-----Generated at Thu Dec 4 08:26:32 2025 by rpki-client