This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A915B0C9/0C778CB47D1A11ED8E8BEB82C4F9AE02/BzgX21Kc2-s_-TiuXuCEiOF-TpA.mft File: BzgX21Kc2-s_-TiuXuCEiOF-TpA.mft (raw, json) Hash identifier: w6UFsaY6v5ZVnhUBx8ZoAURV6ZAi34UbYHFPMYZjzzM= Subject key identifier: BA:07:23:7D:68:F7:17:4A:37:00:39:85:3A:A1:14:F1:C9:05:27:B9 Authority key identifier: 07:38:17:DB:52:9C:DB:EB:3F:F9:38:AE:5E:E0:84:88:E1:7E:4E:90 Certificate issuer: /CN=A915B0C9/serialNumber=073817DB529CDBEB3FF938AE5EE08488E17E4E90 Certificate serial: 023C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BzgX21Kc2-s_-TiuXuCEiOF-TpA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915B0C9/0C778CB47D1A11ED8E8BEB82C4F9AE02/BzgX21Kc2-s_-TiuXuCEiOF-TpA.mft Manifest number: 0238 Signing time: Sun 21 Dec 2025 01:14:06 +0000 Manifest this update: Sun 21 Dec 2025 01:14:05 +0000 Manifest next update: Sun 28 Dec 2025 01:14:05 +0000 Files and hashes: 1: BzgX21Kc2-s_-TiuXuCEiOF-TpA.crl (hash: Zdp3xZI5Wyc4SYA5VdNp5eyjtasWNDrzrV2xvQ8ZSlg=) 2: F0F09EAA7D1D11EDAE0CF917C4F9AE02.roa (hash: UfEQHpbIkG4N2xJZlQdcj3CUM9IauXhIw+vNgpLvVqs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915B0C9/0C778CB47D1A11ED8E8BEB82C4F9AE02/BzgX21Kc2-s_-TiuXuCEiOF-TpA.crl rsync://rpki.apnic.net/member_repository/A915B0C9/0C778CB47D1A11ED8E8BEB82C4F9AE02/BzgX21Kc2-s_-TiuXuCEiOF-TpA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BzgX21Kc2-s_-TiuXuCEiOF-TpA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 01:14:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 572 (0x23c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915B0C9, serialNumber=073817DB529CDBEB3FF938AE5EE08488E17E4E90 Validity Not Before: Dec 21 01:14:05 2025 GMT Not After : Dec 28 01:14:05 2025 GMT Subject: CN=694749de-3a05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:00:ad:6e:cc:32:52:8e:37:58:d1:fa:2f:e5: 17:82:8b:45:fc:2d:55:f3:bc:e3:3d:e5:22:6b:85: 89:59:89:45:db:a5:6c:95:ed:2c:cc:a6:33:b6:89: 17:dc:39:77:c0:bc:61:87:eb:6c:99:41:66:77:f6: eb:41:40:c1:5e:b0:91:a6:58:82:3a:81:3f:23:52: ce:18:b7:ec:a9:48:76:e5:48:f5:55:91:fd:6c:9c: 4b:6c:0c:10:c7:00:b5:cb:94:13:20:c3:5f:f5:ed: 18:04:5a:5e:ab:c4:0e:c8:a5:82:85:b6:07:e5:52: 1a:4b:c6:20:f4:f3:b9:4c:35:ed:f1:2c:ee:e7:e7: 09:52:a1:ad:b6:0a:85:78:38:2d:d9:9c:c4:44:a8: a3:2f:de:10:6f:0e:2f:4a:d6:85:2e:89:30:cb:10: 23:91:35:9a:21:df:6d:e8:8c:c3:80:1e:1d:5f:60: 7a:96:6a:37:17:1a:a6:fb:0e:fc:29:e3:cb:0a:3a: 25:71:fe:97:9f:4b:4d:da:5d:99:cd:a3:f0:88:01: f0:f2:e9:dd:b0:99:51:a9:c5:8b:70:59:f7:02:a7: 2c:c5:b6:26:05:f1:b8:17:9f:4d:31:85:ed:f4:a3: 81:dd:d1:ff:a4:c7:4e:d1:5c:5a:d6:48:02:f8:85: 41:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:07:23:7D:68:F7:17:4A:37:00:39:85:3A:A1:14:F1:C9:05:27:B9 X509v3 Authority Key Identifier: keyid:07:38:17:DB:52:9C:DB:EB:3F:F9:38:AE:5E:E0:84:88:E1:7E:4E:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915B0C9/0C778CB47D1A11ED8E8BEB82C4F9AE02/BzgX21Kc2-s_-TiuXuCEiOF-TpA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BzgX21Kc2-s_-TiuXuCEiOF-TpA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915B0C9/0C778CB47D1A11ED8E8BEB82C4F9AE02/BzgX21Kc2-s_-TiuXuCEiOF-TpA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:29:6c:25:f1:5b:96:8b:7d:d7:55:66:0b:a0:36:ed:eb:c0: 63:3b:87:86:46:2d:29:6b:5c:11:d3:fc:53:18:63:39:47:09: 47:51:f9:3a:67:7c:68:d2:3e:91:71:3d:22:bd:36:4f:25:0f: 44:dd:88:4d:10:f8:cc:9d:d2:51:55:30:97:aa:28:0f:ff:44: 6b:16:a3:bf:0d:f6:19:ea:4b:f5:0a:39:1f:f5:32:c4:29:8e: a7:56:02:65:e6:18:c6:92:a7:d7:30:9a:7b:20:f6:09:2c:10: 74:ee:08:43:29:72:8c:fd:4d:f9:24:45:96:71:e9:f6:32:3d: f5:65:95:e1:59:c5:da:5e:4b:4a:c3:b5:22:45:14:e2:20:ba: 23:c3:2b:1f:2c:8e:74:68:e6:c4:ed:12:74:ac:f9:c9:2e:6c: 7f:f0:15:c0:70:b4:ec:b9:39:aa:f3:94:a4:91:d7:af:9a:69: f6:f5:91:68:89:e5:83:08:fd:77:f1:72:9d:c5:59:70:13:88: 6a:b6:e4:04:19:50:f7:80:54:7e:79:3c:d6:2e:8e:c1:40:00: af:be:66:9b:e6:03:93:49:ea:9c:15:f1:aa:47:ec:5d:87:26: 8d:4f:68:54:ef:ad:a8:88:92:6d:91:76:15:4a:c3:d3:1d:b7: f9:08:4c:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUIwQzkxMTAvBgNVBAUTKDA3MzgxN0RCNTI5Q0RCRUIzRkY5MzhBRTVFRTA4NDg4 RTE3RTRFOTAwHhcNMjUxMjIxMDExNDA1WhcNMjUxMjI4MDExNDA1WjAYMRYwFAYD VQQDDA02OTQ3NDlkZS0zYTA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuwCtbswyUo43WNH6L+UXgotF/C1V87zjPeUia4WJWYlF26Vsle0szKYztokX 3Dl3wLxhh+tsmUFmd/brQUDBXrCRpliCOoE/I1LOGLfsqUh25Uj1VZH9bJxLbAwQ xwC1y5QTIMNf9e0YBFpeq8QOyKWChbYH5VIaS8Yg9PO5TDXt8Szu5+cJUqGttgqF eDgt2ZzERKijL94Qbw4vStaFLokwyxAjkTWaId9t6IzDgB4dX2B6lmo3Fxqm+w78 KePLCjolcf6Xn0tN2l2ZzaPwiAHw8undsJlRqcWLcFn3AqcsxbYmBfG4F59NMYXt 9KOB3dH/pMdO0Vxa1kgC+IVB0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLoHI31o 9xdKNwA5hTqhFPHJBSe5MB8GA1UdIwQYMBaAFAc4F9tSnNvrP/k4rl7ghIjhfk6Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QjBDOS8wQzc3OENCNDdE MUExMUVEOEU4QkVCODJDNEY5QUUwMi9CemdYMjFLYzItc18tVGl1WHVDRWlPRi1U cEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0J6Z1gyMUtjMi1zXy1UaXVYdUNFaU9GLVRwQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QjBDOS8wQzc3OENCNDdEMUExMUVEOEU4QkVCODJDNEY5QUUwMi9CemdYMjFLYzIt c18tVGl1WHVDRWlPRi1UcEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCdKWwl8VuWi33XVWYLoDbt68BjO4eGRi0pa1wR0/xTGGM5RwlHUfk6 Z3xo0j6RcT0ivTZPJQ9E3YhNEPjMndJRVTCXqigP/0RrFqO/DfYZ6kv1Cjkf9TLE KY6nVgJl5hjGkqfXMJp7IPYJLBB07ghDKXKM/U35JEWWcen2Mj31ZZXhWcXaXktK w7UiRRTiILojwysfLI50aObE7RJ0rPnJLmx/8BXAcLTsuTmq85Skkdevmmn29ZFo ieWDCP138XKdxVlwE4hqtuQEGVD3gFR+eTzWLo7BQACvvmab5gOTSeqcFfGqR+xd hyaNT2hU762oiJJtkXYVSsPTHbf5CEw0 -----END CERTIFICATE-----Generated at Mon Dec 22 11:23:39 2025 by rpki-client