This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A915E575/F0B242148FA611EC9C397762C4F9AE02/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.mft File: BfhBmvmqMYTqsf-HQkpq4zz3MsQ.mft (raw, json) Hash identifier: Jt+ZqMcRkHeoEKHgHPakCfePIrATJ1j2Ce7P/daXig4= Subject key identifier: 28:87:4C:46:EB:9F:B7:F5:A4:B2:F3:95:2F:47:B7:4B:4B:9C:8E:1C Authority key identifier: 05:F8:41:9A:F9:AA:31:84:EA:B1:FF:87:42:4A:6A:E3:3C:F7:32:C4 Certificate issuer: /CN=A915E575/serialNumber=05F8419AF9AA3184EAB1FF87424A6AE33CF732C4 Certificate serial: 03F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915E575/F0B242148FA611EC9C397762C4F9AE02/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.mft Manifest number: 03F1 Signing time: Fri 12 Sep 2025 04:06:46 +0000 Manifest this update: Fri 12 Sep 2025 04:06:45 +0000 Manifest next update: Fri 19 Sep 2025 04:06:45 +0000 Files and hashes: 1: BfhBmvmqMYTqsf-HQkpq4zz3MsQ.crl (hash: oSXmMf38hRYF5vDUaNC/gsH8rhN83ZbIelnfLCPVCZA=) Validation: Failed, unable to get local issuer certificate Certificate: Data: Version: 3 (0x2) Serial Number: 1014 (0x3f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915E575, serialNumber=05F8419AF9AA3184EAB1FF87424A6AE33CF732C4 Validity Not Before: Sep 12 04:06:45 2025 GMT Not After : Sep 19 04:06:45 2025 GMT Subject: CN=68c39c55-dbf0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:1a:ba:3b:6c:8c:fc:78:dc:74:c1:96:d1:c8: ed:9d:41:71:85:43:18:ec:af:81:5e:05:a8:db:f7: f6:df:a5:36:6d:ea:a1:f5:75:b6:f1:5b:46:a9:f9: da:e1:7c:cd:5a:8e:ef:1d:20:c5:4a:e8:60:55:40: a3:16:52:2c:b1:88:6e:f8:d2:fe:db:37:39:19:2e: d5:b5:ae:0c:e5:41:48:6c:cd:00:d1:32:b4:9e:2e: 0a:e7:74:89:e0:68:5f:1c:d7:db:74:26:4b:dd:85: b3:5a:46:f1:e0:e9:e0:e7:d7:0a:8d:67:6e:0c:7e: 5e:a8:58:fa:8f:36:57:5c:73:1a:a3:bc:12:70:07: de:ef:12:34:6a:35:30:06:b6:59:64:05:92:bb:c6: 1c:45:68:f8:a3:bd:4b:75:53:32:e7:cc:a9:03:43: c3:23:b9:12:30:49:9e:89:39:f1:4a:c9:90:e5:0c: ee:c8:fe:9e:40:dc:ae:92:4a:7b:f0:13:ec:13:49: cb:51:0b:bc:89:5a:7b:39:14:95:c4:e1:87:e8:a3: c2:b3:42:ce:54:36:12:31:d8:37:f0:eb:bf:b0:50: 61:fc:f6:4f:29:f9:60:b9:54:45:b6:59:f6:2d:c4: b7:4c:20:12:2a:07:f6:7f:1e:b5:2f:a7:b9:12:45: b8:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:87:4C:46:EB:9F:B7:F5:A4:B2:F3:95:2F:47:B7:4B:4B:9C:8E:1C X509v3 Authority Key Identifier: keyid:05:F8:41:9A:F9:AA:31:84:EA:B1:FF:87:42:4A:6A:E3:3C:F7:32:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915E575/F0B242148FA611EC9C397762C4F9AE02/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915E575/F0B242148FA611EC9C397762C4F9AE02/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:8a:10:3b:dd:65:ee:c2:ba:fe:34:75:88:f4:4b:9b:c7:64: f5:22:4a:b3:97:d3:75:10:6c:4b:dd:f9:7a:82:64:5a:b4:76: 61:61:35:58:ec:02:c8:c8:6a:bb:da:8e:82:a9:45:67:52:6d: 8b:37:59:2a:36:84:2a:26:4b:3e:b5:54:04:97:59:23:52:5a: bc:da:7e:17:21:e2:a4:d7:65:d3:91:f6:e0:f1:32:5d:bb:a0: 79:61:4d:5e:5c:f1:5b:3a:af:01:d7:1d:df:b3:4b:e1:63:c9: 0e:aa:69:d9:1d:82:d1:bd:f4:05:b7:83:fd:fd:61:17:67:e2: 9d:ed:99:bd:89:24:0d:8e:86:f2:9d:4f:0c:d6:bc:c9:85:da: 88:da:af:e9:a4:79:77:94:62:8c:95:46:84:59:5a:6c:d4:a6: be:3d:2a:e2:44:40:a0:b5:a0:9d:b8:79:57:f3:de:4a:64:94: 9d:43:1e:e8:f8:f2:0a:e5:54:26:7b:c9:7c:fe:20:bf:47:15: c2:8a:b4:2a:ab:65:2e:d5:a7:28:f6:e6:25:1f:5d:63:08:12: 18:64:f3:8d:f4:1e:c3:75:2b:02:d2:9f:0a:e0:bf:33:f8:ce: 85:5d:e3:a4:70:bc:29:bd:2a:e2:0a:aa:04:06:16:72:be:34: e2:fe:d7:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA/YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUU1NzUxMTAvBgNVBAUTKDA1Rjg0MTlBRjlBQTMxODRFQUIxRkY4NzQyNEE2QUUz M0NGNzMyQzQwHhcNMjUwOTEyMDQwNjQ1WhcNMjUwOTE5MDQwNjQ1WjAYMRYwFAYD VQQDEw02OGMzOWM1NS1kYmYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxRq6O2yM/HjcdMGW0cjtnUFxhUMY7K+BXgWo2/f236U2beqh9XW28VtGqfna 4XzNWo7vHSDFSuhgVUCjFlIssYhu+NL+2zc5GS7Vta4M5UFIbM0A0TK0ni4K53SJ 4GhfHNfbdCZL3YWzWkbx4Ong59cKjWduDH5eqFj6jzZXXHMao7wScAfe7xI0ajUw BrZZZAWSu8YcRWj4o71LdVMy58ypA0PDI7kSMEmeiTnxSsmQ5QzuyP6eQNyukkp7 8BPsE0nLUQu8iVp7ORSVxOGH6KPCs0LOVDYSMdg38Ou/sFBh/PZPKflguVRFtln2 LcS3TCASKgf2fx61L6e5EkW4owIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCiHTEbr n7f1pLLzlS9Ht0tLnI4cMB8GA1UdIwQYMBaAFAX4QZr5qjGE6rH/h0JKauM89zLE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RTU3NS9GMEIyNDIxNDhG QTYxMUVDOUMzOTc3NjJDNEY5QUUwMi9CZmhCbXZtcU1ZVHFzZi1IUWtwcTR6ejNN c1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JmaEJtdm1xTVlUcXNmLUhRa3BxNHp6M01zUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RTU3NS9GMEIyNDIxNDhGQTYxMUVDOUMzOTc3NjJDNEY5QUUwMi9CZmhCbXZtcU1Z VHFzZi1IUWtwcTR6ejNNc1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjihA73WXuwrr+NHWI9Eubx2T1Ikqzl9N1EGxL3fl6gmRatHZhYTVY 7ALIyGq72o6CqUVnUm2LN1kqNoQqJks+tVQEl1kjUlq82n4XIeKk12XTkfbg8TJd u6B5YU1eXPFbOq8B1x3fs0vhY8kOqmnZHYLRvfQFt4P9/WEXZ+Kd7Zm9iSQNjoby nU8M1rzJhdqI2q/ppHl3lGKMlUaEWVps1Ka+PSriRECgtaCduHlX895KZJSdQx7o +PIK5VQme8l8/iC/RxXCirQqq2Uu1aco9uYlH11jCBIYZPON9B7DdSsC0p8K4L8z +M6FXeOkcLwpvSriCqoEBhZyvjTi/td/ -----END CERTIFICATE-----Generated at Sat Dec 20 03:25:06 2025 by rpki-client