This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft File: bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft (raw, json) Hash identifier: K+dwrULwGjwtsV/p0kUphhtrdl/zAMtA8+jpxFBTujw= Subject key identifier: 94:28:85:E2:19:D9:46:18:E3:FD:07:0D:F1:5C:38:90:C7:BC:0B:90 Authority key identifier: 6F:00:24:6A:85:88:84:8C:3A:17:27:52:F3:2A:E4:EA:30:C6:80:A4 Certificate issuer: /CN=A917983D/serialNumber=6F00246A8588848C3A172752F32AE4EA30C680A4 Certificate serial: 031E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwAkaoWIhIw6FydS8yrk6jDGgKQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft Manifest number: 0319 Signing time: Sun 21 Dec 2025 00:19:36 +0000 Manifest this update: Sun 21 Dec 2025 00:19:35 +0000 Manifest next update: Sun 28 Dec 2025 00:19:35 +0000 Files and hashes: 1: bwAkaoWIhIw6FydS8yrk6jDGgKQ.crl (hash: 29A4VM7HMlR5FXsshlZJibvQy4fJCGNqaStyMUpbQls=) 2: 1F59A248F69E11EC947BBC5EC4F9AE02.roa (hash: 2Z67uVkO5VIvy8cXyYQOgy3wzQGOrhac1hYccMZ9uzo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.crl rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwAkaoWIhIw6FydS8yrk6jDGgKQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 00:19:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 798 (0x31e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917983D, serialNumber=6F00246A8588848C3A172752F32AE4EA30C680A4 Validity Not Before: Dec 21 00:19:35 2025 GMT Not After : Dec 28 00:19:35 2025 GMT Subject: CN=69473d17-3600 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:e7:17:e7:8d:bf:45:7c:70:95:d9:4e:52:69: 96:a9:e6:96:17:a8:99:cd:29:b5:ae:cf:06:47:7a: 86:b1:7d:e4:e2:7e:d3:44:d0:33:3f:43:f0:de:bd: f3:10:7f:33:1b:af:49:5a:e7:25:8c:1f:9f:8d:63: f8:cc:6a:b9:42:0e:dd:bf:b0:7b:c8:de:29:6f:bc: 56:b7:50:3d:47:e8:27:3a:cd:50:8e:ca:2d:80:2d: 6b:b1:23:37:c6:33:bb:dc:7a:fa:62:9f:85:1c:35: ed:8f:5d:16:51:07:4f:be:9c:e2:56:a3:d5:78:df: e6:e5:08:18:84:26:56:5c:ea:2d:1a:0a:67:fd:53: ca:fe:d6:da:df:73:cd:a0:d8:bd:ea:ff:ed:53:e3: 36:da:30:c3:c8:5c:a0:bd:33:f0:bd:5e:ba:b0:80: 43:f0:db:bd:0a:15:de:1a:20:d5:95:b7:72:3d:03: d5:11:da:6f:6b:59:61:fe:26:fd:e5:bc:8f:8a:c9: 0d:b9:68:ee:43:6b:62:21:e9:48:8f:de:25:1d:bf: 55:04:0b:6d:00:1d:d4:04:11:c7:28:f4:2f:9c:1e: 15:c4:ee:f2:84:5a:03:49:a0:58:9d:9b:7a:62:3d: 5d:2d:5a:ff:cd:cb:bf:46:b3:75:fc:77:70:78:93: 82:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:28:85:E2:19:D9:46:18:E3:FD:07:0D:F1:5C:38:90:C7:BC:0B:90 X509v3 Authority Key Identifier: keyid:6F:00:24:6A:85:88:84:8C:3A:17:27:52:F3:2A:E4:EA:30:C6:80:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwAkaoWIhIw6FydS8yrk6jDGgKQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:52:bd:80:dd:e7:76:1a:c7:db:eb:13:d0:ad:c6:bc:c1:b7: 36:1d:96:6c:c9:13:4a:4c:10:95:f6:e8:2c:57:3a:d3:39:12: 12:43:40:54:14:63:1e:de:25:bf:3f:ac:95:4a:0a:9e:db:87: 00:87:6c:21:7d:47:91:d7:b4:27:93:db:9d:93:7b:1e:84:04: c2:51:39:b7:63:91:64:d1:e2:b7:5d:aa:2a:ec:47:82:cf:8f: a5:98:c7:aa:9d:03:c5:3f:0d:7e:d2:c7:db:37:a9:15:18:71: 76:ab:c4:c2:8a:11:78:c2:7f:e5:8b:df:85:13:86:d3:d7:85: ad:46:50:2f:6f:be:63:7c:92:39:f5:b2:24:33:55:8c:47:27: 3c:ba:b1:0f:b4:ab:5e:0c:84:11:80:af:ce:05:17:ef:fa:f6: 66:aa:c9:6a:09:29:98:b9:99:27:85:d1:5f:39:4e:17:2e:7b: f0:f1:8b:03:8e:59:a1:ea:7f:bc:46:f5:dd:14:fa:e9:bf:b5: d3:da:1e:87:b7:7b:5e:be:c4:db:5c:b3:17:b0:63:3c:54:e1: b6:22:dc:5e:1f:01:18:d4:a7:07:85:7c:9b:b1:6e:bd:63:f9: 53:4b:3c:16:d7:b1:c7:bf:d9:77:c6:86:98:35:70:d7:71:c8: e6:e4:fe:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAx4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzk4M0QxMTAvBgNVBAUTKDZGMDAyNDZBODU4ODg0OEMzQTE3Mjc1MkYzMkFFNEVB MzBDNjgwQTQwHhcNMjUxMjIxMDAxOTM1WhcNMjUxMjI4MDAxOTM1WjAYMRYwFAYD VQQDDA02OTQ3M2QxNy0zNjAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmOcX542/RXxwldlOUmmWqeaWF6iZzSm1rs8GR3qGsX3k4n7TRNAzP0Pw3r3z EH8zG69JWucljB+fjWP4zGq5Qg7dv7B7yN4pb7xWt1A9R+gnOs1QjsotgC1rsSM3 xjO73Hr6Yp+FHDXtj10WUQdPvpziVqPVeN/m5QgYhCZWXOotGgpn/VPK/tba33PN oNi96v/tU+M22jDDyFygvTPwvV66sIBD8Nu9ChXeGiDVlbdyPQPVEdpva1lh/ib9 5byPiskNuWjuQ2tiIelIj94lHb9VBAttAB3UBBHHKPQvnB4VxO7yhFoDSaBYnZt6 Yj1dLVr/zcu/RrN1/HdweJOC+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJQoheIZ 2UYY4/0HDfFcOJDHvAuQMB8GA1UdIwQYMBaAFG8AJGqFiISMOhcnUvMq5OowxoCk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTgzRC80MTYyRjQ0Q0Y2 OUExMUVDQTc4NTNCNTlDNEY5QUUwMi9id0FrYW9XSWhJdzZGeWRTOHlyazZqREdn S1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J3QWthb1dJaEl3NkZ5ZFM4eXJrNmpER2dLUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OTgzRC80MTYyRjQ0Q0Y2OUExMUVDQTc4NTNCNTlDNEY5QUUwMi9id0FrYW9XSWhJ dzZGeWRTOHlyazZqREdnS1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCuUr2A3ed2Gsfb6xPQrca8wbc2HZZsyRNKTBCV9ugsVzrTORISQ0BU FGMe3iW/P6yVSgqe24cAh2whfUeR17Qnk9udk3sehATCUTm3Y5Fk0eK3Xaoq7EeC z4+lmMeqnQPFPw1+0sfbN6kVGHF2q8TCihF4wn/li9+FE4bT14WtRlAvb75jfJI5 9bIkM1WMRyc8urEPtKteDIQRgK/OBRfv+vZmqslqCSmYuZknhdFfOU4XLnvw8YsD jlmh6n+8RvXdFPrpv7XT2h6Ht3tevsTbXLMXsGM8VOG2ItxeHwEY1KcHhXybsW69 Y/lTSzwW17HHv9l3xoaYNXDXccjm5P4I -----END CERTIFICATE-----Generated at Mon Dec 22 17:32:11 2025 by rpki-client