This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.mft File: Ba0-SqGWG6fsvgKTVyXCXNJr1rw.mft (raw, json) Hash identifier: kDg44dYSIewOFdoiMnpMB87tJJRw2c2Lj2i7d9HMRKo= Subject key identifier: BE:C0:2F:5D:BB:77:90:4B:84:A6:41:30:E9:C3:24:9B:65:AF:82:96 Authority key identifier: 05:AD:3E:4A:A1:96:1B:A7:EC:BE:02:93:57:25:C2:5C:D2:6B:D6:BC Certificate issuer: /CN=A91941E9/serialNumber=05AD3E4AA1961BA7ECBE02935725C25CD26BD6BC Certificate serial: 0831 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.mft Manifest number: 0816 Signing time: Sat 06 Dec 2025 20:07:30 +0000 Manifest this update: Sat 06 Dec 2025 20:07:30 +0000 Manifest next update: Sat 13 Dec 2025 20:07:30 +0000 Files and hashes: 1: Ba0-SqGWG6fsvgKTVyXCXNJr1rw.crl (hash: fslB8Vor4QsVMhoFXPe8iA8yFpk2vF6f0c4I2M8834U=) 2: 4314DB4C8EAF11F091C0B421C4F9AE02.roa (hash: soxPBotfeGZJQtYFANg/AIsqymj558YBgTRf2OttWoQ=) 3: B0425744D7E211ECBD1D447FC4F9AE02.roa (hash: FmrrPxT3AQS1QsODrOl0Mag5fJkdo8yw7npJe5EvI48=) 4: 1DB0529C7CA711F0A52C5966C4F9AE02.roa (hash: XaSGJdVmQFwnCd+b3KdpqRusxazGj+qlh/KndRTEPfA=) 5: 1069D50EB54B11F092E79246C4F9AE02.roa (hash: oPyKzL4O0xlhZZ92P0pzMtzovY+UYDC46Jkmm8P2idY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.crl rsync://rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 20:07:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2097 (0x831) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91941E9, serialNumber=05AD3E4AA1961BA7ECBE02935725C25CD26BD6BC Validity Not Before: Dec 6 20:07:30 2025 GMT Not After : Dec 13 20:07:30 2025 GMT Subject: CN=69348d02-6ec8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:97:c9:49:c8:78:35:c3:a4:3a:5e:96:a7:8e: 66:10:5e:d9:80:a7:e6:3c:0a:00:fe:18:b9:55:25: 55:4e:27:9e:bc:44:2c:3a:f6:81:70:93:2c:6d:2c: d0:e6:c7:3a:5c:29:b7:ba:89:b4:1d:b4:24:90:c3: 7d:45:e2:59:fa:db:12:02:4b:ea:ec:ac:b5:20:c6: 5b:ff:9c:44:79:70:79:c3:7e:70:87:aa:5d:e0:8a: 0e:dd:24:cf:7e:96:ce:e8:23:27:b0:85:87:05:12: 65:b3:8c:19:dc:b5:26:6f:db:24:3e:43:86:9c:ea: 8a:6f:59:fc:43:77:c1:34:e8:3f:76:7c:0f:eb:87: bf:b4:e1:d1:24:16:ca:2c:96:16:b9:7a:23:2d:65: 60:91:9a:47:d6:27:41:8c:ad:0b:57:4f:c7:1e:c3: a7:50:73:43:e2:9c:70:ee:0a:8e:5b:b4:cb:5c:f1: 6d:18:68:87:86:e9:f8:65:0e:1f:0e:11:ef:36:f9: ae:51:95:d5:80:3c:49:1e:2e:ca:66:22:48:14:0e: 66:af:bc:46:8c:17:be:2a:53:07:6d:81:f0:83:da: b0:08:b9:b1:2c:4e:f1:04:01:64:83:5f:c3:41:69: a8:b5:75:23:42:bf:d2:d4:66:7a:6f:72:92:bc:46: 4b:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:C0:2F:5D:BB:77:90:4B:84:A6:41:30:E9:C3:24:9B:65:AF:82:96 X509v3 Authority Key Identifier: keyid:05:AD:3E:4A:A1:96:1B:A7:EC:BE:02:93:57:25:C2:5C:D2:6B:D6:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:6d:28:30:99:82:f3:97:72:ec:8a:4e:a6:38:22:76:3f:40: 93:ea:f1:9b:b3:e2:d0:3a:ab:81:d9:3e:dc:20:e0:03:c7:82: 90:03:67:5d:cc:33:57:07:04:9d:a8:f5:65:62:e9:8a:76:2e: 8e:98:ff:7b:c0:12:13:e3:99:14:e7:38:54:fc:cc:0e:fe:34: 07:51:6c:25:ad:ee:4f:ab:68:5c:5a:fd:cc:89:ad:88:4e:ea: ca:53:ee:50:cb:4c:cc:11:87:bd:52:2d:a1:90:41:4e:41:12: f1:ae:a5:d1:a2:50:e0:e7:35:a3:39:45:7f:7a:97:d6:72:c1: 9f:34:43:3c:11:2a:c5:0f:72:d8:ab:ba:86:b3:fd:03:53:d8: ff:34:56:54:71:d7:57:1f:20:1f:de:fb:54:43:b7:5e:8b:ae: 3a:55:3e:5e:be:5c:e9:7c:c5:26:63:89:9f:44:74:d3:04:e5: 2f:98:3e:b2:e7:d9:a4:b1:1f:b6:0b:ad:f9:88:9c:98:0c:03: f2:51:3e:e6:05:7e:2d:f8:6f:d0:f9:98:69:86:fa:2d:ef:31: ed:b8:2d:9b:de:e8:8a:d2:e7:69:66:a5:01:19:22:4f:7f:03: 0d:12:b5:7e:9a:67:80:a8:13:1a:34:e2:38:2d:88:75:4e:30: eb:cc:1f:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCDEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTQxRTkxMTAvBgNVBAUTKDA1QUQzRTRBQTE5NjFCQTdFQ0JFMDI5MzU3MjVDMjVD RDI2QkQ2QkMwHhcNMjUxMjA2MjAwNzMwWhcNMjUxMjEzMjAwNzMwWjAYMRYwFAYD VQQDEw02OTM0OGQwMi02ZWM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmpfJSch4NcOkOl6Wp45mEF7ZgKfmPAoA/hi5VSVVTieevEQsOvaBcJMsbSzQ 5sc6XCm3uom0HbQkkMN9ReJZ+tsSAkvq7Ky1IMZb/5xEeXB5w35wh6pd4IoO3STP fpbO6CMnsIWHBRJls4wZ3LUmb9skPkOGnOqKb1n8Q3fBNOg/dnwP64e/tOHRJBbK LJYWuXojLWVgkZpH1idBjK0LV0/HHsOnUHND4pxw7gqOW7TLXPFtGGiHhun4ZQ4f DhHvNvmuUZXVgDxJHi7KZiJIFA5mr7xGjBe+KlMHbYHwg9qwCLmxLE7xBAFkg1/D QWmotXUjQr/S1GZ6b3KSvEZLHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL7AL127 d5BLhKZBMOnDJJtlr4KWMB8GA1UdIwQYMBaAFAWtPkqhlhun7L4Ck1clwlzSa9a8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NDFFOS9EQUQ4RkI4MDA3 OTAxMUVCQkI5OEMwNzZDNEY5QUUwMi9CYTAtU3FHV0c2ZnN2Z0tUVnlYQ1hOSnIx cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JhMC1TcUdXRzZmc3ZnS1RWeVhDWE5KcjFydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NDFFOS9EQUQ4RkI4MDA3OTAxMUVCQkI5OEMwNzZDNEY5QUUwMi9CYTAtU3FHV0c2 ZnN2Z0tUVnlYQ1hOSnIxcncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRbSgwmYLzl3Lsik6mOCJ2P0CT6vGbs+LQOquB2T7cIOADx4KQA2dd zDNXBwSdqPVlYumKdi6OmP97wBIT45kU5zhU/MwO/jQHUWwlre5Pq2hcWv3Mia2I TurKU+5Qy0zMEYe9Ui2hkEFOQRLxrqXRolDg5zWjOUV/epfWcsGfNEM8ESrFD3LY q7qGs/0DU9j/NFZUcddXHyAf3vtUQ7dei646VT5evlzpfMUmY4mfRHTTBOUvmD6y 59mksR+2C635iJyYDAPyUT7mBX4t+G/Q+Zhphvot7zHtuC2b3uiK0udpZqUBGSJP fwMNErV+mmeAqBMaNOI4LYh1TjDrzB/W -----END CERTIFICATE-----Generated at Mon Dec 8 06:11:52 2025 by rpki-client