This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9199B85/7D86A238C61511EEA718E338C4F9AE02/BaM29kbGgzeJtq58kgcrf5TZ3Ck.mft File: BaM29kbGgzeJtq58kgcrf5TZ3Ck.mft (raw, json) Hash identifier: BvVHzioeRya0Ub6rr1owGw5lA3SuwDgMMvA2LTeqV9M= Subject key identifier: D8:AF:B2:61:4E:88:44:7C:38:44:46:E6:3D:52:73:1C:71:64:27:74 Authority key identifier: 05:A3:36:F6:46:C6:83:37:89:B6:AE:7C:92:07:2B:7F:94:D9:DC:29 Certificate issuer: /CN=A9199B85/serialNumber=05A336F646C6833789B6AE7C92072B7F94D9DC29 Certificate serial: 0154 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BaM29kbGgzeJtq58kgcrf5TZ3Ck.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9199B85/7D86A238C61511EEA718E338C4F9AE02/BaM29kbGgzeJtq58kgcrf5TZ3Ck.mft Manifest number: 0154 Signing time: Tue 02 Dec 2025 23:49:23 +0000 Manifest this update: Tue 02 Dec 2025 23:49:22 +0000 Manifest next update: Tue 09 Dec 2025 23:49:22 +0000 Files and hashes: 1: BaM29kbGgzeJtq58kgcrf5TZ3Ck.crl (hash: yDO4tCejnMLp8Oxfot9a4TIQlJJDwB6mOid7T6hK9/4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9199B85/7D86A238C61511EEA718E338C4F9AE02/BaM29kbGgzeJtq58kgcrf5TZ3Ck.crl rsync://rpki.apnic.net/member_repository/A9199B85/7D86A238C61511EEA718E338C4F9AE02/BaM29kbGgzeJtq58kgcrf5TZ3Ck.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BaM29kbGgzeJtq58kgcrf5TZ3Ck.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 23:49:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 340 (0x154) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9199B85, serialNumber=05A336F646C6833789B6AE7C92072B7F94D9DC29 Validity Not Before: Dec 2 23:49:22 2025 GMT Not After : Dec 9 23:49:22 2025 GMT Subject: CN=692f7b03-31ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:d3:73:5d:ed:9b:43:51:fe:78:70:fe:6a:ea: 5d:1e:15:df:09:59:d6:d9:78:92:6e:68:ac:bf:f8: 8c:a4:1d:6e:a6:e0:30:18:a1:f4:e2:1c:0d:6d:98: 58:37:36:df:79:c3:36:94:c8:78:d5:e0:07:a7:10: 2d:63:c2:32:22:b6:6c:24:1a:22:f4:7d:ff:42:4d: d2:67:84:9b:d5:3d:eb:25:35:f0:09:d6:70:bd:49: e4:49:16:57:78:24:6c:55:b9:ae:0a:0b:3c:42:a2: 47:16:d1:b9:92:0c:8d:ae:a1:8e:8d:4f:4c:7c:83: 8f:f2:bd:de:d5:cb:f1:6b:9a:14:7f:9f:18:7a:d1: cf:e0:d2:7d:e0:14:7f:0d:89:21:01:80:25:f7:17: ba:64:a6:47:65:07:1c:cc:85:72:73:a1:75:2e:98: 01:71:e5:93:bd:5a:be:7d:c3:f4:b1:21:27:bd:fd: 97:b3:5e:ba:c8:31:48:51:54:16:74:c5:85:3a:ba: 39:26:69:d3:cb:a8:b3:80:3b:a1:ee:9f:17:cc:86: e2:8e:48:c3:b1:f1:ff:fa:d3:69:e1:6c:a6:a8:04: c1:8d:a5:e4:0f:32:86:3c:2e:d1:af:f1:b9:3f:c1: 47:30:b5:fd:3c:42:d5:63:f0:f0:ed:9c:47:22:ac: cf:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:AF:B2:61:4E:88:44:7C:38:44:46:E6:3D:52:73:1C:71:64:27:74 X509v3 Authority Key Identifier: keyid:05:A3:36:F6:46:C6:83:37:89:B6:AE:7C:92:07:2B:7F:94:D9:DC:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9199B85/7D86A238C61511EEA718E338C4F9AE02/BaM29kbGgzeJtq58kgcrf5TZ3Ck.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BaM29kbGgzeJtq58kgcrf5TZ3Ck.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199B85/7D86A238C61511EEA718E338C4F9AE02/BaM29kbGgzeJtq58kgcrf5TZ3Ck.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:f2:0d:82:4c:e8:f9:a6:6c:5d:af:c7:99:76:de:6a:0b:b5: fd:37:07:2c:c0:30:1b:bd:95:af:b2:d6:4a:a2:92:19:eb:55: fb:83:dd:26:f8:63:ea:3d:78:99:67:af:0b:5f:c8:cc:f8:5f: 7c:cd:dc:93:27:66:16:7d:71:d0:76:59:bc:65:3b:b3:5b:31: ec:9c:a9:05:23:14:48:d0:ba:5b:88:d5:18:09:4c:5f:12:b2: 0a:e9:45:20:fa:a7:6c:16:1c:bf:03:31:e1:3c:10:53:53:33: d7:8d:2b:00:50:1f:24:ea:47:c6:2b:93:cc:1f:a4:fd:21:d0: 11:bc:ee:2e:07:66:6c:7a:c5:a2:d8:73:52:34:5f:23:26:aa: 7b:ca:ed:4f:dd:7e:f6:81:0b:c9:82:83:f2:cd:0e:e6:3a:d0: 8c:a2:10:5c:ba:20:d7:84:28:e7:5c:e8:8a:28:f3:cc:f2:4c: bb:9f:18:57:d1:4e:be:ff:04:a3:19:f7:4f:83:15:6c:b1:0a: 88:63:4b:f6:d7:05:cb:26:2d:b4:2f:95:92:e7:00:d8:fa:d3: 3f:7c:2e:3a:b3:51:33:c7:a7:79:02:f2:19:8f:5e:df:fb:6a: 09:1a:47:0a:44:09:01:d3:76:b4:d7:eb:ad:70:d7:81:9f:81: 52:c9:f3:4c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTlCODUxMTAvBgNVBAUTKDA1QTMzNkY2NDZDNjgzMzc4OUI2QUU3QzkyMDcyQjdG OTREOURDMjkwHhcNMjUxMjAyMjM0OTIyWhcNMjUxMjA5MjM0OTIyWjAYMRYwFAYD VQQDEw02OTJmN2IwMy0zMWVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2tNzXe2bQ1H+eHD+aupdHhXfCVnW2XiSbmisv/iMpB1upuAwGKH04hwNbZhY NzbfecM2lMh41eAHpxAtY8IyIrZsJBoi9H3/Qk3SZ4Sb1T3rJTXwCdZwvUnkSRZX eCRsVbmuCgs8QqJHFtG5kgyNrqGOjU9MfIOP8r3e1cvxa5oUf58YetHP4NJ94BR/ DYkhAYAl9xe6ZKZHZQcczIVyc6F1LpgBceWTvVq+fcP0sSEnvf2Xs166yDFIUVQW dMWFOro5JmnTy6izgDuh7p8XzIbijkjDsfH/+tNp4WymqATBjaXkDzKGPC7Rr/G5 P8FHMLX9PELVY/Dw7ZxHIqzP4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNivsmFO iER8OERG5j1ScxxxZCd0MB8GA1UdIwQYMBaAFAWjNvZGxoM3ibaufJIHK3+U2dwp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OUI4NS83RDg2QTIzOEM2 MTUxMUVFQTcxOEUzMzhDNEY5QUUwMi9CYU0yOWtiR2d6ZUp0cTU4a2djcmY1VFoz Q2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JhTTI5a2JHZ3plSnRxNThrZ2NyZjVUWjNDay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OUI4NS83RDg2QTIzOEM2MTUxMUVFQTcxOEUzMzhDNEY5QUUwMi9CYU0yOWtiR2d6 ZUp0cTU4a2djcmY1VFozQ2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBm8g2CTOj5pmxdr8eZdt5qC7X9NwcswDAbvZWvstZKopIZ61X7g90m +GPqPXiZZ68LX8jM+F98zdyTJ2YWfXHQdlm8ZTuzWzHsnKkFIxRI0LpbiNUYCUxf ErIK6UUg+qdsFhy/AzHhPBBTUzPXjSsAUB8k6kfGK5PMH6T9IdARvO4uB2ZsesWi 2HNSNF8jJqp7yu1P3X72gQvJgoPyzQ7mOtCMohBcuiDXhCjnXOiKKPPM8ky7nxhX 0U6+/wSjGfdPgxVssQqIY0v21wXLJi20L5WS5wDY+tM/fC46s1Ezx6d5AvIZj17f +2oJGkcKRAkB03a01+utcNeBn4FSyfNM -----END CERTIFICATE-----Generated at Wed Dec 3 14:56:47 2025 by rpki-client