This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919C563/11B6336417C111E981080F6CC4F9AE02/BKAnX1srXBgOfg0Slu7WC8DPY0c.mft File: BKAnX1srXBgOfg0Slu7WC8DPY0c.mft (raw, json) Hash identifier: r7K5ACrGYv+s4fyScbmCYLI8JvdW1f3704BeUjQm3M4= Subject key identifier: 57:1A:CB:E8:34:95:65:7F:F6:6A:8F:70:FA:E8:D9:3E:0D:7F:89:BF Authority key identifier: 04:A0:27:5F:5B:2B:5C:18:0E:7E:0D:12:96:EE:D6:0B:C0:CF:63:47 Certificate issuer: /CN=A919C563/serialNumber=04A0275F5B2B5C180E7E0D1296EED60BC0CF6347 Certificate serial: 117A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKAnX1srXBgOfg0Slu7WC8DPY0c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C563/11B6336417C111E981080F6CC4F9AE02/BKAnX1srXBgOfg0Slu7WC8DPY0c.mft Manifest number: 116C Signing time: Sat 20 Dec 2025 16:58:17 +0000 Manifest this update: Sat 20 Dec 2025 16:58:16 +0000 Manifest next update: Sat 27 Dec 2025 16:58:16 +0000 Files and hashes: 1: BKAnX1srXBgOfg0Slu7WC8DPY0c.crl (hash: 21VV7girl+jjt1oKgZHM3GmrrcYqAcK/rKQTHyNv2ak=) 2: 7F35DF3CB74E11F0B044DA80C4F9AE02.roa (hash: c359sIW4Z5sIwnmuCSGuu4Dc9VbeC09XzNfroSlImmE=) 3: C484F3C0B74E11F0823EBC10C4F9AE02.roa (hash: TgAtTR3AGX5ew51UqibGXUzKLmbtmQK+cqf1ZOWJIZQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C563/11B6336417C111E981080F6CC4F9AE02/BKAnX1srXBgOfg0Slu7WC8DPY0c.crl rsync://rpki.apnic.net/member_repository/A919C563/11B6336417C111E981080F6CC4F9AE02/BKAnX1srXBgOfg0Slu7WC8DPY0c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKAnX1srXBgOfg0Slu7WC8DPY0c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 16:58:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4474 (0x117a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C563, serialNumber=04A0275F5B2B5C180E7E0D1296EED60BC0CF6347 Validity Not Before: Dec 20 16:58:16 2025 GMT Not After : Dec 27 16:58:16 2025 GMT Subject: CN=6946d5a9-4065 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:cf:2d:ab:f4:79:4f:3c:27:79:56:14:fc:d6: 1e:e8:ce:9b:c7:f8:51:0c:6c:99:26:fb:9e:7f:8c: d9:de:12:8d:49:c7:88:9e:9b:8b:5e:5a:ad:22:3a: 97:fd:2b:53:6e:20:c8:82:4e:0d:c8:56:e2:ac:38: b9:bc:ae:e7:a8:9e:52:a8:83:18:07:29:dd:21:df: 4a:31:d0:4f:f3:5e:00:f0:16:eb:c3:5b:9d:b4:f1: 33:0a:8b:9a:45:13:a2:c4:6c:dc:ea:00:b0:f8:38: 7d:f5:26:8b:b1:e1:e7:1f:5f:62:85:ce:2a:1a:93: e0:95:b0:0d:58:d0:c9:dc:f4:e5:e0:4d:d3:fc:16: 92:9f:91:04:cd:41:e6:b7:74:15:51:f0:98:d5:36: 85:2d:e3:52:d2:59:df:a8:05:70:0c:b1:2a:cb:65: 8e:e4:64:a8:e7:55:3e:4d:95:75:03:e2:9d:c9:81: fd:5c:82:0b:7f:42:99:7a:eb:b7:b8:4f:aa:d1:56: 4d:5e:f0:7e:a2:d3:48:fe:3a:78:75:cb:e0:95:d8: eb:ff:10:df:46:10:cd:40:d7:55:c8:b4:14:ca:c9: 29:d6:48:e7:e5:60:41:d4:3e:38:47:ef:85:b6:57: 49:fd:a1:91:4e:0f:71:04:6a:86:a7:21:9a:9a:86: 68:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:1A:CB:E8:34:95:65:7F:F6:6A:8F:70:FA:E8:D9:3E:0D:7F:89:BF X509v3 Authority Key Identifier: keyid:04:A0:27:5F:5B:2B:5C:18:0E:7E:0D:12:96:EE:D6:0B:C0:CF:63:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C563/11B6336417C111E981080F6CC4F9AE02/BKAnX1srXBgOfg0Slu7WC8DPY0c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKAnX1srXBgOfg0Slu7WC8DPY0c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C563/11B6336417C111E981080F6CC4F9AE02/BKAnX1srXBgOfg0Slu7WC8DPY0c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:71:23:be:aa:c8:ee:f7:c3:80:8b:27:bb:38:2a:44:88:2f: e1:74:d9:3b:4a:98:7b:92:9e:a8:5a:96:86:6e:6b:15:1c:3c: 8b:df:83:ac:ff:66:dd:6b:6b:0c:28:22:94:8b:5a:e4:03:37: 68:60:85:cf:a5:5f:55:74:e8:51:fb:51:09:1d:4a:9e:38:aa: 0b:da:67:c7:e4:8d:ec:e1:6c:72:73:9d:82:d0:c1:60:2d:1d: 7a:19:60:60:2e:31:7c:a7:68:10:76:07:ea:44:14:28:dd:d5: eb:9a:ad:e6:72:eb:c0:f8:ca:0f:33:75:93:a3:2b:6a:3e:6e: 8e:36:c3:26:94:40:72:39:40:75:e7:74:fc:80:79:67:ab:48: 0d:5b:29:28:23:54:1a:56:2f:c4:74:a3:8e:58:18:c7:e4:60: 5e:59:92:6c:23:d5:ca:0e:c5:b6:c7:5b:18:37:53:b9:1b:f0: d2:ca:dc:ab:9c:78:d5:2c:44:94:47:dc:69:a9:fc:09:05:2b: 03:dd:e8:a8:a1:10:f6:b7:76:82:a5:53:6c:59:d5:45:9a:a8: 02:b0:b2:7d:55:59:0f:c0:11:64:1c:48:22:26:07:f6:d2:6c: 0c:c2:70:06:19:8a:68:3e:b8:e7:58:de:f6:04:e4:a8:a9:f0: c7:0a:c7:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEXowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUM1NjMxMTAvBgNVBAUTKDA0QTAyNzVGNUIyQjVDMTgwRTdFMEQxMjk2RUVENjBC QzBDRjYzNDcwHhcNMjUxMjIwMTY1ODE2WhcNMjUxMjI3MTY1ODE2WjAYMRYwFAYD VQQDDA02OTQ2ZDVhOS00MDY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvM8tq/R5TzwneVYU/NYe6M6bx/hRDGyZJvuef4zZ3hKNSceInpuLXlqtIjqX /StTbiDIgk4NyFbirDi5vK7nqJ5SqIMYByndId9KMdBP814A8Bbrw1udtPEzCoua RROixGzc6gCw+Dh99SaLseHnH19ihc4qGpPglbANWNDJ3PTl4E3T/BaSn5EEzUHm t3QVUfCY1TaFLeNS0lnfqAVwDLEqy2WO5GSo51U+TZV1A+KdyYH9XIILf0KZeuu3 uE+q0VZNXvB+otNI/jp4dcvgldjr/xDfRhDNQNdVyLQUyskp1kjn5WBB1D44R++F tldJ/aGRTg9xBGqGpyGamoZoZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFcay+g0 lWV/9mqPcPro2T4Nf4m/MB8GA1UdIwQYMBaAFASgJ19bK1wYDn4NEpbu1gvAz2NH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzU2My8xMUI2MzM2NDE3 QzExMUU5ODEwODBGNkNDNEY5QUUwMi9CS0FuWDFzclhCZ09mZzBTbHU3V0M4RFBZ MGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JLQW5YMXNyWEJnT2ZnMFNsdTdXQzhEUFkwYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QzU2My8xMUI2MzM2NDE3QzExMUU5ODEwODBGNkNDNEY5QUUwMi9CS0FuWDFzclhC Z09mZzBTbHU3V0M4RFBZMGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC3cSO+qsju98OAiye7OCpEiC/hdNk7Sph7kp6oWpaGbmsVHDyL34Os /2bda2sMKCKUi1rkAzdoYIXPpV9VdOhR+1EJHUqeOKoL2mfH5I3s4Wxyc52C0MFg LR16GWBgLjF8p2gQdgfqRBQo3dXrmq3mcuvA+MoPM3WToytqPm6ONsMmlEByOUB1 53T8gHlnq0gNWykoI1QaVi/EdKOOWBjH5GBeWZJsI9XKDsW2x1sYN1O5G/DSytyr nHjVLESUR9xpqfwJBSsD3eiooRD2t3aCpVNsWdVFmqgCsLJ9VVkPwBFkHEgiJgf2 0mwMwnAGGYpoPrjnWN72BOSoqfDHCse6 -----END CERTIFICATE-----Generated at Sun Dec 21 16:15:05 2025 by rpki-client