This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/bkWq8A0m8fB31nRzkUTUuMOU87g.mft File: bkWq8A0m8fB31nRzkUTUuMOU87g.mft (raw, json) Hash identifier: hQNnyW+WZyTm1LYKvc+xVpG0DJjIq6Y0cIH2+tKQfyk= Subject key identifier: BE:0E:86:CF:5B:63:84:FA:80:40:27:0E:77:03:CA:10:43:0D:BE:C1 Authority key identifier: 6E:45:AA:F0:0D:26:F1:F0:77:D6:74:73:91:44:D4:B8:C3:94:F3:B8 Certificate issuer: /CN=A919F0DA/serialNumber=6E45AAF00D26F1F077D674739144D4B8C394F3B8 Certificate serial: 2448 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bkWq8A0m8fB31nRzkUTUuMOU87g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/bkWq8A0m8fB31nRzkUTUuMOU87g.mft Manifest number: 616F Signing time: Mon 22 Dec 2025 14:15:23 +0000 Manifest this update: Mon 22 Dec 2025 14:15:23 +0000 Manifest next update: Mon 29 Dec 2025 14:15:23 +0000 Files and hashes: 1: bkWq8A0m8fB31nRzkUTUuMOU87g.crl (hash: OK3mB/CHZRMtuNITy5oY2C80iY5+wBncwa4b0et2rRE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/bkWq8A0m8fB31nRzkUTUuMOU87g.crl rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/bkWq8A0m8fB31nRzkUTUuMOU87g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bkWq8A0m8fB31nRzkUTUuMOU87g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 14:15:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9288 (0x2448) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919F0DA, serialNumber=6E45AAF00D26F1F077D674739144D4B8C394F3B8 Validity Not Before: Dec 22 14:15:23 2025 GMT Not After : Dec 29 14:15:23 2025 GMT Subject: CN=6949527b-ae63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:e4:8e:4d:49:3d:a6:fd:32:cc:5c:eb:2d:14: 8a:63:8a:ef:cb:b1:d0:84:98:fb:6d:9e:97:83:1e: 76:7e:b5:f3:ad:f9:53:c6:86:1f:7a:df:fa:16:a9: e2:6d:98:49:3e:c5:2d:2b:32:92:39:52:4a:d2:1a: 67:55:7e:24:6e:19:18:45:6d:46:2b:0c:7c:7c:77: 50:53:55:e0:fe:b3:2f:ec:06:7c:4c:34:6b:bc:6d: 93:34:07:54:7f:de:59:b5:bd:56:c6:c6:65:eb:76: 75:59:f4:3e:c4:67:9e:61:d9:12:a2:bf:0e:56:5d: cb:df:2f:08:05:08:b3:ad:d6:50:83:63:ed:ef:af: 2a:38:6f:4e:7f:ea:b2:b6:78:3f:db:0e:25:a0:f9: c8:84:f2:b0:08:54:0c:dc:3d:c2:65:35:91:ee:14: 28:ba:16:c0:6b:24:ba:02:74:3f:c2:79:b8:2f:09: 7a:dc:49:ef:e1:bc:a1:8b:4c:9d:9e:17:c8:06:72: c0:e8:ba:5b:ff:0c:9c:e1:5a:f1:9b:dd:77:3d:4f: 13:bb:69:01:14:8c:a0:04:24:0a:b2:8f:85:51:fc: c2:5e:e0:94:28:6a:1c:8e:c1:ee:9d:1d:ab:b3:5c: 5b:b7:3a:b1:72:c0:76:65:72:f9:e7:b0:2e:e8:b9: ed:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:0E:86:CF:5B:63:84:FA:80:40:27:0E:77:03:CA:10:43:0D:BE:C1 X509v3 Authority Key Identifier: keyid:6E:45:AA:F0:0D:26:F1:F0:77:D6:74:73:91:44:D4:B8:C3:94:F3:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/bkWq8A0m8fB31nRzkUTUuMOU87g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bkWq8A0m8fB31nRzkUTUuMOU87g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/bkWq8A0m8fB31nRzkUTUuMOU87g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:02:84:63:31:45:ca:79:0b:e4:b4:bb:47:fa:0d:0d:d4:2b: 7e:a9:75:3b:1c:ec:3e:1f:b4:cb:d5:31:20:76:21:89:1d:92: 90:15:6c:39:0c:fd:ea:84:37:ac:73:8f:ca:c3:36:91:ff:a3: e2:e7:9a:e4:bd:d6:52:90:46:e6:b1:c2:42:25:e2:8c:ac:63: 44:15:c0:04:93:59:74:d4:33:68:a0:a9:3d:ac:41:5d:df:6d: 1d:f5:5f:de:28:fd:57:f3:16:91:7c:fd:e3:6d:4e:f6:92:80: 97:4a:b7:b8:15:1f:8a:c1:77:80:ce:66:08:13:f0:57:62:a9: 3c:62:79:c1:39:8e:d7:a9:51:a0:06:fe:a0:cb:97:ed:e6:ca: 3c:b9:66:1b:e9:4b:b6:4d:28:9c:7e:a5:96:ac:0a:1b:3c:4e: 7e:e5:e6:0c:9b:78:9a:31:c8:9f:e8:81:92:b9:cb:ea:0a:c2: 9c:63:2d:65:39:39:41:21:d6:f7:71:98:4a:a9:9c:83:21:11: 53:c3:10:15:30:6a:3e:a5:64:5b:92:67:8a:87:c0:d6:85:a3: 66:7a:1a:5d:12:64:1f:f4:d8:23:0a:2f:e8:25:ee:b8:2e:ce: 3a:75:bc:67:7d:54:be:64:89:a9:58:ca:a5:2e:3f:ba:51:55: 36:6d:a7:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJEgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUYwREExMTAvBgNVBAUTKDZFNDVBQUYwMEQyNkYxRjA3N0Q2NzQ3MzkxNDRENEI4 QzM5NEYzQjgwHhcNMjUxMjIyMTQxNTIzWhcNMjUxMjI5MTQxNTIzWjAYMRYwFAYD VQQDDA02OTQ5NTI3Yi1hZTYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn+SOTUk9pv0yzFzrLRSKY4rvy7HQhJj7bZ6Xgx52frXzrflTxoYfet/6Fqni bZhJPsUtKzKSOVJK0hpnVX4kbhkYRW1GKwx8fHdQU1Xg/rMv7AZ8TDRrvG2TNAdU f95Ztb1WxsZl63Z1WfQ+xGeeYdkSor8OVl3L3y8IBQizrdZQg2Pt768qOG9Of+qy tng/2w4loPnIhPKwCFQM3D3CZTWR7hQouhbAayS6AnQ/wnm4Lwl63Env4byhi0yd nhfIBnLA6Lpb/wyc4Vrxm913PU8Tu2kBFIygBCQKso+FUfzCXuCUKGocjsHunR2r s1xbtzqxcsB2ZXL557Au6LntcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL4Ohs9b Y4T6gEAnDncDyhBDDb7BMB8GA1UdIwQYMBaAFG5FqvANJvHwd9Z0c5FE1LjDlPO4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RjBEQS8xNTBEM0VGNDFE NjgxMUUyOEMxODI4QTQwOEIwMkNEMi9ia1dxOEEwbThmQjMxblJ6a1VUVXVNT1U4 N2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JrV3E4QTBtOGZCMzFuUnprVVRVdU1PVTg3Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RjBEQS8xNTBEM0VGNDFENjgxMUUyOEMxODI4QTQwOEIwMkNEMi9ia1dxOEEwbThm QjMxblJ6a1VUVXVNT1U4N2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOAoRjMUXKeQvktLtH+g0N1Ct+qXU7HOw+H7TL1TEgdiGJHZKQFWw5 DP3qhDesc4/KwzaR/6Pi55rkvdZSkEbmscJCJeKMrGNEFcAEk1l01DNooKk9rEFd 320d9V/eKP1X8xaRfP3jbU72koCXSre4FR+KwXeAzmYIE/BXYqk8YnnBOY7XqVGg Bv6gy5ft5so8uWYb6Uu2TSicfqWWrAobPE5+5eYMm3iaMcif6IGSucvqCsKcYy1l OTlBIdb3cZhKqZyDIRFTwxAVMGo+pWRbkmeKh8DWhaNmehpdEmQf9NgjCi/oJe64 Ls46dbxnfVS+ZImpWMqlLj+6UVU2bacH -----END CERTIFICATE-----Generated at Wed Dec 24 14:14:16 2025 by rpki-client