This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C146D/F4D5A67E003711F0BBD72475C4F9AE02/BKM4-nsSbgfA74urj33BycGsMiE.mft File: BKM4-nsSbgfA74urj33BycGsMiE.mft (raw, json) Hash identifier: Xg4CRpx27hliPfCsK3d3hNKmO+XcXyYso01j0eyRtAE= Subject key identifier: 29:4B:19:B6:A3:8F:6B:1E:39:87:41:56:2D:2E:03:73:73:28:48:6E Authority key identifier: 04:A3:38:FA:7B:12:6E:07:C0:EF:8B:AB:8F:7D:C1:C9:C1:AC:32:21 Certificate issuer: /CN=A91C146D/serialNumber=04A338FA7B126E07C0EF8BAB8F7DC1C9C1AC3221 Certificate serial: 92 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKM4-nsSbgfA74urj33BycGsMiE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C146D/F4D5A67E003711F0BBD72475C4F9AE02/BKM4-nsSbgfA74urj33BycGsMiE.mft Manifest number: 92 Signing time: Tue 23 Dec 2025 05:25:46 +0000 Manifest this update: Tue 23 Dec 2025 05:25:46 +0000 Manifest next update: Tue 30 Dec 2025 05:25:46 +0000 Files and hashes: 1: BKM4-nsSbgfA74urj33BycGsMiE.crl (hash: 1iP+MdekxvrJDJNtbw9paRjV0i/nAp8rSxZ1tMNLHmI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C146D/F4D5A67E003711F0BBD72475C4F9AE02/BKM4-nsSbgfA74urj33BycGsMiE.crl rsync://rpki.apnic.net/member_repository/A91C146D/F4D5A67E003711F0BBD72475C4F9AE02/BKM4-nsSbgfA74urj33BycGsMiE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKM4-nsSbgfA74urj33BycGsMiE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 05:25:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 146 (0x92) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C146D, serialNumber=04A338FA7B126E07C0EF8BAB8F7DC1C9C1AC3221 Validity Not Before: Dec 23 05:25:46 2025 GMT Not After : Dec 30 05:25:46 2025 GMT Subject: CN=694a27da-3516 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:5e:14:ff:2c:b8:10:e9:06:16:28:c5:e7:67: 52:91:4f:a0:e8:6f:a5:3a:15:7e:48:ab:02:67:90: fe:0c:16:2a:8a:e8:75:c2:ec:d7:92:f5:2a:9f:03: 0d:a9:83:a4:bb:38:c3:ef:28:2f:8b:21:7f:62:d3: 25:24:17:b0:df:fb:21:7e:ec:64:7e:ef:a1:8e:ee: d4:c6:b8:8a:49:06:ab:19:08:b7:b8:62:8c:66:6c: c3:56:3d:07:ab:9f:37:c1:7b:cb:d0:86:ce:e8:a6: ab:63:b6:58:a5:ee:28:6d:5f:29:3f:6e:43:30:79: 38:eb:b3:c1:7e:49:61:12:fc:6e:c4:fe:76:2e:eb: 9c:f1:7a:74:33:27:ba:06:21:6c:5d:87:5b:c5:a9: 1a:bf:f9:94:8c:19:fc:48:aa:9b:86:55:0c:09:b8: 86:86:07:6d:f9:f1:b4:d6:3f:8f:19:70:da:7d:88: df:d8:04:e8:65:71:50:1e:4d:3e:b2:58:11:67:b6: 77:a3:87:71:81:14:29:4e:69:2a:50:4d:f1:5c:f3: 61:58:0b:f6:33:d4:0f:7a:48:a7:2f:4f:61:27:49: 65:72:c9:5c:7d:73:10:5a:73:89:d2:bf:9c:c5:9c: 8a:00:75:6e:1e:87:0d:4c:39:e6:5a:8f:a9:90:1a: 84:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:4B:19:B6:A3:8F:6B:1E:39:87:41:56:2D:2E:03:73:73:28:48:6E X509v3 Authority Key Identifier: keyid:04:A3:38:FA:7B:12:6E:07:C0:EF:8B:AB:8F:7D:C1:C9:C1:AC:32:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C146D/F4D5A67E003711F0BBD72475C4F9AE02/BKM4-nsSbgfA74urj33BycGsMiE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKM4-nsSbgfA74urj33BycGsMiE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C146D/F4D5A67E003711F0BBD72475C4F9AE02/BKM4-nsSbgfA74urj33BycGsMiE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c4:c9:b4:09:99:b0:31:f2:07:dd:73:7d:5d:ba:10:a8:4b:c2: ad:ff:18:5b:da:40:cb:54:ff:dd:ee:47:2f:72:21:dc:3e:15: 21:82:9e:c3:88:09:92:06:b8:de:5d:b3:82:99:b0:90:ba:cc: 01:9f:98:55:16:bf:1a:90:16:dd:3a:51:54:bb:51:50:ca:f9: 5f:05:ad:43:3a:43:b5:7b:15:5d:67:f8:a5:f2:9b:2d:3c:69: cf:0b:f1:f9:e0:e7:a8:52:3a:a2:a5:a7:cc:2b:76:58:17:56: 09:c7:5e:3c:42:0a:22:f8:42:ee:12:68:fd:18:6c:e5:b4:d8: 16:8c:42:39:ab:4c:cc:7d:20:f4:68:dc:56:ca:af:b1:db:9b: a3:28:86:a3:16:09:28:d6:bf:9e:c0:f1:c2:98:da:76:e8:b4: b2:52:80:bd:96:46:d9:95:57:d0:be:62:91:c3:0e:b1:bb:cb: 96:4b:b5:69:8f:4e:3d:2c:15:e5:ba:12:c3:ef:66:c2:f6:d0: 69:10:df:62:61:0c:26:20:f7:e1:f4:06:89:41:40:26:1b:87: cf:db:5d:c9:2e:43:53:6b:79:d4:64:51:a9:3a:2e:3d:be:8f: 06:70:02:b4:ca:6b:fb:af:af:2b:62:55:61:a1:3e:8b:cd:ca: 9e:f8:ca:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzE0NkQxMTAvBgNVBAUTKDA0QTMzOEZBN0IxMjZFMDdDMEVGOEJBQjhGN0RDMUM5 QzFBQzMyMjEwHhcNMjUxMjIzMDUyNTQ2WhcNMjUxMjMwMDUyNTQ2WjAYMRYwFAYD VQQDDA02OTRhMjdkYS0zNTE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz14U/yy4EOkGFijF52dSkU+g6G+lOhV+SKsCZ5D+DBYqiuh1wuzXkvUqnwMN qYOkuzjD7ygviyF/YtMlJBew3/shfuxkfu+hju7UxriKSQarGQi3uGKMZmzDVj0H q583wXvL0IbO6KarY7ZYpe4obV8pP25DMHk467PBfklhEvxuxP52Luuc8Xp0Mye6 BiFsXYdbxakav/mUjBn8SKqbhlUMCbiGhgdt+fG01j+PGXDafYjf2AToZXFQHk0+ slgRZ7Z3o4dxgRQpTmkqUE3xXPNhWAv2M9QPekinL09hJ0llcslcfXMQWnOJ0r+c xZyKAHVuHocNTDnmWo+pkBqErwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFClLGbaj j2seOYdBVi0uA3NzKEhuMB8GA1UdIwQYMBaAFASjOPp7Em4HwO+Lq499wcnBrDIh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTQ2RC9GNEQ1QTY3RTAw MzcxMUYwQkJENzI0NzVDNEY5QUUwMi9CS000LW5zU2JnZkE3NHVyajMzQnljR3NN aUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JLTTQtbnNTYmdmQTc0dXJqMzNCeWNHc01pRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MTQ2RC9GNEQ1QTY3RTAwMzcxMUYwQkJENzI0NzVDNEY5QUUwMi9CS000LW5zU2Jn ZkE3NHVyajMzQnljR3NNaUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDEybQJmbAx8gfdc31duhCoS8Kt/xhb2kDLVP/d7kcvciHcPhUhgp7D iAmSBrjeXbOCmbCQuswBn5hVFr8akBbdOlFUu1FQyvlfBa1DOkO1exVdZ/il8pst PGnPC/H54OeoUjqipafMK3ZYF1YJx148Qgoi+ELuEmj9GGzltNgWjEI5q0zMfSD0 aNxWyq+x25ujKIajFgko1r+ewPHCmNp26LSyUoC9lkbZlVfQvmKRww6xu8uWS7Vp j049LBXluhLD72bC9tBpEN9iYQwmIPfh9AaJQUAmG4fP213JLkNTa3nUZFGpOi49 vo8GcAK0ymv7r68rYlVhoT6Lzcqe+MrR -----END CERTIFICATE-----Generated at Wed Dec 24 14:10:33 2025 by rpki-client