This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D60CF/E53608F02AFC11EFA0243C4AC4F9AE02/BHT0BqF40ixU1e9yTGssLJo7a5g.mft File: BHT0BqF40ixU1e9yTGssLJo7a5g.mft (raw, json) Hash identifier: dOLkIokbe9AvNjkDOmRA8l0kkfJ963VJpkJjulUnyEc= Subject key identifier: 96:AA:AD:DF:85:50:06:38:92:0C:81:40:C3:61:33:E6:DF:02:57:97 Authority key identifier: 04:74:F4:06:A1:78:D2:2C:54:D5:EF:72:4C:6B:2C:2C:9A:3B:6B:98 Certificate issuer: /CN=A91D60CF/serialNumber=0474F406A178D22C54D5EF724C6B2C2C9A3B6B98 Certificate serial: 011E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BHT0BqF40ixU1e9yTGssLJo7a5g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D60CF/E53608F02AFC11EFA0243C4AC4F9AE02/BHT0BqF40ixU1e9yTGssLJo7a5g.mft Manifest number: 011A Signing time: Tue 09 Dec 2025 02:53:00 +0000 Manifest this update: Tue 09 Dec 2025 02:52:59 +0000 Manifest next update: Tue 16 Dec 2025 02:52:59 +0000 Files and hashes: 1: BHT0BqF40ixU1e9yTGssLJo7a5g.crl (hash: UUqqDQF9M+YnMgxgsY4GpVr41gzGmDXITzywv27yJFE=) 2: B56F40DEE9DB11EFBDD8BD26C4F9AE02.roa (hash: 7PT1hzEu8yFfZFQXURAd4+p59Mps1ow7oAQ1a2yeyaI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D60CF/E53608F02AFC11EFA0243C4AC4F9AE02/BHT0BqF40ixU1e9yTGssLJo7a5g.crl rsync://rpki.apnic.net/member_repository/A91D60CF/E53608F02AFC11EFA0243C4AC4F9AE02/BHT0BqF40ixU1e9yTGssLJo7a5g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BHT0BqF40ixU1e9yTGssLJo7a5g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Dec 2025 02:52:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 286 (0x11e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D60CF, serialNumber=0474F406A178D22C54D5EF724C6B2C2C9A3B6B98 Validity Not Before: Dec 9 02:52:59 2025 GMT Not After : Dec 16 02:52:59 2025 GMT Subject: CN=69378f0b-b54b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:5a:b8:61:9f:bf:7c:3d:b8:45:7f:f2:c2:be: 54:b7:80:3c:da:9e:3d:7d:0a:cb:c6:77:7f:f0:c9: a1:d2:aa:0f:ea:47:26:51:65:d6:b3:ae:01:01:73: fd:b0:83:fd:e2:24:1e:1f:37:01:e6:18:d5:e8:4d: 09:1c:7a:aa:b0:0d:8b:63:cc:2f:03:a4:45:4e:2d: 25:1e:61:67:ef:59:03:6a:f0:ae:f5:3e:09:2b:1a: 0a:5f:5f:40:ca:38:d1:36:d2:d1:37:98:f5:9c:1a: 6e:f4:a0:28:15:12:70:ba:00:90:35:61:e7:c8:ae: ec:30:6f:8c:91:08:5f:fe:67:f3:0f:af:e9:cd:4b: 55:e1:c7:d4:10:28:3e:62:81:83:0e:f6:e4:1c:fd: 0b:9a:89:3a:02:8e:32:d8:88:b1:9b:21:da:0a:88: b2:d1:59:a4:ee:31:c0:c5:3e:14:2d:c1:76:25:a2: fb:eb:70:af:5f:67:38:4a:c6:d2:35:1e:dd:a0:c5: e8:f0:1e:34:f4:15:42:5c:53:6d:d3:9d:f1:bf:38: 88:e6:14:c4:ae:9a:a4:14:8f:df:f7:4a:f8:9f:33: ee:61:ac:bb:59:42:f7:42:a7:b2:0b:45:02:6f:00: 3c:f8:a6:8b:d6:83:67:10:e2:b2:51:14:81:02:a4: 11:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:AA:AD:DF:85:50:06:38:92:0C:81:40:C3:61:33:E6:DF:02:57:97 X509v3 Authority Key Identifier: keyid:04:74:F4:06:A1:78:D2:2C:54:D5:EF:72:4C:6B:2C:2C:9A:3B:6B:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D60CF/E53608F02AFC11EFA0243C4AC4F9AE02/BHT0BqF40ixU1e9yTGssLJo7a5g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BHT0BqF40ixU1e9yTGssLJo7a5g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D60CF/E53608F02AFC11EFA0243C4AC4F9AE02/BHT0BqF40ixU1e9yTGssLJo7a5g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:68:1b:f7:3b:32:cc:a3:48:84:b4:cd:5e:3b:19:c1:8c:71: 59:34:32:5e:16:98:4f:a5:eb:e9:03:e6:83:74:10:fe:7e:25: d2:37:3e:bd:47:47:43:73:7c:ce:8b:68:3c:56:e2:2b:ae:d4: 14:f5:50:c9:54:e4:3e:18:a3:f3:c8:da:3e:6b:ba:70:d2:e0: df:04:8a:21:48:4e:3a:89:81:8e:dc:f4:98:89:aa:0e:e4:61: 9f:7b:18:21:00:74:d6:17:09:39:a3:a3:7c:91:59:aa:fb:60: 01:b8:6f:14:0b:5c:39:2d:19:fe:28:11:4e:dc:5f:11:01:46: bf:a4:fc:b5:ba:a5:9c:7b:32:18:04:2b:0c:02:7b:35:47:39: db:f8:f1:50:ce:98:cb:a4:c8:0b:1d:f0:8a:bb:1f:8e:05:6e: 55:94:25:d6:eb:6b:78:f6:dd:ef:f1:84:6e:f6:17:df:ea:f9: 21:b7:28:75:2e:7f:4f:3c:5f:f1:15:c2:28:51:c6:01:2b:4c: be:0f:b2:18:86:13:2e:03:02:7e:de:f5:58:89:b5:dc:ad:f2: 1d:3a:ed:bc:40:24:65:67:2e:f5:20:d0:00:f5:f9:09:cf:3b: bf:38:41:f8:90:71:8d:c1:28:b4:a5:da:d4:fb:3f:3c:7f:2a: a7:bc:a1:15 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAR4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDYwQ0YxMTAvBgNVBAUTKDA0NzRGNDA2QTE3OEQyMkM1NEQ1RUY3MjRDNkIyQzJD OUEzQjZCOTgwHhcNMjUxMjA5MDI1MjU5WhcNMjUxMjE2MDI1MjU5WjAYMRYwFAYD VQQDEw02OTM3OGYwYi1iNTRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyVq4YZ+/fD24RX/ywr5Ut4A82p49fQrLxnd/8Mmh0qoP6kcmUWXWs64BAXP9 sIP94iQeHzcB5hjV6E0JHHqqsA2LY8wvA6RFTi0lHmFn71kDavCu9T4JKxoKX19A yjjRNtLRN5j1nBpu9KAoFRJwugCQNWHnyK7sMG+MkQhf/mfzD6/pzUtV4cfUECg+ YoGDDvbkHP0Lmok6Ao4y2IixmyHaCoiy0Vmk7jHAxT4ULcF2JaL763CvX2c4SsbS NR7doMXo8B409BVCXFNt053xvziI5hTErpqkFI/f90r4nzPuYay7WUL3QqeyC0UC bwA8+KaL1oNnEOKyURSBAqQRIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJaqrd+F UAY4kgyBQMNhM+bfAleXMB8GA1UdIwQYMBaAFAR09AaheNIsVNXvckxrLCyaO2uY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjBDRi9FNTM2MDhGMDJB RkMxMUVGQTAyNDNDNEFDNEY5QUUwMi9CSFQwQnFGNDBpeFUxZTl5VEdzc0xKbzdh NWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JIVDBCcUY0MGl4VTFlOXlUR3NzTEpvN2E1Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NjBDRi9FNTM2MDhGMDJBRkMxMUVGQTAyNDNDNEFDNEY5QUUwMi9CSFQwQnFGNDBp eFUxZTl5VEdzc0xKbzdhNWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhaBv3OzLMo0iEtM1eOxnBjHFZNDJeFphPpevpA+aDdBD+fiXSNz69 R0dDc3zOi2g8VuIrrtQU9VDJVOQ+GKPzyNo+a7pw0uDfBIohSE46iYGO3PSYiaoO 5GGfexghAHTWFwk5o6N8kVmq+2ABuG8UC1w5LRn+KBFO3F8RAUa/pPy1uqWcezIY BCsMAns1Rznb+PFQzpjLpMgLHfCKux+OBW5VlCXW62t49t3v8YRu9hff6vkhtyh1 Ln9PPF/xFcIoUcYBK0y+D7IYhhMuAwJ+3vVYibXcrfIdOu28QCRlZy71INAA9fkJ zzu/OEH4kHGNwSi0pdrU+z88fyqnvKEV -----END CERTIFICATE-----Generated at Wed Dec 10 05:00:51 2025 by rpki-client