This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.mft File: BN7ay9uvpcHBT5KBe5b39QMQCig.mft (raw, json) Hash identifier: Y6C4TuwIviCG7ngQ8DlHoqb+TavJ2QaWg8+HU5H5stE= Subject key identifier: C3:16:5C:BC:B8:AE:AB:B4:56:C3:38:6E:E3:48:0D:56:0A:84:E3:50 Authority key identifier: 04:DE:DA:CB:DB:AF:A5:C1:C1:4F:92:81:7B:96:F7:F5:03:10:0A:28 Certificate issuer: /CN=A912DD36/serialNumber=04DEDACBDBAFA5C1C14F92817B96F7F503100A28 Certificate serial: 0126 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BN7ay9uvpcHBT5KBe5b39QMQCig.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.mft Manifest number: 0122 Signing time: Sun 21 Dec 2025 03:54:16 +0000 Manifest this update: Sun 21 Dec 2025 03:54:16 +0000 Manifest next update: Sun 28 Dec 2025 03:54:16 +0000 Files and hashes: 1: BN7ay9uvpcHBT5KBe5b39QMQCig.crl (hash: eYAE46hBJz652BdBcuuSwlNzlMNKLLbicBQOzgqxTCw=) 2: 09EC8E16662211EFB6FA446CC4F9AE02.roa (hash: KgWGTanyX6yUWjTf/f+n7HM6qpw4Ft2mJJiD1oMoEsc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.crl rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BN7ay9uvpcHBT5KBe5b39QMQCig.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 03:54:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 294 (0x126) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DD36, serialNumber=04DEDACBDBAFA5C1C14F92817B96F7F503100A28 Validity Not Before: Dec 21 03:54:16 2025 GMT Not After : Dec 28 03:54:16 2025 GMT Subject: CN=69476f68-54c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:cd:6d:b0:02:be:3c:ad:29:bf:ac:e4:5b:14: 64:d4:57:2d:b9:03:9e:30:06:10:13:d1:73:88:46: 14:a9:86:8e:66:a6:ca:e2:ad:cc:0c:44:2b:68:04: c1:53:fc:e2:97:9f:08:cb:9c:f5:15:5c:a1:f7:f7: 0e:86:bc:24:31:8b:fe:41:f0:74:31:f3:ef:44:9e: ce:05:95:9c:1b:50:19:25:7b:9e:9f:32:40:6c:5e: 9c:a6:d1:50:3b:81:27:b7:51:75:89:2e:ad:24:c9: d2:16:6c:c8:54:b4:3f:9b:24:07:dd:39:24:4b:f5: f1:03:18:be:c9:39:3a:ea:00:04:f4:13:b3:8f:2d: 4a:be:56:95:35:99:1d:44:22:d0:15:99:f5:a9:b3: 08:4d:0a:21:89:55:c8:fb:7b:14:b5:79:77:97:7e: fa:fa:5d:b4:fb:24:cc:e5:9b:e2:60:2a:89:c7:55: fb:1f:20:38:13:2d:ba:07:ac:1f:dd:98:50:26:1c: a1:8d:d3:74:29:78:2e:a0:5a:36:ef:86:f7:b1:50: 6b:ac:61:96:68:7e:fc:15:57:67:dd:b4:3b:41:94: d2:a4:48:ab:54:7b:77:60:49:f8:c1:af:36:34:da: 54:99:fa:c8:60:b5:3d:26:68:b3:97:3c:a0:91:9d: bd:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:16:5C:BC:B8:AE:AB:B4:56:C3:38:6E:E3:48:0D:56:0A:84:E3:50 X509v3 Authority Key Identifier: keyid:04:DE:DA:CB:DB:AF:A5:C1:C1:4F:92:81:7B:96:F7:F5:03:10:0A:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BN7ay9uvpcHBT5KBe5b39QMQCig.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:4a:78:55:17:6c:5a:7c:b8:a5:16:fd:9a:04:0c:9f:11:7a: 71:b5:75:ae:38:9e:35:1c:c6:36:70:31:1e:ed:8f:10:a2:c6: 74:14:76:18:70:4d:59:37:8d:58:4b:95:f5:d2:82:20:ff:24: 41:46:82:32:eb:da:35:be:9c:c5:2f:a7:a4:50:05:16:99:2f: ca:3f:47:2d:18:f0:22:e6:3f:0f:87:db:10:ad:83:9f:08:34: 3b:a6:6d:5a:93:4d:c0:b4:4b:7b:06:b3:c5:ff:98:46:dc:2e: 20:a5:30:af:37:42:fd:ce:2d:3e:87:df:06:c0:42:21:a1:57: 5d:a6:c7:be:4b:8b:02:cf:e1:d8:a0:c9:84:48:06:2d:2c:3b: da:27:03:e7:14:2a:d4:3a:08:4c:d5:71:01:f0:b6:44:5e:d6: 5b:ad:b2:e1:bd:47:0c:cb:cb:e4:d8:28:d1:5f:1a:fd:54:46: e9:c8:3e:89:24:77:bc:99:33:d6:94:19:62:2c:05:c5:b1:ed: a1:f3:58:ac:d8:ad:fe:dc:a8:9b:6f:81:4a:a9:70:6e:bd:4e: 20:78:d5:a3:b4:6b:c6:cf:1b:66:61:31:62:08:94:75:42:25: a0:b2:49:d2:6c:c3:5d:ba:3f:8f:48:dc:15:55:3b:7c:69:fb: 61:2a:75:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkREMzYxMTAvBgNVBAUTKDA0REVEQUNCREJBRkE1QzFDMTRGOTI4MTdCOTZGN0Y1 MDMxMDBBMjgwHhcNMjUxMjIxMDM1NDE2WhcNMjUxMjI4MDM1NDE2WjAYMRYwFAYD VQQDDA02OTQ3NmY2OC01NGM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnM1tsAK+PK0pv6zkWxRk1FctuQOeMAYQE9FziEYUqYaOZqbK4q3MDEQraATB U/zil58Iy5z1FVyh9/cOhrwkMYv+QfB0MfPvRJ7OBZWcG1AZJXuenzJAbF6cptFQ O4Ent1F1iS6tJMnSFmzIVLQ/myQH3TkkS/XxAxi+yTk66gAE9BOzjy1KvlaVNZkd RCLQFZn1qbMITQohiVXI+3sUtXl3l376+l20+yTM5ZviYCqJx1X7HyA4Ey26B6wf 3ZhQJhyhjdN0KXguoFo274b3sVBrrGGWaH78FVdn3bQ7QZTSpEirVHt3YEn4wa82 NNpUmfrIYLU9JmizlzygkZ29VQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMMWXLy4 rqu0VsM4buNIDVYKhONQMB8GA1UdIwQYMBaAFATe2svbr6XBwU+SgXuW9/UDEAoo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyREQzNi83RjQwMjNGMjI1 MzIxMUVGQkM5MzIxMUFDNEY5QUUwMi9CTjdheTl1dnBjSEJUNUtCZTViMzlRTVFD aWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JON2F5OXV2cGNIQlQ1S0JlNWIzOVFNUUNpZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy REQzNi83RjQwMjNGMjI1MzIxMUVGQkM5MzIxMUFDNEY5QUUwMi9CTjdheTl1dnBj SEJUNUtCZTViMzlRTVFDaWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgSnhVF2xafLilFv2aBAyfEXpxtXWuOJ41HMY2cDEe7Y8QosZ0FHYY cE1ZN41YS5X10oIg/yRBRoIy69o1vpzFL6ekUAUWmS/KP0ctGPAi5j8Ph9sQrYOf CDQ7pm1ak03AtEt7BrPF/5hG3C4gpTCvN0L9zi0+h98GwEIhoVddpse+S4sCz+HY oMmESAYtLDvaJwPnFCrUOghM1XEB8LZEXtZbrbLhvUcMy8vk2CjRXxr9VEbpyD6J JHe8mTPWlBliLAXFse2h81is2K3+3Kibb4FKqXBuvU4geNWjtGvGzxtmYTFiCJR1 QiWgsknSbMNduj+PSNwVVTt8afthKnUb -----END CERTIFICATE-----Generated at Sun Dec 21 22:00:13 2025 by rpki-client