This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft File: BKm4kZsiD18-q9D03YXi9b28VQA.mft (raw, json) Hash identifier: SMu2T07rP3RwVeTSWt0W+oKAD3Ghy9eX3zGryXeX5hQ= Subject key identifier: C4:3F:05:36:8D:E0:BA:B4:84:FA:E4:68:D0:EA:03:C5:93:D6:B9:F6 Authority key identifier: 04:A9:B8:91:9B:22:0F:5F:3E:AB:D0:F4:DD:85:E2:F5:BD:BC:55:00 Certificate issuer: /CN=A913837F/serialNumber=04A9B8919B220F5F3EABD0F4DD85E2F5BDBC5500 Certificate serial: 01BC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BKm4kZsiD18-q9D03YXi9b28VQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft Manifest number: 01B8 Signing time: Thu 01 Jan 2026 02:40:43 +0000 Manifest this update: Thu 01 Jan 2026 02:40:42 +0000 Manifest next update: Thu 08 Jan 2026 02:40:42 +0000 Files and hashes: 1: BKm4kZsiD18-q9D03YXi9b28VQA.crl (hash: depHc1XuwtPzED7w2xEBmvGU5fytvIVaEWEmH4gdWoE=) 2: 3D83357646E411EE82ED8843C4F9AE02.roa (hash: 34LR4muDkvBv1o97MuicPyBMy45vufYYnTs0rk2DkdE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.crl rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BKm4kZsiD18-q9D03YXi9b28VQA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 08 Jan 2026 02:40:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 444 (0x1bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913837F, serialNumber=04A9B8919B220F5F3EABD0F4DD85E2F5BDBC5500 Validity Not Before: Jan 1 02:40:42 2026 GMT Not After : Jan 8 02:40:42 2026 GMT Subject: CN=6955deab-918d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:0e:71:d7:aa:ea:86:33:6a:70:5b:56:02:25: f4:95:51:1a:7c:00:5d:26:43:07:5a:e2:db:12:b9: 1e:98:52:a7:2d:fb:74:56:7d:84:6a:e6:aa:f0:eb: 2a:97:aa:20:fe:92:83:86:fa:f9:e8:4b:74:b9:5b: 74:44:52:d1:5d:5f:37:c9:dc:73:73:ef:10:4d:12: 8d:82:c1:fa:47:42:3e:8a:bf:55:97:d2:02:2a:4a: 5e:4c:05:be:9b:40:82:a9:fc:9e:8e:8c:45:b3:5c: d3:7c:49:87:15:f9:25:66:09:0d:ab:dc:27:de:90: 00:e6:06:2e:2c:88:58:a0:6b:82:b5:ad:7d:bc:a8: 99:15:7c:c9:46:fb:53:53:fe:ed:97:15:00:f3:ef: 43:3a:19:83:6e:14:da:cd:d5:6c:01:c0:d7:fb:1e: fc:cb:c4:a8:af:23:d0:c1:4c:97:e0:40:99:ea:96: b9:8b:08:53:8d:79:26:f3:67:a8:b4:84:54:19:51: e6:cf:0d:1b:d1:2a:6e:21:43:8a:28:96:b8:7a:9a: 88:4e:3d:c2:8f:5b:07:f0:59:3a:36:01:29:18:34: 5d:84:bf:7b:d7:ac:f3:f7:5c:f4:2c:d4:c8:7e:31: c1:b2:a3:91:25:f8:bf:d6:8b:a4:42:81:d5:45:64: 18:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:3F:05:36:8D:E0:BA:B4:84:FA:E4:68:D0:EA:03:C5:93:D6:B9:F6 X509v3 Authority Key Identifier: keyid:04:A9:B8:91:9B:22:0F:5F:3E:AB:D0:F4:DD:85:E2:F5:BD:BC:55:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BKm4kZsiD18-q9D03YXi9b28VQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:85:fb:7a:69:ba:0a:86:d7:7d:2b:6c:b0:57:e6:76:02:67: f9:7f:3e:c2:14:78:04:80:e6:00:6c:39:f0:4f:4a:80:79:0e: 4f:cb:db:f8:d8:80:18:71:8d:09:90:dd:fb:55:fe:70:fd:34: 78:4d:7e:25:02:26:6d:c3:fa:7a:44:0a:37:45:ca:29:14:31: 64:b6:05:3d:ac:0f:13:3d:5a:2e:18:b4:ba:67:08:21:81:9e: 52:87:78:c9:45:8b:11:4c:5f:ca:41:4e:99:ce:a1:70:70:5f: e9:b7:37:1c:df:15:53:7c:88:9f:10:8d:3b:1c:02:e2:9d:54: f2:55:e6:b8:da:5d:80:c3:e3:74:92:d0:33:44:d1:8b:b7:5f: 91:60:bb:91:37:6a:29:8f:79:98:38:02:ff:0b:2a:b0:8f:96: 2a:3b:e9:ac:72:1e:bc:80:d3:ec:49:b0:66:ab:db:8c:10:67: 97:9a:6c:8a:c6:06:24:08:04:ff:e6:e3:6c:3e:2b:71:13:62: 6b:db:f2:fa:91:87:b5:0e:dd:99:b0:6b:54:11:1a:86:0c:b6: b7:02:c1:d7:5c:2f:59:d0:c9:97:fc:17:6c:47:a7:16:13:d8: 1a:88:e2:d5:1e:79:dc:63:39:65:52:dc:9e:83:ac:7c:bf:dc: b7:43:7f:dd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzgzN0YxMTAvBgNVBAUTKDA0QTlCODkxOUIyMjBGNUYzRUFCRDBGNEREODVFMkY1 QkRCQzU1MDAwHhcNMjYwMTAxMDI0MDQyWhcNMjYwMTA4MDI0MDQyWjAYMRYwFAYD VQQDDA02OTU1ZGVhYi05MThkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAow5x16rqhjNqcFtWAiX0lVEafABdJkMHWuLbErkemFKnLft0Vn2Eauaq8Osq l6og/pKDhvr56Et0uVt0RFLRXV83ydxzc+8QTRKNgsH6R0I+ir9Vl9ICKkpeTAW+ m0CCqfyejoxFs1zTfEmHFfklZgkNq9wn3pAA5gYuLIhYoGuCta19vKiZFXzJRvtT U/7tlxUA8+9DOhmDbhTazdVsAcDX+x78y8SoryPQwUyX4ECZ6pa5iwhTjXkm82eo tIRUGVHmzw0b0SpuIUOKKJa4epqITj3Cj1sH8Fk6NgEpGDRdhL9716zz91z0LNTI fjHBsqORJfi/1oukQoHVRWQYjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMQ/BTaN 4Lq0hPrkaNDqA8WT1rn2MB8GA1UdIwQYMBaAFASpuJGbIg9fPqvQ9N2F4vW9vFUA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODM3Ri82NDU5MEMxMjQ2 RTMxMUVFQjVFNDE2NDJDNEY5QUUwMi9CS200a1pzaUQxOC1xOUQwM1lYaTliMjhW UUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JLbTRrWnNpRDE4LXE5RDAzWVhpOWIyOFZRQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODM3Ri82NDU5MEMxMjQ2RTMxMUVFQjVFNDE2NDJDNEY5QUUwMi9CS200a1pzaUQx OC1xOUQwM1lYaTliMjhWUUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+hft6aboKhtd9K2ywV+Z2Amf5fz7CFHgEgOYAbDnwT0qAeQ5Py9v4 2IAYcY0JkN37Vf5w/TR4TX4lAiZtw/p6RAo3RcopFDFktgU9rA8TPVouGLS6Zwgh gZ5Sh3jJRYsRTF/KQU6ZzqFwcF/ptzcc3xVTfIifEI07HALinVTyVea42l2Aw+N0 ktAzRNGLt1+RYLuRN2opj3mYOAL/Cyqwj5YqO+msch68gNPsSbBmq9uMEGeXmmyK xgYkCAT/5uNsPitxE2Jr2/L6kYe1Dt2ZsGtUERqGDLa3AsHXXC9Z0MmX/BdsR6cW E9gaiOLVHnncYzllUtyeg6x8v9y3Q3/d -----END CERTIFICATE-----Generated at Fri Jan 2 17:07:44 2026 by rpki-client