This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft File: BKm4kZsiD18-q9D03YXi9b28VQA.mft (raw, json) Hash identifier: dgrxpThxbU7YgS/+ogUoRQ9OqLR6Kdzfkq6kMx4OETg= Subject key identifier: BA:27:90:88:DA:CD:2C:F7:F4:E6:E6:F4:57:E5:85:C9:4B:1D:0D:A6 Authority key identifier: 04:A9:B8:91:9B:22:0F:5F:3E:AB:D0:F4:DD:85:E2:F5:BD:BC:55:00 Certificate issuer: /CN=A913837F/serialNumber=04A9B8919B220F5F3EABD0F4DD85E2F5BDBC5500 Certificate serial: 01B8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BKm4kZsiD18-q9D03YXi9b28VQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft Manifest number: 01B4 Signing time: Thu 25 Dec 2025 02:15:11 +0000 Manifest this update: Thu 25 Dec 2025 02:15:11 +0000 Manifest next update: Thu 01 Jan 2026 02:15:11 +0000 Files and hashes: 1: BKm4kZsiD18-q9D03YXi9b28VQA.crl (hash: DS98MrGvaUFGlx1ZbqxHw9vO5OaO1B1YjK/04Pe8Yzs=) 2: 3D83357646E411EE82ED8843C4F9AE02.roa (hash: 34LR4muDkvBv1o97MuicPyBMy45vufYYnTs0rk2DkdE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.crl rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BKm4kZsiD18-q9D03YXi9b28VQA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 Jan 2026 02:15:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 440 (0x1b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913837F, serialNumber=04A9B8919B220F5F3EABD0F4DD85E2F5BDBC5500 Validity Not Before: Dec 25 02:15:11 2025 GMT Not After : Jan 1 02:15:11 2026 GMT Subject: CN=694c9e2f-4f83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:bc:65:ab:53:78:ad:3b:2b:3a:cc:a8:ae:99: ea:c6:dd:b9:05:ab:e9:14:92:40:7b:40:26:e2:59: f6:e1:38:7b:9b:d3:00:f1:ac:ea:d5:b4:c7:3f:1d: 2d:e7:39:4d:53:a2:68:fc:f6:8c:b8:db:66:c2:44: f8:c2:f3:bb:23:4b:75:e8:61:35:fa:96:d2:a0:93: 85:8f:5b:ea:a0:ca:5a:82:78:aa:42:5c:94:e5:63: 3f:4d:5a:6d:11:70:3c:5d:62:b5:68:a4:5f:54:8c: 52:1c:a0:50:16:92:0b:bf:8c:8c:e7:86:f1:68:5c: 92:ad:67:5b:a5:f0:ea:d3:b1:16:48:1e:13:d7:9c: 9d:ba:21:60:f3:79:66:76:4d:04:c7:6b:97:c0:7d: 7d:1a:9c:32:b7:2a:1e:e2:7d:1d:29:12:07:c2:2e: 6d:ff:fb:f3:2e:b3:51:78:27:50:ee:5e:07:d7:af: 1f:98:ff:5b:2f:1a:a5:5b:b5:b3:5b:38:2d:5c:50: 28:ff:e3:59:24:ab:2b:44:16:82:3a:cc:14:23:23: 2e:f8:8e:81:91:4d:59:b3:0e:a5:2f:7e:84:7c:d6: fe:4c:40:3c:01:21:e3:9c:dc:0c:5b:e1:9b:d8:d9: 75:b1:5b:c6:bd:86:42:29:8d:32:84:b2:94:1f:4f: af:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:27:90:88:DA:CD:2C:F7:F4:E6:E6:F4:57:E5:85:C9:4B:1D:0D:A6 X509v3 Authority Key Identifier: keyid:04:A9:B8:91:9B:22:0F:5F:3E:AB:D0:F4:DD:85:E2:F5:BD:BC:55:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BKm4kZsiD18-q9D03YXi9b28VQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:59:61:73:3c:3c:25:fc:9a:05:2a:4c:52:ac:40:44:a8:70: 87:41:a7:0d:8e:74:bd:8d:59:43:1f:1a:d6:d3:37:f2:cf:12: ec:f1:59:ea:7d:19:ea:9b:b6:d3:a6:1f:4e:d3:e3:2d:c6:2e: 46:40:f2:58:17:6b:49:42:b3:08:4f:5c:5a:e3:96:c5:95:c1: 73:ab:d8:85:4e:53:6a:93:18:ea:c8:89:12:43:6f:22:f5:18: 1c:5d:39:5b:92:52:ca:c8:04:5a:42:00:ca:a9:85:61:bd:d7: eb:a0:e8:de:57:00:57:43:90:31:c2:a6:8b:64:82:52:e9:ba: f0:51:d0:52:0f:2b:1a:83:20:d0:49:8c:18:13:74:c8:fb:15: 9c:53:d6:a6:e5:8c:7d:ce:77:e9:cb:52:5d:70:a5:72:33:41: 36:4b:d9:0e:89:88:16:82:5f:2c:a9:4a:ae:5c:07:97:3a:43: 1f:fc:22:68:9a:e7:25:cb:bc:68:0c:00:e3:9a:cf:03:69:7d: 03:55:fa:b9:cc:d8:26:65:1a:3b:cb:cb:ca:1c:6d:24:70:13: db:eb:a6:4a:ad:90:6b:cf:1b:13:b1:ef:5f:42:9e:24:8a:45: ca:59:e1:14:25:80:29:be:f1:ea:63:af:15:ee:a6:07:44:ce: 04:06:17:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzgzN0YxMTAvBgNVBAUTKDA0QTlCODkxOUIyMjBGNUYzRUFCRDBGNEREODVFMkY1 QkRCQzU1MDAwHhcNMjUxMjI1MDIxNTExWhcNMjYwMTAxMDIxNTExWjAYMRYwFAYD VQQDDA02OTRjOWUyZi00ZjgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtLxlq1N4rTsrOsyorpnqxt25BavpFJJAe0Am4ln24Th7m9MA8azq1bTHPx0t 5zlNU6Jo/PaMuNtmwkT4wvO7I0t16GE1+pbSoJOFj1vqoMpagniqQlyU5WM/TVpt EXA8XWK1aKRfVIxSHKBQFpILv4yM54bxaFySrWdbpfDq07EWSB4T15yduiFg83lm dk0Ex2uXwH19Gpwytyoe4n0dKRIHwi5t//vzLrNReCdQ7l4H168fmP9bLxqlW7Wz WzgtXFAo/+NZJKsrRBaCOswUIyMu+I6BkU1Zsw6lL36EfNb+TEA8ASHjnNwMW+Gb 2Nl1sVvGvYZCKY0yhLKUH0+vXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLonkIja zSz39Obm9FflhclLHQ2mMB8GA1UdIwQYMBaAFASpuJGbIg9fPqvQ9N2F4vW9vFUA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODM3Ri82NDU5MEMxMjQ2 RTMxMUVFQjVFNDE2NDJDNEY5QUUwMi9CS200a1pzaUQxOC1xOUQwM1lYaTliMjhW UUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JLbTRrWnNpRDE4LXE5RDAzWVhpOWIyOFZRQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODM3Ri82NDU5MEMxMjQ2RTMxMUVFQjVFNDE2NDJDNEY5QUUwMi9CS200a1pzaUQx OC1xOUQwM1lYaTliMjhWUUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWWWFzPDwl/JoFKkxSrEBEqHCHQacNjnS9jVlDHxrW0zfyzxLs8Vnq fRnqm7bTph9O0+Mtxi5GQPJYF2tJQrMIT1xa45bFlcFzq9iFTlNqkxjqyIkSQ28i 9RgcXTlbklLKyARaQgDKqYVhvdfroOjeVwBXQ5AxwqaLZIJS6brwUdBSDysagyDQ SYwYE3TI+xWcU9am5Yx9znfpy1JdcKVyM0E2S9kOiYgWgl8sqUquXAeXOkMf/CJo mucly7xoDADjms8DaX0DVfq5zNgmZRo7y8vKHG0kcBPb66ZKrZBrzxsTse9fQp4k ikXKWeEUJYApvvHqY68V7qYHRM4EBhf0 -----END CERTIFICATE-----Generated at Thu Dec 25 16:42:14 2025 by rpki-client