This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.mft File: bKLPpoi9-eLWVhYIZ3owyRUkPQw.mft (raw, json) Hash identifier: b9SMqNQJIG0qsOVrE5ejkipwvMsnYaVJoCV9pA2v5WA= Subject key identifier: 7F:7E:4D:3A:99:E8:0B:C1:38:38:DB:A5:0A:84:B8:74:35:18:E7:4B Authority key identifier: 6C:A2:CF:A6:88:BD:F9:E2:D6:56:16:08:67:7A:30:C9:15:24:3D:0C Certificate issuer: /CN=A9148F80/serialNumber=6CA2CFA688BDF9E2D6561608677A30C915243D0C Certificate serial: 06ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKLPpoi9-eLWVhYIZ3owyRUkPQw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.mft Manifest number: 06E6 Signing time: Sat 20 Dec 2025 21:23:21 +0000 Manifest this update: Sat 20 Dec 2025 21:23:20 +0000 Manifest next update: Sat 27 Dec 2025 21:23:20 +0000 Files and hashes: 1: bKLPpoi9-eLWVhYIZ3owyRUkPQw.crl (hash: dIbSnoA4HB3tjZ7I5qe5eDIy9aBWUQbyZUNRusOfTvY=) 2: 1C93BF747CD011EB9F876E78C4F9AE02.roa (hash: vUduh0w3eSZesFepaO929FwqL1Ap+OkfqL7IQgJ/yu0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.crl rsync://rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKLPpoi9-eLWVhYIZ3owyRUkPQw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 21:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1773 (0x6ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148F80, serialNumber=6CA2CFA688BDF9E2D6561608677A30C915243D0C Validity Not Before: Dec 20 21:23:20 2025 GMT Not After : Dec 27 21:23:20 2025 GMT Subject: CN=694713c9-2bb7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:75:32:0f:56:c2:ef:40:a9:23:05:ea:1d:c5: 1a:4e:6c:15:c1:9d:c1:63:54:c4:21:bb:a9:40:b1: 91:de:6c:1f:7c:f4:45:a5:0a:9b:de:53:9a:37:f6: 2a:64:66:75:6e:9b:44:8e:45:d9:8d:ac:08:c6:9e: 7e:65:ea:07:09:b8:3a:75:93:9f:e5:26:ea:08:cd: 45:8f:36:f0:2a:81:76:55:31:40:3e:6c:75:25:b0: aa:33:db:b4:21:9c:44:a2:de:bd:ef:f5:68:56:2a: 5f:0c:8d:62:3f:29:5d:50:6b:03:6f:cd:8c:e1:47: 98:d5:23:d3:3b:c6:c7:85:43:02:da:4a:e4:12:4b: 98:a0:40:aa:60:27:9d:b4:04:ae:1c:5a:6c:83:84: 4b:be:50:23:ac:33:1b:26:80:5c:e8:30:ae:32:23: 71:dd:55:7f:ab:4e:91:ba:ab:ce:82:4a:62:0a:f8: a0:31:3e:25:22:ec:ae:21:41:18:95:53:95:48:42: c2:31:d0:f0:89:3c:29:63:86:a3:d7:d6:54:0b:88: fe:1a:50:73:d0:ac:a3:fd:f4:a4:92:92:a0:9b:99: 9f:8f:ae:08:93:c0:bb:ab:b8:15:5b:ca:76:46:c9: 65:10:ce:de:0b:b9:e3:eb:c6:ee:87:45:51:17:97: 3a:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:7E:4D:3A:99:E8:0B:C1:38:38:DB:A5:0A:84:B8:74:35:18:E7:4B X509v3 Authority Key Identifier: keyid:6C:A2:CF:A6:88:BD:F9:E2:D6:56:16:08:67:7A:30:C9:15:24:3D:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKLPpoi9-eLWVhYIZ3owyRUkPQw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ce:ab:d2:04:1e:ca:bc:b0:34:26:fb:1f:b4:7d:72:25:2f:27: f1:87:a4:49:80:de:25:e6:4e:de:0a:6f:42:f1:15:17:5f:1f: 9e:50:b5:c4:db:fc:f9:51:98:c2:c4:fd:ad:96:be:5d:41:46: b2:e4:0c:e2:4b:d0:78:ea:68:a5:7a:be:12:0e:87:9b:64:17: 10:7e:b3:2d:0f:9f:c2:7c:96:0b:d6:c8:65:91:74:12:3f:0f: 86:0f:87:27:27:ad:76:38:a4:6b:f2:c3:ab:b9:34:d5:1f:57: 1f:f1:b3:05:59:00:04:1f:b0:88:d1:eb:ba:26:1a:66:0c:eb: 4d:a9:28:77:b0:af:39:d4:4f:11:26:49:6e:d2:b4:a7:92:1e: 5e:44:57:fa:6d:df:e2:32:1f:7f:09:f6:1b:cf:8f:95:36:2b: d3:c5:4e:49:f2:a4:c4:78:c4:55:2d:b7:0a:b3:6d:d4:b2:4d: 9e:82:4b:66:c4:57:ad:74:15:5d:32:b6:2c:64:10:40:ea:8b: 93:c1:15:14:99:f2:7e:48:a3:29:f2:f0:3f:54:af:d4:b7:e7: 50:66:0e:f8:eb:16:82:5e:39:a7:d3:ef:e9:94:48:be:09:c4: 1f:c7:d1:69:04:f3:6b:a1:42:9d:61:a1:2f:79:30:28:6f:b9: f9:cf:f3:10 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBu0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhGODAxMTAvBgNVBAUTKDZDQTJDRkE2ODhCREY5RTJENjU2MTYwODY3N0EzMEM5 MTUyNDNEMEMwHhcNMjUxMjIwMjEyMzIwWhcNMjUxMjI3MjEyMzIwWjAYMRYwFAYD VQQDDA02OTQ3MTNjOS0yYmI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvHUyD1bC70CpIwXqHcUaTmwVwZ3BY1TEIbupQLGR3mwffPRFpQqb3lOaN/Yq ZGZ1bptEjkXZjawIxp5+ZeoHCbg6dZOf5SbqCM1FjzbwKoF2VTFAPmx1JbCqM9u0 IZxEot697/VoVipfDI1iPyldUGsDb82M4UeY1SPTO8bHhUMC2krkEkuYoECqYCed tASuHFpsg4RLvlAjrDMbJoBc6DCuMiNx3VV/q06RuqvOgkpiCvigMT4lIuyuIUEY lVOVSELCMdDwiTwpY4aj19ZUC4j+GlBz0Kyj/fSkkpKgm5mfj64Ik8C7q7gVW8p2 RsllEM7eC7nj68buh0VRF5c6OQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH9+TTqZ 6AvBODjbpQqEuHQ1GOdLMB8GA1UdIwQYMBaAFGyiz6aIvfni1lYWCGd6MMkVJD0M MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEY4MC8wNzFERUE0MDdD Q0UxMUVCQkI4ODI5NzZDNEY5QUUwMi9iS0xQcG9pOS1lTFdWaFlJWjNvd3lSVWtQ UXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JLTFBwb2k5LWVMV1ZoWUlaM293eVJVa1BRdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEY4MC8wNzFERUE0MDdDQ0UxMUVCQkI4ODI5NzZDNEY5QUUwMi9iS0xQcG9pOS1l TFdWaFlJWjNvd3lSVWtQUXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDOq9IEHsq8sDQm+x+0fXIlLyfxh6RJgN4l5k7eCm9C8RUXXx+eULXE 2/z5UZjCxP2tlr5dQUay5AziS9B46miler4SDoebZBcQfrMtD5/CfJYL1shlkXQS Pw+GD4cnJ612OKRr8sOruTTVH1cf8bMFWQAEH7CI0eu6JhpmDOtNqSh3sK851E8R Jklu0rSnkh5eRFf6bd/iMh9/CfYbz4+VNivTxU5J8qTEeMRVLbcKs23Usk2egktm xFetdBVdMrYsZBBA6ouTwRUUmfJ+SKMp8vA/VK/Ut+dQZg746xaCXjmn0+/plEi+ CcQfx9FpBPNroUKdYaEveTAob7n5z/MQ -----END CERTIFICATE-----Generated at Mon Dec 22 14:31:24 2025 by rpki-client