This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9151A79/D4CA15C0F94711ED88C18746C4F9AE02/BSmF8r4ox5507_TbTHFCKEVHc1w.mft File: BSmF8r4ox5507_TbTHFCKEVHc1w.mft (raw, json) Hash identifier: /mQSw/qj0VDVQC6LFD3TwIn4bqK/y8oVLhUroDKMczA= Subject key identifier: E9:3C:7C:4E:FC:A5:CA:F0:41:B9:01:CA:B8:F1:6F:CD:58:99:11:17 Authority key identifier: 05:29:85:F2:BE:28:C7:9E:74:EF:F4:DB:4C:71:42:28:45:47:73:5C Certificate issuer: /CN=A9151A79/serialNumber=052985F2BE28C79E74EFF4DB4C7142284547735C Certificate serial: 01F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BSmF8r4ox5507_TbTHFCKEVHc1w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9151A79/D4CA15C0F94711ED88C18746C4F9AE02/BSmF8r4ox5507_TbTHFCKEVHc1w.mft Manifest number: 01EB Signing time: Tue 23 Dec 2025 01:41:12 +0000 Manifest this update: Tue 23 Dec 2025 01:41:11 +0000 Manifest next update: Tue 30 Dec 2025 01:41:11 +0000 Files and hashes: 1: BSmF8r4ox5507_TbTHFCKEVHc1w.crl (hash: SFrS7AuOap8Mp6Z7QnlbFsfICsIgf1O485SzRAe6Sns=) 2: A799F54AF1F111EE9D899046C4F9AE02.roa (hash: Q3/I4xZV8CvWyhr+A+P9zzW5K8pcc6S3V6pLPjC2BoQ=) 3: EA22589E373C11F0909EF25DC4F9AE02.roa (hash: pK7K0oDGB09OEHam5uLFYf312YyVDqFKY5nBRiwk3eo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9151A79/D4CA15C0F94711ED88C18746C4F9AE02/BSmF8r4ox5507_TbTHFCKEVHc1w.crl rsync://rpki.apnic.net/member_repository/A9151A79/D4CA15C0F94711ED88C18746C4F9AE02/BSmF8r4ox5507_TbTHFCKEVHc1w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BSmF8r4ox5507_TbTHFCKEVHc1w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 01:41:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 499 (0x1f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9151A79, serialNumber=052985F2BE28C79E74EFF4DB4C7142284547735C Validity Not Before: Dec 23 01:41:11 2025 GMT Not After : Dec 30 01:41:11 2025 GMT Subject: CN=6949f338-2a82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:06:d4:a5:0b:7b:3b:fc:00:21:7d:88:0d:f1: d7:9f:a2:2c:e6:25:31:03:7a:46:ce:4f:17:fc:68: 24:98:f5:8d:8e:26:0f:43:09:ac:4a:9d:5c:8f:46: 1d:7d:73:58:a3:01:1d:66:6f:83:a2:63:5f:d6:2c: 2b:e8:04:e0:3a:6a:ed:d3:a9:f1:3a:80:cb:2b:6a: aa:00:23:51:d9:08:0c:ae:53:bb:ee:c4:6f:87:88: 6b:f5:c0:cf:7b:03:88:3c:ee:3f:dc:c8:40:1b:c6: 23:8a:28:a3:86:f5:2a:c3:99:07:69:7b:d5:be:bf: 0f:85:39:1a:ff:fc:69:9a:f5:12:bb:e7:f9:50:74: 0d:b2:02:49:84:95:5b:2f:1c:6b:73:6a:25:df:7b: 0c:91:fc:98:a6:47:1c:fa:72:d4:bf:55:b5:24:16: 27:25:1e:46:7b:c6:48:39:00:33:79:3c:fe:27:4f: 2d:cb:54:42:8b:ce:85:90:6d:c0:a3:e7:8b:d6:38: b7:78:d6:c0:4c:04:79:ab:dc:d0:01:cc:07:67:d3: 0c:7a:dd:da:ed:9f:cf:f7:c1:98:05:ab:ae:a2:ed: e1:ef:d3:eb:87:ae:dd:d9:ea:ea:0a:8c:88:24:8d: 13:39:d5:7e:50:61:58:00:9a:d8:75:f4:3f:81:6f: 1f:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:3C:7C:4E:FC:A5:CA:F0:41:B9:01:CA:B8:F1:6F:CD:58:99:11:17 X509v3 Authority Key Identifier: keyid:05:29:85:F2:BE:28:C7:9E:74:EF:F4:DB:4C:71:42:28:45:47:73:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9151A79/D4CA15C0F94711ED88C18746C4F9AE02/BSmF8r4ox5507_TbTHFCKEVHc1w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BSmF8r4ox5507_TbTHFCKEVHc1w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151A79/D4CA15C0F94711ED88C18746C4F9AE02/BSmF8r4ox5507_TbTHFCKEVHc1w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:c1:3f:12:19:d0:07:61:59:bd:df:87:6f:89:55:4e:f4:a9: db:cd:e6:03:bf:0c:8b:da:22:59:45:c3:20:0a:26:b1:28:2f: 83:16:ba:ec:49:6d:7c:64:3e:a5:19:a5:3b:64:68:51:c1:c4: 09:fd:d9:41:d8:7f:3d:98:7f:9f:56:f7:78:c1:5c:ce:3f:10: 57:e3:37:1b:e8:6e:29:b8:03:a7:84:b2:50:fb:60:cd:61:98: 09:17:a6:47:61:3f:d3:70:4d:aa:09:00:12:cb:03:74:a2:ea: 0c:c1:e6:aa:23:6a:7d:4d:29:42:18:68:c7:06:61:b2:ce:4d: e2:18:ee:69:c6:e9:03:25:45:95:0b:95:1f:e4:0d:ef:05:a8: a2:de:a0:5d:fd:cd:8f:cc:46:4c:55:71:22:5a:a4:e5:5f:dd: 2a:12:7c:f3:00:5d:89:2c:f0:f8:7a:60:98:3a:78:c4:bb:05: cb:31:42:e8:7e:76:17:79:d8:44:3e:72:6e:4c:5a:0a:4c:08: 2b:b8:f4:55:29:c4:a9:93:ac:42:a1:0c:d6:14:7c:ea:7b:15: 13:fa:a2:cc:c1:50:01:2a:60:8f:e3:0e:10:2e:d0:15:1a:8c: ef:3b:d8:95:b0:87:34:ce:d9:b9:d5:25:04:ad:24:7c:b5:31: 23:e2:48:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTFBNzkxMTAvBgNVBAUTKDA1Mjk4NUYyQkUyOEM3OUU3NEVGRjREQjRDNzE0MjI4 NDU0NzczNUMwHhcNMjUxMjIzMDE0MTExWhcNMjUxMjMwMDE0MTExWjAYMRYwFAYD VQQDDA02OTQ5ZjMzOC0yYTgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6AbUpQt7O/wAIX2IDfHXn6Is5iUxA3pGzk8X/GgkmPWNjiYPQwmsSp1cj0Yd fXNYowEdZm+DomNf1iwr6ATgOmrt06nxOoDLK2qqACNR2QgMrlO77sRvh4hr9cDP ewOIPO4/3MhAG8YjiiijhvUqw5kHaXvVvr8PhTka//xpmvUSu+f5UHQNsgJJhJVb Lxxrc2ol33sMkfyYpkcc+nLUv1W1JBYnJR5Ge8ZIOQAzeTz+J08ty1RCi86FkG3A o+eL1ji3eNbATAR5q9zQAcwHZ9MMet3a7Z/P98GYBauuou3h79Prh67d2erqCoyI JI0TOdV+UGFYAJrYdfQ/gW8f7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOk8fE78 pcrwQbkByrjxb81YmREXMB8GA1UdIwQYMBaAFAUphfK+KMeedO/020xxQihFR3Nc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MUE3OS9ENENBMTVDMEY5 NDcxMUVEODhDMTg3NDZDNEY5QUUwMi9CU21GOHI0b3g1NTA3X1RiVEhGQ0tFVkhj MXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JTbUY4cjRveDU1MDdfVGJUSEZDS0VWSGMxdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MUE3OS9ENENBMTVDMEY5NDcxMUVEODhDMTg3NDZDNEY5QUUwMi9CU21GOHI0b3g1 NTA3X1RiVEhGQ0tFVkhjMXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAMwT8SGdAHYVm934dviVVO9KnbzeYDvwyL2iJZRcMgCiaxKC+DFrrs SW18ZD6lGaU7ZGhRwcQJ/dlB2H89mH+fVvd4wVzOPxBX4zcb6G4puAOnhLJQ+2DN YZgJF6ZHYT/TcE2qCQASywN0ouoMweaqI2p9TSlCGGjHBmGyzk3iGO5pxukDJUWV C5Uf5A3vBaii3qBd/c2PzEZMVXEiWqTlX90qEnzzAF2JLPD4emCYOnjEuwXLMULo fnYXedhEPnJuTFoKTAgruPRVKcSpk6xCoQzWFHzqexUT+qLMwVABKmCP4w4QLtAV GozvO9iVsIc0ztm51SUErSR8tTEj4kiM -----END CERTIFICATE-----Generated at Wed Dec 24 02:04:43 2025 by rpki-client