This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.mft File: bifP0YnuRkQx1LkBO8wHWKgCZOY.mft (raw, json) Hash identifier: ehj++2lTaXXOei8Sb5PMLC7Hrdp7PDGnK5X8rt0F8TQ= Subject key identifier: 2D:E9:01:B1:8A:D5:92:B1:7C:08:C3:00:1A:76:FC:7C:56:E6:D8:8E Authority key identifier: 6E:27:CF:D1:89:EE:46:44:31:D4:B9:01:3B:CC:07:58:A8:02:64:E6 Certificate issuer: /CN=A9157D13/serialNumber=6E27CFD189EE464431D4B9013BCC0758A80264E6 Certificate serial: 191F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bifP0YnuRkQx1LkBO8wHWKgCZOY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.mft Manifest number: 1909 Signing time: Sat 20 Dec 2025 16:14:57 +0000 Manifest this update: Sat 20 Dec 2025 16:14:57 +0000 Manifest next update: Sat 27 Dec 2025 16:14:57 +0000 Files and hashes: 1: bifP0YnuRkQx1LkBO8wHWKgCZOY.crl (hash: SIOeTPrGqJxmGhCdEtNHH43JOTGWQVtYVIQMg0gjlPI=) 2: 33E73FAAE50B11EF838B6642C4F9AE02.roa (hash: hGExMUb+w4JyWjME6Pb9a+xtMzWk7NBawSO3YXbXwM4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.crl rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bifP0YnuRkQx1LkBO8wHWKgCZOY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 16:14:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6431 (0x191f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157D13, serialNumber=6E27CFD189EE464431D4B9013BCC0758A80264E6 Validity Not Before: Dec 20 16:14:57 2025 GMT Not After : Dec 27 16:14:57 2025 GMT Subject: CN=6946cb81-2363 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:a3:b1:48:6b:bc:b4:ae:46:66:c0:a4:7d:8c: 72:c3:ab:cd:3d:bd:f1:c1:ed:fb:5f:fa:ea:b8:26: d5:cc:54:7c:4e:82:7c:ce:54:c9:66:be:69:be:a8: af:65:94:c3:84:36:5f:d1:58:90:70:31:45:11:cc: f9:30:5a:b0:ab:36:38:27:11:f5:35:5b:a9:4a:8b: 33:74:3e:9a:15:68:94:26:60:93:06:fe:df:d6:56: e2:f3:5f:b9:6f:11:f8:43:b8:a5:a7:c2:5f:8f:fc: 0e:56:3b:65:f8:9d:6c:37:02:76:9f:55:f8:56:98: 70:af:4c:69:a6:e6:ee:fb:4f:dd:73:bd:fa:ce:c9: 22:d3:60:28:0a:c9:53:c4:65:c5:fc:2f:28:ec:67: 49:bc:1e:0e:3d:c3:51:62:ec:2a:e4:8c:cd:dd:c2: a1:55:a4:55:f3:8e:80:52:ed:ef:cf:59:0c:1b:19: e2:3d:02:87:48:31:27:7b:1f:aa:1d:eb:c8:3a:87: f6:f7:80:05:8c:cd:f0:e0:f6:65:f8:19:6a:0d:91: 37:d4:f9:0c:eb:5e:06:2e:74:f3:19:c0:8b:8f:08: 37:e4:9c:c7:27:c5:96:78:61:12:6d:51:f5:d4:6f: 06:6a:3c:28:3f:57:26:0d:fc:f0:6e:1c:6a:d6:15: 49:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:E9:01:B1:8A:D5:92:B1:7C:08:C3:00:1A:76:FC:7C:56:E6:D8:8E X509v3 Authority Key Identifier: keyid:6E:27:CF:D1:89:EE:46:44:31:D4:B9:01:3B:CC:07:58:A8:02:64:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bifP0YnuRkQx1LkBO8wHWKgCZOY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:e0:71:8d:2c:e2:b0:b3:bc:d1:cd:f3:7b:73:c3:92:6a:68: 80:e5:42:72:77:44:33:b2:f0:34:b4:8b:a2:ae:00:78:3c:9e: 06:00:a7:0c:a8:72:a4:40:89:72:a9:d9:9e:97:81:56:f3:4f: e5:f6:5c:76:b9:97:8c:f5:09:38:39:bd:ef:90:e6:29:58:f7: b1:06:1e:0d:9b:99:47:fe:3f:88:05:f2:42:be:73:38:00:cd: 1c:97:5c:1b:c0:bf:3b:57:0f:6b:94:ce:5c:f0:97:b5:18:58: b7:cd:ec:05:81:34:66:f8:1f:48:5a:4b:7c:55:c0:3e:da:7c: c7:89:3e:92:54:10:ba:a4:cc:20:91:44:68:7e:67:b9:cb:57: ba:7a:98:6b:90:52:27:9c:a1:af:0c:b4:28:f8:10:30:ae:87: be:15:af:14:2c:a3:c6:e7:e3:39:a7:b8:a0:42:be:1a:1f:bd: 9c:98:e3:84:5a:19:a7:45:cc:c7:b5:6b:51:f7:b7:7a:e8:2e: 39:b5:da:a4:23:f6:9f:c8:07:26:51:fc:56:38:d9:8f:4a:0b: 1a:f9:23:32:ef:ed:8a:d8:2c:cd:54:99:60:f9:1f:f0:46:93: 8d:b3:72:14:00:2a:b9:54:56:52:f9:ea:3b:00:05:1f:03:45: f7:7e:de:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGR8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEMTMxMTAvBgNVBAUTKDZFMjdDRkQxODlFRTQ2NDQzMUQ0QjkwMTNCQ0MwNzU4 QTgwMjY0RTYwHhcNMjUxMjIwMTYxNDU3WhcNMjUxMjI3MTYxNDU3WjAYMRYwFAYD VQQDDA02OTQ2Y2I4MS0yMzYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv6OxSGu8tK5GZsCkfYxyw6vNPb3xwe37X/rquCbVzFR8ToJ8zlTJZr5pvqiv ZZTDhDZf0ViQcDFFEcz5MFqwqzY4JxH1NVupSoszdD6aFWiUJmCTBv7f1lbi81+5 bxH4Q7ilp8Jfj/wOVjtl+J1sNwJ2n1X4Vphwr0xppubu+0/dc736zski02AoCslT xGXF/C8o7GdJvB4OPcNRYuwq5IzN3cKhVaRV846AUu3vz1kMGxniPQKHSDEnex+q HevIOof294AFjM3w4PZl+BlqDZE31PkM614GLnTzGcCLjwg35JzHJ8WWeGESbVH1 1G8GajwoP1cmDfzwbhxq1hVJPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC3pAbGK 1ZKxfAjDABp2/HxW5tiOMB8GA1UdIwQYMBaAFG4nz9GJ7kZEMdS5ATvMB1ioAmTm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0QxMy9BQTI1REYxQzk4 RkQxMUU3QTgxNDU1NjBDNEY5QUUwMi9iaWZQMFludVJrUXgxTGtCTzh3SFdLZ0Na T1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JpZlAwWW51UmtReDFMa0JPOHdIV0tnQ1pPWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0QxMy9BQTI1REYxQzk4RkQxMUU3QTgxNDU1NjBDNEY5QUUwMi9iaWZQMFludVJr UXgxTGtCTzh3SFdLZ0NaT1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCK4HGNLOKws7zRzfN7c8OSamiA5UJyd0QzsvA0tIuirgB4PJ4GAKcM qHKkQIlyqdmel4FW80/l9lx2uZeM9Qk4Ob3vkOYpWPexBh4Nm5lH/j+IBfJCvnM4 AM0cl1wbwL87Vw9rlM5c8Je1GFi3zewFgTRm+B9IWkt8VcA+2nzHiT6SVBC6pMwg kURofme5y1e6ephrkFInnKGvDLQo+BAwroe+Fa8ULKPG5+M5p7igQr4aH72cmOOE WhmnRczHtWtR97d66C45tdqkI/afyAcmUfxWONmPSgsa+SMy7+2K2CzNVJlg+R/w RpONs3IUACq5VFZS+eo7AAUfA0X3ft7V -----END CERTIFICATE-----Generated at Sun Dec 21 13:38:31 2025 by rpki-client