This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.mft File: bifP0YnuRkQx1LkBO8wHWKgCZOY.mft (raw, json) Hash identifier: ncAaveTcko4EGXOC24zfS/2pORidvQDtQ2qRoEQbGUQ= Subject key identifier: B8:10:4B:21:B2:A7:23:0C:D7:65:91:2F:95:E1:06:9C:0A:9A:5C:A4 Authority key identifier: 6E:27:CF:D1:89:EE:46:44:31:D4:B9:01:3B:CC:07:58:A8:02:64:E6 Certificate issuer: /CN=A9157D13/serialNumber=6E27CFD189EE464431D4B9013BCC0758A80264E6 Certificate serial: 1920 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bifP0YnuRkQx1LkBO8wHWKgCZOY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.mft Manifest number: 190A Signing time: Mon 22 Dec 2025 16:13:13 +0000 Manifest this update: Mon 22 Dec 2025 16:13:12 +0000 Manifest next update: Mon 29 Dec 2025 16:13:12 +0000 Files and hashes: 1: bifP0YnuRkQx1LkBO8wHWKgCZOY.crl (hash: nXMBBwQS2Pd7UFxJzl0iDnArFI6ARoZEZ+3xud2pON0=) 2: 33E73FAAE50B11EF838B6642C4F9AE02.roa (hash: hGExMUb+w4JyWjME6Pb9a+xtMzWk7NBawSO3YXbXwM4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.crl rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bifP0YnuRkQx1LkBO8wHWKgCZOY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 16:13:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6432 (0x1920) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157D13, serialNumber=6E27CFD189EE464431D4B9013BCC0758A80264E6 Validity Not Before: Dec 22 16:13:12 2025 GMT Not After : Dec 29 16:13:12 2025 GMT Subject: CN=69496e18-94f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:b4:6e:01:a9:f7:06:b2:9b:10:69:05:2a:c6: a1:05:3b:d3:31:5c:4a:ac:57:19:53:28:a9:34:58: a3:71:55:93:c7:d6:68:2e:4d:a8:30:42:4d:ec:b1: 2d:9b:f4:6e:61:db:82:30:8b:41:89:43:6e:aa:eb: f2:ce:70:90:3b:8b:e9:9f:c0:21:63:d7:fc:32:3a: 33:b0:83:2d:cd:34:ff:68:d6:6b:c5:83:ab:21:27: c0:95:25:e8:30:bf:02:47:32:ae:5f:a1:c7:11:21: fc:6a:55:70:92:c4:ce:75:5b:bb:1c:17:d3:2d:3a: 89:20:15:18:ef:86:47:cd:3f:76:66:8d:13:89:e5: d1:60:fe:97:e4:1f:eb:58:52:64:e8:48:e0:03:c7: 0a:a9:1e:18:52:47:3f:d5:31:aa:88:d4:a9:5b:5e: 96:f0:69:ec:7a:00:80:66:86:25:90:2c:56:5a:b2: da:b8:99:8d:8a:50:13:bb:39:c3:d2:37:90:fb:76: 70:9a:0b:42:b9:af:32:27:85:8d:dd:12:36:17:52: b2:30:33:c7:a5:16:0c:64:80:bc:3f:54:5b:47:08: 08:3d:c9:5c:ea:18:94:8b:fe:a0:05:62:c7:00:98: 0d:1a:20:be:45:2c:ea:18:32:b9:86:59:b2:20:98: c1:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:10:4B:21:B2:A7:23:0C:D7:65:91:2F:95:E1:06:9C:0A:9A:5C:A4 X509v3 Authority Key Identifier: keyid:6E:27:CF:D1:89:EE:46:44:31:D4:B9:01:3B:CC:07:58:A8:02:64:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bifP0YnuRkQx1LkBO8wHWKgCZOY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:b4:09:e0:e5:e3:a8:6d:e9:dd:dd:b6:62:30:24:ff:55:9a: 2c:2d:61:77:f6:37:20:5d:88:54:f2:53:c8:75:4c:46:bf:5e: 57:f2:17:b8:87:5d:05:97:84:aa:e7:e1:e9:11:11:f6:39:82: 40:cb:18:85:fb:34:8e:4d:2a:c1:54:f2:79:36:54:d6:cf:51: 16:56:15:2e:13:04:ea:bb:39:a2:dc:c0:5d:6a:df:25:43:a8: 56:95:b9:b3:76:ed:4f:52:0b:3b:f8:62:67:dd:d5:14:c7:f4: 3f:3f:aa:11:91:b3:97:e3:d2:d8:6d:29:9a:1f:ee:a7:1d:07: 90:20:f2:34:a5:fe:3d:f7:64:8f:22:b4:14:f9:3a:60:d6:47: 34:a8:9a:ea:bd:96:96:d5:92:fb:17:e0:73:67:e3:63:ec:d1: 50:79:0d:9b:08:8b:cd:9a:ea:04:7d:c1:ca:ca:cd:c2:23:59: a8:77:f1:ab:8a:2d:71:7a:dd:6a:d6:e7:ac:ec:85:d4:f1:5f: 31:4f:29:87:01:64:8b:2a:18:45:bc:f2:1a:f6:b8:9c:56:f9: 53:01:4f:1c:21:27:5f:16:d1:e2:7e:af:60:72:8c:a7:ac:5e: 06:25:67:f5:cf:db:ba:75:3b:e2:a2:ca:d3:5e:0e:66:83:80: 79:ca:48:57 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGSAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEMTMxMTAvBgNVBAUTKDZFMjdDRkQxODlFRTQ2NDQzMUQ0QjkwMTNCQ0MwNzU4 QTgwMjY0RTYwHhcNMjUxMjIyMTYxMzEyWhcNMjUxMjI5MTYxMzEyWjAYMRYwFAYD VQQDDA02OTQ5NmUxOC05NGY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzLRuAan3BrKbEGkFKsahBTvTMVxKrFcZUyipNFijcVWTx9ZoLk2oMEJN7LEt m/RuYduCMItBiUNuquvyznCQO4vpn8AhY9f8MjozsIMtzTT/aNZrxYOrISfAlSXo ML8CRzKuX6HHESH8alVwksTOdVu7HBfTLTqJIBUY74ZHzT92Zo0TieXRYP6X5B/r WFJk6EjgA8cKqR4YUkc/1TGqiNSpW16W8GnsegCAZoYlkCxWWrLauJmNilATuznD 0jeQ+3ZwmgtCua8yJ4WN3RI2F1KyMDPHpRYMZIC8P1RbRwgIPclc6hiUi/6gBWLH AJgNGiC+RSzqGDK5hlmyIJjBawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLgQSyGy pyMM12WRL5XhBpwKmlykMB8GA1UdIwQYMBaAFG4nz9GJ7kZEMdS5ATvMB1ioAmTm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0QxMy9BQTI1REYxQzk4 RkQxMUU3QTgxNDU1NjBDNEY5QUUwMi9iaWZQMFludVJrUXgxTGtCTzh3SFdLZ0Na T1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JpZlAwWW51UmtReDFMa0JPOHdIV0tnQ1pPWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0QxMy9BQTI1REYxQzk4RkQxMUU3QTgxNDU1NjBDNEY5QUUwMi9iaWZQMFludVJr UXgxTGtCTzh3SFdLZ0NaT1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbtAng5eOobend3bZiMCT/VZosLWF39jcgXYhU8lPIdUxGv15X8he4 h10Fl4Sq5+HpERH2OYJAyxiF+zSOTSrBVPJ5NlTWz1EWVhUuEwTquzmi3MBdat8l Q6hWlbmzdu1PUgs7+GJn3dUUx/Q/P6oRkbOX49LYbSmaH+6nHQeQIPI0pf4992SP IrQU+Tpg1kc0qJrqvZaW1ZL7F+BzZ+Nj7NFQeQ2bCIvNmuoEfcHKys3CI1mod/Gr ii1xet1q1ues7IXU8V8xTymHAWSLKhhFvPIa9ricVvlTAU8cISdfFtHifq9gcoyn rF4GJWf1z9u6dTviosrTXg5mg4B5ykhX -----END CERTIFICATE-----Generated at Wed Dec 24 08:46:52 2025 by rpki-client