This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A916C7B6/43F6A57831EE11EAAB01E767C4F9AE02/ST0-r-BAVyhB6fqyVtDGBEy4WMg.mft File: ST0-r-BAVyhB6fqyVtDGBEy4WMg.mft (raw, json) Hash identifier: zoe/QXFavQ9SjExArGzk+hStDcQWGT9Dvzp7vtmAo5k= Subject key identifier: 63:2B:A1:62:A0:63:FC:61:35:13:FD:EB:2B:94:18:4D:B4:25:E1:D3 Authority key identifier: 49:3D:3E:AF:E0:40:57:28:41:E9:FA:B2:56:D0:C6:04:4C:B8:58:C8 Certificate issuer: /CN=A916C7B6/serialNumber=493D3EAFE040572841E9FAB256D0C6044CB858C8 Certificate serial: 0BCA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ST0-r-BAVyhB6fqyVtDGBEy4WMg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C7B6/43F6A57831EE11EAAB01E767C4F9AE02/ST0-r-BAVyhB6fqyVtDGBEy4WMg.mft Manifest number: 0BC3 Signing time: Thu 18 Dec 2025 18:36:44 +0000 Manifest this update: Thu 18 Dec 2025 18:36:44 +0000 Manifest next update: Thu 25 Dec 2025 18:36:44 +0000 Files and hashes: 1: ST0-r-BAVyhB6fqyVtDGBEy4WMg.crl (hash: km6xnK0feshZLdePVGBzDVo+jIoPPPbsM27EStKt1DE=) 2: 1A8553B831F011EAA18AC76AC4F9AE02.roa (hash: 2QDvhbtMSuUMKkHjiP/BzPb8Yd8fGPxfNmWlpQE2e54=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C7B6/43F6A57831EE11EAAB01E767C4F9AE02/ST0-r-BAVyhB6fqyVtDGBEy4WMg.crl rsync://rpki.apnic.net/member_repository/A916C7B6/43F6A57831EE11EAAB01E767C4F9AE02/ST0-r-BAVyhB6fqyVtDGBEy4WMg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ST0-r-BAVyhB6fqyVtDGBEy4WMg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 18:36:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3018 (0xbca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C7B6, serialNumber=493D3EAFE040572841E9FAB256D0C6044CB858C8 Validity Not Before: Dec 18 18:36:44 2025 GMT Not After : Dec 25 18:36:44 2025 GMT Subject: CN=694449bc-1282 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:64:f0:90:a9:06:1a:61:a6:80:01:f7:34:56: 1d:c5:13:67:a3:cb:12:91:80:b2:19:13:a3:ea:d5: 39:18:2e:b5:c8:5c:f3:14:40:f2:33:2f:4c:f5:89: 7a:03:d9:5f:6f:fb:18:b4:71:30:ee:91:96:7a:16: 92:86:88:12:9c:cb:05:c7:b1:f4:f5:0e:0f:d0:eb: 8c:5f:65:2f:c2:c9:84:31:43:e4:d2:75:3a:19:49: 69:c1:38:ab:9e:21:60:64:53:f9:1b:34:cb:be:b5: bb:38:71:39:24:76:7a:69:83:9b:6c:7f:12:69:cf: ab:2b:f4:51:6e:f5:21:9c:9b:4f:c4:34:07:b0:fd: 2d:f8:9a:0e:d6:d5:ba:66:e1:ac:10:99:cd:ef:92: 97:b7:62:88:a0:ec:8a:2b:3b:d1:38:0e:1f:e1:da: ab:f4:66:02:32:84:ca:c1:14:52:c4:ed:c0:99:e5: cb:a4:c3:55:10:f0:66:16:57:4c:03:cc:10:b3:55: 25:5e:28:1d:22:cc:e0:34:c0:4e:ad:8c:36:76:ac: 2a:00:7b:ce:4d:09:15:27:da:82:0b:56:5b:d3:d8: 0f:16:bd:c1:a7:53:89:89:6c:80:13:9c:dd:90:01: d3:7a:69:4c:69:7f:f0:e3:76:e1:2c:4a:f1:fb:4e: 9e:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:2B:A1:62:A0:63:FC:61:35:13:FD:EB:2B:94:18:4D:B4:25:E1:D3 X509v3 Authority Key Identifier: keyid:49:3D:3E:AF:E0:40:57:28:41:E9:FA:B2:56:D0:C6:04:4C:B8:58:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C7B6/43F6A57831EE11EAAB01E767C4F9AE02/ST0-r-BAVyhB6fqyVtDGBEy4WMg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ST0-r-BAVyhB6fqyVtDGBEy4WMg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C7B6/43F6A57831EE11EAAB01E767C4F9AE02/ST0-r-BAVyhB6fqyVtDGBEy4WMg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:24:73:f0:dc:35:25:ed:52:4b:a8:0c:96:64:ea:a5:5d:07: 95:e5:4d:d3:07:f2:3c:ec:0a:5e:d8:57:91:c3:d5:4b:43:92: be:af:c4:ee:bb:eb:a8:41:f8:66:b8:21:20:6d:cb:48:ff:f6: 37:01:f0:13:f7:ec:46:8d:12:9e:31:32:de:8f:f7:ec:7d:66: 3b:0a:32:4f:71:4d:c7:4c:23:b2:b6:e2:95:f5:aa:88:95:88: b1:ca:b9:b0:1b:e3:a4:c8:b6:18:60:85:f8:82:79:3a:b1:1b: b0:9e:fb:90:ae:b5:eb:69:90:d3:f9:3b:2c:06:04:d7:e0:1b: 4f:0c:3e:7f:b0:e3:0c:0e:fd:7d:a0:51:77:67:d9:e7:5f:af: 89:40:56:c8:3c:71:58:b6:42:cb:3f:6b:89:6c:49:0b:2d:0e: 14:9a:87:b9:52:72:29:ac:a2:f1:b1:ff:ce:a1:90:68:54:56: 54:d9:a9:ae:62:92:f8:b7:95:eb:de:de:9b:ea:47:27:ea:ff: 2d:b0:2e:46:10:62:7f:5b:c8:32:dc:ed:dd:e8:78:6c:a9:7e: 12:4b:07:a6:2d:38:0a:55:e0:a9:fe:31:b3:f7:e9:3f:14:dd: 69:fd:c7:cd:7c:a7:79:6d:ca:0a:10:17:1f:2a:2d:99:26:50: f4:14:ed:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC8owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkM3QjYxMTAvBgNVBAUTKDQ5M0QzRUFGRTA0MDU3Mjg0MUU5RkFCMjU2RDBDNjA0 NENCODU4QzgwHhcNMjUxMjE4MTgzNjQ0WhcNMjUxMjI1MTgzNjQ0WjAYMRYwFAYD VQQDDA02OTQ0NDliYy0xMjgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9GTwkKkGGmGmgAH3NFYdxRNno8sSkYCyGROj6tU5GC61yFzzFEDyMy9M9Yl6 A9lfb/sYtHEw7pGWehaShogSnMsFx7H09Q4P0OuMX2UvwsmEMUPk0nU6GUlpwTir niFgZFP5GzTLvrW7OHE5JHZ6aYObbH8Sac+rK/RRbvUhnJtPxDQHsP0t+JoO1tW6 ZuGsEJnN75KXt2KIoOyKKzvROA4f4dqr9GYCMoTKwRRSxO3AmeXLpMNVEPBmFldM A8wQs1UlXigdIszgNMBOrYw2dqwqAHvOTQkVJ9qCC1Zb09gPFr3Bp1OJiWyAE5zd kAHTemlMaX/w43bhLErx+06etQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGMroWKg Y/xhNRP96yuUGE20JeHTMB8GA1UdIwQYMBaAFEk9Pq/gQFcoQen6slbQxgRMuFjI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzdCNi80M0Y2QTU3ODMx RUUxMUVBQUIwMUU3NjdDNEY5QUUwMi9TVDAtci1CQVZ5aEI2ZnF5VnRER0JFeTRX TWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NUMC1yLUJBVnloQjZmcXlWdERHQkV5NFdNZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QzdCNi80M0Y2QTU3ODMxRUUxMUVBQUIwMUU3NjdDNEY5QUUwMi9TVDAtci1CQVZ5 aEI2ZnF5VnRER0JFeTRXTWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwJHPw3DUl7VJLqAyWZOqlXQeV5U3TB/I87Ape2FeRw9VLQ5K+r8Tu u+uoQfhmuCEgbctI//Y3AfAT9+xGjRKeMTLej/fsfWY7CjJPcU3HTCOytuKV9aqI lYixyrmwG+OkyLYYYIX4gnk6sRuwnvuQrrXraZDT+TssBgTX4BtPDD5/sOMMDv19 oFF3Z9nnX6+JQFbIPHFYtkLLP2uJbEkLLQ4Umoe5UnIprKLxsf/OoZBoVFZU2amu YpL4t5Xr3t6b6kcn6v8tsC5GEGJ/W8gy3O3d6HhsqX4SSwemLTgKVeCp/jGz9+k/ FN1p/cfNfKd5bcoKEBcfKi2ZJlD0FO2q -----END CERTIFICATE-----Generated at Fri Dec 19 20:14:42 2025 by rpki-client