This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91238EC/61D4F48AE3E611E7AF2F615EC4F9AE02/BIMvvnDHuIWcoaDj4Fopa7CcXT0.mft File: BIMvvnDHuIWcoaDj4Fopa7CcXT0.mft (raw, json) Hash identifier: Zx5+jouFXnscqNYL/wKS3mahryyGFOsd0YF4u0yqJ34= Subject key identifier: D4:1B:6F:CD:19:68:7B:04:94:41:53:8A:4E:B9:AE:2A:49:96:AD:71 Authority key identifier: 04:83:2F:BE:70:C7:B8:85:9C:A1:A0:E3:E0:5A:29:6B:B0:9C:5D:3D Certificate issuer: /CN=A91238EC/serialNumber=04832FBE70C7B8859CA1A0E3E05A296BB09C5D3D Certificate serial: 17AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BIMvvnDHuIWcoaDj4Fopa7CcXT0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91238EC/61D4F48AE3E611E7AF2F615EC4F9AE02/BIMvvnDHuIWcoaDj4Fopa7CcXT0.mft Manifest number: 1794 Signing time: Mon 22 Dec 2025 16:20:22 +0000 Manifest this update: Mon 22 Dec 2025 16:20:22 +0000 Manifest next update: Mon 29 Dec 2025 16:20:22 +0000 Files and hashes: 1: BIMvvnDHuIWcoaDj4Fopa7CcXT0.crl (hash: /S9HmrFbzcLNY8ZJXSmU96j2aKv/V16OBWAzotX4/Ck=) 2: 2F9D268C76B211ECABA1A612C4F9AE02.roa (hash: N4cX9Gn5/2UN1QBdCa0fdRS9KCB6RvJx+JIs1tA6NvU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91238EC/61D4F48AE3E611E7AF2F615EC4F9AE02/BIMvvnDHuIWcoaDj4Fopa7CcXT0.crl rsync://rpki.apnic.net/member_repository/A91238EC/61D4F48AE3E611E7AF2F615EC4F9AE02/BIMvvnDHuIWcoaDj4Fopa7CcXT0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BIMvvnDHuIWcoaDj4Fopa7CcXT0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 16:20:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6063 (0x17af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91238EC, serialNumber=04832FBE70C7B8859CA1A0E3E05A296BB09C5D3D Validity Not Before: Dec 22 16:20:22 2025 GMT Not After : Dec 29 16:20:22 2025 GMT Subject: CN=69496fc6-5e08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:29:1a:4f:84:2c:5d:cc:3a:6e:fe:fb:06:01: d8:6f:83:0b:27:cf:db:67:ea:b9:a9:dd:f8:85:57: af:4b:ac:e9:20:f7:8c:54:7e:ca:e5:ea:cd:75:db: ca:32:3c:dd:f2:15:80:29:0f:b6:d6:ae:6a:42:40: f5:85:2a:7c:28:13:47:48:20:fb:71:28:76:ed:00: 5d:69:19:a2:5c:a2:db:ad:4c:22:05:45:3b:f9:e3: 31:90:ea:2e:53:e6:59:c4:6f:23:50:b8:1a:be:13: c3:21:8a:ec:45:db:d9:43:4c:2d:ff:f0:ac:b4:85: 2e:98:45:f7:92:ec:cc:9e:c8:3a:b3:6a:8a:d2:46: ca:3c:40:d7:a9:aa:f8:63:82:a4:8a:c6:8d:de:e6: c7:e0:86:15:85:7e:a1:df:ca:ea:e4:e1:b2:1a:ae: 34:e3:49:89:9c:04:a7:3a:58:2e:6f:32:2a:dd:4c: cb:d3:94:17:57:bb:bb:74:21:94:bf:b6:e4:ea:a2: 26:34:1c:f4:43:74:07:7f:d8:81:a2:45:21:2e:3f: fb:f2:d8:b7:be:19:43:cc:4d:c1:7a:5d:38:f5:3d: b5:64:06:84:7d:dd:c3:2d:71:59:09:c7:46:da:7b: b8:cb:d2:37:fe:99:b8:0b:9d:e2:3a:45:8b:bf:92: 89:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:1B:6F:CD:19:68:7B:04:94:41:53:8A:4E:B9:AE:2A:49:96:AD:71 X509v3 Authority Key Identifier: keyid:04:83:2F:BE:70:C7:B8:85:9C:A1:A0:E3:E0:5A:29:6B:B0:9C:5D:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91238EC/61D4F48AE3E611E7AF2F615EC4F9AE02/BIMvvnDHuIWcoaDj4Fopa7CcXT0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BIMvvnDHuIWcoaDj4Fopa7CcXT0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91238EC/61D4F48AE3E611E7AF2F615EC4F9AE02/BIMvvnDHuIWcoaDj4Fopa7CcXT0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:04:84:03:82:de:d5:ae:5c:70:b1:0e:39:af:78:8e:e2:32: 3d:dc:41:5e:83:df:e4:e9:db:22:59:b4:0b:7b:4d:6c:f3:fd: 9b:0e:e7:08:02:e0:eb:99:55:ce:32:97:1c:ec:bf:3d:5e:d1: c4:e0:cf:2d:8b:02:bb:17:ab:a1:87:01:76:f8:bb:04:c5:a5: 55:64:81:56:b9:77:bc:52:a6:a5:a3:39:5d:9b:f6:2a:53:2c: 85:03:e8:89:c0:da:b8:ef:83:f1:d1:eb:72:11:c8:bc:1e:c0: e5:bd:1b:cf:27:49:ca:84:99:d6:18:e9:e5:f8:cc:2d:01:31: a4:52:69:68:a2:df:19:63:c1:14:ab:8c:d9:12:98:f7:c6:59: a5:52:a6:4f:03:b9:00:6f:86:4a:80:c5:b5:b0:9d:d4:76:cc: f5:a4:40:90:84:01:2d:6a:a9:34:62:fd:ae:a5:2e:1c:21:ce: 29:d5:34:a7:e7:aa:53:25:ca:47:b2:65:75:e5:4b:23:a5:a8: 2e:b5:3e:6e:c2:2c:8f:06:48:08:ba:93:8e:9f:69:80:75:cf: 33:f4:fc:2d:64:8c:7a:8f:75:68:8a:2d:c8:44:14:d5:fa:aa: 10:89:3e:a4:1b:41:83:02:1f:11:0f:1e:a6:d2:9c:a8:5b:e9: ae:6f:53:88 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF68wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjM4RUMxMTAvBgNVBAUTKDA0ODMyRkJFNzBDN0I4ODU5Q0ExQTBFM0UwNUEyOTZC QjA5QzVEM0QwHhcNMjUxMjIyMTYyMDIyWhcNMjUxMjI5MTYyMDIyWjAYMRYwFAYD VQQDDA02OTQ5NmZjNi01ZTA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqSkaT4QsXcw6bv77BgHYb4MLJ8/bZ+q5qd34hVevS6zpIPeMVH7K5erNddvK Mjzd8hWAKQ+21q5qQkD1hSp8KBNHSCD7cSh27QBdaRmiXKLbrUwiBUU7+eMxkOou U+ZZxG8jULgavhPDIYrsRdvZQ0wt//CstIUumEX3kuzMnsg6s2qK0kbKPEDXqar4 Y4KkisaN3ubH4IYVhX6h38rq5OGyGq4040mJnASnOlgubzIq3UzL05QXV7u7dCGU v7bk6qImNBz0Q3QHf9iBokUhLj/78ti3vhlDzE3Bel049T21ZAaEfd3DLXFZCcdG 2nu4y9I3/pm4C53iOkWLv5KJ1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNQbb80Z aHsElEFTik65ripJlq1xMB8GA1UdIwQYMBaAFASDL75wx7iFnKGg4+BaKWuwnF09 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzhFQy82MUQ0RjQ4QUUz RTYxMUU3QUYyRjYxNUVDNEY5QUUwMi9CSU12dm5ESHVJV2NvYURqNEZvcGE3Q2NY VDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JJTXZ2bkRIdUlXY29hRGo0Rm9wYTdDY1hUMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MzhFQy82MUQ0RjQ4QUUzRTYxMUU3QUYyRjYxNUVDNEY5QUUwMi9CSU12dm5ESHVJ V2NvYURqNEZvcGE3Q2NYVDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCwBIQDgt7VrlxwsQ45r3iO4jI93EFeg9/k6dsiWbQLe01s8/2bDucI AuDrmVXOMpcc7L89XtHE4M8tiwK7F6uhhwF2+LsExaVVZIFWuXe8Uqalozldm/Yq UyyFA+iJwNq474Px0etyEci8HsDlvRvPJ0nKhJnWGOnl+MwtATGkUmloot8ZY8EU q4zZEpj3xlmlUqZPA7kAb4ZKgMW1sJ3Udsz1pECQhAEtaqk0Yv2upS4cIc4p1TSn 56pTJcpHsmV15UsjpagutT5uwiyPBkgIupOOn2mAdc8z9PwtZIx6j3Voii3IRBTV +qoQiT6kG0GDAh8RDx6m0pyoW+mub1OI -----END CERTIFICATE-----Generated at Wed Dec 24 14:08:03 2025 by rpki-client