This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A916B6AA/A2988F3840AE11EE9850A263C4F9AE02/9bzqkIXorbqorCGgTlPb_sMgvOI.mft File: 9bzqkIXorbqorCGgTlPb_sMgvOI.mft (raw, json) Hash identifier: xeB+FzPfaSK3XNupFuCerMTcTLTMlNzVCqyLRrWNrWI= Subject key identifier: 5F:9E:AC:CF:BF:5B:5C:51:8F:DE:74:AB:27:42:7B:27:14:81:E7:29 Authority key identifier: F5:BC:EA:90:85:E8:AD:BA:A8:AC:21:A0:4E:53:DB:FE:C3:20:BC:E2 Certificate issuer: /CN=A916B6AA/serialNumber=F5BCEA9085E8ADBAA8AC21A04E53DBFEC320BCE2 Certificate serial: 01B1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/9bzqkIXorbqorCGgTlPb_sMgvOI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B6AA/A2988F3840AE11EE9850A263C4F9AE02/9bzqkIXorbqorCGgTlPb_sMgvOI.mft Manifest number: 01B1 Signing time: Tue 02 Dec 2025 15:40:40 +0000 Manifest this update: Tue 02 Dec 2025 15:40:39 +0000 Manifest next update: Tue 09 Dec 2025 15:40:39 +0000 Files and hashes: 1: 9bzqkIXorbqorCGgTlPb_sMgvOI.crl (hash: EXun0uP6Ym/m6y5ZaX649ERG33uUZDCKjDZqqtuajHY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B6AA/A2988F3840AE11EE9850A263C4F9AE02/9bzqkIXorbqorCGgTlPb_sMgvOI.crl rsync://rpki.apnic.net/member_repository/A916B6AA/A2988F3840AE11EE9850A263C4F9AE02/9bzqkIXorbqorCGgTlPb_sMgvOI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/9bzqkIXorbqorCGgTlPb_sMgvOI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 15:40:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 433 (0x1b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B6AA, serialNumber=F5BCEA9085E8ADBAA8AC21A04E53DBFEC320BCE2 Validity Not Before: Dec 2 15:40:39 2025 GMT Not After : Dec 9 15:40:39 2025 GMT Subject: CN=692f0877-3aa4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:a2:f9:dc:66:9a:fb:03:c5:78:d5:a7:ea:2d: d5:39:bf:88:40:d5:b1:26:f3:0a:18:7c:f8:9a:f5: 02:b2:24:de:66:13:7f:37:f8:8f:45:21:c2:5c:62: 10:45:d9:46:58:66:fc:7a:12:03:3a:9b:75:4e:ff: 84:72:95:83:07:d0:75:41:19:be:9f:cb:ca:1f:94: d7:46:02:f9:ce:42:5a:03:ba:a8:42:71:29:6d:8e: 42:c3:48:6e:34:fd:79:80:44:58:41:51:1e:a9:5f: 6e:c5:e1:3b:e1:69:11:9b:5e:0c:ba:f8:ab:1e:ba: b0:71:e4:4b:b4:68:39:5f:27:27:28:5c:8d:0f:6f: ea:0c:38:84:2a:59:b2:f8:9b:89:64:36:fd:76:cc: 61:02:77:61:69:2b:47:dc:12:88:f1:53:be:9f:9c: 8f:b4:26:3a:3f:3b:b6:2a:78:bf:26:8f:33:4a:7f: bd:1b:07:5d:8f:a7:de:cd:96:e3:c1:80:32:ee:01: 51:2d:36:ce:80:86:c4:2d:81:37:02:88:61:2f:fb: fd:3f:e3:d4:41:69:5d:70:d5:fe:f5:f4:61:aa:13: 92:d3:78:54:1a:c0:d8:bc:99:95:af:99:43:f6:96: e0:ea:65:dd:02:da:dc:9d:3b:cd:32:c8:23:ab:71: 6c:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:9E:AC:CF:BF:5B:5C:51:8F:DE:74:AB:27:42:7B:27:14:81:E7:29 X509v3 Authority Key Identifier: keyid:F5:BC:EA:90:85:E8:AD:BA:A8:AC:21:A0:4E:53:DB:FE:C3:20:BC:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B6AA/A2988F3840AE11EE9850A263C4F9AE02/9bzqkIXorbqorCGgTlPb_sMgvOI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/9bzqkIXorbqorCGgTlPb_sMgvOI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B6AA/A2988F3840AE11EE9850A263C4F9AE02/9bzqkIXorbqorCGgTlPb_sMgvOI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:26:8c:f9:60:11:3b:49:11:ac:7e:0d:fa:8b:57:b0:5e:a8: f3:6c:60:2b:96:8b:2c:15:bb:36:70:bc:c5:b9:25:6a:f9:e4: d3:97:28:ce:1a:ae:c2:7e:75:4a:3e:53:07:cc:b9:c6:5c:fc: 89:61:aa:d2:12:21:00:37:97:89:86:87:82:ab:1d:12:d3:db: 69:c5:a5:98:87:de:27:15:9f:0d:1a:f0:3e:af:64:8e:93:54: 16:5f:a9:ba:43:1d:50:b8:9c:f6:e0:f4:ed:bc:29:8d:cd:cf: eb:8c:e1:4b:79:46:1b:fc:b4:2e:f6:8a:6f:41:5d:be:0a:c8: fa:73:f9:4e:63:13:7a:74:a6:33:e0:47:1a:7a:6e:e7:38:2b: e8:5d:b4:9c:e3:97:12:a4:0c:19:d4:bb:ec:f7:b1:ca:25:af: 7d:8a:e5:ab:30:d1:26:d1:bd:e7:dd:3b:d6:6d:76:3e:7b:89: 70:4d:33:ac:eb:fb:82:6f:66:44:55:dc:04:9d:b9:a3:bc:bd: e5:a6:ea:e5:65:f7:6f:3e:3c:e1:57:e9:e2:cc:57:82:e2:11: e4:fa:48:94:16:16:a0:e7:8b:bd:f0:89:04:41:65:e5:0c:51: 51:71:42:b2:89:63:28:90:93:b8:bf:97:d9:ba:a3:ab:87:e2: 5e:82:b0:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkI2QUExMTAvBgNVBAUTKEY1QkNFQTkwODVFOEFEQkFBOEFDMjFBMDRFNTNEQkZF QzMyMEJDRTIwHhcNMjUxMjAyMTU0MDM5WhcNMjUxMjA5MTU0MDM5WjAYMRYwFAYD VQQDEw02OTJmMDg3Ny0zYWE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxqL53Gaa+wPFeNWn6i3VOb+IQNWxJvMKGHz4mvUCsiTeZhN/N/iPRSHCXGIQ RdlGWGb8ehIDOpt1Tv+EcpWDB9B1QRm+n8vKH5TXRgL5zkJaA7qoQnEpbY5Cw0hu NP15gERYQVEeqV9uxeE74WkRm14MuvirHrqwceRLtGg5XycnKFyND2/qDDiEKlmy +JuJZDb9dsxhAndhaStH3BKI8VO+n5yPtCY6Pzu2Kni/Jo8zSn+9Gwddj6fezZbj wYAy7gFRLTbOgIbELYE3AohhL/v9P+PUQWldcNX+9fRhqhOS03hUGsDYvJmVr5lD 9pbg6mXdAtrcnTvNMsgjq3FsiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF+erM+/ W1xRj950qydCeycUgecpMB8GA1UdIwQYMBaAFPW86pCF6K26qKwhoE5T2/7DILzi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjZBQS9BMjk4OEYzODQw QUUxMUVFOTg1MEEyNjNDNEY5QUUwMi85Ynpxa0lYb3JicW9yQ0dnVGxQYl9zTWd2 T0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzlienFrSVhvcmJxb3JDR2dUbFBiX3NNZ3ZPSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QjZBQS9BMjk4OEYzODQwQUUxMUVFOTg1MEEyNjNDNEY5QUUwMi85Ynpxa0lYb3Ji cW9yQ0dnVGxQYl9zTWd2T0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKJoz5YBE7SRGsfg36i1ewXqjzbGArlossFbs2cLzFuSVq+eTTlyjO Gq7CfnVKPlMHzLnGXPyJYarSEiEAN5eJhoeCqx0S09tpxaWYh94nFZ8NGvA+r2SO k1QWX6m6Qx1QuJz24PTtvCmNzc/rjOFLeUYb/LQu9opvQV2+Csj6c/lOYxN6dKYz 4Ecaem7nOCvoXbSc45cSpAwZ1Lvs97HKJa99iuWrMNEm0b3n3TvWbXY+e4lwTTOs 6/uCb2ZEVdwEnbmjvL3lpurlZfdvPjzhV+nizFeC4hHk+kiUFhag54u98IkEQWXl DFFRcUKyiWMokJO4v5fZuqOrh+JegrCx -----END CERTIFICATE-----Generated at Wed Dec 3 13:58:23 2025 by rpki-client