This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91992FA/FA46E0D2EE0311EF9C2B8A49C4F9AE02/BXtTd0A4JnigePW_KExyZ5S50TQ.mft File: BXtTd0A4JnigePW_KExyZ5S50TQ.mft (raw, json) Hash identifier: /ejbY8iWWGZUMSgd63jCRiQ2ylSMtttwN0a85tlY+Wk= Subject key identifier: 12:4E:5F:4A:10:84:C6:64:4E:80:CA:57:AC:73:C3:24:70:B9:5B:8A Authority key identifier: 05:7B:53:77:40:38:26:78:A0:78:F5:BF:28:4C:72:67:94:B9:D1:34 Certificate issuer: /CN=A91992FA/serialNumber=057B537740382678A078F5BF284C726794B9D134 Certificate serial: A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BXtTd0A4JnigePW_KExyZ5S50TQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91992FA/FA46E0D2EE0311EF9C2B8A49C4F9AE02/BXtTd0A4JnigePW_KExyZ5S50TQ.mft Manifest number: 9E Signing time: Tue 23 Dec 2025 05:17:07 +0000 Manifest this update: Tue 23 Dec 2025 05:17:07 +0000 Manifest next update: Tue 30 Dec 2025 05:17:07 +0000 Files and hashes: 1: BXtTd0A4JnigePW_KExyZ5S50TQ.crl (hash: X2l9H3F+peiLwIK2fGSK6141ETu7SOIbCfph/QMUZs4=) 2: CF5EEDA6894411F0BE628977C4F9AE02.roa (hash: 17QpSjP3T4fN2iFoeGDXqVvnkQ3k4lIOqR9Kwrs2UKY=) 3: 44A28FACEFEC11EF80EC123DC4F9AE02.roa (hash: kIHtM5yk/7E77z9qFDfBUJpQm2RMukSPxAc1zKCnuxc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91992FA/FA46E0D2EE0311EF9C2B8A49C4F9AE02/BXtTd0A4JnigePW_KExyZ5S50TQ.crl rsync://rpki.apnic.net/member_repository/A91992FA/FA46E0D2EE0311EF9C2B8A49C4F9AE02/BXtTd0A4JnigePW_KExyZ5S50TQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BXtTd0A4JnigePW_KExyZ5S50TQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 05:17:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 160 (0xa0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91992FA, serialNumber=057B537740382678A078F5BF284C726794B9D134 Validity Not Before: Dec 23 05:17:07 2025 GMT Not After : Dec 30 05:17:07 2025 GMT Subject: CN=694a25d3-25b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:da:09:d0:b8:d3:71:26:a4:53:b8:ae:14:c0: 20:cc:7e:e5:17:2f:06:38:4f:14:87:24:8a:bb:8b: e3:24:70:bb:e6:48:f0:e4:ba:0c:96:6f:21:08:e2: 68:4c:50:03:c9:37:73:c4:7d:69:9d:6f:d9:5e:07: 71:2c:7e:44:49:bf:ea:f6:a4:8a:b6:13:6d:5c:3f: 7c:77:70:e4:c9:16:fb:80:ab:ca:07:f9:0e:50:52: 3a:6e:37:71:e2:3e:4f:f1:19:ab:be:fd:57:3a:4b: d4:e9:e0:ba:19:42:aa:20:45:ec:a1:8d:61:72:55: df:c6:a7:67:50:45:ca:70:cb:95:cc:83:42:94:06: cd:c4:c8:ff:3a:e6:29:a8:3d:d8:f8:03:64:3b:de: 06:71:4c:b9:de:50:81:d1:f6:73:32:9f:36:c7:4c: fc:04:b8:9f:8f:47:f0:ae:b3:2e:8f:31:54:04:f4: cb:10:8a:03:e9:4b:33:df:9f:44:25:6e:96:75:ef: 34:90:25:fa:62:96:e2:77:c0:cf:cd:c8:e2:b6:3f: 48:55:00:9f:e6:04:7b:c8:5f:2f:41:0d:9c:27:30: 09:cc:d6:2d:a0:58:3a:3a:9c:c4:0e:4f:6b:78:29: 3f:4e:e9:6e:f0:2d:98:79:e9:7b:58:1b:04:91:1c: 90:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:4E:5F:4A:10:84:C6:64:4E:80:CA:57:AC:73:C3:24:70:B9:5B:8A X509v3 Authority Key Identifier: keyid:05:7B:53:77:40:38:26:78:A0:78:F5:BF:28:4C:72:67:94:B9:D1:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91992FA/FA46E0D2EE0311EF9C2B8A49C4F9AE02/BXtTd0A4JnigePW_KExyZ5S50TQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BXtTd0A4JnigePW_KExyZ5S50TQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91992FA/FA46E0D2EE0311EF9C2B8A49C4F9AE02/BXtTd0A4JnigePW_KExyZ5S50TQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:47:69:92:71:da:9f:fe:65:fc:1e:4f:d7:f3:65:64:eb:2e: cc:18:63:5f:95:12:5f:3e:5c:6b:a3:c9:91:ed:07:90:d5:ff: 65:8d:d6:db:43:33:c9:9b:74:23:94:14:51:1f:f9:9a:3e:2a: 49:74:a2:c4:5a:14:06:f0:5c:f3:38:79:d0:14:35:c1:b9:1c: be:c1:5a:89:dd:36:67:1a:a7:47:c6:8e:05:0b:10:7b:fd:32: 3d:ff:9e:ce:99:13:bc:e8:d8:12:0e:2b:d4:c4:d6:6e:c0:92: 75:6f:c7:72:14:cb:f2:12:ae:f6:d2:2a:aa:4d:6d:b5:f9:c5: 57:48:7c:fd:47:79:ac:db:41:8f:79:f2:c9:c3:c3:41:16:81: cd:56:0c:83:00:fe:70:d4:c8:e8:c1:ab:9a:1d:27:56:47:cb: 81:6d:06:19:39:e1:6e:81:b5:e2:8c:be:57:f1:87:d6:a4:f2: ff:26:aa:d9:1b:a7:2a:03:a6:b1:5f:4f:c9:24:68:00:17:50: 18:64:80:2e:b9:e3:19:39:37:ee:9b:b6:61:9d:5f:e4:e7:62: 27:0b:63:4f:a4:1e:ac:43:74:ee:4b:cf:72:43:90:b0:b7:ce: 65:b0:11:76:f3:e9:bb:c7:a4:f3:f2:61:23:cb:40:8b:4f:57: cb:7f:e1:e0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTkyRkExMTAvBgNVBAUTKDA1N0I1Mzc3NDAzODI2NzhBMDc4RjVCRjI4NEM3MjY3 OTRCOUQxMzQwHhcNMjUxMjIzMDUxNzA3WhcNMjUxMjMwMDUxNzA3WjAYMRYwFAYD VQQDDA02OTRhMjVkMy0yNWI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArtoJ0LjTcSakU7iuFMAgzH7lFy8GOE8UhySKu4vjJHC75kjw5LoMlm8hCOJo TFADyTdzxH1pnW/ZXgdxLH5ESb/q9qSKthNtXD98d3DkyRb7gKvKB/kOUFI6bjdx 4j5P8Rmrvv1XOkvU6eC6GUKqIEXsoY1hclXfxqdnUEXKcMuVzINClAbNxMj/OuYp qD3Y+ANkO94GcUy53lCB0fZzMp82x0z8BLifj0fwrrMujzFUBPTLEIoD6Usz359E JW6Wde80kCX6Ypbid8DPzcjitj9IVQCf5gR7yF8vQQ2cJzAJzNYtoFg6OpzEDk9r eCk/Tulu8C2Yeel7WBsEkRyQewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBJOX0oQ hMZkToDKV6xzwyRwuVuKMB8GA1UdIwQYMBaAFAV7U3dAOCZ4oHj1vyhMcmeUudE0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTJGQS9GQTQ2RTBEMkVF MDMxMUVGOUMyQjhBNDlDNEY5QUUwMi9CWHRUZDBBNEpuaWdlUFdfS0V4eVo1UzUw VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JYdFRkMEE0Sm5pZ2VQV19LRXh5WjVTNTBUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OTJGQS9GQTQ2RTBEMkVFMDMxMUVGOUMyQjhBNDlDNEY5QUUwMi9CWHRUZDBBNEpu aWdlUFdfS0V4eVo1UzUwVFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAMR2mScdqf/mX8Hk/X82Vk6y7MGGNflRJfPlxro8mR7QeQ1f9ljdbb QzPJm3QjlBRRH/maPipJdKLEWhQG8FzzOHnQFDXBuRy+wVqJ3TZnGqdHxo4FCxB7 /TI9/57OmRO86NgSDivUxNZuwJJ1b8dyFMvyEq720iqqTW21+cVXSHz9R3ms20GP efLJw8NBFoHNVgyDAP5w1MjowauaHSdWR8uBbQYZOeFugbXijL5X8YfWpPL/JqrZ G6cqA6axX0/JJGgAF1AYZIAuueMZOTfum7ZhnV/k52InC2NPpB6sQ3TuS89yQ5Cw t85lsBF28+m7x6Tz8mEjy0CLT1fLf+Hg -----END CERTIFICATE-----Generated at Wed Dec 24 17:37:54 2025 by rpki-client