This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A546E/0CD41DA8B76A11EA814F5084C4F9AE02/bFpYn5JM6b7R_Yn1r_YwySdXRCA.mft File: bFpYn5JM6b7R_Yn1r_YwySdXRCA.mft (raw, json) Hash identifier: OjWIgksGFYWr5Popg7D2ZsejLIjxQxzmMITMV17rqiw= Subject key identifier: B3:31:17:53:55:4E:0E:FF:5F:34:15:0B:64:59:0E:09:D5:29:73:9D Authority key identifier: 6C:5A:58:9F:92:4C:E9:BE:D1:FD:89:F5:AF:F6:30:C9:27:57:44:20 Certificate issuer: /CN=A91A546E/serialNumber=6C5A589F924CE9BED1FD89F5AFF630C927574420 Certificate serial: 0991 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bFpYn5JM6b7R_Yn1r_YwySdXRCA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A546E/0CD41DA8B76A11EA814F5084C4F9AE02/bFpYn5JM6b7R_Yn1r_YwySdXRCA.mft Manifest number: 0951 Signing time: Sat 20 Dec 2025 20:17:13 +0000 Manifest this update: Sat 20 Dec 2025 20:17:12 +0000 Manifest next update: Sat 27 Dec 2025 20:17:12 +0000 Files and hashes: 1: bFpYn5JM6b7R_Yn1r_YwySdXRCA.crl (hash: 7UHNCduXy4re0BoYFA4lMw53bYOI4gb1a13XWx5fH6g=) 2: 88252000B55C11ECA9565039C4F9AE02.roa (hash: TR+d6Rjq96WxruqKgy2u4oNd2lnUKRlYiqBdb4EEjrA=) 3: F2A462E66B6C11F0B453B656C4F9AE02.roa (hash: u/IJXHcIn7lbo6iqFsAljOO6/E+7Rk3qnGcidVuOSfM=) 4: 50805C5C6CF911F0A63D4C65C4F9AE02.roa (hash: olPSDCWvaweZpAfUli8fgZJJaQht5UUB+cNnsdtHWSg=) 5: CC3B5938B55911EC9256FE19C4F9AE02.roa (hash: YfESzO95JKDO7r7mGpLR5hQYholf9V/lBlUpUDalD40=) 6: 1A8C65506B6E11F0AEECA858C4F9AE02.roa (hash: GHsxefrnlU5VupyXbGIMFIi7tGhmBUS8mhWsd7Ko2TE=) 7: CCBF0CF6B55911EC9256FE19C4F9AE02.roa (hash: wcThOncXEAjT8ZpszyLo6l4OnTDnQ4syZMD7UYn7ez4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A546E/0CD41DA8B76A11EA814F5084C4F9AE02/bFpYn5JM6b7R_Yn1r_YwySdXRCA.crl rsync://rpki.apnic.net/member_repository/A91A546E/0CD41DA8B76A11EA814F5084C4F9AE02/bFpYn5JM6b7R_Yn1r_YwySdXRCA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bFpYn5JM6b7R_Yn1r_YwySdXRCA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 20:17:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2449 (0x991) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A546E, serialNumber=6C5A589F924CE9BED1FD89F5AFF630C927574420 Validity Not Before: Dec 20 20:17:12 2025 GMT Not After : Dec 27 20:17:12 2025 GMT Subject: CN=69470448-9b31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:5e:c8:5a:8e:06:82:ca:55:51:36:c8:12:2e: 92:dc:d0:c8:56:2f:1e:cf:97:8b:73:94:ee:29:9e: 07:2b:43:1b:65:e1:58:f5:fe:52:74:14:0b:69:df: 71:22:96:85:a0:da:ba:46:c1:bd:3e:52:f9:5f:bf: a0:e2:21:76:64:18:98:ae:db:8a:e1:ef:08:e5:3b: c1:2c:bb:df:93:f1:c0:3e:98:4b:b6:20:14:c4:d7: 0c:46:38:70:ed:70:96:29:34:f4:b5:b1:71:39:72: 67:66:27:ab:38:47:4e:43:81:a2:c9:4d:7b:36:cd: 48:12:9b:74:22:3b:dc:f2:af:67:49:16:af:6d:3e: 9d:1a:4e:f8:78:78:cc:27:ca:db:b4:b3:5a:b6:d6: ed:60:ea:18:09:e1:02:07:77:67:82:87:53:79:8e: dc:34:92:ab:28:29:26:aa:24:f1:9a:a6:5f:c6:5c: e9:03:b3:ee:99:6b:cc:84:1d:f6:a5:b6:82:02:ed: 5d:ae:73:0e:bb:17:6b:50:f5:b1:a8:f5:fd:e0:cb: ee:af:a4:af:45:ef:43:99:00:5f:69:cd:a0:ab:85: 1e:d8:fc:89:b7:69:5a:fb:c3:df:35:75:18:3f:63: c1:c8:c3:f5:1b:4c:17:67:c6:83:29:58:fd:61:b5: 82:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:31:17:53:55:4E:0E:FF:5F:34:15:0B:64:59:0E:09:D5:29:73:9D X509v3 Authority Key Identifier: keyid:6C:5A:58:9F:92:4C:E9:BE:D1:FD:89:F5:AF:F6:30:C9:27:57:44:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A546E/0CD41DA8B76A11EA814F5084C4F9AE02/bFpYn5JM6b7R_Yn1r_YwySdXRCA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bFpYn5JM6b7R_Yn1r_YwySdXRCA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A546E/0CD41DA8B76A11EA814F5084C4F9AE02/bFpYn5JM6b7R_Yn1r_YwySdXRCA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:59:17:01:63:13:98:f0:fa:3e:e0:f0:63:99:21:3a:73:65: fb:07:b7:ca:22:78:97:e5:81:8b:c0:18:d3:72:12:83:13:1e: e4:03:63:5f:9b:ce:9c:d5:ff:35:47:55:6b:63:d2:5d:0e:a6: fc:59:48:09:8d:a0:8d:6e:bd:f7:c4:d1:07:6b:2d:a4:b4:a4: e4:74:a8:0e:03:9f:92:ae:0c:b3:a4:e1:be:98:bf:ce:09:1d: 5a:e4:7d:f2:92:3f:9f:8e:97:99:49:69:35:6d:3d:23:a8:af: 92:84:d0:20:1a:c8:f1:34:9f:30:66:f6:fd:c0:03:e6:48:fc: 18:12:20:ac:5b:12:54:00:1d:c3:6e:08:15:90:22:06:a3:da: 34:2f:f9:a1:2d:70:fa:3e:75:e3:40:3e:50:b5:b4:f7:f2:46: b0:5f:b8:07:80:32:33:3d:e7:7a:d1:42:84:2f:a5:f9:8f:27: c8:57:89:3f:0a:41:0b:3c:6c:a8:4e:cc:6d:d7:7a:96:00:37: ca:1e:3e:73:40:29:2a:8c:96:9a:47:4f:0a:84:03:ea:eb:09: a3:af:11:7d:4c:df:9e:9e:de:82:06:56:3d:dc:9c:c7:b8:e4: a0:d4:10:b0:63:7f:be:f4:7f:f6:06:cd:a4:9c:4e:21:cf:a5: 1d:ab:bf:ec -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCZEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx QTU0NkUxMTAvBgNVBAUTKDZDNUE1ODlGOTI0Q0U5QkVEMUZEODlGNUFGRjYzMEM5 Mjc1NzQ0MjAwHhcNMjUxMjIwMjAxNzEyWhcNMjUxMjI3MjAxNzEyWjAYMRYwFAYD VQQDDA02OTQ3MDQ0OC05YjMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAi17IWo4GgspVUTbIEi6S3NDIVi8ez5eLc5TuKZ4HK0MbZeFY9f5SdBQLad9x IpaFoNq6RsG9PlL5X7+g4iF2ZBiYrtuK4e8I5TvBLLvfk/HAPphLtiAUxNcMRjhw 7XCWKTT0tbFxOXJnZierOEdOQ4GiyU17Ns1IEpt0Ijvc8q9nSRavbT6dGk74eHjM J8rbtLNattbtYOoYCeECB3dngodTeY7cNJKrKCkmqiTxmqZfxlzpA7PumWvMhB32 pbaCAu1drnMOuxdrUPWxqPX94Mvur6SvRe9DmQBfac2gq4Ue2PyJt2la+8PfNXUY P2PByMP1G0wXZ8aDKVj9YbWCtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLMxF1NV Tg7/XzQVC2RZDgnVKXOdMB8GA1UdIwQYMBaAFGxaWJ+STOm+0f2J9a/2MMknV0Qg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTQ2RS8wQ0Q0MURBOEI3 NkExMUVBODE0RjUwODRDNEY5QUUwMi9iRnBZbjVKTTZiN1JfWW4xcl9Zd3lTZFhS Q0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JGcFluNUpNNmI3Ul9ZbjFyX1l3eVNkWFJDQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTQ2RS8wQ0Q0MURBOEI3NkExMUVBODE0RjUwODRDNEY5QUUwMi9iRnBZbjVKTTZi N1JfWW4xcl9Zd3lTZFhSQ0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+WRcBYxOY8Po+4PBjmSE6c2X7B7fKIniX5YGLwBjTchKDEx7kA2Nf m86c1f81R1VrY9JdDqb8WUgJjaCNbr33xNEHay2ktKTkdKgOA5+SrgyzpOG+mL/O CR1a5H3ykj+fjpeZSWk1bT0jqK+ShNAgGsjxNJ8wZvb9wAPmSPwYEiCsWxJUAB3D bggVkCIGo9o0L/mhLXD6PnXjQD5QtbT38kawX7gHgDIzPed60UKEL6X5jyfIV4k/ CkELPGyoTsxt13qWADfKHj5zQCkqjJaaR08KhAPq6wmjrxF9TN+ent6CBlY93JzH uOSg1BCwY3++9H/2Bs2knE4hz6Udq7/s -----END CERTIFICATE-----Generated at Sun Dec 21 13:12:19 2025 by rpki-client