This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9B3C/3F3362DA86FA11EBB3C7BB29C4F9AE02/b2FOWP6Tat901zb1OS3tX9FrdYc.mft File: b2FOWP6Tat901zb1OS3tX9FrdYc.mft (raw, json) Hash identifier: zFfQyLKcdrhNexSBWOZlra3wLUCe6udd4J5Ho3sXjTg= Subject key identifier: 41:1C:35:69:26:CC:F6:6B:C8:2F:32:16:66:A9:01:0F:D1:7D:2A:63 Authority key identifier: 6F:61:4E:58:FE:93:6A:DF:74:D7:36:F5:39:2D:ED:5F:D1:6B:75:87 Certificate issuer: /CN=A91A9B3C/serialNumber=6F614E58FE936ADF74D736F5392DED5FD16B7587 Certificate serial: 06C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2FOWP6Tat901zb1OS3tX9FrdYc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9B3C/3F3362DA86FA11EBB3C7BB29C4F9AE02/b2FOWP6Tat901zb1OS3tX9FrdYc.mft Manifest number: 06BD Signing time: Mon 22 Dec 2025 21:27:11 +0000 Manifest this update: Mon 22 Dec 2025 21:27:11 +0000 Manifest next update: Mon 29 Dec 2025 21:27:11 +0000 Files and hashes: 1: b2FOWP6Tat901zb1OS3tX9FrdYc.crl (hash: ymOM0+SbazigXe7AOnN8HE577hNdGgXaSGosUC3ogpE=) 2: 00D8BE5286FC11EB8A95642DC4F9AE02.roa (hash: k0J17sE1EdNCFMHPLLouV8rIaMP7CAywUqJdG5phE9Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9B3C/3F3362DA86FA11EBB3C7BB29C4F9AE02/b2FOWP6Tat901zb1OS3tX9FrdYc.crl rsync://rpki.apnic.net/member_repository/A91A9B3C/3F3362DA86FA11EBB3C7BB29C4F9AE02/b2FOWP6Tat901zb1OS3tX9FrdYc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2FOWP6Tat901zb1OS3tX9FrdYc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 21:27:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1730 (0x6c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9B3C, serialNumber=6F614E58FE936ADF74D736F5392DED5FD16B7587 Validity Not Before: Dec 22 21:27:11 2025 GMT Not After : Dec 29 21:27:11 2025 GMT Subject: CN=6949b7af-fb3f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:00:38:22:59:55:61:94:14:0b:ec:93:3a:c6: 4d:0c:4f:0a:f3:4d:9d:0d:78:86:5d:32:2f:2f:90: 3a:71:72:51:c8:9d:f4:4b:13:b9:46:96:a5:b9:be: f2:49:2b:e2:d8:22:69:ef:31:74:1a:43:de:8f:9c: b1:eb:9e:1c:39:db:eb:cc:49:99:97:cb:3e:21:63: 3f:66:4b:65:42:5c:c0:87:5d:f9:96:34:ae:1e:b7: 42:e6:5c:e7:67:f6:0f:f8:3c:e6:c4:ba:dd:6a:f1: a9:f4:a8:7c:92:66:ff:fb:db:86:bd:d8:35:8b:ec: f8:33:84:26:6b:30:0d:93:66:20:33:00:c8:6b:3e: e5:ad:be:b5:c5:39:65:bd:cf:24:8e:38:43:a1:88: ef:11:b5:d9:bb:cb:a7:38:d8:75:5e:01:15:31:1a: ee:73:00:fc:02:b1:6b:63:9a:3d:bd:20:48:9d:45: ad:22:18:7f:e2:8e:7d:03:c0:74:c2:29:ce:19:7d: 5d:12:3f:9f:2f:7b:10:ed:c2:d5:d2:4d:07:e0:74: b2:48:7b:3b:c7:80:74:4b:3c:b4:41:8f:4c:9c:4d: 78:ad:c1:5e:78:b5:42:86:18:36:4e:ec:34:35:9e: f5:34:3d:fc:b3:40:fc:2f:6b:b0:e8:65:46:6d:eb: 52:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:1C:35:69:26:CC:F6:6B:C8:2F:32:16:66:A9:01:0F:D1:7D:2A:63 X509v3 Authority Key Identifier: keyid:6F:61:4E:58:FE:93:6A:DF:74:D7:36:F5:39:2D:ED:5F:D1:6B:75:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9B3C/3F3362DA86FA11EBB3C7BB29C4F9AE02/b2FOWP6Tat901zb1OS3tX9FrdYc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2FOWP6Tat901zb1OS3tX9FrdYc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9B3C/3F3362DA86FA11EBB3C7BB29C4F9AE02/b2FOWP6Tat901zb1OS3tX9FrdYc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:34:91:01:4f:6c:6c:cd:92:33:9b:6c:12:fd:32:d5:ed:d6: 13:8f:e4:46:7a:16:14:d3:5d:4a:c8:3a:49:0d:46:2a:6b:7c: 73:79:1b:8d:ba:b9:52:fd:10:94:c3:42:9b:73:8f:5d:91:45: 95:5a:21:37:4e:af:b6:ab:8b:14:d6:4f:9e:18:c9:4b:ed:3e: 86:59:ed:04:25:a3:1d:f4:84:62:ba:e6:6e:9e:61:ac:df:51: 4b:4f:58:6a:81:65:ea:43:73:94:41:c4:35:42:a5:79:93:23: 4c:ea:ee:60:f8:b3:b7:af:00:11:72:75:e5:10:6c:d6:2e:5b: af:db:5f:f3:d0:49:bb:c2:e6:b2:60:b7:ea:38:10:7d:8a:55: 6e:47:15:b4:50:3b:a7:be:1c:f3:e6:f8:1f:7e:74:ed:7f:24: ef:06:3c:28:5f:ac:5a:42:13:15:f9:63:39:e8:27:ae:0b:d1: d6:a4:50:22:a7:f8:19:02:e7:04:5a:80:aa:f2:3b:78:d6:1a: 7e:db:9c:40:3a:ca:c8:2d:cf:23:ad:b7:0c:2a:f5:52:9f:d9: ba:49:a3:75:e0:04:30:3a:f4:45:fb:c7:0f:65:92:12:26:80: 1a:4d:e0:ba:c2:2b:e1:47:86:c2:25:39:12:90:40:07:8a:73: 53:cc:a1:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBsIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTlCM0MxMTAvBgNVBAUTKDZGNjE0RTU4RkU5MzZBREY3NEQ3MzZGNTM5MkRFRDVG RDE2Qjc1ODcwHhcNMjUxMjIyMjEyNzExWhcNMjUxMjI5MjEyNzExWjAYMRYwFAYD VQQDDA02OTQ5YjdhZi1mYjNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtgA4IllVYZQUC+yTOsZNDE8K802dDXiGXTIvL5A6cXJRyJ30SxO5Rpalub7y SSvi2CJp7zF0GkPej5yx654cOdvrzEmZl8s+IWM/ZktlQlzAh135ljSuHrdC5lzn Z/YP+DzmxLrdavGp9Kh8kmb/+9uGvdg1i+z4M4QmazANk2YgMwDIaz7lrb61xTll vc8kjjhDoYjvEbXZu8unONh1XgEVMRrucwD8ArFrY5o9vSBInUWtIhh/4o59A8B0 winOGX1dEj+fL3sQ7cLV0k0H4HSySHs7x4B0Szy0QY9MnE14rcFeeLVChhg2Tuw0 NZ71ND38s0D8L2uw6GVGbetSGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEEcNWkm zPZryC8yFmapAQ/RfSpjMB8GA1UdIwQYMBaAFG9hTlj+k2rfdNc29Tkt7V/Ra3WH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOUIzQy8zRjMzNjJEQTg2 RkExMUVCQjNDN0JCMjlDNEY5QUUwMi9iMkZPV1A2VGF0OTAxemIxT1MzdFg5RnJk WWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2IyRk9XUDZUYXQ5MDF6YjFPUzN0WDlGcmRZYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OUIzQy8zRjMzNjJEQTg2RkExMUVCQjNDN0JCMjlDNEY5QUUwMi9iMkZPV1A2VGF0 OTAxemIxT1MzdFg5RnJkWWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAlNJEBT2xszZIzm2wS/TLV7dYTj+RGehYU011KyDpJDUYqa3xzeRuN urlS/RCUw0Kbc49dkUWVWiE3Tq+2q4sU1k+eGMlL7T6GWe0EJaMd9IRiuuZunmGs 31FLT1hqgWXqQ3OUQcQ1QqV5kyNM6u5g+LO3rwARcnXlEGzWLluv21/z0Em7wuay YLfqOBB9ilVuRxW0UDunvhzz5vgffnTtfyTvBjwoX6xaQhMV+WM56CeuC9HWpFAi p/gZAucEWoCq8jt41hp+25xAOsrILc8jrbcMKvVSn9m6SaN14AQwOvRF+8cPZZIS JoAaTeC6wivhR4bCJTkSkEAHinNTzKGi -----END CERTIFICATE-----Generated at Wed Dec 24 15:43:33 2025 by rpki-client