This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.mft File: bzPCWtM2F4RBLEKweYYz0Dslvso.mft (raw, json) Hash identifier: YUJ0LR1KtBzMANPzQCNWizCpkw4emcSHWS+quxmF748= Subject key identifier: B7:2E:1B:A4:C3:EE:05:45:26:CE:41:58:3C:F8:E5:03:A9:C5:71:1C Authority key identifier: 6F:33:C2:5A:D3:36:17:84:41:2C:42:B0:79:86:33:D0:3B:25:BE:CA Certificate issuer: /CN=A91AB027/serialNumber=6F33C25AD3361784412C42B0798633D03B25BECA Certificate serial: 0F9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bzPCWtM2F4RBLEKweYYz0Dslvso.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.mft Manifest number: 0F94 Signing time: Mon 22 Dec 2025 17:13:03 +0000 Manifest this update: Mon 22 Dec 2025 17:13:03 +0000 Manifest next update: Mon 29 Dec 2025 17:13:03 +0000 Files and hashes: 1: bzPCWtM2F4RBLEKweYYz0Dslvso.crl (hash: IoM3rm2Wn1aF97xwDSU5LTPA60FaHlUNgCxwG3tAUhY=) 2: 62C1F5587ACD11E9AC0A867BC4F9AE02.roa (hash: zJtFuv9ERKF2VcP0kXnp4PcKZFEJbjxQnX3bWZEEZas=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.crl rsync://rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bzPCWtM2F4RBLEKweYYz0Dslvso.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 17:13:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3997 (0xf9d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB027, serialNumber=6F33C25AD3361784412C42B0798633D03B25BECA Validity Not Before: Dec 22 17:13:03 2025 GMT Not After : Dec 29 17:13:03 2025 GMT Subject: CN=69497c1f-ef8b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:61:8f:00:a1:77:36:32:b9:3f:a8:ca:f4:a8: 42:fc:a4:04:e7:83:22:89:1d:bd:e1:04:2f:60:41: ed:51:9c:4e:1b:44:6d:9d:37:24:74:7d:4f:1b:d2: cf:4f:6b:78:80:c9:83:4d:1c:84:e6:d1:5f:b8:e1: f0:c8:5c:bd:03:8e:15:9c:e8:48:6f:1d:f9:62:02: f4:88:b9:35:c7:31:f4:9f:54:9e:68:e3:02:90:8a: 8d:28:9c:31:0f:ba:9f:94:30:22:f4:52:fd:39:f1: 80:d2:bc:8d:8d:60:3e:06:3f:39:79:9e:db:43:03: 30:f4:96:22:24:7b:ed:ec:5d:3c:53:2d:58:a5:b0: b3:32:73:47:b4:e9:f8:4e:a2:6e:d3:fc:2a:c1:5b: 1e:0e:cf:dd:a4:2f:2e:89:84:0d:f5:b2:90:b5:d7: 51:5a:06:0e:ce:ab:4f:d3:b0:f6:82:21:22:c9:68: 57:dc:56:a2:0f:15:86:61:5e:a8:a0:b8:b8:3a:f0: 6c:9c:8c:8b:06:02:d5:79:90:b8:bc:5f:ac:83:bf: d5:97:ee:25:fb:7d:08:20:57:71:f7:dd:69:a9:c5: 19:93:d9:48:c8:53:98:b0:3f:b7:ee:8a:49:54:a5: 54:95:eb:5c:4c:c6:2d:91:c5:da:fe:ac:85:7d:4b: 44:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:2E:1B:A4:C3:EE:05:45:26:CE:41:58:3C:F8:E5:03:A9:C5:71:1C X509v3 Authority Key Identifier: keyid:6F:33:C2:5A:D3:36:17:84:41:2C:42:B0:79:86:33:D0:3B:25:BE:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bzPCWtM2F4RBLEKweYYz0Dslvso.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:5a:78:05:ad:32:b5:e4:f0:44:34:cc:63:af:06:1f:96:1e: f5:80:29:a2:bd:9c:15:e3:b1:d3:91:46:f1:65:6e:18:fa:46: 59:44:5b:6c:81:57:cb:17:a0:92:31:a8:f3:cf:fb:33:0d:c4: 87:ea:53:bb:85:07:93:a9:7e:43:a2:5a:1f:47:17:0c:1d:64: 7b:6c:ef:2e:7b:2b:29:5d:44:a9:02:e5:c3:b6:21:b9:a8:55: df:51:fd:db:f1:b1:34:7a:ec:10:ad:94:c2:16:08:6b:63:00: ec:bf:fe:fc:3d:27:64:4a:c6:38:ad:9e:b4:4c:be:f7:a8:c8: 04:80:de:8f:e3:00:22:62:9e:5e:0b:25:65:6d:fa:e6:48:53: b0:97:ce:93:a6:86:4c:96:c8:ef:f3:ec:d5:c1:34:a4:b4:f0: 6e:72:fe:94:ce:1b:89:a3:55:c9:fc:a3:13:f9:4d:52:ea:5d: b5:72:5f:f6:51:73:17:ce:6b:69:18:44:c7:7a:da:00:9a:50: 7d:cd:62:c7:e5:10:a6:c5:64:ab:eb:a4:41:0a:13:04:e4:07: 17:d7:e2:e8:38:0e:89:ff:84:d5:2f:0b:af:d1:b4:67:e7:c1: 54:ec:3a:78:d9:61:0c:ef:36:8c:3b:a8:32:81:e6:2c:f0:fe: d7:88:cb:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD50wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUIwMjcxMTAvBgNVBAUTKDZGMzNDMjVBRDMzNjE3ODQ0MTJDNDJCMDc5ODYzM0Qw M0IyNUJFQ0EwHhcNMjUxMjIyMTcxMzAzWhcNMjUxMjI5MTcxMzAzWjAYMRYwFAYD VQQDDA02OTQ5N2MxZi1lZjhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtGGPAKF3NjK5P6jK9KhC/KQE54MiiR294QQvYEHtUZxOG0RtnTckdH1PG9LP T2t4gMmDTRyE5tFfuOHwyFy9A44VnOhIbx35YgL0iLk1xzH0n1SeaOMCkIqNKJwx D7qflDAi9FL9OfGA0ryNjWA+Bj85eZ7bQwMw9JYiJHvt7F08Uy1YpbCzMnNHtOn4 TqJu0/wqwVseDs/dpC8uiYQN9bKQtddRWgYOzqtP07D2giEiyWhX3FaiDxWGYV6o oLi4OvBsnIyLBgLVeZC4vF+sg7/Vl+4l+30IIFdx991pqcUZk9lIyFOYsD+37opJ VKVUletcTMYtkcXa/qyFfUtEzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLcuG6TD 7gVFJs5BWDz45QOpxXEcMB8GA1UdIwQYMBaAFG8zwlrTNheEQSxCsHmGM9A7Jb7K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjAyNy82OEY3NTkxMDcz NDYxMUU5QUQ1NjFCNDdDNEY5QUUwMi9ielBDV3RNMkY0UkJMRUt3ZVlZejBEc2x2 c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J6UENXdE0yRjRSQkxFS3dlWVl6MERzbHZzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjAyNy82OEY3NTkxMDczNDYxMUU5QUQ1NjFCNDdDNEY5QUUwMi9ielBDV3RNMkY0 UkJMRUt3ZVlZejBEc2x2c28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALWngFrTK15PBENMxjrwYflh71gCmivZwV47HTkUbxZW4Y+kZZRFts gVfLF6CSMajzz/szDcSH6lO7hQeTqX5DolofRxcMHWR7bO8ueyspXUSpAuXDtiG5 qFXfUf3b8bE0euwQrZTCFghrYwDsv/78PSdkSsY4rZ60TL73qMgEgN6P4wAiYp5e CyVlbfrmSFOwl86TpoZMlsjv8+zVwTSktPBucv6UzhuJo1XJ/KMT+U1S6l21cl/2 UXMXzmtpGETHetoAmlB9zWLH5RCmxWSr66RBChME5AcX1+LoOA6J/4TVLwuv0bRn 58FU7Dp42WEM7zaMO6gygeYs8P7XiMtq -----END CERTIFICATE-----Generated at Wed Dec 24 15:42:39 2025 by rpki-client