This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.mft File: BQ5HmwmNZLazhlsr5GiFdeotTVE.mft (raw, json) Hash identifier: a2Le9YcAoomVoM5aibkzJ+af5kezyliNW7+zOMQyQbc= Subject key identifier: 54:E5:46:D2:43:9B:F9:EE:6D:0E:35:0D:68:20:26:8A:86:D9:40:DF Authority key identifier: 05:0E:47:9B:09:8D:64:B6:B3:86:5B:2B:E4:68:85:75:EA:2D:4D:51 Certificate issuer: /CN=A91AB457/serialNumber=050E479B098D64B6B3865B2BE4688575EA2D4D51 Certificate serial: 0C2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ5HmwmNZLazhlsr5GiFdeotTVE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.mft Manifest number: 0C2B Signing time: Mon 22 Dec 2025 18:16:15 +0000 Manifest this update: Mon 22 Dec 2025 18:16:15 +0000 Manifest next update: Mon 29 Dec 2025 18:16:15 +0000 Files and hashes: 1: BQ5HmwmNZLazhlsr5GiFdeotTVE.crl (hash: 2zgvzwQqlOmrrSdSWI9tJK0y5JM8DtfvG9PDcyaC+mA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.crl rsync://rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ5HmwmNZLazhlsr5GiFdeotTVE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 18:16:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3115 (0xc2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB457, serialNumber=050E479B098D64B6B3865B2BE4688575EA2D4D51 Validity Not Before: Dec 22 18:16:15 2025 GMT Not After : Dec 29 18:16:15 2025 GMT Subject: CN=69498aef-b456 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:97:5d:b4:68:c5:b5:d6:4e:2f:39:b1:a2:e0: 34:39:97:c2:90:a1:44:9d:d8:72:19:3f:aa:62:48: e4:50:96:d4:13:e9:f8:1e:7e:3c:5c:98:8d:13:cc: e5:d8:99:2b:a5:d8:b9:16:9c:c0:50:36:e5:46:13: 25:b9:f7:25:f5:09:d0:77:ad:29:8c:2c:a3:ee:ca: ba:69:e7:e4:ba:1a:94:e6:a3:88:7e:c2:9b:8d:fe: 45:b6:66:97:bf:fd:45:12:6d:48:dd:26:a4:ba:94: fc:a4:08:0d:9b:ea:07:56:f0:61:e8:c5:91:56:ea: 1b:3f:36:a6:13:9e:05:da:07:1b:7c:9d:67:98:69: 43:2e:18:5d:e6:22:0d:ce:74:a8:33:39:97:0e:ef: 6f:61:85:f0:c9:b6:87:44:21:f6:27:d5:7a:77:5f: c3:c5:95:f9:4c:e0:98:72:12:cd:0d:b9:12:80:ee: a0:6d:a5:8c:4a:ba:1f:82:87:b5:82:bf:8a:ca:0d: 15:d9:9a:1b:e3:af:76:11:c4:43:d1:eb:0b:a6:43: cf:70:85:a0:59:11:46:e9:93:ac:c2:78:02:d9:5e: 5d:66:24:e6:56:9b:e1:05:39:ad:99:66:43:f3:2c: 1f:7a:29:85:72:34:f7:09:91:67:f5:0a:8f:98:50: 9b:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:E5:46:D2:43:9B:F9:EE:6D:0E:35:0D:68:20:26:8A:86:D9:40:DF X509v3 Authority Key Identifier: keyid:05:0E:47:9B:09:8D:64:B6:B3:86:5B:2B:E4:68:85:75:EA:2D:4D:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ5HmwmNZLazhlsr5GiFdeotTVE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:9e:11:e6:21:01:1b:aa:d2:b2:87:c5:1f:7c:99:2e:9b:64: 25:f5:b6:d7:87:57:47:0b:a0:b8:f2:3a:9a:81:bb:c9:2f:bf: b5:1b:b1:5c:bf:97:b6:82:d9:2d:54:1f:47:3a:57:4d:94:84: 96:44:18:6a:5c:f6:40:4b:79:05:73:7b:a0:d2:6b:28:1a:a7: 43:d1:70:f4:1b:a0:3d:63:55:7e:e8:3d:cf:fe:ec:b2:38:47: 6b:7a:93:93:74:db:2e:51:c7:21:6e:4b:fd:76:76:55:a7:5d: b9:e6:33:8b:98:75:0e:d3:1c:05:5c:55:12:02:bd:8d:fe:9c: cb:1f:e3:13:8b:75:30:70:71:f1:92:02:eb:c5:05:7a:eb:04: d2:70:12:57:71:04:0e:ab:b3:2b:e5:74:2c:6e:35:48:7d:14: 14:42:1e:6d:71:1c:cc:3e:51:cf:24:22:37:06:83:e0:9c:0c: f3:f3:cc:88:a8:7d:ef:82:89:6e:9e:e7:fe:4b:14:1a:68:07: 05:d5:05:91:bf:2a:8d:31:b0:f1:10:19:a1:57:d5:8d:82:38: 1c:36:18:f1:7f:d0:ee:89:47:68:c2:05:2c:dc:0d:0f:40:8b: 46:3b:0a:4d:24:a9:2f:3a:77:f3:cf:5a:df:08:21:68:95:ba: 76:a8:20:5b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDCswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI0NTcxMTAvBgNVBAUTKDA1MEU0NzlCMDk4RDY0QjZCMzg2NUIyQkU0Njg4NTc1 RUEyRDRENTEwHhcNMjUxMjIyMTgxNjE1WhcNMjUxMjI5MTgxNjE1WjAYMRYwFAYD VQQDDA02OTQ5OGFlZi1iNDU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvpddtGjFtdZOLzmxouA0OZfCkKFEndhyGT+qYkjkUJbUE+n4Hn48XJiNE8zl 2Jkrpdi5FpzAUDblRhMlufcl9QnQd60pjCyj7sq6aefkuhqU5qOIfsKbjf5FtmaX v/1FEm1I3SakupT8pAgNm+oHVvBh6MWRVuobPzamE54F2gcbfJ1nmGlDLhhd5iIN znSoMzmXDu9vYYXwybaHRCH2J9V6d1/DxZX5TOCYchLNDbkSgO6gbaWMSrofgoe1 gr+Kyg0V2Zob4692EcRD0esLpkPPcIWgWRFG6ZOswngC2V5dZiTmVpvhBTmtmWZD 8ywfeimFcjT3CZFn9QqPmFCbZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFTlRtJD m/nubQ41DWggJoqG2UDfMB8GA1UdIwQYMBaAFAUOR5sJjWS2s4ZbK+RohXXqLU1R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjQ1Ny81QUY2NjEwMjFD OTgxMUVBQjQ3NDNGMEZDNEY5QUUwMi9CUTVIbXdtTlpMYXpobHNyNUdpRmRlb3RU VkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JRNUhtd21OWkxhemhsc3I1R2lGZGVvdFRWRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjQ1Ny81QUY2NjEwMjFDOTgxMUVBQjQ3NDNGMEZDNEY5QUUwMi9CUTVIbXdtTlpM YXpobHNyNUdpRmRlb3RUVkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAlnhHmIQEbqtKyh8UffJkum2Ql9bbXh1dHC6C48jqagbvJL7+1G7Fc v5e2gtktVB9HOldNlISWRBhqXPZAS3kFc3ug0msoGqdD0XD0G6A9Y1V+6D3P/uyy OEdrepOTdNsuUcchbkv9dnZVp1255jOLmHUO0xwFXFUSAr2N/pzLH+MTi3UwcHHx kgLrxQV66wTScBJXcQQOq7Mr5XQsbjVIfRQUQh5tcRzMPlHPJCI3BoPgnAzz88yI qH3vgolunuf+SxQaaAcF1QWRvyqNMbDxEBmhV9WNgjgcNhjxf9DuiUdowgUs3A0P QItGOwpNJKkvOnfzz1rfCCFolbp2qCBb -----END CERTIFICATE-----Generated at Wed Dec 24 14:11:41 2025 by rpki-client