This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0F3F/09373AD678C211EABD772359C4F9AE02/-Bj8mI7HAyw-LGpIpVSYq3zVZf0.mft File: -Bj8mI7HAyw-LGpIpVSYq3zVZf0.mft (raw, json) Hash identifier: BQRV0+9So59m54vyhAYdJ79tvEXkMgAcpeNBCIxvWcc= Subject key identifier: CC:69:6C:65:1E:75:9F:90:89:A7:7E:D6:C7:75:C6:02:1B:B1:F4:5D Authority key identifier: F8:18:FC:98:8E:C7:03:2C:3E:2C:6A:48:A5:54:98:AB:7C:D5:65:FD Certificate issuer: /CN=A91B0F3F/serialNumber=F818FC988EC7032C3E2C6A48A55498AB7CD565FD Certificate serial: 0A9B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Bj8mI7HAyw-LGpIpVSYq3zVZf0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0F3F/09373AD678C211EABD772359C4F9AE02/-Bj8mI7HAyw-LGpIpVSYq3zVZf0.mft Manifest number: 0A7C Signing time: Mon 22 Dec 2025 19:05:08 +0000 Manifest this update: Mon 22 Dec 2025 19:05:08 +0000 Manifest next update: Mon 29 Dec 2025 19:05:08 +0000 Files and hashes: 1: -Bj8mI7HAyw-LGpIpVSYq3zVZf0.crl (hash: IroB+jYhsZhqnVCkkTVqF7+gcOSBZ8pRH+uwgAoUmTg=) 2: 59E4B0A81B9211F0A5D50649C4F9AE02.roa (hash: 4uAphyYn6AbiifiDtaxCom6jwozyhzmoBVY1cw2irI4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0F3F/09373AD678C211EABD772359C4F9AE02/-Bj8mI7HAyw-LGpIpVSYq3zVZf0.crl rsync://rpki.apnic.net/member_repository/A91B0F3F/09373AD678C211EABD772359C4F9AE02/-Bj8mI7HAyw-LGpIpVSYq3zVZf0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Bj8mI7HAyw-LGpIpVSYq3zVZf0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 19:05:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2715 (0xa9b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0F3F, serialNumber=F818FC988EC7032C3E2C6A48A55498AB7CD565FD Validity Not Before: Dec 22 19:05:08 2025 GMT Not After : Dec 29 19:05:08 2025 GMT Subject: CN=69499664-6212 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:b7:3d:d4:ca:45:64:5c:fa:bd:46:b3:e9:63: 03:da:65:7f:07:86:e2:e2:6b:f2:64:bb:18:79:80: df:6f:5b:ce:55:7e:36:09:58:e9:f0:8c:80:49:f0: fb:41:cf:21:39:95:13:54:fa:3a:9e:6d:fa:91:8f: 2d:fe:99:21:fe:e9:3b:ab:1c:08:52:71:f0:a9:79: ca:f1:b3:3a:c9:e5:74:4c:57:35:43:2a:32:a1:20: 3c:2d:d9:51:4d:7c:fe:b9:22:b5:31:2e:43:ec:11: 8a:24:37:31:97:72:ab:e2:5b:d2:74:a8:f5:76:96: cb:b9:ff:2d:dc:1c:bf:21:17:dd:d0:4e:99:ec:69: ed:5b:5f:fe:c1:bf:fb:eb:4a:16:db:62:e9:d2:f6: 73:88:ce:96:cd:dd:0f:a8:c0:8d:7b:8f:50:9e:23: 95:98:93:93:d3:47:61:04:28:ee:57:d8:9c:a1:e3: 30:88:8f:e2:56:ee:4a:bf:3b:75:3a:cf:06:ad:8a: c7:76:f6:f4:51:36:c1:7d:20:52:9e:64:46:d6:fb: fc:6d:f1:2a:fe:b7:86:4f:90:53:01:12:fc:ae:12: d5:f6:b3:46:8b:e4:80:81:ca:61:53:a8:0a:0b:48: d6:34:fa:74:ea:91:b4:35:f7:da:60:98:38:09:61: 03:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:69:6C:65:1E:75:9F:90:89:A7:7E:D6:C7:75:C6:02:1B:B1:F4:5D X509v3 Authority Key Identifier: keyid:F8:18:FC:98:8E:C7:03:2C:3E:2C:6A:48:A5:54:98:AB:7C:D5:65:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0F3F/09373AD678C211EABD772359C4F9AE02/-Bj8mI7HAyw-LGpIpVSYq3zVZf0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Bj8mI7HAyw-LGpIpVSYq3zVZf0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0F3F/09373AD678C211EABD772359C4F9AE02/-Bj8mI7HAyw-LGpIpVSYq3zVZf0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:21:bb:ca:42:44:37:cc:78:ac:ea:c0:43:28:66:e6:69:f9: d3:4f:6e:9d:e7:12:6c:4e:5f:b4:8a:23:6d:3e:0c:24:b7:68: 6c:be:bc:4a:0d:b2:94:5b:74:80:ea:0e:08:93:94:fe:b9:b8: 7f:c9:67:ea:3c:d3:dc:f1:0e:c5:5e:c4:c1:8d:99:50:4d:0d: a1:89:d5:99:c3:cb:49:a8:0b:1d:12:5c:ed:fe:7e:30:ff:06: 0e:bc:ea:a0:27:c1:b5:e4:34:9f:4f:4f:db:c3:8e:9c:15:4f: 64:c7:90:fd:38:d7:aa:f1:91:a9:ee:71:17:cc:b3:7a:68:8a: 57:b1:66:0f:aa:54:bd:8e:c9:11:c6:c5:88:14:48:1e:c4:59: 73:4d:66:9f:90:0c:e4:92:08:16:71:c1:60:51:28:b7:ce:e1: 87:c7:bf:20:a6:bb:8c:09:c8:45:c2:f1:c1:e3:a3:d3:98:4b: 67:fc:fb:70:7d:91:32:cf:12:ca:9e:19:fc:5c:62:aa:c8:31: 68:c0:73:be:28:33:8c:8a:ef:77:22:9d:d8:d7:7d:4f:b0:98: 53:af:28:13:9e:30:93:31:e3:27:54:5e:77:57:58:d3:40:7e: 41:22:67:21:c8:8a:6a:00:ab:a3:64:0a:98:fa:a2:07:d5:b9: 29:43:21:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCpswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjBGM0YxMTAvBgNVBAUTKEY4MThGQzk4OEVDNzAzMkMzRTJDNkE0OEE1NTQ5OEFC N0NENTY1RkQwHhcNMjUxMjIyMTkwNTA4WhcNMjUxMjI5MTkwNTA4WjAYMRYwFAYD VQQDDA02OTQ5OTY2NC02MjEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu7c91MpFZFz6vUaz6WMD2mV/B4bi4mvyZLsYeYDfb1vOVX42CVjp8IyASfD7 Qc8hOZUTVPo6nm36kY8t/pkh/uk7qxwIUnHwqXnK8bM6yeV0TFc1QyoyoSA8LdlR TXz+uSK1MS5D7BGKJDcxl3Kr4lvSdKj1dpbLuf8t3By/IRfd0E6Z7GntW1/+wb/7 60oW22Lp0vZziM6Wzd0PqMCNe49QniOVmJOT00dhBCjuV9icoeMwiI/iVu5Kvzt1 Os8GrYrHdvb0UTbBfSBSnmRG1vv8bfEq/reGT5BTARL8rhLV9rNGi+SAgcphU6gK C0jWNPp06pG0NffaYJg4CWEDmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMxpbGUe dZ+Qiad+1sd1xgIbsfRdMB8GA1UdIwQYMBaAFPgY/JiOxwMsPixqSKVUmKt81WX9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMEYzRi8wOTM3M0FENjc4 QzIxMUVBQkQ3NzIzNTlDNEY5QUUwMi8tQmo4bUk3SEF5dy1MR3BJcFZTWXEzelZa ZjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1CajhtSTdIQXl3LUxHcElwVlNZcTN6VlpmMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MEYzRi8wOTM3M0FENjc4QzIxMUVBQkQ3NzIzNTlDNEY5QUUwMi8tQmo4bUk3SEF5 dy1MR3BJcFZTWXEzelZaZjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAyIbvKQkQ3zHis6sBDKGbmafnTT26d5xJsTl+0iiNtPgwkt2hsvrxK DbKUW3SA6g4Ik5T+ubh/yWfqPNPc8Q7FXsTBjZlQTQ2hidWZw8tJqAsdElzt/n4w /wYOvOqgJ8G15DSfT0/bw46cFU9kx5D9ONeq8ZGp7nEXzLN6aIpXsWYPqlS9jskR xsWIFEgexFlzTWafkAzkkggWccFgUSi3zuGHx78gpruMCchFwvHB46PTmEtn/Ptw fZEyzxLKnhn8XGKqyDFowHO+KDOMiu93Ip3Y131PsJhTrygTnjCTMeMnVF53V1jT QH5BImchyIpqAKujZAqY+qIH1bkpQyEm -----END CERTIFICATE-----Generated at Wed Dec 24 00:35:50 2025 by rpki-client