This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4873/56A5B2AE38E711EF844B4F65C4F9AE02/bdB1wHDNGUBcCU1NPUvaFjQM7vw.mft File: bdB1wHDNGUBcCU1NPUvaFjQM7vw.mft (raw, json) Hash identifier: uarr7JYlioqTl0VP+FKJOuiKten/873qRonA833o8Z8= Subject key identifier: 91:3C:A7:33:39:A2:ED:E9:34:3B:77:7B:74:05:9F:C6:6F:75:2B:F5 Authority key identifier: 6D:D0:75:C0:70:CD:19:40:5C:09:4D:4D:3D:4B:DA:16:34:0C:EE:FC Certificate issuer: /CN=A91B4873/serialNumber=6DD075C070CD19405C094D4D3D4BDA16340CEEFC Certificate serial: 0112 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bdB1wHDNGUBcCU1NPUvaFjQM7vw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4873/56A5B2AE38E711EF844B4F65C4F9AE02/bdB1wHDNGUBcCU1NPUvaFjQM7vw.mft Manifest number: 0112 Signing time: Tue 23 Dec 2025 03:51:40 +0000 Manifest this update: Tue 23 Dec 2025 03:51:40 +0000 Manifest next update: Tue 30 Dec 2025 03:51:40 +0000 Files and hashes: 1: bdB1wHDNGUBcCU1NPUvaFjQM7vw.crl (hash: IEcdtC4nNbYoaS9FGX7m7mX28XF6BSMQYYJTcSQy0hs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4873/56A5B2AE38E711EF844B4F65C4F9AE02/bdB1wHDNGUBcCU1NPUvaFjQM7vw.crl rsync://rpki.apnic.net/member_repository/A91B4873/56A5B2AE38E711EF844B4F65C4F9AE02/bdB1wHDNGUBcCU1NPUvaFjQM7vw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bdB1wHDNGUBcCU1NPUvaFjQM7vw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 03:51:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 274 (0x112) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4873, serialNumber=6DD075C070CD19405C094D4D3D4BDA16340CEEFC Validity Not Before: Dec 23 03:51:40 2025 GMT Not After : Dec 30 03:51:40 2025 GMT Subject: CN=694a11cc-a92e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:7c:c8:f9:69:e8:06:4c:99:9a:fb:4b:3d:62: cc:25:e3:51:26:6b:bf:48:bd:db:b1:51:09:c0:1d: 15:bc:a1:60:4a:b4:ea:fe:58:4a:81:f8:1f:49:85: 97:75:3e:c6:98:a0:0a:c5:6e:36:05:80:86:44:ef: f3:24:f0:79:4f:0f:76:96:7c:f4:e3:19:30:47:81: fc:4c:67:22:80:df:dd:f0:e1:ad:8b:41:36:c4:24: 12:1e:9b:4d:44:4f:f4:e4:df:8c:1c:5b:41:e0:ff: d9:8e:29:2a:22:04:75:19:d7:ad:54:6b:b1:59:98: a6:46:36:c2:86:f1:e3:80:e0:2f:c1:16:8c:a4:ff: 09:65:69:42:20:e8:35:c0:33:27:1c:24:29:3a:8b: 30:24:16:0c:53:cd:1c:39:f1:25:6e:2b:6c:d1:53: 20:65:55:22:75:40:ed:32:65:86:6b:54:e2:c8:8f: 45:32:86:37:b0:43:81:fc:14:fa:7c:18:cb:ea:9d: ce:85:c1:d6:11:0a:95:34:4b:4d:bb:86:54:72:3c: 91:bc:9a:0d:ad:8f:6f:a6:5f:c0:16:ad:14:51:36: a1:3d:cf:f4:51:6b:15:8b:a4:b9:0c:4e:b2:48:4a: 71:95:c8:62:57:19:67:33:7c:8e:3c:9d:d3:95:9c: 7d:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:3C:A7:33:39:A2:ED:E9:34:3B:77:7B:74:05:9F:C6:6F:75:2B:F5 X509v3 Authority Key Identifier: keyid:6D:D0:75:C0:70:CD:19:40:5C:09:4D:4D:3D:4B:DA:16:34:0C:EE:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4873/56A5B2AE38E711EF844B4F65C4F9AE02/bdB1wHDNGUBcCU1NPUvaFjQM7vw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bdB1wHDNGUBcCU1NPUvaFjQM7vw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4873/56A5B2AE38E711EF844B4F65C4F9AE02/bdB1wHDNGUBcCU1NPUvaFjQM7vw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:e0:9b:4d:2e:55:8e:ae:e0:58:f1:c7:e8:91:fc:bc:fc:2e: ec:16:66:01:39:8e:15:18:6e:6b:21:e3:91:83:8f:05:06:b6: a6:9f:60:ca:b1:3d:f6:b3:93:02:c4:ba:b9:de:35:9c:92:46: 63:da:36:58:fd:52:7d:81:7f:ef:01:5e:6d:a8:0f:ec:43:4d: 58:52:50:79:a2:b9:0f:3d:4b:08:3d:4c:68:06:a0:e9:a8:c0: 37:91:40:d9:b9:93:57:b1:77:77:c3:73:06:ce:68:7b:b7:68: 38:2f:b2:36:5d:d1:d1:09:c7:9b:12:7b:df:e2:7e:95:36:2a: 35:19:51:0a:3c:51:a5:0b:98:17:06:47:7e:67:ed:c2:f8:89: dc:19:5f:e1:ca:48:34:06:30:fe:9d:51:4b:44:23:10:0c:ad: 5c:a7:26:06:4f:f2:0c:1b:30:ac:3a:30:7d:af:f6:6f:77:2d: 67:31:97:f5:37:e0:6b:09:61:06:ad:82:cd:02:fe:69:a7:9a: e8:64:bc:92:91:fa:c6:35:83:bd:5c:83:ba:88:1d:70:c8:0c: 05:4d:78:16:a0:df:db:93:c0:5f:25:65:2a:35:cb:28:42:6d: 45:8f:d5:4f:17:37:e1:0d:8a:66:7f:0f:79:33:68:94:09:a1: a9:37:87:ca -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQ4NzMxMTAvBgNVBAUTKDZERDA3NUMwNzBDRDE5NDA1QzA5NEQ0RDNENEJEQTE2 MzQwQ0VFRkMwHhcNMjUxMjIzMDM1MTQwWhcNMjUxMjMwMDM1MTQwWjAYMRYwFAYD VQQDDA02OTRhMTFjYy1hOTJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwHzI+WnoBkyZmvtLPWLMJeNRJmu/SL3bsVEJwB0VvKFgSrTq/lhKgfgfSYWX dT7GmKAKxW42BYCGRO/zJPB5Tw92lnz04xkwR4H8TGcigN/d8OGti0E2xCQSHptN RE/05N+MHFtB4P/ZjikqIgR1GdetVGuxWZimRjbChvHjgOAvwRaMpP8JZWlCIOg1 wDMnHCQpOoswJBYMU80cOfElbits0VMgZVUidUDtMmWGa1TiyI9FMoY3sEOB/BT6 fBjL6p3OhcHWEQqVNEtNu4ZUcjyRvJoNrY9vpl/AFq0UUTahPc/0UWsVi6S5DE6y SEpxlchiVxlnM3yOPJ3TlZx9ZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJE8pzM5 ou3pNDt3e3QFn8ZvdSv1MB8GA1UdIwQYMBaAFG3QdcBwzRlAXAlNTT1L2hY0DO78 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDg3My81NkE1QjJBRTM4 RTcxMUVGODQ0QjRGNjVDNEY5QUUwMi9iZEIxd0hETkdVQmNDVTFOUFV2YUZqUU03 dncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JkQjF3SEROR1VCY0NVMU5QVXZhRmpRTTd2dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDg3My81NkE1QjJBRTM4RTcxMUVGODQ0QjRGNjVDNEY5QUUwMi9iZEIxd0hETkdV QmNDVTFOUFV2YUZqUU03dncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAb4JtNLlWOruBY8cfokfy8/C7sFmYBOY4VGG5rIeORg48FBramn2DK sT32s5MCxLq53jWckkZj2jZY/VJ9gX/vAV5tqA/sQ01YUlB5orkPPUsIPUxoBqDp qMA3kUDZuZNXsXd3w3MGzmh7t2g4L7I2XdHRCcebEnvf4n6VNio1GVEKPFGlC5gX Bkd+Z+3C+IncGV/hykg0BjD+nVFLRCMQDK1cpyYGT/IMGzCsOjB9r/Zvdy1nMZf1 N+BrCWEGrYLNAv5pp5roZLySkfrGNYO9XIO6iB1wyAwFTXgWoN/bk8BfJWUqNcso Qm1Fj9VPFzfhDYpmfw95M2iUCaGpN4fK -----END CERTIFICATE-----Generated at Wed Dec 24 15:45:03 2025 by rpki-client