This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C95AA/156BD89E242711EDB3EA3480C4F9AE02/bJuWh9BeK1vlNhCaavm_-hmYc9Q.mft File: bJuWh9BeK1vlNhCaavm_-hmYc9Q.mft (raw, json) Hash identifier: n3ybHHbG4HqG5Xqv4vUQ+4WpS8yJX5s8SZw0FuRgeeg= Subject key identifier: CF:87:90:38:DC:AA:A4:5E:E8:2D:47:55:93:4F:8E:F1:D3:28:50:65 Authority key identifier: 6C:9B:96:87:D0:5E:2B:5B:E5:36:10:9A:6A:F9:BF:FA:19:98:73:D4 Certificate issuer: /CN=A91C95AA/serialNumber=6C9B9687D05E2B5BE536109A6AF9BFFA199873D4 Certificate serial: 02A3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bJuWh9BeK1vlNhCaavm_-hmYc9Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C95AA/156BD89E242711EDB3EA3480C4F9AE02/bJuWh9BeK1vlNhCaavm_-hmYc9Q.mft Manifest number: 029E Signing time: Wed 03 Dec 2025 00:09:14 +0000 Manifest this update: Wed 03 Dec 2025 00:09:13 +0000 Manifest next update: Wed 10 Dec 2025 00:09:13 +0000 Files and hashes: 1: bJuWh9BeK1vlNhCaavm_-hmYc9Q.crl (hash: 9Du5h/fvjWTjbj7uZB6kPyM96bwpR8JMklE5a4IBgkw=) 2: FB1F8158242A11ED9547B486C4F9AE02.roa (hash: F+DLJ1aQV5oLLpGFe5erh1ip1G2eNsPVMkZyfdufJjc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C95AA/156BD89E242711EDB3EA3480C4F9AE02/bJuWh9BeK1vlNhCaavm_-hmYc9Q.crl rsync://rpki.apnic.net/member_repository/A91C95AA/156BD89E242711EDB3EA3480C4F9AE02/bJuWh9BeK1vlNhCaavm_-hmYc9Q.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bJuWh9BeK1vlNhCaavm_-hmYc9Q.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:09:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 675 (0x2a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C95AA, serialNumber=6C9B9687D05E2B5BE536109A6AF9BFFA199873D4 Validity Not Before: Dec 3 00:09:13 2025 GMT Not After : Dec 10 00:09:13 2025 GMT Subject: CN=692f7faa-af56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:7b:41:06:e6:f6:22:a0:e0:f9:cd:f5:57:de: 68:1a:c5:59:af:6f:ff:a5:03:14:61:5e:51:de:48: e4:d6:63:e5:67:ae:5c:0b:41:45:c9:3e:24:af:ae: 62:23:7e:f5:63:c6:eb:ad:9b:d1:b4:07:32:6b:57: 02:51:49:6d:11:c0:1b:f4:b4:8e:fa:72:38:a0:27: e5:05:e5:41:f9:e2:05:0f:bc:79:df:65:1d:d1:1b: 7b:e0:a6:c3:a9:7f:da:60:87:9c:a1:33:87:88:82: c2:ec:71:d9:80:d2:71:62:14:7c:ad:42:3a:34:5c: 4b:d4:d9:e8:97:ed:3e:1f:7d:15:53:65:75:1b:ba: b4:46:be:47:70:fb:1b:f3:0d:12:06:c1:d0:1e:b5: 56:5d:2e:90:b7:a3:3b:de:87:d0:45:74:af:ed:e1: 92:c9:ca:ae:97:0d:ec:e8:da:0d:96:0e:4e:9c:39: 8a:f0:63:af:90:21:d2:0b:62:2c:5e:5c:ad:81:fb: 73:72:52:16:6b:1e:17:70:93:80:2e:c6:3a:e4:69: e3:85:a5:48:2a:f6:5a:63:cb:24:26:dc:5a:93:e5: c7:4d:fe:e3:1f:07:94:aa:fa:d9:59:a4:d1:25:dd: db:57:f6:e5:04:e8:c7:69:62:03:a6:95:14:9c:4b: e3:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:87:90:38:DC:AA:A4:5E:E8:2D:47:55:93:4F:8E:F1:D3:28:50:65 X509v3 Authority Key Identifier: keyid:6C:9B:96:87:D0:5E:2B:5B:E5:36:10:9A:6A:F9:BF:FA:19:98:73:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C95AA/156BD89E242711EDB3EA3480C4F9AE02/bJuWh9BeK1vlNhCaavm_-hmYc9Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bJuWh9BeK1vlNhCaavm_-hmYc9Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C95AA/156BD89E242711EDB3EA3480C4F9AE02/bJuWh9BeK1vlNhCaavm_-hmYc9Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:c1:39:2c:a5:06:d4:02:ad:d8:e1:25:dd:98:0c:0f:0f:c8: 0b:22:f9:eb:9c:91:4d:a9:f4:79:d9:27:09:53:99:f5:e6:f1: a7:2d:cd:c6:d2:2d:6a:a9:68:da:1c:26:d3:fb:c5:0f:7d:26: e4:cd:bd:02:5e:e6:a9:1b:f7:e5:b4:43:b7:75:e9:85:f4:3b: e5:e9:b6:ac:9f:a8:85:dd:65:23:76:48:02:dc:26:97:ac:25: df:74:f0:dd:2f:57:60:93:81:9a:c0:fc:4e:b1:ff:f8:1f:92: bf:f6:90:c9:3a:80:90:09:7d:dd:3b:5f:19:2c:85:e9:1d:22: 8c:a8:8f:5a:67:b7:3b:55:a1:80:ba:32:5d:92:e2:6b:e0:14: d1:7b:4d:89:6a:47:ff:e9:8a:b1:f7:7d:7c:00:fd:23:35:25: 19:ce:58:d2:3d:3c:ae:6f:95:6f:54:ea:50:23:93:d1:b2:c7: 5f:31:6f:96:94:26:97:45:d7:dd:cc:b2:6b:62:54:aa:4b:cd: d3:3e:81:76:62:91:b4:02:46:89:ca:d1:20:2e:a2:c5:9b:c5: c8:6c:57:3b:b5:97:4c:f5:b8:87:25:df:a9:81:64:7f:5a:2b: 5b:0c:4d:cd:09:e2:0e:f9:61:a8:66:cf:03:83:f7:a3:8f:d6: 2a:1c:fe:5b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAqMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk1QUExMTAvBgNVBAUTKDZDOUI5Njg3RDA1RTJCNUJFNTM2MTA5QTZBRjlCRkZB MTk5ODczRDQwHhcNMjUxMjAzMDAwOTEzWhcNMjUxMjEwMDAwOTEzWjAYMRYwFAYD VQQDEw02OTJmN2ZhYS1hZjU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz3tBBub2IqDg+c31V95oGsVZr2//pQMUYV5R3kjk1mPlZ65cC0FFyT4kr65i I371Y8brrZvRtAcya1cCUUltEcAb9LSO+nI4oCflBeVB+eIFD7x532Ud0Rt74KbD qX/aYIecoTOHiILC7HHZgNJxYhR8rUI6NFxL1Nnol+0+H30VU2V1G7q0Rr5HcPsb 8w0SBsHQHrVWXS6Qt6M73ofQRXSv7eGSycqulw3s6NoNlg5OnDmK8GOvkCHSC2Is XlytgftzclIWax4XcJOALsY65GnjhaVIKvZaY8skJtxak+XHTf7jHweUqvrZWaTR Jd3bV/blBOjHaWIDppUUnEvjSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM+HkDjc qqRe6C1HVZNPjvHTKFBlMB8GA1UdIwQYMBaAFGyblofQXitb5TYQmmr5v/oZmHPU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTVBQS8xNTZCRDg5RTI0 MjcxMUVEQjNFQTM0ODBDNEY5QUUwMi9iSnVXaDlCZUsxdmxOaENhYXZtXy1obVlj OVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2JKdVdoOUJlSzF2bE5oQ2Fhdm1fLWhtWWM5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTVBQS8xNTZCRDg5RTI0MjcxMUVEQjNFQTM0ODBDNEY5QUUwMi9iSnVXaDlCZUsx dmxOaENhYXZtXy1obVljOVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCzwTkspQbUAq3Y4SXdmAwPD8gLIvnrnJFNqfR52ScJU5n15vGnLc3G 0i1qqWjaHCbT+8UPfSbkzb0CXuapG/fltEO3demF9Dvl6basn6iF3WUjdkgC3CaX rCXfdPDdL1dgk4GawPxOsf/4H5K/9pDJOoCQCX3dO18ZLIXpHSKMqI9aZ7c7VaGA ujJdkuJr4BTRe02Jakf/6Yqx9318AP0jNSUZzljSPTyub5VvVOpQI5PRssdfMW+W lCaXRdfdzLJrYlSqS83TPoF2YpG0AkaJytEgLqLFm8XIbFc7tZdM9biHJd+pgWR/ WitbDE3NCeIO+WGoZs8Dg/ejj9YqHP5b -----END CERTIFICATE-----Generated at Wed Dec 3 16:22:46 2025 by rpki-client