This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.mft File: bxP1UQCfJIptmHQ2AE6FeVFWkns.mft (raw, json) Hash identifier: U8WhnatcRsAcpyFfK3GSZRLB4GVyinBoOUEK/wt5e6k= Subject key identifier: 8B:9A:90:75:F8:4E:F0:93:0D:4A:38:68:18:8F:9D:68:E5:C7:C6:43 Authority key identifier: 6F:13:F5:51:00:9F:24:8A:6D:98:74:36:00:4E:85:79:51:56:92:7B Certificate issuer: /CN=A91CAFC4/serialNumber=6F13F551009F248A6D987436004E85795156927B Certificate serial: 096A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bxP1UQCfJIptmHQ2AE6FeVFWkns.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.mft Manifest number: 0956 Signing time: Thu 18 Dec 2025 19:43:56 +0000 Manifest this update: Thu 18 Dec 2025 19:43:56 +0000 Manifest next update: Thu 25 Dec 2025 19:43:56 +0000 Files and hashes: 1: bxP1UQCfJIptmHQ2AE6FeVFWkns.crl (hash: SNj9kqPo00i2xR7ZpQMCDrhsZRhqXefyzM+yw4XZVaU=) 2: D2039A56AABC11EEA0370F2CC4F9AE02.roa (hash: 16iyVUl1us+C5aneeiDrqUhIKgGXREeaDcDEtZkcKLg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.crl rsync://rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bxP1UQCfJIptmHQ2AE6FeVFWkns.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 19:43:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2410 (0x96a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CAFC4, serialNumber=6F13F551009F248A6D987436004E85795156927B Validity Not Before: Dec 18 19:43:56 2025 GMT Not After : Dec 25 19:43:56 2025 GMT Subject: CN=6944597c-5add Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:3c:ca:cb:75:ee:e2:ba:a1:9b:42:17:8f:bd: e7:6d:a8:a8:de:17:0a:be:a8:e9:cc:ba:22:34:55: 15:4e:54:82:aa:84:27:30:43:90:8e:6e:7f:79:89: 7a:8a:f6:6e:ec:92:d5:cc:8f:17:22:15:97:51:8b: c6:2c:64:cd:e7:77:d8:25:63:b0:f1:07:f0:13:3e: 88:0c:92:40:b5:dc:f2:db:45:a9:de:fa:dc:5f:4b: 60:39:b4:a1:e6:33:da:b2:1d:69:a2:a7:17:01:d8: a6:06:27:99:ee:26:0e:67:87:26:de:67:f6:28:ff: 8c:96:f9:f0:3d:5b:e8:de:d4:7f:46:9e:3c:e2:ef: 18:ee:d6:30:4e:31:a7:e0:86:a7:6e:cc:78:95:c7: f9:d8:bb:30:77:0c:24:93:35:46:3d:8f:f3:e9:c8: e1:df:72:7c:94:47:0a:01:0b:31:47:a6:da:89:2f: 5c:f4:05:13:01:4b:b1:51:34:94:33:d4:ff:95:bf: b2:4e:11:df:30:d2:c8:77:00:94:df:51:e8:d2:e4: 62:0b:3e:3b:7c:d6:9a:48:cc:e4:a7:d1:2a:85:5f: 88:38:2b:a2:d8:60:37:5a:5f:96:0e:5d:97:dd:6f: a2:14:a4:7f:67:d9:00:03:5a:32:40:58:82:38:ed: 2c:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:9A:90:75:F8:4E:F0:93:0D:4A:38:68:18:8F:9D:68:E5:C7:C6:43 X509v3 Authority Key Identifier: keyid:6F:13:F5:51:00:9F:24:8A:6D:98:74:36:00:4E:85:79:51:56:92:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bxP1UQCfJIptmHQ2AE6FeVFWkns.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:19:74:ea:7c:19:33:06:74:87:91:35:31:3f:8d:8e:f1:48: 33:a8:3f:a5:c9:dd:03:83:b4:12:42:a4:0b:ff:66:0e:18:62: bc:d2:13:0c:e7:54:d2:36:d7:26:2c:64:74:3e:64:7d:1d:23: f6:09:30:0b:51:dc:36:2c:c8:1a:f6:52:cd:8e:1c:ec:93:f7: 26:7f:7c:0e:b0:a2:ad:0c:88:92:be:9f:d0:5e:2e:9b:9c:4a: d0:df:d0:c7:7c:3d:53:55:10:58:9e:72:97:50:14:85:3f:f2: 7b:7c:4c:2f:50:b6:c0:f0:c7:7d:b3:8a:99:42:4e:7b:c6:2b: c2:51:48:05:9e:30:20:9c:58:73:d6:da:0a:6d:57:fe:09:4c: dc:04:6b:dd:a5:6b:05:63:75:87:39:95:0e:39:38:c5:ec:be: 16:99:b1:c7:54:a9:de:49:92:7b:e2:64:bd:dc:3d:4d:a2:5b: cd:da:e5:11:d2:8b:d2:5f:8c:5f:00:fe:34:9b:a0:68:c6:ab: ef:a7:f1:5a:18:47:a0:6e:88:94:f5:02:a3:7f:f4:b9:d6:eb: 31:df:14:03:6b:3b:22:74:a0:3c:ea:ec:51:54:0a:20:02:c7: 50:0f:91:7c:39:d8:d1:c4:a5:40:a8:72:59:9a:0d:64:a7:cf: 2b:70:e4:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCWowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0FGQzQxMTAvBgNVBAUTKDZGMTNGNTUxMDA5RjI0OEE2RDk4NzQzNjAwNEU4NTc5 NTE1NjkyN0IwHhcNMjUxMjE4MTk0MzU2WhcNMjUxMjI1MTk0MzU2WjAYMRYwFAYD VQQDDA02OTQ0NTk3Yy01YWRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwDzKy3Xu4rqhm0IXj73nbaio3hcKvqjpzLoiNFUVTlSCqoQnMEOQjm5/eYl6 ivZu7JLVzI8XIhWXUYvGLGTN53fYJWOw8QfwEz6IDJJAtdzy20Wp3vrcX0tgObSh 5jPash1poqcXAdimBieZ7iYOZ4cm3mf2KP+MlvnwPVvo3tR/Rp484u8Y7tYwTjGn 4Ianbsx4lcf52LswdwwkkzVGPY/z6cjh33J8lEcKAQsxR6baiS9c9AUTAUuxUTSU M9T/lb+yThHfMNLIdwCU31Ho0uRiCz47fNaaSMzkp9EqhV+IOCui2GA3Wl+WDl2X 3W+iFKR/Z9kAA1oyQFiCOO0sJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIuakHX4 TvCTDUo4aBiPnWjlx8ZDMB8GA1UdIwQYMBaAFG8T9VEAnySKbZh0NgBOhXlRVpJ7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQUZDNC9CQzYwNjJEQ0FG OEExMUVBODU0MkQ4NUZDNEY5QUUwMi9ieFAxVVFDZkpJcHRtSFEyQUU2RmVWRldr bnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J4UDFVUUNmSklwdG1IUTJBRTZGZVZGV2tucy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QUZDNC9CQzYwNjJEQ0FGOEExMUVBODU0MkQ4NUZDNEY5QUUwMi9ieFAxVVFDZkpJ cHRtSFEyQUU2RmVWRldrbnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPGXTqfBkzBnSHkTUxP42O8UgzqD+lyd0Dg7QSQqQL/2YOGGK80hMM 51TSNtcmLGR0PmR9HSP2CTALUdw2LMga9lLNjhzsk/cmf3wOsKKtDIiSvp/QXi6b nErQ39DHfD1TVRBYnnKXUBSFP/J7fEwvULbA8Md9s4qZQk57xivCUUgFnjAgnFhz 1toKbVf+CUzcBGvdpWsFY3WHOZUOOTjF7L4WmbHHVKneSZJ74mS93D1NolvN2uUR 0ovSX4xfAP40m6Boxqvvp/FaGEegboiU9QKjf/S51usx3xQDazsidKA86uxRVAog AsdQD5F8OdjRxKVAqHJZmg1kp88rcOQF -----END CERTIFICATE-----Generated at Fri Dec 19 17:31:49 2025 by rpki-client