This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft File: bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft (raw, json) Hash identifier: 54xb54SaKi2tQ8jYEDTNo/G37s7sWwa3p5SDZFXKyiE= Subject key identifier: 1A:81:59:C7:FD:80:47:4B:DB:02:16:CA:4B:E3:DB:7D:20:BB:E2:11 Authority key identifier: 6C:19:46:97:81:6F:9B:13:0B:A5:3C:F4:BE:E6:76:01:59:4E:8C:B1 Certificate issuer: /CN=A91CCAF1/serialNumber=6C194697816F9B130BA53CF4BEE67601594E8CB1 Certificate serial: DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft Manifest number: DD Signing time: Sat 13 Dec 2025 05:14:02 +0000 Manifest this update: Sat 13 Dec 2025 05:14:01 +0000 Manifest next update: Sat 20 Dec 2025 05:14:01 +0000 Files and hashes: 1: bBlGl4FvmxMLpTz0vuZ2AVlOjLE.crl (hash: 3/JxU72tqzXlLQV0MS/18F0xDCXjxxTZ5DSFwdnsBv4=) 2: BF71D9D0F26811EFBC446868C4F9AE02.roa (hash: 2f3u95lJSNskCNREu+ioXj6oMF+zHFPqIr2DagPPIWc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.crl rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Dec 2025 04:23:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 223 (0xdf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CCAF1, serialNumber=6C194697816F9B130BA53CF4BEE67601594E8CB1 Validity Not Before: Dec 13 05:14:01 2025 GMT Not After : Dec 20 05:14:01 2025 GMT Subject: CN=693cf61a-6ceb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:4e:5a:0c:27:5b:ed:51:9f:a1:54:08:8b:d0: 06:fb:bb:35:88:70:b6:73:44:18:b1:17:ad:cb:82: d5:07:b6:36:60:c1:21:18:98:3a:6b:dc:e7:5e:4d: 93:74:5f:c9:e3:eb:49:17:46:f5:f1:46:a8:75:c5: 58:48:cb:3b:56:f4:c9:b3:85:b7:ac:21:9a:26:90: ba:44:c1:3e:3f:5e:6c:10:13:c4:d5:29:b4:9c:94: 52:d1:4d:e5:b9:4b:31:4a:c2:13:86:e4:0c:6b:51: 68:82:a4:f7:06:a0:87:dd:87:04:78:c6:86:e7:a5: 0e:36:c5:2f:ca:20:26:e9:15:57:52:68:ea:77:02: 48:a5:25:7c:06:d1:9e:83:7b:36:e3:a1:6b:fe:1a: a8:75:b4:69:db:2e:20:f5:be:b1:e0:04:47:df:d1: d9:cb:93:56:d3:4b:07:52:9a:b7:6a:0e:47:d2:f2: a5:a0:b7:b9:47:a8:11:a6:b7:48:8c:cb:62:d8:c9: dc:44:05:05:de:0d:c8:44:2f:3b:10:44:23:ce:4a: 84:43:5f:3f:f5:36:7f:85:a2:22:75:72:4a:4b:a2: 58:23:34:02:be:a5:ea:20:6a:d9:cf:0f:6e:35:36: fb:1a:c9:e3:c7:61:a9:98:11:b0:26:d5:d8:f2:a4: 07:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:81:59:C7:FD:80:47:4B:DB:02:16:CA:4B:E3:DB:7D:20:BB:E2:11 X509v3 Authority Key Identifier: keyid:6C:19:46:97:81:6F:9B:13:0B:A5:3C:F4:BE:E6:76:01:59:4E:8C:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:d4:bc:8b:de:66:91:31:3a:dd:f6:a5:52:2a:ff:37:5c:fa: f6:98:5b:08:98:06:3d:ad:55:08:ee:9a:0a:2c:28:e0:79:15: 42:d3:31:a7:6c:66:89:9a:f0:4c:94:f8:35:4f:c0:0c:c4:db: b4:90:37:b7:2d:5d:4f:71:76:2a:ef:bf:21:32:91:33:2d:29: 55:72:0b:f0:07:9f:5d:2f:55:44:ce:cd:e5:e8:af:e3:92:5c: 5a:f1:81:be:45:0e:86:32:e8:49:a2:84:87:0d:26:fa:77:22: 3e:81:3f:08:ea:cd:c0:86:6b:14:44:54:ae:0c:a9:78:29:8e: 1a:f1:8e:f4:58:c9:5e:8d:56:87:62:93:ad:96:2b:72:96:9a: 83:95:a3:56:4e:a2:fc:f0:7f:63:65:df:7d:47:d9:43:c0:3a: ee:8c:9d:a0:ca:2c:35:95:f2:ff:95:ad:0c:89:41:b0:5f:bc: 75:53:ab:8e:4b:90:ae:14:c0:4f:8a:53:46:71:f9:43:15:dd: ab:12:68:72:7f:17:e2:7b:c2:2c:b8:37:f4:96:1b:1c:c3:1c: 8c:6a:27:89:4b:a2:25:52:7f:68:11:68:76:41:93:2e:e3:82: f7:fd:24:9b:00:58:68:6b:56:b2:e4:45:3f:7e:63:5e:d9:b1: ca:82:56:5b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0NBRjExMTAvBgNVBAUTKDZDMTk0Njk3ODE2RjlCMTMwQkE1M0NGNEJFRTY3NjAx NTk0RThDQjEwHhcNMjUxMjEzMDUxNDAxWhcNMjUxMjIwMDUxNDAxWjAYMRYwFAYD VQQDDA02OTNjZjYxYS02Y2ViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxE5aDCdb7VGfoVQIi9AG+7s1iHC2c0QYsRety4LVB7Y2YMEhGJg6a9znXk2T dF/J4+tJF0b18UaodcVYSMs7VvTJs4W3rCGaJpC6RME+P15sEBPE1Sm0nJRS0U3l uUsxSsIThuQMa1FogqT3BqCH3YcEeMaG56UONsUvyiAm6RVXUmjqdwJIpSV8BtGe g3s246Fr/hqodbRp2y4g9b6x4ARH39HZy5NW00sHUpq3ag5H0vKloLe5R6gRprdI jMti2MncRAUF3g3IRC87EEQjzkqEQ18/9TZ/haIidXJKS6JYIzQCvqXqIGrZzw9u NTb7Gsnjx2GpmBGwJtXY8qQHVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBqBWcf9 gEdL2wIWykvj230gu+IRMB8GA1UdIwQYMBaAFGwZRpeBb5sTC6U89L7mdgFZToyx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQ0FGMS8wOUMwRDM2NjhB QUQxMUVGQkVGOTE2NkFDNEY5QUUwMi9iQmxHbDRGdm14TUxwVHowdnVaMkFWbE9q TEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JCbEdsNEZ2bXhNTHBUejB2dVoyQVZsT2pMRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Q0FGMS8wOUMwRDM2NjhBQUQxMUVGQkVGOTE2NkFDNEY5QUUwMi9iQmxHbDRGdm14 TUxwVHowdnVaMkFWbE9qTEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAw1LyL3maRMTrd9qVSKv83XPr2mFsImAY9rVUI7poKLCjgeRVC0zGn bGaJmvBMlPg1T8AMxNu0kDe3LV1PcXYq778hMpEzLSlVcgvwB59dL1VEzs3l6K/j klxa8YG+RQ6GMuhJooSHDSb6dyI+gT8I6s3AhmsURFSuDKl4KY4a8Y70WMlejVaH YpOtlitylpqDlaNWTqL88H9jZd99R9lDwDrujJ2gyiw1lfL/la0MiUGwX7x1U6uO S5CuFMBPilNGcflDFd2rEmhyfxfie8IsuDf0lhscwxyMaieJS6IlUn9oEWh2QZMu 44L3/SSbAFhoa1ay5EU/fmNe2bHKglZb -----END CERTIFICATE-----Generated at Sat Dec 13 09:49:40 2025 by rpki-client