This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFBA9/5730159AA77511F094DEBF2DC4F9AE02/BFm798uEwX7tUbaM6tlBlX14X68.mft File: BFm798uEwX7tUbaM6tlBlX14X68.mft (raw, json) Hash identifier: bX5vOOfCfyE8/rvcLMtP+tREYSnQQUoPlUGqMOSLrgo= Subject key identifier: 57:AE:FD:2D:99:93:2F:B6:13:BC:B5:CB:67:3D:42:1B:D2:03:B6:EA Authority key identifier: 04:59:BB:F7:CB:84:C1:7E:ED:51:B6:8C:EA:D9:41:95:7D:78:5F:AF Certificate issuer: /CN=A91CFBA9/serialNumber=0459BBF7CB84C17EED51B68CEAD941957D785FAF Certificate serial: 21 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BFm798uEwX7tUbaM6tlBlX14X68.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFBA9/5730159AA77511F094DEBF2DC4F9AE02/BFm798uEwX7tUbaM6tlBlX14X68.mft Manifest number: 1F Signing time: Wed 03 Dec 2025 05:58:24 +0000 Manifest this update: Wed 03 Dec 2025 05:58:24 +0000 Manifest next update: Wed 10 Dec 2025 05:58:24 +0000 Files and hashes: 1: BFm798uEwX7tUbaM6tlBlX14X68.crl (hash: ZLr3TuUUVkr5PeGjcp6VdBZCstmN6QnY6GnuimLZego=) 2: 88B9736AA77811F092FD731BC4F9AE02.roa (hash: u+cn9UutTPsBz+rSTM9fD/qL+39w/7zRbkPYbDsgfs4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFBA9/5730159AA77511F094DEBF2DC4F9AE02/BFm798uEwX7tUbaM6tlBlX14X68.crl rsync://rpki.apnic.net/member_repository/A91CFBA9/5730159AA77511F094DEBF2DC4F9AE02/BFm798uEwX7tUbaM6tlBlX14X68.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BFm798uEwX7tUbaM6tlBlX14X68.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 05:58:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33 (0x21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFBA9, serialNumber=0459BBF7CB84C17EED51B68CEAD941957D785FAF Validity Not Before: Dec 3 05:58:24 2025 GMT Not After : Dec 10 05:58:24 2025 GMT Subject: CN=692fd180-927e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:53:1d:c1:78:25:85:b2:d9:09:e7:20:ca:f2: 9c:e2:fc:e1:e7:59:69:96:22:95:ec:7e:e4:b7:9c: bf:a5:e7:f7:cc:2c:2c:09:ea:48:b8:05:e9:1a:b2: 18:d9:af:22:2c:fa:e6:2b:90:9b:94:dc:ed:c5:bd: 46:07:8a:20:dd:ca:01:9f:33:b8:d5:ad:31:de:ac: 22:d2:f4:26:f3:b1:fc:38:62:b3:a3:da:7c:ba:10: 85:b0:96:c5:30:0b:07:97:fe:77:1b:b6:a4:8d:92: 58:7c:14:64:6d:41:a6:6c:be:92:40:56:a6:54:26: 3b:00:60:8e:f2:7a:8a:af:50:d5:04:85:fd:7c:59: 86:64:5f:11:e6:49:c9:7d:9f:14:d2:ee:e3:04:52: 88:cb:4a:fe:4a:80:aa:73:3a:f4:28:28:c5:86:01: 60:35:d5:a7:18:24:11:0d:29:b5:91:f9:d7:b0:b9: c0:a4:36:5d:f1:a7:72:42:8c:f3:45:f4:e7:6a:64: ff:fc:d9:6f:10:fd:86:c5:a8:fd:8b:35:39:a2:81: b3:51:fd:a0:53:23:ef:5e:8d:5b:5b:95:01:e8:42: e5:1f:77:a8:da:6d:7f:6d:e9:5a:b2:b4:08:2b:77: 77:b9:d2:8b:2a:23:a6:00:ef:2b:57:f7:f2:6c:d4: 20:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:AE:FD:2D:99:93:2F:B6:13:BC:B5:CB:67:3D:42:1B:D2:03:B6:EA X509v3 Authority Key Identifier: keyid:04:59:BB:F7:CB:84:C1:7E:ED:51:B6:8C:EA:D9:41:95:7D:78:5F:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFBA9/5730159AA77511F094DEBF2DC4F9AE02/BFm798uEwX7tUbaM6tlBlX14X68.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BFm798uEwX7tUbaM6tlBlX14X68.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFBA9/5730159AA77511F094DEBF2DC4F9AE02/BFm798uEwX7tUbaM6tlBlX14X68.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:ca:9c:fb:81:3d:1e:ee:3b:6d:f6:a6:63:53:27:aa:89:e6: 83:45:44:fe:f3:4b:c5:0c:8c:98:9a:3a:f8:6b:b7:21:56:05: 9f:80:5a:43:53:d3:b6:f8:28:0b:8f:ab:43:d9:e5:13:50:45: 2c:05:2f:2b:aa:01:c9:2c:1e:2d:2e:56:fd:69:4c:c8:fb:52: 4c:bd:79:cd:47:79:07:86:31:e0:b5:30:d6:73:c7:b8:b3:0d: 7d:ba:c3:6f:f8:ca:05:36:60:2c:4a:35:5f:83:28:6f:e6:c0: 03:5c:e4:0e:91:f0:d4:ec:e0:6c:cd:58:85:a9:58:2f:4d:be: 2b:cb:3a:c3:b6:49:af:a1:09:33:d2:65:3c:ce:7c:89:08:e2: 87:4d:41:f1:8e:78:6f:e9:29:85:c8:69:83:50:be:54:e5:8a: b4:b4:aa:25:17:de:0d:f4:48:07:f2:bd:c3:d7:16:ce:d7:fe: ee:3f:1b:3b:21:95:fd:9c:e1:b6:2d:55:98:80:e4:44:09:3d: 66:ef:b0:73:08:bb:ba:63:8d:4c:2d:d7:df:df:7c:2f:ec:71: 6b:38:60:01:eb:a4:bb:3b:1a:a1:83:14:73:d4:5d:0e:d9:44: 10:b3:6c:3c:6d:43:2b:f2:64:45:88:e8:91:f7:46:d0:cf:71: 7b:1b:11:4f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBITANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD RkJBOTExMC8GA1UEBRMoMDQ1OUJCRjdDQjg0QzE3RUVENTFCNjhDRUFEOTQxOTU3 RDc4NUZBRjAeFw0yNTEyMDMwNTU4MjRaFw0yNTEyMTAwNTU4MjRaMBgxFjAUBgNV BAMTDTY5MmZkMTgwLTkyN2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDFUx3BeCWFstkJ5yDK8pzi/OHnWWmWIpXsfuS3nL+l5/fMLCwJ6ki4BekashjZ ryIs+uYrkJuU3O3FvUYHiiDdygGfM7jVrTHerCLS9Cbzsfw4YrOj2ny6EIWwlsUw CweX/ncbtqSNklh8FGRtQaZsvpJAVqZUJjsAYI7yeoqvUNUEhf18WYZkXxHmScl9 nxTS7uMEUojLSv5KgKpzOvQoKMWGAWA11acYJBENKbWR+dewucCkNl3xp3JCjPNF 9OdqZP/82W8Q/YbFqP2LNTmigbNR/aBTI+9ejVtblQHoQuUfd6jabX9t6VqytAgr d3e50osqI6YA7ytX9/Js1CCjAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUV679LZmT L7YTvLXLZz1CG9IDtuowHwYDVR0jBBgwFoAUBFm798uEwX7tUbaM6tlBlX14X68w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNGQkE5LzU3MzAxNTlBQTc3 NTExRjA5NERFQkYyREM0RjlBRTAyL0JGbTc5OHVFd1g3dFViYU02dGxCbFgxNFg2 OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvQkZtNzk4dUV3WDd0VWJhTTZ0bEJsWDE0WDY4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNG QkE5LzU3MzAxNTlBQTc3NTExRjA5NERFQkYyREM0RjlBRTAyL0JGbTc5OHVFd1g3 dFViYU02dGxCbFgxNFg2OC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABfKnPuBPR7uO232pmNTJ6qJ5oNFRP7zS8UMjJiaOvhrtyFWBZ+AWkNT 07b4KAuPq0PZ5RNQRSwFLyuqAcksHi0uVv1pTMj7Uky9ec1HeQeGMeC1MNZzx7iz DX26w2/4ygU2YCxKNV+DKG/mwANc5A6R8NTs4GzNWIWpWC9NvivLOsO2Sa+hCTPS ZTzOfIkI4odNQfGOeG/pKYXIaYNQvlTlirS0qiUX3g30SAfyvcPXFs7X/u4/Gzsh lf2c4bYtVZiA5EQJPWbvsHMIu7pjjUwt19/ffC/scWs4YAHrpLs7GqGDFHPUXQ7Z RBCzbDxtQyvyZEWI6JH3RtDPcXsbEU8= -----END CERTIFICATE-----Generated at Wed Dec 3 16:22:47 2025 by rpki-client