This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.mft File: bb1cTQEh_LMY54xFG29WcyCYYAI.mft (raw, json) Hash identifier: ROxn3CdLgcwETHIEWbfL8WCgzg3DKAx+dTRYe+8chzY= Subject key identifier: FC:A7:79:98:C0:64:84:A5:49:C3:27:BC:14:E8:DA:0D:C4:F5:E1:E4 Authority key identifier: 6D:BD:5C:4D:01:21:FC:B3:18:E7:8C:45:1B:6F:56:73:20:98:60:02 Certificate issuer: /CN=A91D1216/serialNumber=6DBD5C4D0121FCB318E78C451B6F567320986002 Certificate serial: 042B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bb1cTQEh_LMY54xFG29WcyCYYAI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.mft Manifest number: 03F3 Signing time: Sat 20 Dec 2025 23:54:42 +0000 Manifest this update: Sat 20 Dec 2025 23:54:41 +0000 Manifest next update: Sat 27 Dec 2025 23:54:41 +0000 Files and hashes: 1: bb1cTQEh_LMY54xFG29WcyCYYAI.crl (hash: x9hUUHLr1diT1P0C5EabU6GTwstJ1NqLBy91ipmbSoU=) 2: AD17704445F611EE97DF317CC4F9AE02.roa (hash: Clfd7tFcfwoObvQimW3finauT91uWKGe0cqtaB1OpHA=) 3: AEE9F9E6326011ED9031BC4FC4F9AE02.roa (hash: o0bGkeKtz3bzG/bWSV5R/zZyXNKnvRhJi3bUD0NjFsE=) 4: 943D15902D1011EFBBEBA67BC4F9AE02.roa (hash: bpDflyeDea4iA77MAsR1yqXpb72az5BwoapOKhJMn4E=) 5: 9B0C244C73B611EEB18A0385C4F9AE02.roa (hash: 2Y9sjJKHecukVuvVbaq82FcEcKk1PVtU2APTvtdHmf4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.crl rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bb1cTQEh_LMY54xFG29WcyCYYAI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 23:54:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1067 (0x42b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1216, serialNumber=6DBD5C4D0121FCB318E78C451B6F567320986002 Validity Not Before: Dec 20 23:54:41 2025 GMT Not After : Dec 27 23:54:41 2025 GMT Subject: CN=69473742-5b77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:60:d5:7d:8f:3c:25:47:39:2e:1a:ea:3a:0e: 61:c4:0b:4a:03:7b:57:9e:32:d6:4f:05:27:8c:80: 1c:98:92:7e:6f:73:1f:07:b6:f8:24:a1:85:83:f3: 30:dc:1b:eb:9e:14:5b:cc:45:1c:0a:a5:32:74:eb: a5:97:8e:e5:d7:db:61:e3:20:54:7d:0d:5e:78:dc: eb:d3:82:81:06:2a:0a:af:a7:f7:3d:93:4c:7c:7b: ef:83:55:d4:84:6f:69:61:7e:ae:6e:d4:3d:22:d8: d9:ec:72:ad:29:b8:ad:67:0a:7f:c5:d2:19:6b:a2: 7c:69:86:6c:71:c3:cb:98:3a:f0:b5:17:26:ef:b9: 12:47:51:85:b6:64:62:c9:8c:42:aa:04:0a:e6:93: 02:38:2f:fe:e9:c9:4e:d8:b5:2b:45:93:31:70:d1: 22:22:22:cc:36:2a:0b:2f:be:5e:fc:7f:57:f1:e9: 76:bb:19:b8:60:c5:6e:1c:0a:67:97:f1:43:26:b5: 06:c8:fb:ab:81:03:ae:d0:50:19:3f:9c:db:9f:fe: 41:6d:a1:20:5a:07:1b:39:bf:bd:f9:4a:fc:e7:97: b3:39:89:be:bd:87:a9:e9:9b:59:ad:86:17:32:59: 9a:07:6d:44:cd:a0:78:9e:cb:f6:b7:57:8f:67:77: 7f:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:A7:79:98:C0:64:84:A5:49:C3:27:BC:14:E8:DA:0D:C4:F5:E1:E4 X509v3 Authority Key Identifier: keyid:6D:BD:5C:4D:01:21:FC:B3:18:E7:8C:45:1B:6F:56:73:20:98:60:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bb1cTQEh_LMY54xFG29WcyCYYAI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:09:e6:ce:6d:c8:c9:e1:8e:d0:16:a8:6e:e4:5b:12:e7:ef: ee:30:32:39:ab:43:8c:d5:4f:c7:19:76:8c:f9:f8:fa:0c:49: ad:a2:3c:0f:74:bc:f8:e3:87:f3:73:d6:5a:38:ad:77:a8:3c: b8:fd:f8:43:23:f1:1b:87:e8:d7:9d:14:9d:ec:74:39:d9:69: b5:d3:55:9a:25:8f:be:26:43:85:a5:98:c9:7f:c0:c3:3c:bb: de:16:4e:ee:84:87:0f:dd:b6:1d:d2:8e:f0:5b:c5:d0:43:54: a2:ef:75:a1:59:cd:e6:de:f7:43:d6:8d:2b:e3:52:42:8d:b0: 9e:31:52:d3:ba:ff:d9:9d:73:9f:54:2b:b3:dc:38:ec:c7:37: 29:23:77:a2:d2:a6:14:87:ec:31:6c:f6:ea:2e:cf:66:a3:72: a1:c8:63:ee:8e:e3:ae:70:66:6b:46:1a:18:0f:9a:a3:10:a2: b5:b4:45:41:1b:af:9c:ed:d5:7c:2d:ec:48:bc:fc:e2:7d:95: c0:db:db:de:3f:a5:9f:ed:00:7d:c1:86:e3:15:8a:01:74:7d: e3:23:2a:80:ac:97:70:04:f2:28:e9:4a:68:4c:40:72:5a:82: 6b:84:65:6f:58:c3:08:5d:46:6e:e6:72:d6:6a:82:35:fd:eb: 8e:82:a9:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBCswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDEyMTYxMTAvBgNVBAUTKDZEQkQ1QzREMDEyMUZDQjMxOEU3OEM0NTFCNkY1Njcz MjA5ODYwMDIwHhcNMjUxMjIwMjM1NDQxWhcNMjUxMjI3MjM1NDQxWjAYMRYwFAYD VQQDDA02OTQ3Mzc0Mi01Yjc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnWDVfY88JUc5LhrqOg5hxAtKA3tXnjLWTwUnjIAcmJJ+b3MfB7b4JKGFg/Mw 3BvrnhRbzEUcCqUydOull47l19th4yBUfQ1eeNzr04KBBioKr6f3PZNMfHvvg1XU hG9pYX6ubtQ9ItjZ7HKtKbitZwp/xdIZa6J8aYZsccPLmDrwtRcm77kSR1GFtmRi yYxCqgQK5pMCOC/+6clO2LUrRZMxcNEiIiLMNioLL75e/H9X8el2uxm4YMVuHApn l/FDJrUGyPurgQOu0FAZP5zbn/5BbaEgWgcbOb+9+Ur855ezOYm+vYep6ZtZrYYX MlmaB21EzaB4nsv2t1ePZ3d/hQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPyneZjA ZISlScMnvBTo2g3E9eHkMB8GA1UdIwQYMBaAFG29XE0BIfyzGOeMRRtvVnMgmGAC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTIxNi9EQzc4MjY4Q0I5 NEIxMUVDODMyQjc0MTlDNEY5QUUwMi9iYjFjVFFFaF9MTVk1NHhGRzI5V2N5Q1lZ QUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JiMWNUUUVoX0xNWTU0eEZHMjlXY3lDWVlBSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTIxNi9EQzc4MjY4Q0I5NEIxMUVDODMyQjc0MTlDNEY5QUUwMi9iYjFjVFFFaF9M TVk1NHhGRzI5V2N5Q1lZQUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0CebObcjJ4Y7QFqhu5FsS5+/uMDI5q0OM1U/HGXaM+fj6DEmtojwP dLz444fzc9ZaOK13qDy4/fhDI/Ebh+jXnRSd7HQ52Wm101WaJY++JkOFpZjJf8DD PLveFk7uhIcP3bYd0o7wW8XQQ1Si73WhWc3m3vdD1o0r41JCjbCeMVLTuv/ZnXOf VCuz3DjsxzcpI3ei0qYUh+wxbPbqLs9mo3KhyGPujuOucGZrRhoYD5qjEKK1tEVB G6+c7dV8LexIvPzifZXA29veP6Wf7QB9wYbjFYoBdH3jIyqArJdwBPIo6UpoTEBy WoJrhGVvWMMIXUZu5nLWaoI1/euOgqkp -----END CERTIFICATE-----Generated at Sun Dec 21 07:12:17 2025 by rpki-client