This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC84C/F35B305EBF3111EEA79C8E3DC4F9AE02/bCTOJGStN3HjLDMIGNG32gFMaQk.mft File: bCTOJGStN3HjLDMIGNG32gFMaQk.mft (raw, json) Hash identifier: vELMICQBf/KgyUYJEbJ+Fa4K0f81wmEsrhK5E/YBeZ8= Subject key identifier: 4F:BE:B2:93:51:C0:8B:04:09:CF:4E:C0:E4:04:53:C9:90:C8:1E:8D Authority key identifier: 6C:24:CE:24:64:AD:37:71:E3:2C:33:08:18:D1:B7:DA:01:4C:69:09 Certificate issuer: /CN=A91DC84C/serialNumber=6C24CE2464AD3771E32C330818D1B7DA014C6909 Certificate serial: 0161 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bCTOJGStN3HjLDMIGNG32gFMaQk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC84C/F35B305EBF3111EEA79C8E3DC4F9AE02/bCTOJGStN3HjLDMIGNG32gFMaQk.mft Manifest number: 0161 Signing time: Tue 23 Dec 2025 03:02:02 +0000 Manifest this update: Tue 23 Dec 2025 03:02:02 +0000 Manifest next update: Tue 30 Dec 2025 03:02:02 +0000 Files and hashes: 1: bCTOJGStN3HjLDMIGNG32gFMaQk.crl (hash: RUBVQ74GQA8URn2EB8K1sqZTKCEkOu2EqyLCjO0IhYQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC84C/F35B305EBF3111EEA79C8E3DC4F9AE02/bCTOJGStN3HjLDMIGNG32gFMaQk.crl rsync://rpki.apnic.net/member_repository/A91DC84C/F35B305EBF3111EEA79C8E3DC4F9AE02/bCTOJGStN3HjLDMIGNG32gFMaQk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bCTOJGStN3HjLDMIGNG32gFMaQk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 03:02:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 353 (0x161) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC84C, serialNumber=6C24CE2464AD3771E32C330818D1B7DA014C6909 Validity Not Before: Dec 23 03:02:02 2025 GMT Not After : Dec 30 03:02:02 2025 GMT Subject: CN=694a062a-d831 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:45:c3:7e:60:d3:e9:3e:c5:9c:bf:39:bc:d7: eb:76:4e:47:8a:ea:e1:2f:38:a7:69:8f:3e:7e:37: 94:3b:52:f5:57:5a:41:e7:08:a9:ca:42:fe:d1:d1: ef:58:a8:d8:56:1e:8c:91:ae:f4:45:d6:c4:29:4c: db:2a:84:b3:2d:d7:e2:07:83:59:f6:ea:3f:ee:46: b6:ac:06:d8:e9:2a:1c:f5:51:09:27:86:fd:c1:93: 96:72:6d:12:62:08:7e:d0:5e:12:12:f8:7c:b5:0c: 59:e4:c4:61:7a:95:9a:c7:7f:75:65:a3:c1:6a:8a: e8:a8:12:89:4f:e8:5b:11:b5:13:3b:42:cd:8a:66: de:b4:94:6a:00:6c:4c:4c:b3:6e:54:6e:1a:ab:ea: eb:82:31:c9:b0:b2:bc:64:08:40:6d:95:3a:cb:0a: a9:1c:ea:84:5b:5f:7c:a2:23:ac:22:c0:b2:00:8b: 13:d4:dd:af:e1:61:77:24:73:26:71:b8:5e:30:3a: 6a:d5:21:9f:7a:e1:7f:70:d2:bc:fd:4a:08:cd:2e: 07:10:24:50:30:a2:96:f2:c9:9f:7b:3d:8f:97:9e: 55:6e:26:f2:78:82:b6:07:96:ec:5e:e3:20:34:52: 7b:24:c6:85:a5:79:86:39:b7:0a:86:54:8e:ff:39: 18:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:BE:B2:93:51:C0:8B:04:09:CF:4E:C0:E4:04:53:C9:90:C8:1E:8D X509v3 Authority Key Identifier: keyid:6C:24:CE:24:64:AD:37:71:E3:2C:33:08:18:D1:B7:DA:01:4C:69:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC84C/F35B305EBF3111EEA79C8E3DC4F9AE02/bCTOJGStN3HjLDMIGNG32gFMaQk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bCTOJGStN3HjLDMIGNG32gFMaQk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC84C/F35B305EBF3111EEA79C8E3DC4F9AE02/bCTOJGStN3HjLDMIGNG32gFMaQk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:04:5c:15:dd:e7:39:d8:a6:ce:30:e1:33:53:b2:74:70:34: 86:59:44:11:1c:50:87:15:1b:c7:bb:42:35:c2:d3:0c:02:18: fa:14:33:87:5b:15:ff:d6:78:94:60:a8:62:cb:6e:11:d2:fa: 73:3d:b1:29:40:6e:5a:52:c1:ed:66:d7:ea:de:93:df:5e:2a: 97:2e:13:e8:b1:78:c6:99:29:f0:48:23:64:e6:73:71:a4:76: e7:b2:4f:e3:bf:af:d5:18:25:b3:1c:75:37:bb:8a:84:72:bc: 95:bc:63:9b:9e:67:51:03:90:82:56:72:d6:be:59:79:02:f5: 9e:d6:31:7a:9a:5e:7d:32:76:93:54:09:3d:b0:63:80:06:cd: f6:42:62:99:a8:06:e4:21:9c:a0:03:93:f2:4c:10:7b:85:b6: dd:46:83:e5:54:be:6c:74:34:fc:ac:c2:e5:93:e3:2a:2d:fa: 3d:fb:05:ed:21:24:aa:17:e1:13:51:62:e7:b1:48:05:cd:c5: 81:10:bf:f1:f2:2e:a5:ed:22:20:2c:cb:fc:1b:c6:02:b3:49: 1b:9b:2e:8e:64:32:13:c8:6f:85:a9:2b:c6:f1:b4:a5:27:65: 02:06:f3:50:d4:fa:f8:fa:0a:c5:88:88:d5:98:4d:c8:28:11: 84:fe:1b:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM4NEMxMTAvBgNVBAUTKDZDMjRDRTI0NjRBRDM3NzFFMzJDMzMwODE4RDFCN0RB MDE0QzY5MDkwHhcNMjUxMjIzMDMwMjAyWhcNMjUxMjMwMDMwMjAyWjAYMRYwFAYD VQQDDA02OTRhMDYyYS1kODMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzkXDfmDT6T7FnL85vNfrdk5HiurhLzinaY8+fjeUO1L1V1pB5wipykL+0dHv WKjYVh6Mka70RdbEKUzbKoSzLdfiB4NZ9uo/7ka2rAbY6Soc9VEJJ4b9wZOWcm0S Ygh+0F4SEvh8tQxZ5MRhepWax391ZaPBaoroqBKJT+hbEbUTO0LNimbetJRqAGxM TLNuVG4aq+rrgjHJsLK8ZAhAbZU6ywqpHOqEW198oiOsIsCyAIsT1N2v4WF3JHMm cbheMDpq1SGfeuF/cNK8/UoIzS4HECRQMKKW8smfez2Pl55VbibyeIK2B5bsXuMg NFJ7JMaFpXmGObcKhlSO/zkYwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE++spNR wIsECc9OwOQEU8mQyB6NMB8GA1UdIwQYMBaAFGwkziRkrTdx4ywzCBjRt9oBTGkJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzg0Qy9GMzVCMzA1RUJG MzExMUVFQTc5QzhFM0RDNEY5QUUwMi9iQ1RPSkdTdE4zSGpMRE1JR05HMzJnRk1h UWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JDVE9KR1N0TjNIakxETUlHTkczMmdGTWFRay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Qzg0Qy9GMzVCMzA1RUJGMzExMUVFQTc5QzhFM0RDNEY5QUUwMi9iQ1RPSkdTdE4z SGpMRE1JR05HMzJnRk1hUWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9BFwV3ec52KbOMOEzU7J0cDSGWUQRHFCHFRvHu0I1wtMMAhj6FDOH WxX/1niUYKhiy24R0vpzPbEpQG5aUsHtZtfq3pPfXiqXLhPosXjGmSnwSCNk5nNx pHbnsk/jv6/VGCWzHHU3u4qEcryVvGObnmdRA5CCVnLWvll5AvWe1jF6ml59MnaT VAk9sGOABs32QmKZqAbkIZygA5PyTBB7hbbdRoPlVL5sdDT8rMLlk+MqLfo9+wXt ISSqF+ETUWLnsUgFzcWBEL/x8i6l7SIgLMv8G8YCs0kbmy6OZDITyG+FqSvG8bSl J2UCBvNQ1Pr4+grFiIjVmE3IKBGE/hum -----END CERTIFICATE-----Generated at Wed Dec 24 17:40:36 2025 by rpki-client