This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEC12/8592E4880F6611EAAF51C646C4F9AE02/BQcL-a2TBEn7O2m4aRzyDAEnebk.mft File: BQcL-a2TBEn7O2m4aRzyDAEnebk.mft (raw, json) Hash identifier: AP0ufDqpJAF3T+HKEpgyPPxi1Ohh585FKI1V8Oo3yXY= Subject key identifier: 81:78:C8:C6:49:AD:31:6A:33:4B:6D:2E:A2:53:9F:45:6F:B3:AB:E2 Authority key identifier: 05:07:0B:F9:AD:93:04:49:FB:3B:69:B8:69:1C:F2:0C:01:27:79:B9 Certificate issuer: /CN=A91DEC12/serialNumber=05070BF9AD930449FB3B69B8691CF20C012779B9 Certificate serial: 0CA1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQcL-a2TBEn7O2m4aRzyDAEnebk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEC12/8592E4880F6611EAAF51C646C4F9AE02/BQcL-a2TBEn7O2m4aRzyDAEnebk.mft Manifest number: 0C84 Signing time: Sat 20 Dec 2025 18:08:55 +0000 Manifest this update: Sat 20 Dec 2025 18:08:54 +0000 Manifest next update: Sat 27 Dec 2025 18:08:54 +0000 Files and hashes: 1: BQcL-a2TBEn7O2m4aRzyDAEnebk.crl (hash: 0iId6CBHIY6VchyVI2w5GXnyiKcl/Wbb7np2qlrBAIE=) 2: A87393C8F86B11EF86A73884C4F9AE02.roa (hash: 6O0VKauTuWTfzmPjcovFKdSm/+YMqCBqWG3p+BX8OSE=) 3: A766D10CF86B11EF86A73884C4F9AE02.roa (hash: YvJPp5TLJmmNMFrXdStXJanbJJfuz5ICtmKerDM4nQo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEC12/8592E4880F6611EAAF51C646C4F9AE02/BQcL-a2TBEn7O2m4aRzyDAEnebk.crl rsync://rpki.apnic.net/member_repository/A91DEC12/8592E4880F6611EAAF51C646C4F9AE02/BQcL-a2TBEn7O2m4aRzyDAEnebk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQcL-a2TBEn7O2m4aRzyDAEnebk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 18:08:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3233 (0xca1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEC12, serialNumber=05070BF9AD930449FB3B69B8691CF20C012779B9 Validity Not Before: Dec 20 18:08:54 2025 GMT Not After : Dec 27 18:08:54 2025 GMT Subject: CN=6946e637-8cd5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:82:91:46:24:a5:9d:f2:67:b7:3b:27:f8:b6:05: 6e:d9:4f:ec:d0:25:3d:79:77:b7:89:1c:d1:ed:42: 4a:7f:78:6d:10:bc:47:e7:43:b1:80:12:cc:1f:40: a8:ed:7b:a5:88:31:43:c0:bc:0b:28:e2:c5:2c:70: 32:03:e1:5d:c2:7d:11:79:e2:79:bc:89:0f:85:5a: 21:68:8c:c3:f5:30:50:bb:0f:4a:8a:6e:a5:3f:d5: 36:22:fb:7f:00:2a:9d:81:75:38:3e:21:fc:e3:88: 86:f7:05:6f:38:3e:34:ff:d7:54:72:bf:43:82:96: 07:29:87:c5:0d:47:9b:3b:9b:78:43:d9:00:b4:6a: a8:b8:d3:44:f8:32:eb:82:3c:1e:e3:c0:cc:36:3e: 8b:ba:c5:c8:1d:f3:9a:39:51:bb:2e:87:87:5a:5d: e1:c7:65:f9:33:97:7a:41:6c:2d:e0:85:41:72:5c: 44:e6:b0:a3:60:77:dc:20:33:df:ad:68:22:ce:ce: d6:c5:ed:e6:41:5d:18:bf:11:63:20:79:5e:a5:b3: 45:16:a8:ea:75:9e:35:82:7c:cf:9a:3f:d5:a8:63: c1:ae:11:a5:fc:d4:1d:12:f4:79:05:2f:47:67:ea: 93:3b:1d:60:e6:c5:a2:19:92:74:32:7f:3b:09:cf: 80:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:78:C8:C6:49:AD:31:6A:33:4B:6D:2E:A2:53:9F:45:6F:B3:AB:E2 X509v3 Authority Key Identifier: keyid:05:07:0B:F9:AD:93:04:49:FB:3B:69:B8:69:1C:F2:0C:01:27:79:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEC12/8592E4880F6611EAAF51C646C4F9AE02/BQcL-a2TBEn7O2m4aRzyDAEnebk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQcL-a2TBEn7O2m4aRzyDAEnebk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEC12/8592E4880F6611EAAF51C646C4F9AE02/BQcL-a2TBEn7O2m4aRzyDAEnebk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:bd:05:15:d0:d6:e0:95:5e:22:a2:a6:b4:b2:b4:23:f3:d7: a2:2e:eb:98:3d:2a:a7:f6:a3:34:76:5d:c7:f9:8c:da:47:62: ad:87:6d:c7:bb:61:7e:09:17:b0:1b:fc:49:ab:92:1a:81:44: ea:3c:b9:c2:3d:8b:2a:97:22:ae:42:8f:16:1b:d3:e4:54:92: c1:f3:df:10:44:87:6f:7b:57:58:4f:ed:92:3b:2a:da:9e:13: 71:0b:b8:c2:f5:64:62:a3:e3:dc:31:8b:51:6b:64:4d:55:1f: 8e:af:40:82:3f:87:eb:95:b8:3f:8e:de:d0:dd:da:c1:a8:36: 83:17:df:ad:05:72:d5:54:ca:d0:83:8e:c0:96:66:73:d0:97: 70:c2:b7:71:93:2d:a9:54:74:aa:99:2b:65:b4:07:b6:a4:d1: 7b:20:bb:f5:58:9d:ee:23:b0:cd:50:29:67:07:32:f0:19:31: 54:e3:99:88:b4:d5:11:9b:70:5d:a8:27:c0:96:0e:44:f4:2b: bc:15:be:62:66:18:4c:4e:85:c5:f4:e3:e3:38:35:87:fa:68: bf:07:5e:3f:b9:02:f7:39:da:6b:0b:04:13:1d:d8:16:40:1b: bc:a6:00:3e:04:9e:e9:f8:18:b5:be:d7:6f:36:19:56:f9:bd: cd:7e:61:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDKEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVDMTIxMTAvBgNVBAUTKDA1MDcwQkY5QUQ5MzA0NDlGQjNCNjlCODY5MUNGMjBD MDEyNzc5QjkwHhcNMjUxMjIwMTgwODU0WhcNMjUxMjI3MTgwODU0WjAYMRYwFAYD VQQDDA02OTQ2ZTYzNy04Y2Q1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAgpFGJKWd8me3Oyf4tgVu2U/s0CU9eXe3iRzR7UJKf3htELxH50OxgBLMH0Co 7XuliDFDwLwLKOLFLHAyA+Fdwn0ReeJ5vIkPhVohaIzD9TBQuw9Kim6lP9U2Ivt/ ACqdgXU4PiH844iG9wVvOD40/9dUcr9DgpYHKYfFDUebO5t4Q9kAtGqouNNE+DLr gjwe48DMNj6LusXIHfOaOVG7LoeHWl3hx2X5M5d6QWwt4IVBclxE5rCjYHfcIDPf rWgizs7Wxe3mQV0YvxFjIHlepbNFFqjqdZ41gnzPmj/VqGPBrhGl/NQdEvR5BS9H Z+qTOx1g5sWiGZJ0Mn87Cc+AfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIF4yMZJ rTFqM0ttLqJTn0Vvs6viMB8GA1UdIwQYMBaAFAUHC/mtkwRJ+ztpuGkc8gwBJ3m5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUMxMi84NTkyRTQ4ODBG NjYxMUVBQUY1MUM2NDZDNEY5QUUwMi9CUWNMLWEyVEJFbjdPMm00YVJ6eURBRW5l YmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JRY0wtYTJUQkVuN08ybTRhUnp5REFFbmViay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RUMxMi84NTkyRTQ4ODBGNjYxMUVBQUY1MUM2NDZDNEY5QUUwMi9CUWNMLWEyVEJF bjdPMm00YVJ6eURBRW5lYmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqvQUV0NbglV4ioqa0srQj89eiLuuYPSqn9qM0dl3H+YzaR2Kth23H u2F+CRewG/xJq5IagUTqPLnCPYsqlyKuQo8WG9PkVJLB898QRIdve1dYT+2SOyra nhNxC7jC9WRio+PcMYtRa2RNVR+Or0CCP4frlbg/jt7Q3drBqDaDF9+tBXLVVMrQ g47AlmZz0Jdwwrdxky2pVHSqmStltAe2pNF7ILv1WJ3uI7DNUClnBzLwGTFU45mI tNURm3BdqCfAlg5E9Cu8Fb5iZhhMToXF9OPjODWH+mi/B14/uQL3OdprCwQTHdgW QBu8pgA+BJ7p+Bi1vtdvNhlW+b3NfmE0 -----END CERTIFICATE-----Generated at Mon Dec 22 06:09:40 2025 by rpki-client