This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2EFF/A314847C484911F0BF070370C4F9AE02/BstI9X1UOpeC2KfJbaTh3tvDwws.mft File: BstI9X1UOpeC2KfJbaTh3tvDwws.mft (raw, json) Hash identifier: ZTF8+fMOnzcb5tgPBth//5wEMNry9buNUORfZ8M+PX4= Subject key identifier: C6:8B:47:15:C7:B3:8C:B0:E9:09:48:80:D9:D0:6B:3B:CD:97:0A:72 Authority key identifier: 06:CB:48:F5:7D:54:3A:97:82:D8:A7:C9:6D:A4:E1:DE:DB:C3:C3:0B Certificate issuer: /CN=A91E2EFF/serialNumber=06CB48F57D543A9782D8A7C96DA4E1DEDBC3C30B Certificate serial: 64 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BstI9X1UOpeC2KfJbaTh3tvDwws.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2EFF/A314847C484911F0BF070370C4F9AE02/BstI9X1UOpeC2KfJbaTh3tvDwws.mft Manifest number: 63 Signing time: Tue 23 Dec 2025 05:55:22 +0000 Manifest this update: Tue 23 Dec 2025 05:55:22 +0000 Manifest next update: Tue 30 Dec 2025 05:55:22 +0000 Files and hashes: 1: BstI9X1UOpeC2KfJbaTh3tvDwws.crl (hash: Uh/a6cB8tlrio6GOXX01Tws7nFVNjpwlFSl35mwcrpI=) 2: 3698C9BA484A11F0B96B9D10C4F9AE02.roa (hash: 3/VlviI5lXmsXT9HHGTTjCEqy33hQJaRKWakW7gYvqc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2EFF/A314847C484911F0BF070370C4F9AE02/BstI9X1UOpeC2KfJbaTh3tvDwws.crl rsync://rpki.apnic.net/member_repository/A91E2EFF/A314847C484911F0BF070370C4F9AE02/BstI9X1UOpeC2KfJbaTh3tvDwws.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BstI9X1UOpeC2KfJbaTh3tvDwws.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 05:55:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 100 (0x64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2EFF, serialNumber=06CB48F57D543A9782D8A7C96DA4E1DEDBC3C30B Validity Not Before: Dec 23 05:55:22 2025 GMT Not After : Dec 30 05:55:22 2025 GMT Subject: CN=694a2eca-6ecb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:f6:3a:35:e3:b0:c7:9a:fd:a5:a2:0a:4f:61: 56:67:91:24:f5:9d:50:67:5c:67:26:fa:bd:66:2a: 0c:6c:3d:86:79:a8:bc:a2:88:34:2c:7c:b6:2f:68: ae:71:58:ca:59:af:29:f7:89:55:be:95:1d:f4:90: 76:5c:dd:a8:b2:a8:08:e3:87:14:fb:3e:1a:05:66: a2:a3:27:bf:1a:eb:7a:64:d7:01:75:bd:f2:f0:3f: f5:30:87:b9:ef:28:3e:fd:33:63:39:b8:86:5b:6b: 44:6e:e6:fe:0b:51:6c:41:35:2b:f2:e0:99:50:ef: 0e:b2:b4:95:f0:3e:68:2c:88:80:a6:59:96:fb:59: 8d:d5:d5:99:bc:74:d2:28:ae:9e:cc:67:a2:f0:a6: d6:6e:19:ca:b3:ea:2b:33:75:1d:71:4d:4d:b1:ab: f2:02:5f:81:ec:17:58:03:f4:56:fe:4e:c0:4a:47: 49:22:35:67:51:4e:54:15:8f:ca:4f:fd:e7:fb:c2: 4f:c7:2f:09:8d:e7:ff:1c:19:b6:36:0f:c0:de:67: a4:12:e2:11:50:ab:dc:f6:39:cb:8a:2a:a2:2c:28: a6:58:68:f0:74:0e:6d:77:34:66:ec:eb:e6:45:40: 24:1e:73:30:72:c4:11:f7:1e:8e:4a:c7:7d:c4:66: af:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:8B:47:15:C7:B3:8C:B0:E9:09:48:80:D9:D0:6B:3B:CD:97:0A:72 X509v3 Authority Key Identifier: keyid:06:CB:48:F5:7D:54:3A:97:82:D8:A7:C9:6D:A4:E1:DE:DB:C3:C3:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2EFF/A314847C484911F0BF070370C4F9AE02/BstI9X1UOpeC2KfJbaTh3tvDwws.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BstI9X1UOpeC2KfJbaTh3tvDwws.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2EFF/A314847C484911F0BF070370C4F9AE02/BstI9X1UOpeC2KfJbaTh3tvDwws.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d6:b2:e9:7d:1f:f5:7f:6b:0b:c3:e6:12:cc:a4:2d:01:97:c2: 51:37:df:91:05:96:bc:c9:6b:ac:14:94:88:39:d2:e4:1f:6f: 4e:fc:ae:a1:7c:43:39:a7:45:f2:4e:ad:ef:66:db:a2:ce:f3: 1b:73:57:12:07:eb:4c:f5:52:87:0b:34:9d:78:28:60:95:78: 7b:57:03:3e:6e:7e:5c:a1:1e:7f:14:89:54:33:2c:5d:cb:a0: ec:53:9b:7c:9f:a6:b9:45:09:f0:0a:f7:01:06:61:6d:bc:9b: e0:2d:22:ba:46:73:b0:0a:5b:89:73:16:be:10:01:46:83:f1: 55:d9:3b:85:b1:12:b0:d0:3e:f2:c3:17:38:a3:d4:99:6b:6f: fa:2e:0d:73:68:bb:40:31:22:6c:f6:0a:18:d1:c2:25:3a:20: f7:51:fa:16:ef:18:26:21:8d:44:8d:a9:07:bf:a1:ca:57:9c: e8:23:c7:6a:e2:13:9b:0c:58:0f:45:48:cc:be:eb:a8:32:63: 7c:d1:0b:da:46:c1:27:f2:78:fd:c9:93:bf:e7:24:d1:6e:70: 28:be:0c:37:42:c2:12:0b:2f:ce:e5:54:56:13:d3:77:12:62: 8b:cb:e9:23:fe:e5:97:e4:75:b1:69:16:28:5a:11:ab:7d:64: ea:f5:ff:78 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF MkVGRjExMC8GA1UEBRMoMDZDQjQ4RjU3RDU0M0E5NzgyRDhBN0M5NkRBNEUxREVE QkMzQzMwQjAeFw0yNTEyMjMwNTU1MjJaFw0yNTEyMzAwNTU1MjJaMBgxFjAUBgNV BAMMDTY5NGEyZWNhLTZlY2IwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCJ9jo147DHmv2logpPYVZnkST1nVBnXGcm+r1mKgxsPYZ5qLyiiDQsfLYvaK5x WMpZryn3iVW+lR30kHZc3aiyqAjjhxT7PhoFZqKjJ78a63pk1wF1vfLwP/Uwh7nv KD79M2M5uIZba0Ru5v4LUWxBNSvy4JlQ7w6ytJXwPmgsiICmWZb7WY3V1Zm8dNIo rp7MZ6LwptZuGcqz6iszdR1xTU2xq/ICX4HsF1gD9Fb+TsBKR0kiNWdRTlQVj8pP /ef7wk/HLwmN5/8cGbY2D8DeZ6QS4hFQq9z2OcuKKqIsKKZYaPB0Dm13NGbs6+ZF QCQeczByxBH3Ho5Kx33EZq9JAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUxotHFcez jLDpCUiA2dBrO82XCnIwHwYDVR0jBBgwFoAUBstI9X1UOpeC2KfJbaTh3tvDwwsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUyRUZGL0EzMTQ4NDdDNDg0 OTExRjBCRjA3MDM3MEM0RjlBRTAyL0JzdEk5WDFVT3BlQzJLZkpiYVRoM3R2RHd3 cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvQnN0STlYMVVPcGVDMktmSmJhVGgzdHZEd3dzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUy RUZGL0EzMTQ4NDdDNDg0OTExRjBCRjA3MDM3MEM0RjlBRTAyL0JzdEk5WDFVT3Bl QzJLZkpiYVRoM3R2RHd3cy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBANay6X0f9X9rC8PmEsykLQGXwlE335EFlrzJa6wUlIg50uQfb078rqF8 QzmnRfJOre9m26LO8xtzVxIH60z1UocLNJ14KGCVeHtXAz5uflyhHn8UiVQzLF3L oOxTm3yfprlFCfAK9wEGYW28m+AtIrpGc7AKW4lzFr4QAUaD8VXZO4WxErDQPvLD Fzij1Jlrb/ouDXNou0AxImz2ChjRwiU6IPdR+hbvGCYhjUSNqQe/ocpXnOgjx2ri E5sMWA9FSMy+66gyY3zRC9pGwSfyeP3Jk7/nJNFucCi+DDdCwhILL87lVFYT03cS YovL6SP+5ZfkdbFpFihaEat9ZOr1/3g= -----END CERTIFICATE-----Generated at Wed Dec 24 22:57:39 2025 by rpki-client