This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8881/089DE84000F811EBB217A449C4F9AE02/Bc1Un1RUvTKyKPavyN424Ej2SA0.mft File: Bc1Un1RUvTKyKPavyN424Ej2SA0.mft (raw, json) Hash identifier: WvX/Mhq87qk+xQVKMSwhI2PxFrYmDXup4M8943Ag3LA= Subject key identifier: 94:B2:D4:3F:A9:E3:BE:6A:02:EE:C4:38:81:2C:59:18:8C:A3:E2:B8 Authority key identifier: 05:CD:54:9F:54:54:BD:32:B2:28:F6:AF:C8:DE:36:E0:48:F6:48:0D Certificate issuer: /CN=A91E8881/serialNumber=05CD549F5454BD32B228F6AFC8DE36E048F6480D Certificate serial: 081F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bc1Un1RUvTKyKPavyN424Ej2SA0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8881/089DE84000F811EBB217A449C4F9AE02/Bc1Un1RUvTKyKPavyN424Ej2SA0.mft Manifest number: 0817 Signing time: Mon 22 Dec 2025 20:15:32 +0000 Manifest this update: Mon 22 Dec 2025 20:15:31 +0000 Manifest next update: Mon 29 Dec 2025 20:15:31 +0000 Files and hashes: 1: Bc1Un1RUvTKyKPavyN424Ej2SA0.crl (hash: Q1gOS95cSmzE3i4cmO8uk/OmctA3L/0GrUfLzMCX+CU=) 2: EAC9D46200F911EB8E61B84CC4F9AE02.roa (hash: rdYM8QlFVAEWi173xe8sRij+RLkJG7jr88ybpEhjd18=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8881/089DE84000F811EBB217A449C4F9AE02/Bc1Un1RUvTKyKPavyN424Ej2SA0.crl rsync://rpki.apnic.net/member_repository/A91E8881/089DE84000F811EBB217A449C4F9AE02/Bc1Un1RUvTKyKPavyN424Ej2SA0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bc1Un1RUvTKyKPavyN424Ej2SA0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 20:15:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2079 (0x81f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8881, serialNumber=05CD549F5454BD32B228F6AFC8DE36E048F6480D Validity Not Before: Dec 22 20:15:31 2025 GMT Not After : Dec 29 20:15:31 2025 GMT Subject: CN=6949a6e3-41ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:95:55:8f:73:58:11:01:7b:29:af:f2:db:12: 4f:04:c0:7f:30:01:54:ea:a3:9c:36:0f:cc:d0:cd: 2d:87:b3:4d:77:fa:17:c0:47:38:2d:d2:32:17:43: c7:1a:e0:48:01:d1:48:3a:5c:85:6a:d1:2a:3b:ed: 26:27:54:6b:a7:a9:25:c6:9e:fa:7a:28:5c:d8:5e: d5:10:22:d3:90:80:78:a0:0a:a3:b2:2c:cd:0c:aa: a3:d7:4c:65:50:ff:d1:fa:b4:81:b9:a0:c8:2a:9a: 60:84:6a:8c:90:ab:40:4f:84:4b:a1:ee:eb:f0:cc: a9:b5:ab:ba:86:42:2c:73:71:23:83:0a:d7:b0:d6: 4d:c2:fc:da:7e:cd:f6:51:04:e9:72:94:02:c7:81: 40:51:75:d0:c5:12:51:37:4d:50:ef:d4:ea:94:10: 75:5b:3a:7d:40:8a:6c:3e:94:19:e3:06:e7:da:16: 43:53:16:6a:2c:ab:b5:a6:e4:2c:f1:a9:00:6e:17: e9:55:9e:f6:42:0b:8d:c4:61:6a:b5:3b:e4:e9:2a: d3:ae:eb:e0:34:bf:ea:3a:1e:7c:b6:e6:7f:8c:05: b5:84:aa:0e:c5:9e:db:71:77:15:7b:bf:34:36:71: 13:3a:56:85:2a:96:39:10:cf:f4:a1:86:39:06:62: 25:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:B2:D4:3F:A9:E3:BE:6A:02:EE:C4:38:81:2C:59:18:8C:A3:E2:B8 X509v3 Authority Key Identifier: keyid:05:CD:54:9F:54:54:BD:32:B2:28:F6:AF:C8:DE:36:E0:48:F6:48:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8881/089DE84000F811EBB217A449C4F9AE02/Bc1Un1RUvTKyKPavyN424Ej2SA0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bc1Un1RUvTKyKPavyN424Ej2SA0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8881/089DE84000F811EBB217A449C4F9AE02/Bc1Un1RUvTKyKPavyN424Ej2SA0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:52:62:d6:58:87:2a:2b:60:2c:1e:1f:6c:e3:8c:0f:7c:5a: bf:bc:a4:cf:b0:9d:62:96:15:96:1d:19:24:56:87:11:a0:df: 94:e2:04:23:9e:df:29:89:ce:49:ae:7d:48:57:0d:85:1e:48: 8f:7f:70:b0:92:8f:59:45:7a:20:41:c0:1d:d0:6b:4c:82:54: 6f:bb:f3:7a:71:a8:1d:fa:09:fe:d2:48:de:0c:39:3c:73:1d: 09:76:ea:6d:ee:12:86:38:5c:e8:b3:c2:2b:e4:ad:1c:b1:b0: 6a:46:1d:46:cf:34:58:ec:03:13:e0:5f:2b:76:df:04:4e:76: 9c:0b:9f:1d:a9:be:43:59:08:81:c5:09:c6:15:fa:f9:b7:44: ed:f3:5e:7b:ed:9f:43:a1:43:ff:ae:e0:3f:91:73:79:47:33: d2:45:16:c9:9e:e5:71:fb:68:2e:87:8c:11:72:c1:bd:a3:c9: 24:1f:56:e1:31:d4:84:d4:2d:bd:33:1b:57:b5:f0:93:a2:57: d9:7b:c4:98:cd:43:16:e6:5c:e6:65:e4:15:9e:10:fd:73:fa: 2b:b4:52:49:cd:5e:7c:33:25:97:f5:4e:86:bf:fa:14:58:b4: 3e:a5:65:d9:5b:2b:dc:fa:e9:f4:e3:1f:a7:ed:04:5a:11:41: ed:99:f5:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCB8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg4ODExMTAvBgNVBAUTKDA1Q0Q1NDlGNTQ1NEJEMzJCMjI4RjZBRkM4REUzNkUw NDhGNjQ4MEQwHhcNMjUxMjIyMjAxNTMxWhcNMjUxMjI5MjAxNTMxWjAYMRYwFAYD VQQDDA02OTQ5YTZlMy00MWNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAopVVj3NYEQF7Ka/y2xJPBMB/MAFU6qOcNg/M0M0th7NNd/oXwEc4LdIyF0PH GuBIAdFIOlyFatEqO+0mJ1Rrp6klxp76eihc2F7VECLTkIB4oAqjsizNDKqj10xl UP/R+rSBuaDIKppghGqMkKtAT4RLoe7r8Myptau6hkIsc3EjgwrXsNZNwvzafs32 UQTpcpQCx4FAUXXQxRJRN01Q79TqlBB1Wzp9QIpsPpQZ4wbn2hZDUxZqLKu1puQs 8akAbhfpVZ72QguNxGFqtTvk6SrTruvgNL/qOh58tuZ/jAW1hKoOxZ7bcXcVe780 NnETOlaFKpY5EM/0oYY5BmIliQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJSy1D+p 475qAu7EOIEsWRiMo+K4MB8GA1UdIwQYMBaAFAXNVJ9UVL0ysij2r8jeNuBI9kgN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODg4MS8wODlERTg0MDAw RjgxMUVCQjIxN0E0NDlDNEY5QUUwMi9CYzFVbjFSVXZUS3lLUGF2eU40MjRFajJT QTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JjMVVuMVJVdlRLeUtQYXZ5TjQyNEVqMlNBMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF ODg4MS8wODlERTg0MDAwRjgxMUVCQjIxN0E0NDlDNEY5QUUwMi9CYzFVbjFSVXZU S3lLUGF2eU40MjRFajJTQTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBIUmLWWIcqK2AsHh9s44wPfFq/vKTPsJ1ilhWWHRkkVocRoN+U4gQj nt8pic5Jrn1IVw2FHkiPf3Cwko9ZRXogQcAd0GtMglRvu/N6cagd+gn+0kjeDDk8 cx0Jdupt7hKGOFzos8Ir5K0csbBqRh1GzzRY7AMT4F8rdt8ETnacC58dqb5DWQiB xQnGFfr5t0Tt81577Z9DoUP/ruA/kXN5RzPSRRbJnuVx+2guh4wRcsG9o8kkH1bh MdSE1C29MxtXtfCTolfZe8SYzUMW5lzmZeQVnhD9c/ortFJJzV58MyWX9U6Gv/oU WLQ+pWXZWyvc+un04x+n7QRaEUHtmfUR -----END CERTIFICATE-----Generated at Wed Dec 24 19:32:15 2025 by rpki-client