This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.mft File: BNhIIeE7gDAzVMS-NDMdURHyvKY.mft (raw, json) Hash identifier: xBsLFA1GO/IORdY+fk49lDDpcifhgXDizBTk3CSYH5I= Subject key identifier: 73:4B:40:4B:DA:38:A9:0C:9D:46:A5:36:75:64:1D:B0:46:6F:4F:B8 Authority key identifier: 04:D8:48:21:E1:3B:80:30:33:54:C4:BE:34:33:1D:51:11:F2:BC:A6 Certificate issuer: /CN=A91F0721/serialNumber=04D84821E13B80303354C4BE34331D5111F2BCA6 Certificate serial: 0218 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BNhIIeE7gDAzVMS-NDMdURHyvKY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.mft Manifest number: 0214 Signing time: Sun 21 Dec 2025 01:28:39 +0000 Manifest this update: Sun 21 Dec 2025 01:28:38 +0000 Manifest next update: Sun 28 Dec 2025 01:28:38 +0000 Files and hashes: 1: BNhIIeE7gDAzVMS-NDMdURHyvKY.crl (hash: WbETi9OhHSWeRNGOepwQ84iRgX4AZZF+g6pbKsZf4As=) 2: 7659B89AADCC11ED84051211C4F9AE02.roa (hash: 4xZDEw3FRBWFRylijPU5JOuTB9KaN3fmrPD43soo8sQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.crl rsync://rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BNhIIeE7gDAzVMS-NDMdURHyvKY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 01:28:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 536 (0x218) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0721, serialNumber=04D84821E13B80303354C4BE34331D5111F2BCA6 Validity Not Before: Dec 21 01:28:38 2025 GMT Not After : Dec 28 01:28:38 2025 GMT Subject: CN=69474d47-e009 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:34:00:e5:b8:eb:8e:8f:e0:74:ab:e4:9e:16: 90:e4:fc:9b:f4:5c:4a:f4:5d:49:c7:dc:13:26:bf: c5:31:c1:cf:a0:be:40:70:fc:e2:49:25:93:20:ce: c2:0c:e2:3f:64:ff:19:5f:b5:19:86:5b:ff:56:fa: 6b:fc:f3:ea:f0:b2:66:c1:26:d1:82:8b:7a:29:51: ad:d9:09:2b:e7:37:37:30:31:12:4f:99:3b:98:08: 85:55:5a:65:5c:fd:f7:01:d4:eb:ec:d1:4f:8c:81: aa:75:42:f3:3b:3d:ce:bd:be:c9:38:e7:05:e4:96: 14:d6:41:bf:d2:4f:b9:2f:31:74:1e:25:d3:8c:68: 6a:41:19:55:56:b1:47:46:82:eb:94:d8:47:04:cf: 14:15:f3:8d:d6:1c:b7:ab:75:1d:61:42:04:74:56: 58:d4:44:28:77:8f:37:30:5a:6b:a3:4d:c9:55:a3: b4:e2:47:4c:32:d2:e5:4c:37:96:9c:5e:75:48:24: 17:82:b5:77:b7:e5:09:f4:eb:9d:5d:e5:df:7b:29: 10:8b:96:78:c1:1b:9f:27:6a:6a:3a:6d:80:12:85: c5:42:99:cc:4f:c9:02:90:7a:b7:ae:21:5c:19:87: bf:0c:ee:96:7a:e1:7e:aa:4d:a7:a1:52:c1:0c:9f: dd:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:4B:40:4B:DA:38:A9:0C:9D:46:A5:36:75:64:1D:B0:46:6F:4F:B8 X509v3 Authority Key Identifier: keyid:04:D8:48:21:E1:3B:80:30:33:54:C4:BE:34:33:1D:51:11:F2:BC:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BNhIIeE7gDAzVMS-NDMdURHyvKY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:ce:bf:7e:39:5f:2d:58:81:ca:56:55:3a:29:ef:e5:4b:d2: 1d:a3:d3:bb:a1:fe:1d:d9:c1:ae:f7:8f:cc:76:39:d4:08:d1: 8d:32:4b:80:56:e1:2d:32:8e:57:50:0e:4b:e3:24:13:e1:ea: ee:36:0b:af:0e:a3:4f:21:e1:5e:1c:2b:eb:3e:8d:68:c0:2f: e0:33:7e:6a:22:bc:05:d3:8a:bb:22:c2:e6:31:6f:3b:17:de: 92:b2:d2:86:10:d0:f2:d3:71:cb:c0:65:aa:6e:ef:92:e5:bf: 8d:32:b5:26:c7:cf:f4:35:67:8a:44:e7:d0:d3:22:62:7c:65: a1:8f:86:a2:8d:fe:43:37:05:67:29:2d:b3:c5:25:e5:db:81: 78:09:cd:c7:03:ae:6f:01:12:ef:3a:0c:7b:1f:7b:2e:ad:13: 6c:b9:de:d1:66:67:57:d0:be:7c:48:ec:f7:10:66:a6:fd:d5: 91:9d:fd:39:b5:4b:be:5f:18:8c:7c:8e:99:39:f8:64:6e:41: de:bc:37:5a:ef:06:1a:de:29:ca:f5:f5:13:9a:c3:ad:d6:90: a6:51:8e:a8:24:4b:05:9e:00:e0:d3:fb:57:42:4f:11:00:23: f5:d0:eb:6a:dc:3b:41:64:26:6a:c4:ff:15:0c:4a:31:e7:90: 13:bc:95:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjA3MjExMTAvBgNVBAUTKDA0RDg0ODIxRTEzQjgwMzAzMzU0QzRCRTM0MzMxRDUx MTFGMkJDQTYwHhcNMjUxMjIxMDEyODM4WhcNMjUxMjI4MDEyODM4WjAYMRYwFAYD VQQDDA02OTQ3NGQ0Ny1lMDA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtjQA5bjrjo/gdKvknhaQ5Pyb9FxK9F1Jx9wTJr/FMcHPoL5AcPziSSWTIM7C DOI/ZP8ZX7UZhlv/Vvpr/PPq8LJmwSbRgot6KVGt2Qkr5zc3MDEST5k7mAiFVVpl XP33AdTr7NFPjIGqdULzOz3Ovb7JOOcF5JYU1kG/0k+5LzF0HiXTjGhqQRlVVrFH RoLrlNhHBM8UFfON1hy3q3UdYUIEdFZY1EQod483MFpro03JVaO04kdMMtLlTDeW nF51SCQXgrV3t+UJ9OudXeXfeykQi5Z4wRufJ2pqOm2AEoXFQpnMT8kCkHq3riFc GYe/DO6WeuF+qk2noVLBDJ/dLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHNLQEva OKkMnUalNnVkHbBGb0+4MB8GA1UdIwQYMBaAFATYSCHhO4AwM1TEvjQzHVER8rym MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMDcyMS9DOTEyN0IzRUFE QzgxMUVEOTIxNjIyMEVDNEY5QUUwMi9CTmhJSWVFN2dEQXpWTVMtTkRNZFVSSHl2 S1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JOaElJZUU3Z0RBelZNUy1ORE1kVVJIeXZLWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MDcyMS9DOTEyN0IzRUFEQzgxMUVEOTIxNjIyMEVDNEY5QUUwMi9CTmhJSWVFN2dE QXpWTVMtTkRNZFVSSHl2S1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHzr9+OV8tWIHKVlU6Ke/lS9Ido9O7of4d2cGu94/MdjnUCNGNMkuA VuEtMo5XUA5L4yQT4eruNguvDqNPIeFeHCvrPo1owC/gM35qIrwF04q7IsLmMW87 F96SstKGENDy03HLwGWqbu+S5b+NMrUmx8/0NWeKROfQ0yJifGWhj4aijf5DNwVn KS2zxSXl24F4Cc3HA65vARLvOgx7H3surRNsud7RZmdX0L58SOz3EGam/dWRnf05 tUu+XxiMfI6ZOfhkbkHevDda7wYa3inK9fUTmsOt1pCmUY6oJEsFngDg0/tXQk8R ACP10Otq3DtBZCZqxP8VDEox55ATvJVK -----END CERTIFICATE-----Generated at Mon Dec 22 06:18:52 2025 by rpki-client