This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.mft File: BmZq7NeMCl7RN5Cl6apAw0kPvPE.mft (raw, json) Hash identifier: bwzlMMYOX7JzkALvD9foizJgjqXUOWmhxRxku5eaMJY= Subject key identifier: 9F:A4:58:84:6F:1C:48:27:C8:19:EC:01:A5:CA:A7:B1:E7:35:AD:82 Authority key identifier: 06:66:6A:EC:D7:8C:0A:5E:D1:37:90:A5:E9:AA:40:C3:49:0F:BC:F1 Certificate issuer: /CN=A91F63DC/serialNumber=06666AECD78C0A5ED13790A5E9AA40C3490FBCF1 Certificate serial: 019F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BmZq7NeMCl7RN5Cl6apAw0kPvPE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.mft Manifest number: 019D Signing time: Tue 23 Dec 2025 02:21:57 +0000 Manifest this update: Tue 23 Dec 2025 02:21:56 +0000 Manifest next update: Tue 30 Dec 2025 02:21:56 +0000 Files and hashes: 1: BmZq7NeMCl7RN5Cl6apAw0kPvPE.crl (hash: Mzkjskvua6UcROIJYuqqJxFTREkx2OxmSIX3P34FPIA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.crl rsync://rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BmZq7NeMCl7RN5Cl6apAw0kPvPE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 02:21:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 415 (0x19f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F63DC, serialNumber=06666AECD78C0A5ED13790A5E9AA40C3490FBCF1 Validity Not Before: Dec 23 02:21:56 2025 GMT Not After : Dec 30 02:21:56 2025 GMT Subject: CN=6949fcc5-20a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:6e:23:fc:27:6a:23:3d:96:99:04:c6:20:3f: d5:23:00:5c:ad:43:11:c3:77:52:05:84:83:03:52: 30:ff:d5:b0:bf:e0:2a:9f:1d:71:b6:6e:f1:59:8a: 2f:7a:c0:d3:a5:3b:17:87:59:e6:85:eb:c9:95:72: ec:b9:1f:0f:94:1c:25:25:58:9c:23:d7:3e:72:7b: 87:99:8d:ac:c8:50:bd:be:96:d0:c1:3b:f5:b9:29: d1:59:f8:5a:b3:79:3c:cf:61:16:f9:3a:9d:ee:ec: c5:10:94:2e:47:48:bc:78:5a:e6:8e:c7:3c:f2:1f: 81:a5:fe:44:ab:27:e5:53:7e:50:a3:5b:59:cf:5a: 8d:c1:6d:78:62:1d:c7:25:0e:cf:1a:a3:af:36:e2: a2:68:7e:dc:70:2e:10:af:ec:60:35:0f:56:a3:36: e5:33:78:ba:9d:10:74:f6:d1:ad:07:4d:fb:7b:63: d1:3b:42:31:8c:ca:4e:de:5e:5e:67:4a:f2:a2:df: cd:fa:f6:4b:5a:52:24:dd:fd:df:57:87:8c:a3:9d: 5d:cf:47:16:39:7f:61:bd:7a:54:75:86:1a:c7:a9: 55:7d:3b:f4:da:ef:b5:7f:cd:9b:3b:fd:ce:39:e7: 50:7b:4b:dc:0e:cc:f3:77:f7:32:fc:cb:09:e5:4d: 48:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:A4:58:84:6F:1C:48:27:C8:19:EC:01:A5:CA:A7:B1:E7:35:AD:82 X509v3 Authority Key Identifier: keyid:06:66:6A:EC:D7:8C:0A:5E:D1:37:90:A5:E9:AA:40:C3:49:0F:BC:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BmZq7NeMCl7RN5Cl6apAw0kPvPE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:ab:71:e9:f9:10:ea:73:58:ec:05:a9:28:51:56:68:d8:d3: 5f:5e:52:b5:2b:9b:2f:9f:98:0a:9b:c2:66:84:58:47:80:64: f5:39:02:02:19:0d:b3:b0:0f:5c:b9:1d:5f:9a:c7:05:1e:5e: cc:d8:f2:2b:ba:c6:d3:60:ae:e5:f3:d6:a9:87:1b:39:f8:8e: f0:8f:ce:09:02:89:16:5f:e7:33:ec:ef:c7:00:09:9d:85:90: 4d:89:c3:c7:7a:74:03:69:82:af:e1:0f:f2:07:8c:19:7c:4b: a6:0d:85:04:3a:fb:ce:87:79:03:47:dd:e4:21:f6:09:4b:be: ea:ec:93:03:5b:c9:7e:23:cf:bf:1c:56:41:97:73:cf:c5:71: f8:c7:39:66:45:5f:cd:7d:aa:84:90:8f:2c:c1:62:70:bb:3b: 0e:ef:0e:0f:91:fa:27:ec:68:ab:57:b1:bc:e4:77:15:fd:93: ae:e1:4b:ca:1f:b1:28:8b:67:aa:ab:06:06:36:29:b8:1c:9b: c3:f3:67:5a:4e:56:58:88:c4:7f:f1:b4:7f:23:57:a3:18:aa: 3d:32:4e:92:42:3b:54:7e:cb:ad:31:c9:b4:f4:a5:10:bf:88: 5b:f6:7e:9b:bf:04:ec:22:b8:8d:a6:35:f9:58:f7:80:7a:0e: 8c:b4:cf:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjYzREMxMTAvBgNVBAUTKDA2NjY2QUVDRDc4QzBBNUVEMTM3OTBBNUU5QUE0MEMz NDkwRkJDRjEwHhcNMjUxMjIzMDIyMTU2WhcNMjUxMjMwMDIyMTU2WjAYMRYwFAYD VQQDDA02OTQ5ZmNjNS0yMGEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp24j/CdqIz2WmQTGID/VIwBcrUMRw3dSBYSDA1Iw/9Wwv+Aqnx1xtm7xWYov esDTpTsXh1nmhevJlXLsuR8PlBwlJVicI9c+cnuHmY2syFC9vpbQwTv1uSnRWfha s3k8z2EW+Tqd7uzFEJQuR0i8eFrmjsc88h+Bpf5EqyflU35Qo1tZz1qNwW14Yh3H JQ7PGqOvNuKiaH7ccC4Qr+xgNQ9WozblM3i6nRB09tGtB037e2PRO0IxjMpO3l5e Z0ryot/N+vZLWlIk3f3fV4eMo51dz0cWOX9hvXpUdYYax6lVfTv02u+1f82bO/3O OedQe0vcDszzd/cy/MsJ5U1ILQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ+kWIRv HEgnyBnsAaXKp7HnNa2CMB8GA1UdIwQYMBaAFAZmauzXjApe0TeQpemqQMNJD7zx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjNEQy8wNDMxNTJFMjY2 NTMxMUVFOUM2OEVFMkJDNEY5QUUwMi9CbVpxN05lTUNsN1JONUNsNmFwQXcwa1B2 UEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JtWnE3TmVNQ2w3Uk41Q2w2YXBBdzBrUHZQRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjNEQy8wNDMxNTJFMjY2NTMxMUVFOUM2OEVFMkJDNEY5QUUwMi9CbVpxN05lTUNs N1JONUNsNmFwQXcwa1B2UEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGq3Hp+RDqc1jsBakoUVZo2NNfXlK1K5svn5gKm8JmhFhHgGT1OQIC GQ2zsA9cuR1fmscFHl7M2PIrusbTYK7l89aphxs5+I7wj84JAokWX+cz7O/HAAmd hZBNicPHenQDaYKv4Q/yB4wZfEumDYUEOvvOh3kDR93kIfYJS77q7JMDW8l+I8+/ HFZBl3PPxXH4xzlmRV/NfaqEkI8swWJwuzsO7w4Pkfon7GirV7G85HcV/ZOu4UvK H7Eoi2eqqwYGNim4HJvD82daTlZYiMR/8bR/I1ejGKo9Mk6SQjtUfsutMcm09KUQ v4hb9n6bvwTsIriNpjX5WPeAeg6MtM+p -----END CERTIFICATE-----Generated at Wed Dec 24 14:07:10 2025 by rpki-client