This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.mft File: bwlMAO-I_YtwgT1trctUaHYyjNk.mft (raw, json) Hash identifier: RswcoU6d/er2NIBdLlGKgei7DKs23IYN9SmI4TMQ0n0= Subject key identifier: F6:F3:CB:D8:C2:9D:09:E4:52:E3:39:F8:B0:D1:37:0F:15:B4:4F:D8 Authority key identifier: 6F:09:4C:00:EF:88:FD:8B:70:81:3D:6D:AD:CB:54:68:76:32:8C:D9 Certificate issuer: /CN=A91F8E25/serialNumber=6F094C00EF88FD8B70813D6DADCB546876328CD9 Certificate serial: 21DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwlMAO-I_YtwgT1trctUaHYyjNk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.mft Manifest number: 2E06 Signing time: Sat 20 Dec 2025 15:23:25 +0000 Manifest this update: Sat 20 Dec 2025 15:23:24 +0000 Manifest next update: Sat 27 Dec 2025 15:23:24 +0000 Files and hashes: 1: bwlMAO-I_YtwgT1trctUaHYyjNk.crl (hash: VjD/CliIxkeUK3jx1/LtYxez/aFz9AGoS9Tdf6cwRng=) 2: 85D25098E00111E596BC7D1BC4F9AE02.roa (hash: gA1KT8HsqI/GnzzqWgFcFoqfNIoKvvP6VXwU1a0U7f0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.crl rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwlMAO-I_YtwgT1trctUaHYyjNk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 15:23:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8667 (0x21db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8E25, serialNumber=6F094C00EF88FD8B70813D6DADCB546876328CD9 Validity Not Before: Dec 20 15:23:24 2025 GMT Not After : Dec 27 15:23:24 2025 GMT Subject: CN=6946bf6d-733a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:77:a9:33:f9:d6:fe:a3:c2:33:3f:8c:5a:9e: a3:f0:94:f8:e8:fa:b8:3c:7e:fa:2d:74:61:d8:95: 35:35:39:42:0d:c3:0c:61:61:1f:9c:3b:f5:28:6b: 3d:75:7a:5c:f6:cf:e6:4f:3f:f3:87:40:0a:90:0f: ed:76:17:bf:6d:ee:3f:66:c8:0a:fa:39:26:09:9d: 4a:e2:85:8c:ad:50:40:a2:39:bd:68:13:1b:d8:bd: f5:92:5e:dd:17:cb:17:fe:3d:e8:ea:27:f8:8f:5e: 20:6b:b5:15:db:5c:60:cf:d0:37:38:e4:04:af:b6: 5c:53:ac:9e:ec:92:b9:3a:9e:77:a2:13:e5:b5:ec: e1:ab:bd:6e:ac:52:4e:bc:96:af:5b:a1:12:db:c9: 25:1a:9b:46:9e:af:64:b0:2b:83:34:f0:01:1f:da: e2:cd:cb:00:89:16:33:20:a4:ea:57:f8:2b:2a:35: ef:11:c6:7b:62:f9:17:ee:84:21:28:05:8a:ac:18: 2c:9e:99:15:03:27:e2:48:04:f2:4d:e9:1a:0c:cd: 92:80:23:39:cd:30:12:6f:a8:47:0c:90:27:e3:64: 34:07:54:bd:31:78:f6:a7:28:59:ab:e7:dd:f2:b2: 77:0c:53:5f:6f:73:0e:63:10:b0:a5:a0:67:dc:cf: ff:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:F3:CB:D8:C2:9D:09:E4:52:E3:39:F8:B0:D1:37:0F:15:B4:4F:D8 X509v3 Authority Key Identifier: keyid:6F:09:4C:00:EF:88:FD:8B:70:81:3D:6D:AD:CB:54:68:76:32:8C:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwlMAO-I_YtwgT1trctUaHYyjNk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:68:e9:27:01:7d:6a:3b:d2:cd:bb:6c:9e:fa:f7:1e:88:fd: 74:8c:15:77:94:0c:14:98:ae:83:15:09:3a:b2:be:19:2b:17: e6:03:aa:70:b9:16:52:5d:bd:b8:c1:05:2b:4a:f9:50:45:1b: 62:47:11:e9:92:62:68:62:4d:37:80:69:3a:17:d8:d7:bf:08: 6d:5b:05:7d:cd:8a:fa:c9:07:d0:99:63:f0:34:3b:6b:76:5e: 7b:bd:b1:a6:53:3b:5a:aa:7a:f3:3d:5e:00:16:4b:7b:46:21: 1a:7f:99:0d:b2:c8:b0:80:16:4f:9c:ef:bc:8a:0b:6c:ad:0d: 35:4c:d2:c2:44:0f:60:ff:e3:aa:ca:00:1e:e1:f3:b0:5d:01: 57:a1:fb:5c:42:8d:7e:4e:b0:db:b8:ad:16:3e:1b:5d:4e:e4: 48:29:3b:f7:4e:81:3e:2f:c4:27:0b:3f:9c:74:97:d4:94:01: 8b:d5:a0:73:57:36:7c:f8:f8:97:58:a1:46:fe:c3:8c:69:46: 82:be:1d:a2:d9:5a:d5:1d:08:cc:ac:02:07:b2:27:13:f4:4a: 30:47:b2:42:d3:a8:8b:d6:53:b1:d9:61:92:78:2e:31:aa:23: a4:ab:93:2c:04:6a:19:c8:a1:73:46:2f:fa:54:4a:6d:85:b5: 7e:a1:31:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIdswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhFMjUxMTAvBgNVBAUTKDZGMDk0QzAwRUY4OEZEOEI3MDgxM0Q2REFEQ0I1NDY4 NzYzMjhDRDkwHhcNMjUxMjIwMTUyMzI0WhcNMjUxMjI3MTUyMzI0WjAYMRYwFAYD VQQDDA02OTQ2YmY2ZC03MzNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0XepM/nW/qPCMz+MWp6j8JT46Pq4PH76LXRh2JU1NTlCDcMMYWEfnDv1KGs9 dXpc9s/mTz/zh0AKkA/tdhe/be4/ZsgK+jkmCZ1K4oWMrVBAojm9aBMb2L31kl7d F8sX/j3o6if4j14ga7UV21xgz9A3OOQEr7ZcU6ye7JK5Op53ohPltezhq71urFJO vJavW6ES28klGptGnq9ksCuDNPABH9rizcsAiRYzIKTqV/grKjXvEcZ7YvkX7oQh KAWKrBgsnpkVAyfiSATyTekaDM2SgCM5zTASb6hHDJAn42Q0B1S9MXj2pyhZq+fd 8rJ3DFNfb3MOYxCwpaBn3M//wQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPbzy9jC nQnkUuM5+LDRNw8VtE/YMB8GA1UdIwQYMBaAFG8JTADviP2LcIE9ba3LVGh2MozZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEUyNS9GNDM0NDExNjhB MkUxMUUzQjVCNkU5NUU1OTExRUEzMi9id2xNQU8tSV9ZdHdnVDF0cmN0VWFIWXlq TmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J3bE1BTy1JX1l0d2dUMXRyY3RVYUhZeWpOay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OEUyNS9GNDM0NDExNjhBMkUxMUUzQjVCNkU5NUU1OTExRUEzMi9id2xNQU8tSV9Z dHdnVDF0cmN0VWFIWXlqTmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZaOknAX1qO9LNu2ye+vceiP10jBV3lAwUmK6DFQk6sr4ZKxfmA6pw uRZSXb24wQUrSvlQRRtiRxHpkmJoYk03gGk6F9jXvwhtWwV9zYr6yQfQmWPwNDtr dl57vbGmUztaqnrzPV4AFkt7RiEaf5kNssiwgBZPnO+8igtsrQ01TNLCRA9g/+Oq ygAe4fOwXQFXoftcQo1+TrDbuK0WPhtdTuRIKTv3ToE+L8QnCz+cdJfUlAGL1aBz VzZ8+PiXWKFG/sOMaUaCvh2i2VrVHQjMrAIHsicT9EowR7JC06iL1lOx2WGSeC4x qiOkq5MsBGoZyKFzRi/6VEpthbV+oTGK -----END CERTIFICATE-----Generated at Sun Dec 21 20:06:00 2025 by rpki-client