This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FBD28/26758BB43AB511E7B8609F1CC4F9AE02/bkhhCqDmsOLF7tQC3QeDOqc-fqI.mft File: bkhhCqDmsOLF7tQC3QeDOqc-fqI.mft (raw, json) Hash identifier: N7/Z2eszMuW+MQOS7n1EGli4gRsJH15jcHRbg0NWGbE= Subject key identifier: 4C:DD:5E:A1:63:62:41:49:02:E5:65:38:5B:10:63:1D:E0:78:DB:AD Authority key identifier: 6E:48:61:0A:A0:E6:B0:E2:C5:EE:D4:02:DD:07:83:3A:A7:3E:7E:A2 Certificate issuer: /CN=A91FBD28/serialNumber=6E48610AA0E6B0E2C5EED402DD07833AA73E7EA2 Certificate serial: 1B1A Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/bkhhCqDmsOLF7tQC3QeDOqc-fqI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FBD28/26758BB43AB511E7B8609F1CC4F9AE02/bkhhCqDmsOLF7tQC3QeDOqc-fqI.mft Manifest number: 1B04 Signing time: Thu 18 Dec 2025 15:36:48 +0000 Manifest this update: Thu 18 Dec 2025 15:36:48 +0000 Manifest next update: Thu 25 Dec 2025 15:36:48 +0000 Files and hashes: 1: bkhhCqDmsOLF7tQC3QeDOqc-fqI.crl (hash: gZr9ELYK6Md1Wd1ESS6Cqg741BXcG+K/qKWYJZpMloA=) 2: D8B92776A16A11EAA517B11EC4F9AE02.roa (hash: 0/HP0DwNYOfkRXXhvxhJ7qmLcNQDOwmKr3HHIF1F5nU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FBD28/26758BB43AB511E7B8609F1CC4F9AE02/bkhhCqDmsOLF7tQC3QeDOqc-fqI.crl rsync://rpki.apnic.net/member_repository/A91FBD28/26758BB43AB511E7B8609F1CC4F9AE02/bkhhCqDmsOLF7tQC3QeDOqc-fqI.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/bkhhCqDmsOLF7tQC3QeDOqc-fqI.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 15:36:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6938 (0x1b1a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FBD28, serialNumber=6E48610AA0E6B0E2C5EED402DD07833AA73E7EA2 Validity Not Before: Dec 18 15:36:48 2025 GMT Not After : Dec 25 15:36:48 2025 GMT Subject: CN=69441f90-2008 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:54:90:1c:eb:b6:e6:b3:6c:02:70:3f:6f:7e: bb:73:df:88:fe:cc:c4:2b:91:fc:3a:90:62:c3:ea: 47:63:da:c5:f8:d0:c1:49:e5:9b:18:65:2a:1c:40: 7c:d8:e7:1b:17:fa:6e:02:54:69:a1:9e:51:3f:7d: b9:92:d0:cb:62:af:d2:62:38:02:1f:32:e0:52:f3: b1:72:0c:01:50:3f:07:b1:67:ce:3a:ea:0a:23:e7: 23:29:c4:68:31:72:83:86:1f:c1:76:0c:51:c6:78: 5b:a0:b5:fb:9b:ed:e2:53:f6:08:b8:16:81:26:67: 8c:6f:34:91:c2:c4:df:66:f5:f2:13:f2:1f:26:41: 9e:37:9b:05:d1:71:50:ec:f2:64:53:81:4d:75:19: 71:15:cd:e2:89:d0:6d:f4:e9:be:ab:a3:70:9a:d2: c1:99:31:c8:cb:6a:a3:65:6f:1d:31:42:bb:cd:0f: fc:e0:f0:9b:b5:c4:24:b7:0c:df:32:51:f2:84:12: 9e:84:f9:eb:30:67:24:20:f2:04:8e:9d:51:57:33: eb:ba:49:7e:6f:47:18:0d:21:60:3c:70:42:4a:2d: 04:a1:12:07:a2:43:97:e5:f7:fe:4c:68:b3:03:ac: c8:48:20:15:39:6d:f7:11:5b:25:bc:8d:3f:23:95: c5:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:DD:5E:A1:63:62:41:49:02:E5:65:38:5B:10:63:1D:E0:78:DB:AD X509v3 Authority Key Identifier: keyid:6E:48:61:0A:A0:E6:B0:E2:C5:EE:D4:02:DD:07:83:3A:A7:3E:7E:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FBD28/26758BB43AB511E7B8609F1CC4F9AE02/bkhhCqDmsOLF7tQC3QeDOqc-fqI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/bkhhCqDmsOLF7tQC3QeDOqc-fqI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FBD28/26758BB43AB511E7B8609F1CC4F9AE02/bkhhCqDmsOLF7tQC3QeDOqc-fqI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:8c:ce:b9:72:d0:36:7d:d7:9b:ad:6c:aa:f9:80:65:d5:54: 6e:d3:84:6a:b0:39:3e:2e:e3:ef:a8:78:bd:27:88:71:4d:4c: 37:0d:f8:dc:b6:b9:84:02:29:21:ea:1c:0d:6b:f0:89:d7:b4: 3b:0d:ea:81:ba:e4:83:83:d6:85:0d:d4:42:af:51:c6:63:ff: b3:26:da:67:e9:29:35:27:7e:b4:5c:61:17:d2:ab:b8:5f:14: a8:e9:ed:94:e1:34:9f:aa:b9:be:46:01:b3:37:90:e2:f7:62: c1:fc:8e:b2:9c:84:8c:81:a7:11:d2:f4:e3:b8:07:dd:26:ff: 67:a7:a4:23:68:fb:e0:3f:b9:e3:88:a1:7b:f1:09:10:bd:ec: 97:72:08:9e:8a:40:7c:5f:a9:f7:14:e7:5d:13:4b:46:20:e3: 57:65:ae:8e:75:11:7f:60:0f:b8:15:85:a4:d7:7a:47:bc:1a: b1:79:61:e9:db:d2:31:43:90:78:43:7f:c4:8d:9f:ea:c0:c4: b6:c5:8e:f5:38:7f:a0:e5:9e:9f:39:3f:38:84:bc:23:a9:57: 4b:49:fd:8d:35:4b:93:60:7a:43:66:7a:88:a9:1c:cf:45:15: c0:d3:95:74:82:9d:13:92:2f:e0:38:a7:70:43:48:38:f6:be: 34:8d:f1:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGxowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkJEMjgxMTAvBgNVBAUTKDZFNDg2MTBBQTBFNkIwRTJDNUVFRDQwMkREMDc4MzNB QTczRTdFQTIwHhcNMjUxMjE4MTUzNjQ4WhcNMjUxMjI1MTUzNjQ4WjAYMRYwFAYD VQQDDA02OTQ0MWY5MC0yMDA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtVSQHOu25rNsAnA/b367c9+I/szEK5H8OpBiw+pHY9rF+NDBSeWbGGUqHEB8 2OcbF/puAlRpoZ5RP325ktDLYq/SYjgCHzLgUvOxcgwBUD8HsWfOOuoKI+cjKcRo MXKDhh/BdgxRxnhboLX7m+3iU/YIuBaBJmeMbzSRwsTfZvXyE/IfJkGeN5sF0XFQ 7PJkU4FNdRlxFc3iidBt9Om+q6NwmtLBmTHIy2qjZW8dMUK7zQ/84PCbtcQktwzf MlHyhBKehPnrMGckIPIEjp1RVzPrukl+b0cYDSFgPHBCSi0EoRIHokOX5ff+TGiz A6zISCAVOW33EVslvI0/I5XF4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEzdXqFj YkFJAuVlOFsQYx3geNutMB8GA1UdIwQYMBaAFG5IYQqg5rDixe7UAt0HgzqnPn6i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQkQyOC8yNjc1OEJCNDNB QjUxMUU3Qjg2MDlGMUNDNEY5QUUwMi9ia2hoQ3FEbXNPTEY3dFFDM1FlRE9xYy1m cUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2JraGhDcURtc09MRjd0UUMzUWVET3FjLWZxSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QkQyOC8yNjc1OEJCNDNBQjUxMUU3Qjg2MDlGMUNDNEY5QUUwMi9ia2hoQ3FEbXNP TEY3dFFDM1FlRE9xYy1mcUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCajM65ctA2fdebrWyq+YBl1VRu04RqsDk+LuPvqHi9J4hxTUw3Dfjc trmEAikh6hwNa/CJ17Q7DeqBuuSDg9aFDdRCr1HGY/+zJtpn6Sk1J360XGEX0qu4 XxSo6e2U4TSfqrm+RgGzN5Di92LB/I6ynISMgacR0vTjuAfdJv9np6QjaPvgP7nj iKF78QkQveyXcgieikB8X6n3FOddE0tGIONXZa6OdRF/YA+4FYWk13pHvBqxeWHp 29IxQ5B4Q3/EjZ/qwMS2xY71OH+g5Z6fOT84hLwjqVdLSf2NNUuTYHpDZnqIqRzP RRXA05V0gp0Tki/gOKdwQ0g49r40jfE1 -----END CERTIFICATE-----Generated at Fri Dec 19 13:45:15 2025 by rpki-client