This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.mft File: BZ5vA652dqnQ8J1fbL25CGGFWlc.mft (raw, json) Hash identifier: K4OWjJk6ShXO6v13mEQRN38cU0YFuzbMhVzX+FbChM8= Subject key identifier: 5F:27:FF:AC:D2:DD:13:41:ED:58:07:ED:12:82:6A:0E:AC:9D:49:20 Authority key identifier: 05:9E:6F:03:AE:76:76:A9:D0:F0:9D:5F:6C:BD:B9:08:61:85:5A:57 Certificate issuer: /CN=A91FF74B/serialNumber=059E6F03AE7676A9D0F09D5F6CBDB90861855A57 Certificate serial: 073A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BZ5vA652dqnQ8J1fbL25CGGFWlc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.mft Manifest number: 071C Signing time: Mon 22 Dec 2025 20:47:25 +0000 Manifest this update: Mon 22 Dec 2025 20:47:25 +0000 Manifest next update: Mon 29 Dec 2025 20:47:25 +0000 Files and hashes: 1: BZ5vA652dqnQ8J1fbL25CGGFWlc.crl (hash: u0hTIUvYIIRdLR/TqUTSN46lr4NOJZnM416yM//Kf5g=) 2: 7E0AB01C782C11EBB0B71971C4F9AE02.roa (hash: StZZUcpTqb1W1S9eXsQ5qcrkA/Ri8svuc1kgwSxho5k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.crl rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BZ5vA652dqnQ8J1fbL25CGGFWlc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 20:47:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1850 (0x73a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF74B, serialNumber=059E6F03AE7676A9D0F09D5F6CBDB90861855A57 Validity Not Before: Dec 22 20:47:25 2025 GMT Not After : Dec 29 20:47:25 2025 GMT Subject: CN=6949ae5d-cb92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:9e:5f:5b:dd:4d:c8:b9:eb:e6:2c:1e:64:05: 00:ee:07:77:91:86:4e:21:ae:80:ae:7e:70:65:e8: 23:fe:f1:00:74:6c:75:30:7b:2a:45:6c:42:6e:44: 10:fd:c5:4a:37:d4:28:79:26:ef:84:e2:79:8b:30: e3:e5:95:58:81:26:39:05:56:21:c2:c2:fa:50:ef: 36:41:ef:66:7f:0e:0f:ad:38:34:14:e7:f5:58:2b: ef:a5:d1:97:3e:a5:2a:38:6d:a6:c9:72:1b:ed:28: f3:a9:da:dc:73:cb:a1:75:41:52:b9:e7:35:d9:85: 8c:77:d6:90:a9:6d:d8:30:a4:f9:83:31:9f:6d:2b: 8c:73:19:fc:2b:c7:0f:76:66:1a:f6:cb:13:0b:a7: f4:51:e1:45:b8:0b:a1:35:94:e0:2c:65:39:28:bc: b5:cd:a0:2d:34:b9:5f:1f:53:5b:71:27:f1:10:09: dc:d3:5e:fa:ea:72:cc:e4:45:bd:f1:7f:f5:07:56: cb:dc:bb:c5:f8:d2:6d:e3:26:60:ed:af:fe:8b:19: 8a:4e:c2:86:81:62:98:c0:c2:47:7b:7b:2d:64:1b: 37:78:c0:39:31:25:a3:56:dc:fe:15:7f:d4:55:3f: 4d:ef:21:c6:7f:0c:91:19:7c:13:ef:14:7c:f0:08: e5:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:27:FF:AC:D2:DD:13:41:ED:58:07:ED:12:82:6A:0E:AC:9D:49:20 X509v3 Authority Key Identifier: keyid:05:9E:6F:03:AE:76:76:A9:D0:F0:9D:5F:6C:BD:B9:08:61:85:5A:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BZ5vA652dqnQ8J1fbL25CGGFWlc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:af:a1:91:85:9b:1e:c4:a8:76:e0:9d:bd:a9:bc:67:80:91: 55:bd:fe:4f:ec:91:db:cd:f4:3e:d7:90:95:66:f7:41:d0:ec: 77:5d:6e:8f:19:b8:68:e9:0b:6a:ed:7d:79:bd:f5:62:2b:ca: 72:4b:3b:81:0b:7a:99:c7:8c:c3:6f:f4:50:e2:64:e2:fa:53: 31:c8:a4:7b:35:1f:74:10:d6:65:0e:63:75:31:0b:13:ec:86: 85:ac:7a:5b:af:87:10:75:01:3a:18:c2:2f:69:e1:32:31:1f: 55:2f:33:59:9f:b9:d9:4d:b6:91:75:5c:c8:7a:be:92:88:02: 0d:6d:dd:a8:75:23:8d:93:b5:d1:fb:b9:06:88:36:ff:95:04: 4c:b8:c4:ab:10:49:47:67:ff:41:90:eb:d0:08:07:d7:4c:d1: 35:73:64:71:81:0c:b4:8b:dc:f8:53:e8:c5:b6:31:f2:c9:9c: ff:24:7d:ae:87:79:ce:df:35:95:7e:a4:7c:dc:15:f9:13:92: 42:dd:07:51:6a:cc:44:97:bc:b8:ed:75:59:5e:42:22:9d:e6: de:79:a7:b3:84:95:b3:e1:27:35:15:b2:d3:c5:08:ed:e7:ce: 30:67:9b:13:fa:17:a4:4d:5d:67:fd:9e:5a:0f:a4:20:af:5f: b2:ed:d3:93 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBzowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY3NEIxMTAvBgNVBAUTKDA1OUU2RjAzQUU3Njc2QTlEMEYwOUQ1RjZDQkRCOTA4 NjE4NTVBNTcwHhcNMjUxMjIyMjA0NzI1WhcNMjUxMjI5MjA0NzI1WjAYMRYwFAYD VQQDDA02OTQ5YWU1ZC1jYjkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA455fW91NyLnr5iweZAUA7gd3kYZOIa6Arn5wZegj/vEAdGx1MHsqRWxCbkQQ /cVKN9QoeSbvhOJ5izDj5ZVYgSY5BVYhwsL6UO82Qe9mfw4PrTg0FOf1WCvvpdGX PqUqOG2myXIb7Sjzqdrcc8uhdUFSuec12YWMd9aQqW3YMKT5gzGfbSuMcxn8K8cP dmYa9ssTC6f0UeFFuAuhNZTgLGU5KLy1zaAtNLlfH1NbcSfxEAnc01766nLM5EW9 8X/1B1bL3LvF+NJt4yZg7a/+ixmKTsKGgWKYwMJHe3stZBs3eMA5MSWjVtz+FX/U VT9N7yHGfwyRGXwT7xR88AjlKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF8n/6zS 3RNB7VgH7RKCag6snUkgMB8GA1UdIwQYMBaAFAWebwOudnap0PCdX2y9uQhhhVpX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjc0Qi82MUEzMzg0QTc4 MkMxMUVCQUMwNEY2NzJDNEY5QUUwMi9CWjV2QTY1MmRxblE4SjFmYkwyNUNHR0ZX bGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JaNXZBNjUyZHFuUThKMWZiTDI1Q0dHRldsYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Rjc0Qi82MUEzMzg0QTc4MkMxMUVCQUMwNEY2NzJDNEY5QUUwMi9CWjV2QTY1MmRx blE4SjFmYkwyNUNHR0ZXbGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9r6GRhZsexKh24J29qbxngJFVvf5P7JHbzfQ+15CVZvdB0Ox3XW6P Gbho6Qtq7X15vfViK8pySzuBC3qZx4zDb/RQ4mTi+lMxyKR7NR90ENZlDmN1MQsT 7IaFrHpbr4cQdQE6GMIvaeEyMR9VLzNZn7nZTbaRdVzIer6SiAINbd2odSONk7XR +7kGiDb/lQRMuMSrEElHZ/9BkOvQCAfXTNE1c2RxgQy0i9z4U+jFtjHyyZz/JH2u h3nO3zWVfqR83BX5E5JC3QdRasxEl7y47XVZXkIinebeeaezhJWz4Sc1FbLTxQjt 584wZ5sT+hekTV1n/Z5aD6Qgr1+y7dOT -----END CERTIFICATE-----Generated at Wed Dec 24 21:21:59 2025 by rpki-client