This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91112BC/EBCF168204F811E9BA502431C4F9AE02/b_MbBlmmrhbHoKTuDuaiKRDsLgA.mft File: b_MbBlmmrhbHoKTuDuaiKRDsLgA.mft (raw, json) Hash identifier: 6fGfN0Qh+SorGgfxRO6VKW+FkZrDOmHP/dnAxZrYUNU= Subject key identifier: 6F:55:8C:17:24:33:23:62:07:25:AD:E7:E6:48:40:D6:41:FB:84:44 Authority key identifier: 6F:F3:1B:06:59:A6:AE:16:C7:A0:A4:EE:0E:E6:A2:29:10:EC:2E:00 Certificate issuer: /CN=A91112BC/serialNumber=6FF31B0659A6AE16C7A0A4EE0EE6A22910EC2E00 Certificate serial: 120C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b_MbBlmmrhbHoKTuDuaiKRDsLgA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91112BC/EBCF168204F811E9BA502431C4F9AE02/b_MbBlmmrhbHoKTuDuaiKRDsLgA.mft Manifest number: 11DA Signing time: Wed 31 Dec 2025 16:57:39 +0000 Manifest this update: Wed 31 Dec 2025 16:57:39 +0000 Manifest next update: Wed 07 Jan 2026 16:57:39 +0000 Files and hashes: 1: b_MbBlmmrhbHoKTuDuaiKRDsLgA.crl (hash: YR7jh5TJwkHU9g4H/JqD2DicUEBpi/6F7HQCdyf40mY=) 2: 603AD1D0AB1211EAB4E7101BC4F9AE02.roa (hash: IlX871gTVlMjHgxawx+1RHJJOHvxDDWwU+dINDtj5G0=) 3: F8D520505D0E11EA89C55D65C4F9AE02.roa (hash: jh4/v+GyjU9Au0Vxs0XDzRjJtWql8kiBFNvqkmZsApQ=) 4: F85A5EB6C33911E9A9463781C4F9AE02.roa (hash: jot76CXrAz3dE65zS5eFuiF7pvf8X1MVAGSlp7hXRdo=) 5: 531C6440CF9A11E9ABB7C168C4F9AE02.roa (hash: 0Ni5FHtxPqtRB1YXZ5zRXDqJAM/35OEWFhDuPTdXe6o=) 6: 8497885E04F911E9AF13ED31C4F9AE02.roa (hash: C3b1kJVj/ZgKAe5Ws86NLC+2MF3aglPyf/qxRhLS+ZQ=) 7: 95D40AE2497311EAB4873B63C4F9AE02.roa (hash: L9KTvljF01QWUS68uL1ITUuZceQQf452UdFJmG0kCrI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91112BC/EBCF168204F811E9BA502431C4F9AE02/b_MbBlmmrhbHoKTuDuaiKRDsLgA.crl rsync://rpki.apnic.net/member_repository/A91112BC/EBCF168204F811E9BA502431C4F9AE02/b_MbBlmmrhbHoKTuDuaiKRDsLgA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b_MbBlmmrhbHoKTuDuaiKRDsLgA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 07 Jan 2026 16:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4620 (0x120c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91112BC, serialNumber=6FF31B0659A6AE16C7A0A4EE0EE6A22910EC2E00 Validity Not Before: Dec 31 16:57:39 2025 GMT Not After : Jan 7 16:57:39 2026 GMT Subject: CN=69555603-e1d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:66:9b:d5:7f:e9:b6:be:97:ae:3a:4c:25:cf: db:e8:cd:91:d0:79:62:90:01:c7:c7:da:80:8b:ee: 33:50:5e:7b:3b:93:95:72:7e:95:77:dc:ed:09:71: e0:ca:1d:95:19:3e:09:46:14:07:d2:e2:2d:cb:82: d5:e5:a2:61:7e:b0:05:e3:cd:30:32:5a:d8:6c:b7: 40:e3:f5:b6:40:d4:38:12:8e:fb:ad:71:0b:04:20: 68:00:19:88:5e:9f:36:c1:83:27:50:f5:da:20:84: 18:eb:61:ef:1a:f1:f0:1c:e1:b6:05:e8:15:e4:3e: 21:36:7f:c5:bc:cd:72:a0:35:54:9d:a0:22:74:ed: da:13:08:3f:41:44:0c:71:71:81:45:bf:fb:88:be: 22:84:94:36:c2:15:52:52:13:85:d0:86:91:c0:c6: a2:81:95:4e:ba:09:60:08:77:93:31:0a:9f:9e:a7: 9d:2f:59:c3:1f:31:ed:d1:de:aa:87:43:d8:cb:98: 88:2f:80:19:12:e8:b0:07:4d:06:75:70:42:0b:b5: dc:67:03:87:ae:a0:7b:9e:e7:93:fd:a1:af:30:15: 44:d6:82:f1:e5:60:58:d2:71:2b:0a:cd:34:03:a0: e0:f4:40:10:9e:f7:35:75:a1:9a:19:3a:ce:59:4a: 96:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:55:8C:17:24:33:23:62:07:25:AD:E7:E6:48:40:D6:41:FB:84:44 X509v3 Authority Key Identifier: keyid:6F:F3:1B:06:59:A6:AE:16:C7:A0:A4:EE:0E:E6:A2:29:10:EC:2E:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91112BC/EBCF168204F811E9BA502431C4F9AE02/b_MbBlmmrhbHoKTuDuaiKRDsLgA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b_MbBlmmrhbHoKTuDuaiKRDsLgA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91112BC/EBCF168204F811E9BA502431C4F9AE02/b_MbBlmmrhbHoKTuDuaiKRDsLgA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c1:19:4a:4d:99:e3:17:5c:7a:28:a5:a7:f3:e5:77:e6:76:cb: 32:b8:3f:7b:27:1f:13:91:ef:ea:d9:7f:49:72:22:3e:ac:5a: ee:b3:05:62:94:70:4f:80:34:2c:b5:75:5a:48:05:2b:53:10: eb:33:7c:92:11:21:ca:18:7a:51:62:a7:c1:8a:32:95:e7:47: 1e:d2:9a:85:b3:62:fe:5c:9f:0f:56:29:1a:e2:72:c4:e0:0c: e6:08:b3:5e:e3:9a:e3:c2:95:19:58:18:27:aa:43:8d:ed:3b: 57:ab:00:73:fc:09:61:d5:15:ec:14:61:53:66:22:c3:ae:95: 88:20:6a:3a:4c:ae:37:e8:e8:76:13:6a:2d:d7:e9:94:9a:2a: cb:48:3c:d1:e0:42:6f:82:15:21:4e:ef:6e:e7:cb:ab:e6:b2: 13:ed:39:5f:c1:62:cb:26:9a:24:d0:98:8e:e3:d5:dd:dd:98: ea:9d:60:13:4b:41:fc:5a:b6:6f:5c:49:2d:cb:dc:00:e5:6a: f9:d4:3d:87:78:af:dc:bd:b3:42:3f:e2:f6:55:fa:f1:5c:2b: f3:23:79:b5:a9:cd:de:00:f1:e2:11:57:c0:23:0d:6c:6c:ac: 56:37:d8:76:ae:d1:c6:19:67:5c:4f:c6:e3:82:93:9c:2e:53: 7a:bc:bc:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEgwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTEyQkMxMTAvBgNVBAUTKDZGRjMxQjA2NTlBNkFFMTZDN0EwQTRFRTBFRTZBMjI5 MTBFQzJFMDAwHhcNMjUxMjMxMTY1NzM5WhcNMjYwMTA3MTY1NzM5WjAYMRYwFAYD VQQDDA02OTU1NTYwMy1lMWQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArGab1X/ptr6XrjpMJc/b6M2R0HlikAHHx9qAi+4zUF57O5OVcn6Vd9ztCXHg yh2VGT4JRhQH0uIty4LV5aJhfrAF480wMlrYbLdA4/W2QNQ4Eo77rXELBCBoABmI Xp82wYMnUPXaIIQY62HvGvHwHOG2BegV5D4hNn/FvM1yoDVUnaAidO3aEwg/QUQM cXGBRb/7iL4ihJQ2whVSUhOF0IaRwMaigZVOuglgCHeTMQqfnqedL1nDHzHt0d6q h0PYy5iIL4AZEuiwB00GdXBCC7XcZwOHrqB7nueT/aGvMBVE1oLx5WBY0nErCs00 A6Dg9EAQnvc1daGaGTrOWUqWdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG9VjBck MyNiByWt5+ZIQNZB+4REMB8GA1UdIwQYMBaAFG/zGwZZpq4Wx6Ck7g7moikQ7C4A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMTJCQy9FQkNGMTY4MjA0 RjgxMUU5QkE1MDI0MzFDNEY5QUUwMi9iX01iQmxtbXJoYkhvS1R1RHVhaUtSRHNM Z0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JfTWJCbG1tcmhiSG9LVHVEdWFpS1JEc0xnQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MTJCQy9FQkNGMTY4MjA0RjgxMUU5QkE1MDI0MzFDNEY5QUUwMi9iX01iQmxtbXJo YkhvS1R1RHVhaUtSRHNMZ0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDBGUpNmeMXXHoopafz5XfmdssyuD97Jx8Tke/q2X9JciI+rFruswVi lHBPgDQstXVaSAUrUxDrM3ySESHKGHpRYqfBijKV50ce0pqFs2L+XJ8PVika4nLE 4AzmCLNe45rjwpUZWBgnqkON7TtXqwBz/Alh1RXsFGFTZiLDrpWIIGo6TK436Oh2 E2ot1+mUmirLSDzR4EJvghUhTu9u58ur5rIT7TlfwWLLJpok0JiO49Xd3ZjqnWAT S0H8WrZvXEkty9wA5Wr51D2HeK/cvbNCP+L2VfrxXCvzI3m1qc3eAPHiEVfAIw1s bKxWN9h2rtHGGWdcT8bjgpOcLlN6vLyq -----END CERTIFICATE-----Generated at Thu Jan 1 12:31:26 2026 by rpki-client