This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91240E6/660742C8FD2111E488AB0C34C4F9AE02/bc5S-aIoy_bzDNVdQzhNEmhIe2U.mft File: bc5S-aIoy_bzDNVdQzhNEmhIe2U.mft (raw, json) Hash identifier: 24cXQrGJRY/CyPum0C+nzeEMbgQA2luL/C2D2O8vSdk= Subject key identifier: CE:07:6E:82:9A:B2:04:25:5A:88:F3:3B:01:61:44:E4:52:40:B3:8C Authority key identifier: 6D:CE:52:F9:A2:28:CB:F6:F3:0C:D5:5D:43:38:4D:12:68:48:7B:65 Certificate issuer: /CN=A91240E6/serialNumber=6DCE52F9A228CBF6F30CD55D43384D1268487B65 Certificate serial: 2686 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bc5S-aIoy_bzDNVdQzhNEmhIe2U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91240E6/660742C8FD2111E488AB0C34C4F9AE02/bc5S-aIoy_bzDNVdQzhNEmhIe2U.mft Manifest number: 266C Signing time: Sat 20 Dec 2025 15:33:25 +0000 Manifest this update: Sat 20 Dec 2025 15:33:25 +0000 Manifest next update: Sat 27 Dec 2025 15:33:25 +0000 Files and hashes: 1: bc5S-aIoy_bzDNVdQzhNEmhIe2U.crl (hash: LZikKNvh6UxQCs9m7GJdXiekEjFmX6Gh2e2OMUqYnZU=) 2: 8A721F4EB10C11E5BB6B2A16C4F9AE02.roa (hash: IwUXo20n+V2B2SbXh2brhMIgczh2mlcm0AjnKKmeoo8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91240E6/660742C8FD2111E488AB0C34C4F9AE02/bc5S-aIoy_bzDNVdQzhNEmhIe2U.crl rsync://rpki.apnic.net/member_repository/A91240E6/660742C8FD2111E488AB0C34C4F9AE02/bc5S-aIoy_bzDNVdQzhNEmhIe2U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bc5S-aIoy_bzDNVdQzhNEmhIe2U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 15:33:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9862 (0x2686) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91240E6, serialNumber=6DCE52F9A228CBF6F30CD55D43384D1268487B65 Validity Not Before: Dec 20 15:33:25 2025 GMT Not After : Dec 27 15:33:25 2025 GMT Subject: CN=6946c1c5-a411 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:6e:a8:e2:6f:0c:07:e5:6d:0d:c4:7c:50:66: 4f:24:b8:47:b4:8e:8c:40:b3:85:91:08:46:70:b6: d8:b3:c2:a8:07:40:9b:fa:65:0b:4b:db:0a:48:c1: ef:ff:92:48:42:be:61:8b:b9:2c:93:0d:aa:cd:26: 35:d5:d6:1a:d2:88:cd:78:1d:18:8a:ba:1d:db:91: c2:b5:e5:92:0b:98:6c:97:a7:6b:c3:4c:58:de:53: d1:46:c2:eb:de:10:de:19:d6:29:5d:13:f3:ca:0c: f1:83:a3:38:59:ac:07:8b:38:40:24:59:9f:60:0d: 3f:e1:c4:63:30:2d:4d:99:34:2c:a0:1c:18:55:27: 78:36:bd:5b:f8:e6:36:f1:92:ae:a8:c1:4e:ec:06: c6:04:19:c1:2b:c6:cb:60:b0:26:de:e5:ba:0a:3a: dd:fd:df:8e:01:81:da:21:33:4a:6d:50:89:f6:55: e4:11:b2:0e:6f:3f:66:67:a0:15:80:f0:b3:3f:8f: 43:cf:fd:62:15:fc:ff:32:4a:c9:fe:c1:c0:3b:29: 9b:4d:e0:0c:fa:5c:d5:d8:4a:c3:5d:fd:96:ed:85: 87:9b:85:e3:16:44:8c:09:be:c4:48:00:e7:d6:1a: 5b:5a:08:2b:70:93:9b:a0:a3:9e:73:98:4c:06:32: 09:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:07:6E:82:9A:B2:04:25:5A:88:F3:3B:01:61:44:E4:52:40:B3:8C X509v3 Authority Key Identifier: keyid:6D:CE:52:F9:A2:28:CB:F6:F3:0C:D5:5D:43:38:4D:12:68:48:7B:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91240E6/660742C8FD2111E488AB0C34C4F9AE02/bc5S-aIoy_bzDNVdQzhNEmhIe2U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bc5S-aIoy_bzDNVdQzhNEmhIe2U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91240E6/660742C8FD2111E488AB0C34C4F9AE02/bc5S-aIoy_bzDNVdQzhNEmhIe2U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:4e:f3:89:97:be:e5:36:3d:43:9b:b5:94:c4:79:ff:5e:32: 45:ee:44:ae:8b:11:0e:7d:26:0c:1b:31:d2:ac:39:99:64:fd: 27:97:28:51:a3:a2:3b:20:f3:21:2b:38:38:b8:bd:35:13:6b: d2:a0:02:12:cc:3c:78:71:fa:96:5b:50:76:2f:0a:a8:c1:3e: 78:eb:58:85:e2:15:b9:0b:85:c3:4a:d1:04:15:e0:1b:43:99: 17:b0:8a:0a:92:03:4c:92:31:62:6c:e4:cb:3f:76:02:69:fa: 1a:bd:a4:d4:3d:b3:db:39:bd:55:ca:68:d9:e0:f0:56:4b:5f: d1:fb:b9:2a:1d:23:d9:79:1c:f1:fd:be:05:05:ea:37:0d:c3: 3c:2e:86:66:13:3c:bd:54:7e:d6:45:cc:2f:6e:64:93:f3:c3: 0a:af:14:0c:78:06:05:cc:d5:5e:16:ef:dd:43:a6:af:2d:4c: e6:83:c0:0f:cc:82:c2:8d:a4:80:14:56:ea:2c:32:e4:c6:d4: 19:98:e3:0c:84:dd:93:62:31:39:5f:9f:53:73:1a:b8:8e:5c: 14:3a:4d:ff:d7:e4:a9:af:fd:72:68:ca:36:59:99:5a:3e:2e: 60:cb:f5:74:4b:43:95:1f:25:e6:1f:47:40:dd:a0:fa:49:da: dc:93:e9:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJoYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjQwRTYxMTAvBgNVBAUTKDZEQ0U1MkY5QTIyOENCRjZGMzBDRDU1RDQzMzg0RDEy Njg0ODdCNjUwHhcNMjUxMjIwMTUzMzI1WhcNMjUxMjI3MTUzMzI1WjAYMRYwFAYD VQQDDA02OTQ2YzFjNS1hNDExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr26o4m8MB+VtDcR8UGZPJLhHtI6MQLOFkQhGcLbYs8KoB0Cb+mULS9sKSMHv /5JIQr5hi7kskw2qzSY11dYa0ojNeB0Yirod25HCteWSC5hsl6drw0xY3lPRRsLr 3hDeGdYpXRPzygzxg6M4WawHizhAJFmfYA0/4cRjMC1NmTQsoBwYVSd4Nr1b+OY2 8ZKuqMFO7AbGBBnBK8bLYLAm3uW6Cjrd/d+OAYHaITNKbVCJ9lXkEbIObz9mZ6AV gPCzP49Dz/1iFfz/MkrJ/sHAOymbTeAM+lzV2ErDXf2W7YWHm4XjFkSMCb7ESADn 1hpbWggrcJOboKOec5hMBjIJ/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM4HboKa sgQlWojzOwFhRORSQLOMMB8GA1UdIwQYMBaAFG3OUvmiKMv28wzVXUM4TRJoSHtl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNDBFNi82NjA3NDJDOEZE MjExMUU0ODhBQjBDMzRDNEY5QUUwMi9iYzVTLWFJb3lfYnpETlZkUXpoTkVtaEll MlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JjNVMtYUlveV9iekROVmRRemhORW1oSWUyVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NDBFNi82NjA3NDJDOEZEMjExMUU0ODhBQjBDMzRDNEY5QUUwMi9iYzVTLWFJb3lf YnpETlZkUXpoTkVtaEllMlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvTvOJl77lNj1Dm7WUxHn/XjJF7kSuixEOfSYMGzHSrDmZZP0nlyhR o6I7IPMhKzg4uL01E2vSoAISzDx4cfqWW1B2LwqowT5461iF4hW5C4XDStEEFeAb Q5kXsIoKkgNMkjFibOTLP3YCafoavaTUPbPbOb1VymjZ4PBWS1/R+7kqHSPZeRzx /b4FBeo3DcM8LoZmEzy9VH7WRcwvbmST88MKrxQMeAYFzNVeFu/dQ6avLUzmg8AP zILCjaSAFFbqLDLkxtQZmOMMhN2TYjE5X59Tcxq4jlwUOk3/1+Spr/1yaMo2WZla Pi5gy/V0S0OVHyXmH0dA3aD6Sdrck+my -----END CERTIFICATE-----Generated at Sun Dec 21 15:04:38 2025 by rpki-client