This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.mft File: BQFHuU3J1svowLDxrQwBg6YHfDQ.mft (raw, json) Hash identifier: 5A2ybEE9BgfMbMyONwEeki8JuCfWQOu2GZJInaoztPE= Subject key identifier: 72:76:0B:D2:E1:B9:34:EF:85:E0:00:2A:EF:2C:3D:FD:D5:F6:D3:7D Authority key identifier: 05:01:47:B9:4D:C9:D6:CB:E8:C0:B0:F1:AD:0C:01:83:A6:07:7C:34 Certificate issuer: /CN=A91629AA/serialNumber=050147B94DC9D6CBE8C0B0F1AD0C0183A6077C34 Certificate serial: 014C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQFHuU3J1svowLDxrQwBg6YHfDQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.mft Manifest number: 0148 Signing time: Fri 19 Dec 2025 03:29:26 +0000 Manifest this update: Fri 19 Dec 2025 03:29:26 +0000 Manifest next update: Fri 26 Dec 2025 03:29:26 +0000 Files and hashes: 1: BQFHuU3J1svowLDxrQwBg6YHfDQ.crl (hash: 3GrUCKhUmphPsdt22oJE6G1ilE+jG3KZUEWfKH+DjFI=) 2: 1E347CDCE74A11EE8602742BC4F9AE02.roa (hash: 1KFMJqeP1xSunnIgreiULJOt/F6oOyvmT80gXMxgyXA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.crl rsync://rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQFHuU3J1svowLDxrQwBg6YHfDQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 03:29:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 332 (0x14c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91629AA, serialNumber=050147B94DC9D6CBE8C0B0F1AD0C0183A6077C34 Validity Not Before: Dec 19 03:29:26 2025 GMT Not After : Dec 26 03:29:26 2025 GMT Subject: CN=6944c696-2cad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:20:bc:48:0c:97:e7:34:20:c0:75:2a:95:a6: f4:e3:01:61:98:5e:48:e7:66:f5:a1:a1:d2:32:30: 29:93:73:56:04:36:82:a6:93:c4:7e:3a:12:bb:28: 18:e6:3c:41:91:2a:8b:a6:b8:be:8c:cb:98:47:0e: 01:d4:29:76:1e:cd:61:41:fe:ae:8f:78:d2:b1:db: 25:2f:0d:77:57:4d:98:9e:b0:ee:5a:d9:c5:94:b8: a4:ad:88:b4:0b:22:5d:44:7c:6b:e2:ab:da:b4:4d: 44:b3:9c:ce:63:bd:d0:a2:20:46:c2:72:dc:56:5e: b7:ea:41:e4:d5:f2:9f:88:4c:e8:3b:57:01:49:f1: c6:47:bd:44:7a:f4:1d:4a:de:1c:49:9e:c0:7d:ef: a1:b8:de:b5:b0:f5:37:b5:18:c3:1a:92:40:af:b0: 64:55:04:14:e9:7b:56:eb:18:b9:aa:e1:9e:73:31: fc:47:ac:88:e9:78:fe:f3:0a:dd:c9:fe:d1:17:50: b2:ea:40:24:82:41:26:47:34:5f:38:d2:e0:b7:f9: 66:ee:d2:39:49:d5:62:b7:01:64:0b:47:cb:43:b6: ac:61:ec:a4:a9:89:82:12:89:29:7f:63:71:8e:24: 9c:4d:f4:eb:45:14:c4:de:2f:0c:70:c9:7d:c5:14: e8:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:76:0B:D2:E1:B9:34:EF:85:E0:00:2A:EF:2C:3D:FD:D5:F6:D3:7D X509v3 Authority Key Identifier: keyid:05:01:47:B9:4D:C9:D6:CB:E8:C0:B0:F1:AD:0C:01:83:A6:07:7C:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQFHuU3J1svowLDxrQwBg6YHfDQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:0e:b3:2c:1c:47:4f:a5:f1:e0:bf:a8:53:73:54:64:97:d0: 24:fe:b5:d3:18:f8:64:28:cf:22:be:ef:06:10:e4:cf:1a:7d: 89:db:29:7e:82:1d:11:cb:fc:58:ab:6c:89:76:6a:21:1c:ad: ea:c0:2c:8a:ef:71:39:00:62:03:f1:e6:9b:3b:cb:f3:99:87: 62:a3:f0:4e:9f:1f:82:bb:d8:9e:33:15:a4:ec:02:f7:6b:cf: 14:ba:fd:9d:62:06:3b:c4:40:28:dc:85:42:f1:51:01:9a:b7: 7f:36:61:9c:61:89:c4:37:be:db:f2:67:ae:5a:d7:22:54:71: c7:b9:3d:86:2c:aa:53:e4:bd:29:df:8e:47:48:33:57:39:86: 50:bd:54:9a:45:75:8e:09:d1:98:f2:46:f4:d0:72:12:15:e5: 15:cd:59:6b:21:76:00:f0:2c:ee:59:e7:fc:b0:4d:fb:d5:94: c8:10:1f:30:23:57:d7:06:fc:b7:98:79:fe:93:6b:cc:5a:0f: 4c:b1:23:c0:f1:30:f6:36:56:55:87:a4:cf:9f:dd:db:8a:f0: d9:c9:c0:7c:8d:28:8a:70:7e:25:59:d9:ab:e5:5f:77:62:e3: 83:f3:e5:0a:d9:e4:f1:9e:9b:72:3e:b9:9c:e4:42:a1:58:21: cd:22:04:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjI5QUExMTAvBgNVBAUTKDA1MDE0N0I5NERDOUQ2Q0JFOEMwQjBGMUFEMEMwMTgz QTYwNzdDMzQwHhcNMjUxMjE5MDMyOTI2WhcNMjUxMjI2MDMyOTI2WjAYMRYwFAYD VQQDDA02OTQ0YzY5Ni0yY2FkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuiC8SAyX5zQgwHUqlab04wFhmF5I52b1oaHSMjApk3NWBDaCppPEfjoSuygY 5jxBkSqLpri+jMuYRw4B1Cl2Hs1hQf6uj3jSsdslLw13V02YnrDuWtnFlLikrYi0 CyJdRHxr4qvatE1Es5zOY73QoiBGwnLcVl636kHk1fKfiEzoO1cBSfHGR71EevQd St4cSZ7Afe+huN61sPU3tRjDGpJAr7BkVQQU6XtW6xi5quGeczH8R6yI6Xj+8wrd yf7RF1Cy6kAkgkEmRzRfONLgt/lm7tI5SdVitwFkC0fLQ7asYeykqYmCEokpf2Nx jiScTfTrRRTE3i8McMl9xRToVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHJ2C9Lh uTTvheAAKu8sPf3V9tN9MB8GA1UdIwQYMBaAFAUBR7lNydbL6MCw8a0MAYOmB3w0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MjlBQS81RjA2OTNGNEU3 NDkxMUVFQkM1MjZGMjlDNEY5QUUwMi9CUUZIdVUzSjFzdm93TER4clF3Qmc2WUhm RFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JRRkh1VTNKMXN2b3dMRHhyUXdCZzZZSGZEUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MjlBQS81RjA2OTNGNEU3NDkxMUVFQkM1MjZGMjlDNEY5QUUwMi9CUUZIdVUzSjFz dm93TER4clF3Qmc2WUhmRFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBaDrMsHEdPpfHgv6hTc1Rkl9Ak/rXTGPhkKM8ivu8GEOTPGn2J2yl+ gh0Ry/xYq2yJdmohHK3qwCyK73E5AGID8eabO8vzmYdio/BOnx+Cu9ieMxWk7AL3 a88Uuv2dYgY7xEAo3IVC8VEBmrd/NmGcYYnEN77b8meuWtciVHHHuT2GLKpT5L0p 345HSDNXOYZQvVSaRXWOCdGY8kb00HISFeUVzVlrIXYA8CzuWef8sE371ZTIEB8w I1fXBvy3mHn+k2vMWg9MsSPA8TD2NlZVh6TPn93bivDZycB8jSiKcH4lWdmr5V93 YuOD8+UK2eTxnptyPrmc5EKhWCHNIgS8 -----END CERTIFICATE-----Generated at Fri Dec 19 23:57:58 2025 by rpki-client