This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91643F8/F790CC5A7C6A11EF9A688857C4F9AE02/bbZgfaaV3QngKYA6L_JiWtiDguM.mft File: bbZgfaaV3QngKYA6L_JiWtiDguM.mft (raw, json) Hash identifier: eZlRIfFkqVUefThF997PMTYZmvQT4m/tWJVUUaNF4zE= Subject key identifier: D1:31:43:80:0E:05:4B:4C:CE:83:E7:24:C1:8A:90:2D:F2:D6:68:28 Authority key identifier: 6D:B6:60:7D:A6:95:DD:09:E0:29:80:3A:2F:F2:62:5A:D8:83:82:E3 Certificate issuer: /CN=A91643F8/serialNumber=6DB6607DA695DD09E029803A2FF2625AD88382E3 Certificate serial: EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bbZgfaaV3QngKYA6L_JiWtiDguM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91643F8/F790CC5A7C6A11EF9A688857C4F9AE02/bbZgfaaV3QngKYA6L_JiWtiDguM.mft Manifest number: E9 Signing time: Fri 19 Dec 2025 04:33:00 +0000 Manifest this update: Fri 19 Dec 2025 04:32:59 +0000 Manifest next update: Fri 26 Dec 2025 04:32:59 +0000 Files and hashes: 1: bbZgfaaV3QngKYA6L_JiWtiDguM.crl (hash: w9cWI08hLKX+1gxobFOahHglmqV+FoeyYo+mSMiwpNA=) 2: F2F0E3FE882E11EFB58CD069C4F9AE02.roa (hash: LLMFfpd/hOZPtrpRcrn1k8tmtQOd8WCmuw0OVbODbIo=) 3: 50A6B6427C6B11EFAB9AB658C4F9AE02.roa (hash: BsH1QXXdR63B8qNDLxP6migCbs5bygzeNgwy6naNCOQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91643F8/F790CC5A7C6A11EF9A688857C4F9AE02/bbZgfaaV3QngKYA6L_JiWtiDguM.crl rsync://rpki.apnic.net/member_repository/A91643F8/F790CC5A7C6A11EF9A688857C4F9AE02/bbZgfaaV3QngKYA6L_JiWtiDguM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bbZgfaaV3QngKYA6L_JiWtiDguM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 04:32:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 238 (0xee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91643F8, serialNumber=6DB6607DA695DD09E029803A2FF2625AD88382E3 Validity Not Before: Dec 19 04:32:59 2025 GMT Not After : Dec 26 04:32:59 2025 GMT Subject: CN=6944d57c-325e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:e2:dc:73:52:51:55:9a:bd:a8:78:35:90:88: b5:3f:b9:a7:c1:cd:dd:89:ac:ab:45:79:5c:1b:82: 85:b1:a3:e4:c6:60:9f:78:9b:53:f1:ae:ba:78:f0: 24:08:d2:f1:b2:41:b3:c4:ae:df:56:a4:fc:81:37: b7:a9:80:7a:15:02:1e:a7:ea:c1:d7:2c:95:03:8f: e8:d2:38:bf:c2:42:ae:66:88:d4:fa:f5:12:da:bd: 8c:2a:a3:ba:fa:2e:7b:b9:8f:a4:41:16:9b:6c:d6: a1:06:6f:4e:f1:cf:c5:d7:69:54:9d:d6:ed:cd:00: 4d:ac:ba:77:51:40:e4:c3:61:31:7e:22:28:a5:68: 0e:b9:5f:1a:18:db:77:b5:e1:eb:59:be:4e:7c:f6: 12:3e:18:47:8e:3e:fb:3e:5b:61:0d:3c:cd:b3:1e: c5:ac:6c:9e:44:01:3a:7c:ab:bb:18:54:de:0e:a9: 24:3f:aa:16:38:e3:86:67:b3:f3:67:08:ae:4c:07: d5:25:2c:06:ae:13:0d:85:73:27:65:7a:49:b8:0a: e0:db:22:a3:50:60:a7:55:d9:fa:8b:92:5e:34:9d: 93:6b:f9:e8:bb:c2:85:ff:fe:66:95:66:80:77:20: 7d:0e:10:64:6a:e1:88:a4:a6:9d:56:d5:3f:91:76: be:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:31:43:80:0E:05:4B:4C:CE:83:E7:24:C1:8A:90:2D:F2:D6:68:28 X509v3 Authority Key Identifier: keyid:6D:B6:60:7D:A6:95:DD:09:E0:29:80:3A:2F:F2:62:5A:D8:83:82:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91643F8/F790CC5A7C6A11EF9A688857C4F9AE02/bbZgfaaV3QngKYA6L_JiWtiDguM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bbZgfaaV3QngKYA6L_JiWtiDguM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91643F8/F790CC5A7C6A11EF9A688857C4F9AE02/bbZgfaaV3QngKYA6L_JiWtiDguM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e6:49:6b:44:a5:f9:ac:da:ab:3f:9c:f3:94:c7:61:05:6d:37: 46:a7:d9:33:62:65:ab:04:28:a4:57:6e:8f:57:07:2f:c1:ab: 26:fa:51:b8:33:e5:17:84:75:4d:cb:ef:76:d3:99:5a:c9:d9: 92:8a:e3:df:3e:73:34:36:65:bb:5b:a5:96:04:09:af:24:85: 93:15:42:f9:bf:2f:b2:11:54:e0:d2:7f:c9:c7:51:b9:f2:09: 80:1a:d2:49:cd:31:5e:01:ff:f8:6e:81:00:65:d7:5a:68:b0: cc:a4:61:0c:cd:1f:6d:b8:0e:cd:ec:f8:d2:8f:fc:c0:1c:4a: 76:74:47:f6:ee:2b:e7:73:3c:92:06:91:cc:dc:44:d6:19:d9: 81:d5:32:d7:61:83:da:0a:85:38:33:93:a8:e9:8e:3a:11:f3: f7:65:01:92:d3:75:2f:1b:2b:9a:45:0d:bb:6f:cb:c5:e5:53: f1:16:f4:eb:42:a5:28:70:4a:52:66:65:bf:9a:74:d6:a2:cb: 51:4f:66:56:f8:5b:10:0c:aa:0f:84:60:22:2c:aa:bc:aa:ef: b7:c9:7c:9a:44:cf:9e:04:e9:65:ea:9f:aa:8f:dc:e4:8b:d9: f0:8f:64:55:45:01:e7:ff:95:93:3e:5f:5e:24:b9:38:c1:a0: 16:8a:1e:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAO4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjQzRjgxMTAvBgNVBAUTKDZEQjY2MDdEQTY5NUREMDlFMDI5ODAzQTJGRjI2MjVB RDg4MzgyRTMwHhcNMjUxMjE5MDQzMjU5WhcNMjUxMjI2MDQzMjU5WjAYMRYwFAYD VQQDDA02OTQ0ZDU3Yy0zMjVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+eLcc1JRVZq9qHg1kIi1P7mnwc3diayrRXlcG4KFsaPkxmCfeJtT8a66ePAk CNLxskGzxK7fVqT8gTe3qYB6FQIep+rB1yyVA4/o0ji/wkKuZojU+vUS2r2MKqO6 +i57uY+kQRabbNahBm9O8c/F12lUndbtzQBNrLp3UUDkw2ExfiIopWgOuV8aGNt3 teHrWb5OfPYSPhhHjj77PlthDTzNsx7FrGyeRAE6fKu7GFTeDqkkP6oWOOOGZ7Pz ZwiuTAfVJSwGrhMNhXMnZXpJuArg2yKjUGCnVdn6i5JeNJ2Ta/nou8KF//5mlWaA dyB9DhBkauGIpKadVtU/kXa+SwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNExQ4AO BUtMzoPnJMGKkC3y1mgoMB8GA1UdIwQYMBaAFG22YH2mld0J4CmAOi/yYlrYg4Lj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NDNGOC9GNzkwQ0M1QTdD NkExMUVGOUE2ODg4NTdDNEY5QUUwMi9iYlpnZmFhVjNRbmdLWUE2TF9KaVd0aURn dU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JiWmdmYWFWM1FuZ0tZQTZMX0ppV3RpRGd1TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NDNGOC9GNzkwQ0M1QTdDNkExMUVGOUE2ODg4NTdDNEY5QUUwMi9iYlpnZmFhVjNR bmdLWUE2TF9KaVd0aURndU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDmSWtEpfms2qs/nPOUx2EFbTdGp9kzYmWrBCikV26PVwcvwasm+lG4 M+UXhHVNy+9205laydmSiuPfPnM0NmW7W6WWBAmvJIWTFUL5vy+yEVTg0n/Jx1G5 8gmAGtJJzTFeAf/4boEAZddaaLDMpGEMzR9tuA7N7PjSj/zAHEp2dEf27ivnczyS BpHM3ETWGdmB1TLXYYPaCoU4M5Oo6Y46EfP3ZQGS03UvGyuaRQ27b8vF5VPxFvTr QqUocEpSZmW/mnTWostRT2ZW+FsQDKoPhGAiLKq8qu+3yXyaRM+eBOll6p+qj9zk i9nwj2RVRQHn/5WTPl9eJLk4waAWih6i -----END CERTIFICATE-----Generated at Sat Dec 20 19:06:46 2025 by rpki-client