This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917C59F/425E8902C14411EA91F03A6FC4F9AE02/BL27YPamYNHS0BJzSQ_PCcw1m3M.mft File: BL27YPamYNHS0BJzSQ_PCcw1m3M.mft (raw, json) Hash identifier: l0ai600fQpKATosfKk1a3gZoyskLHDKXWa61bUi91a8= Subject key identifier: 13:F0:55:C4:1F:E2:3F:AD:34:D4:D1:60:E9:F5:9D:5E:5F:5F:F5:2D Authority key identifier: 04:BD:BB:60:F6:A6:60:D1:D2:D0:12:73:49:0F:CF:09:CC:35:9B:73 Certificate issuer: /CN=A917C59F/serialNumber=04BDBB60F6A660D1D2D01273490FCF09CC359B73 Certificate serial: 08F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BL27YPamYNHS0BJzSQ_PCcw1m3M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C59F/425E8902C14411EA91F03A6FC4F9AE02/BL27YPamYNHS0BJzSQ_PCcw1m3M.mft Manifest number: 08E8 Signing time: Sat 20 Dec 2025 19:48:37 +0000 Manifest this update: Sat 20 Dec 2025 19:48:37 +0000 Manifest next update: Sat 27 Dec 2025 19:48:37 +0000 Files and hashes: 1: BL27YPamYNHS0BJzSQ_PCcw1m3M.crl (hash: g1O+Z8pa4CBychSktQUK7w1Fty4X/VXZMrkLvFTkeOk=) 2: 12482BA205A211ED81E44F6DC4F9AE02.roa (hash: XF3b1tsv84dWcHXBpSW6CLzdc6x4da3e9vI5g3fw1j4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C59F/425E8902C14411EA91F03A6FC4F9AE02/BL27YPamYNHS0BJzSQ_PCcw1m3M.crl rsync://rpki.apnic.net/member_repository/A917C59F/425E8902C14411EA91F03A6FC4F9AE02/BL27YPamYNHS0BJzSQ_PCcw1m3M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BL27YPamYNHS0BJzSQ_PCcw1m3M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 19:48:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2289 (0x8f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C59F, serialNumber=04BDBB60F6A660D1D2D01273490FCF09CC359B73 Validity Not Before: Dec 20 19:48:37 2025 GMT Not After : Dec 27 19:48:37 2025 GMT Subject: CN=6946fd95-e230 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:d5:f1:e0:d6:c3:d1:a5:31:93:57:50:ce:e1: 66:4d:fa:dc:a5:a1:2e:dd:d8:ff:fc:a4:9f:74:b4: e3:ee:46:51:a0:b4:3f:ec:e1:0b:30:0e:06:34:1b: 9b:0e:fb:9e:f5:94:7e:61:f3:42:9a:ca:5a:cb:1b: 4e:27:1d:0b:85:55:21:fd:70:a5:63:28:b2:5b:16: a3:9e:9b:29:0f:48:cf:64:d7:09:9e:a8:76:48:9f: 9a:b5:e4:4c:f9:d8:b4:d1:a7:9d:81:cc:9d:ab:a9: 08:82:3e:ab:66:04:f4:f4:2d:10:37:da:85:bd:60: 40:bc:71:50:53:77:1f:e6:cf:24:4f:f3:3c:3d:34: de:9d:aa:f6:0c:13:1d:3f:33:39:c9:ec:18:fd:42: b2:e6:8e:db:b6:86:42:c1:15:c7:c1:07:5d:6f:36: 1d:5c:78:3d:eb:6e:9a:b2:02:c9:73:d0:f3:5f:ab: 0d:6b:ef:77:0f:e7:be:1a:bc:ba:a7:d8:06:d5:d4: 1d:4f:f1:44:2b:7c:5b:e2:c9:81:9a:e1:42:bd:a5: c0:b2:10:25:3d:5c:27:6f:e3:ad:c3:e7:4e:05:18: 9c:08:98:ef:55:d5:53:bc:52:3d:e2:5f:83:7b:f1: 01:28:ee:94:49:76:b7:49:a4:6d:63:7f:3a:3e:44: fa:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:F0:55:C4:1F:E2:3F:AD:34:D4:D1:60:E9:F5:9D:5E:5F:5F:F5:2D X509v3 Authority Key Identifier: keyid:04:BD:BB:60:F6:A6:60:D1:D2:D0:12:73:49:0F:CF:09:CC:35:9B:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C59F/425E8902C14411EA91F03A6FC4F9AE02/BL27YPamYNHS0BJzSQ_PCcw1m3M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BL27YPamYNHS0BJzSQ_PCcw1m3M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C59F/425E8902C14411EA91F03A6FC4F9AE02/BL27YPamYNHS0BJzSQ_PCcw1m3M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:87:2e:ab:00:f4:cb:10:06:10:0a:83:57:f2:af:e2:6d:fc: 8a:b8:a6:9c:35:7e:cd:d4:5d:6b:11:bd:f0:06:fd:3b:a2:0f: 7e:2f:03:53:8a:59:ca:0d:cf:a6:ff:fa:08:45:2d:66:da:5d: db:fb:79:84:6c:38:70:f3:69:4f:a5:23:0b:a0:c6:bb:5a:44: 23:44:f2:42:73:bb:8a:25:17:41:62:4c:93:2b:73:6c:a6:ae: eb:9a:82:59:29:2e:9c:fa:15:f6:ac:cb:58:de:3b:4d:b3:a5: 2e:93:1c:7d:65:4d:16:72:52:60:e4:47:f5:9c:5b:57:43:25: 67:2e:1c:6e:21:82:aa:1a:ae:d1:2c:77:95:22:77:41:58:6b: 57:f5:cc:28:6c:2d:f4:56:6d:11:48:a9:d0:bc:f9:ea:aa:13: 75:7e:b5:f7:77:48:46:a4:03:90:3b:01:aa:3d:cf:56:5f:06: 1e:5b:b9:60:7c:44:60:76:34:81:bd:c5:91:f1:db:6a:d6:22: 12:1b:99:65:c6:76:f6:ba:6c:34:fd:75:b3:6d:f7:14:34:8b: 8a:67:19:ec:7c:91:57:fb:e2:ec:b9:7e:68:d9:19:0c:a6:28: 5c:4b:44:5b:50:6b:aa:84:dc:e6:53:69:44:f0:93:96:72:6a: 99:95:68:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCPEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M1OUYxMTAvBgNVBAUTKDA0QkRCQjYwRjZBNjYwRDFEMkQwMTI3MzQ5MEZDRjA5 Q0MzNTlCNzMwHhcNMjUxMjIwMTk0ODM3WhcNMjUxMjI3MTk0ODM3WjAYMRYwFAYD VQQDDA02OTQ2ZmQ5NS1lMjMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAldXx4NbD0aUxk1dQzuFmTfrcpaEu3dj//KSfdLTj7kZRoLQ/7OELMA4GNBub Dvue9ZR+YfNCmspayxtOJx0LhVUh/XClYyiyWxajnpspD0jPZNcJnqh2SJ+ateRM +di00aedgcydq6kIgj6rZgT09C0QN9qFvWBAvHFQU3cf5s8kT/M8PTTenar2DBMd PzM5yewY/UKy5o7btoZCwRXHwQddbzYdXHg9626asgLJc9DzX6sNa+93D+e+Gry6 p9gG1dQdT/FEK3xb4smBmuFCvaXAshAlPVwnb+Otw+dOBRicCJjvVdVTvFI94l+D e/EBKO6USXa3SaRtY386PkT6+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBPwVcQf 4j+tNNTRYOn1nV5fX/UtMB8GA1UdIwQYMBaAFAS9u2D2pmDR0tASc0kPzwnMNZtz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzU5Ri80MjVFODkwMkMx NDQxMUVBOTFGMDNBNkZDNEY5QUUwMi9CTDI3WVBhbVlOSFMwQkp6U1FfUENjdzFt M00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JMMjdZUGFtWU5IUzBCSnpTUV9QQ2N3MW0zTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzU5Ri80MjVFODkwMkMxNDQxMUVBOTFGMDNBNkZDNEY5QUUwMi9CTDI3WVBhbVlO SFMwQkp6U1FfUENjdzFtM00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8hy6rAPTLEAYQCoNX8q/ibfyKuKacNX7N1F1rEb3wBv07og9+LwNT ilnKDc+m//oIRS1m2l3b+3mEbDhw82lPpSMLoMa7WkQjRPJCc7uKJRdBYkyTK3Ns pq7rmoJZKS6c+hX2rMtY3jtNs6Uukxx9ZU0WclJg5Ef1nFtXQyVnLhxuIYKqGq7R LHeVIndBWGtX9cwobC30Vm0RSKnQvPnqqhN1frX3d0hGpAOQOwGqPc9WXwYeW7lg fERgdjSBvcWR8dtq1iISG5llxnb2umw0/XWzbfcUNIuKZxnsfJFX++LsuX5o2RkM pihcS0RbUGuqhNzmU2lE8JOWcmqZlWjj -----END CERTIFICATE-----Generated at Sun Dec 21 09:47:04 2025 by rpki-client