This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91859C2/E7C0223E9F4211EB922D354FC4F9AE02/Bzzm268iYrP6YRXW_6ezNCFe-g0.mft File: Bzzm268iYrP6YRXW_6ezNCFe-g0.mft (raw, json) Hash identifier: rwWlG17XQJ6LyDJEXQRMi2bs6tWF8hFJ1wJfSCnLA8g= Subject key identifier: 35:62:59:F8:4D:27:9F:EF:9C:81:B7:9A:A7:55:CA:C3:54:24:DE:CD Authority key identifier: 07:3C:E6:DB:AF:22:62:B3:FA:61:15:D6:FF:A7:B3:34:21:5E:FA:0D Certificate issuer: /CN=A91859C2/serialNumber=073CE6DBAF2262B3FA6115D6FFA7B334215EFA0D Certificate serial: 0687 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bzzm268iYrP6YRXW_6ezNCFe-g0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91859C2/E7C0223E9F4211EB922D354FC4F9AE02/Bzzm268iYrP6YRXW_6ezNCFe-g0.mft Manifest number: 0681 Signing time: Thu 18 Dec 2025 21:53:43 +0000 Manifest this update: Thu 18 Dec 2025 21:53:43 +0000 Manifest next update: Thu 25 Dec 2025 21:53:43 +0000 Files and hashes: 1: Bzzm268iYrP6YRXW_6ezNCFe-g0.crl (hash: +duQ6JJg5uu2qNwXNSdyFG2ly24zeCIPB7u9PFnAJXs=) 2: A80223709F4411EB92132051C4F9AE02.roa (hash: x3MhCffNjPE2g6AmezXK16941rD0tDaIk9FU7i8nfrI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91859C2/E7C0223E9F4211EB922D354FC4F9AE02/Bzzm268iYrP6YRXW_6ezNCFe-g0.crl rsync://rpki.apnic.net/member_repository/A91859C2/E7C0223E9F4211EB922D354FC4F9AE02/Bzzm268iYrP6YRXW_6ezNCFe-g0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bzzm268iYrP6YRXW_6ezNCFe-g0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 21:53:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1671 (0x687) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91859C2, serialNumber=073CE6DBAF2262B3FA6115D6FFA7B334215EFA0D Validity Not Before: Dec 18 21:53:43 2025 GMT Not After : Dec 25 21:53:43 2025 GMT Subject: CN=694477e7-2d67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:8a:be:a1:4a:7a:ff:cc:6f:84:dd:e4:64:2e: 97:11:4a:d6:a9:8f:b0:de:f1:0b:ac:f7:2c:5b:fc: 70:90:a0:54:6f:3f:f6:2a:e2:8b:64:aa:5b:b7:72: fb:bd:b4:48:e4:3a:dc:70:6e:65:7d:42:da:14:f8: 6b:07:81:b5:ad:6f:7b:4a:6b:09:2a:41:ca:39:f5: ea:8d:b9:9d:5c:7d:e8:d9:6b:1e:d0:dc:49:50:e4: e6:66:5b:d4:2a:5c:f6:f6:fc:80:28:9a:12:a9:b9: 1c:47:b5:86:b8:70:60:3e:97:1f:4b:96:63:23:eb: 08:d8:de:b3:17:6e:22:9a:39:b8:db:61:31:3a:d3: a4:0e:1a:52:d5:7c:e4:bf:95:7c:8f:d4:82:06:c3: e8:8b:1a:b9:3f:c5:22:45:ec:1b:62:70:5a:f8:e9: 72:b2:59:bf:9f:d6:d0:6d:e4:b6:3c:7a:87:7c:86: c5:42:c6:d4:f0:17:31:d8:f9:63:7f:72:83:c5:9c: d6:29:13:1f:76:01:c0:c7:dc:05:8e:4f:76:4c:a7: 9d:86:f0:b6:00:b6:ab:4e:c6:2b:e7:4a:73:1d:86: db:52:af:10:e9:8e:17:1a:f0:89:aa:46:e2:db:58: 8f:fa:4e:40:8c:79:cb:31:7a:8d:9b:2a:4d:a1:80: 27:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:62:59:F8:4D:27:9F:EF:9C:81:B7:9A:A7:55:CA:C3:54:24:DE:CD X509v3 Authority Key Identifier: keyid:07:3C:E6:DB:AF:22:62:B3:FA:61:15:D6:FF:A7:B3:34:21:5E:FA:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91859C2/E7C0223E9F4211EB922D354FC4F9AE02/Bzzm268iYrP6YRXW_6ezNCFe-g0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bzzm268iYrP6YRXW_6ezNCFe-g0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91859C2/E7C0223E9F4211EB922D354FC4F9AE02/Bzzm268iYrP6YRXW_6ezNCFe-g0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:f8:f2:15:c8:c9:8d:76:57:76:3e:d3:6a:b2:24:d6:51:95: 6d:e9:66:c0:39:2e:e6:c5:99:c1:a7:e2:19:c2:96:69:80:4f: 87:80:fc:da:e3:21:14:67:fb:1b:31:28:b8:f1:e6:9b:57:a6: 8b:b0:f3:01:3b:ee:10:77:67:29:3e:98:4d:9f:0e:8a:95:f7: 6f:c7:9f:9b:89:97:86:e5:59:e5:42:30:0c:33:14:53:fc:46: 60:40:ad:29:34:d7:64:6c:cf:24:d7:ce:d5:62:66:aa:20:2d: 0e:63:59:c7:59:d4:13:34:f0:ed:be:7d:b1:61:0c:4f:81:91: c0:a2:53:26:d0:b0:5c:ec:f3:4e:80:85:ca:1c:fb:d0:25:84: 24:11:b2:79:b9:31:2f:9d:4d:c1:0c:47:50:d2:cf:45:e4:89: 87:ba:14:90:5b:38:89:cf:db:5e:4e:f2:ae:37:c2:d9:2d:3a: 70:3e:96:2f:bb:5c:31:6f:c4:d1:6c:d9:4c:13:ce:1d:6b:28: f6:09:ae:10:b9:16:ba:6c:da:2f:6c:d3:72:d9:6b:44:65:22: 98:a5:6b:26:40:6e:c4:97:16:24:d4:a3:f4:3b:53:36:cb:7f: 46:26:26:cc:bf:cb:2c:f9:20:c0:71:cd:23:cf:58:ee:33:d9: 64:1f:0e:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBocwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODU5QzIxMTAvBgNVBAUTKDA3M0NFNkRCQUYyMjYyQjNGQTYxMTVENkZGQTdCMzM0 MjE1RUZBMEQwHhcNMjUxMjE4MjE1MzQzWhcNMjUxMjI1MjE1MzQzWjAYMRYwFAYD VQQDDA02OTQ0NzdlNy0yZDY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6oq+oUp6/8xvhN3kZC6XEUrWqY+w3vELrPcsW/xwkKBUbz/2KuKLZKpbt3L7 vbRI5DrccG5lfULaFPhrB4G1rW97SmsJKkHKOfXqjbmdXH3o2Wse0NxJUOTmZlvU Klz29vyAKJoSqbkcR7WGuHBgPpcfS5ZjI+sI2N6zF24imjm422ExOtOkDhpS1Xzk v5V8j9SCBsPoixq5P8UiRewbYnBa+Olyslm/n9bQbeS2PHqHfIbFQsbU8Bcx2Plj f3KDxZzWKRMfdgHAx9wFjk92TKedhvC2ALarTsYr50pzHYbbUq8Q6Y4XGvCJqkbi 21iP+k5AjHnLMXqNmypNoYAnuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDViWfhN J5/vnIG3mqdVysNUJN7NMB8GA1UdIwQYMBaAFAc85tuvImKz+mEV1v+nszQhXvoN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTlDMi9FN0MwMjIzRTlG NDIxMUVCOTIyRDM1NEZDNEY5QUUwMi9CenptMjY4aVlyUDZZUlhXXzZlek5DRmUt ZzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0J6em0yNjhpWXJQNllSWFdfNmV6TkNGZS1nMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NTlDMi9FN0MwMjIzRTlGNDIxMUVCOTIyRDM1NEZDNEY5QUUwMi9CenptMjY4aVly UDZZUlhXXzZlek5DRmUtZzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBX+PIVyMmNdld2PtNqsiTWUZVt6WbAOS7mxZnBp+IZwpZpgE+HgPza 4yEUZ/sbMSi48eabV6aLsPMBO+4Qd2cpPphNnw6Klfdvx5+biZeG5VnlQjAMMxRT /EZgQK0pNNdkbM8k187VYmaqIC0OY1nHWdQTNPDtvn2xYQxPgZHAolMm0LBc7PNO gIXKHPvQJYQkEbJ5uTEvnU3BDEdQ0s9F5ImHuhSQWziJz9teTvKuN8LZLTpwPpYv u1wxb8TRbNlME84dayj2Ca4QuRa6bNovbNNy2WtEZSKYpWsmQG7ElxYk1KP0O1M2 y39GJibMv8ss+SDAcc0jz1juM9lkHw4D -----END CERTIFICATE-----Generated at Fri Dec 19 20:14:24 2025 by rpki-client