This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91912DD/DB4A6CFC10D311EA9BD1A55DC4F9AE02/BRnee0hmA7e6W2bauYkgP98ttJQ.mft File: BRnee0hmA7e6W2bauYkgP98ttJQ.mft (raw, json) Hash identifier: 95s7w20VpdMkcGqMMRqx7Bx+klCJL2YDWjVdlzwaR24= Subject key identifier: D1:08:20:B7:70:DF:0E:FC:78:90:86:51:17:FB:43:48:C5:C2:9F:98 Authority key identifier: 05:19:DE:7B:48:66:03:B7:BA:5B:66:DA:B9:89:20:3F:DF:2D:B4:94 Certificate issuer: /CN=A91912DD/serialNumber=0519DE7B486603B7BA5B66DAB989203FDF2DB494 Certificate serial: 0C79 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/BRnee0hmA7e6W2bauYkgP98ttJQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91912DD/DB4A6CFC10D311EA9BD1A55DC4F9AE02/BRnee0hmA7e6W2bauYkgP98ttJQ.mft Manifest number: 0C72 Signing time: Sat 20 Dec 2025 16:25:15 +0000 Manifest this update: Sat 20 Dec 2025 16:25:15 +0000 Manifest next update: Sat 27 Dec 2025 16:25:15 +0000 Files and hashes: 1: BRnee0hmA7e6W2bauYkgP98ttJQ.crl (hash: vAJYrdGY/p662phI53psC2V1yNkcjwvKzXW0hKp+9ew=) 2: 05BE20062C5811EAA90F4B0EC4F9AE02.roa (hash: KZLdlP1OQSAqnUANoQynhHKfuaNstAKbyzLi1TUSbtw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91912DD/DB4A6CFC10D311EA9BD1A55DC4F9AE02/BRnee0hmA7e6W2bauYkgP98ttJQ.crl rsync://rpki.apnic.net/member_repository/A91912DD/DB4A6CFC10D311EA9BD1A55DC4F9AE02/BRnee0hmA7e6W2bauYkgP98ttJQ.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/BRnee0hmA7e6W2bauYkgP98ttJQ.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 16:25:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3193 (0xc79) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91912DD, serialNumber=0519DE7B486603B7BA5B66DAB989203FDF2DB494 Validity Not Before: Dec 20 16:25:15 2025 GMT Not After : Dec 27 16:25:15 2025 GMT Subject: CN=6946cdeb-59d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:44:d4:db:9c:04:4c:56:15:19:c3:04:98:9c: a2:72:68:f9:89:ff:2d:ff:69:6a:c8:85:dc:f7:ee: e5:e2:9c:cd:8c:5c:18:72:06:d3:7d:01:fd:42:af: 4a:28:7d:32:00:e4:a5:c0:a6:5e:ea:cf:52:3b:70: 5d:e9:9c:a8:41:11:30:3f:c5:dc:79:2b:7e:c2:e4: 43:15:1c:8d:6c:a6:e2:ec:e5:1c:a5:e7:81:34:be: 85:e5:5d:b0:d4:f3:46:35:2b:2c:f8:08:df:2f:76: e7:c5:c8:fd:f7:10:69:26:7a:c6:2b:02:bc:5c:4e: da:ff:bf:33:b4:62:8b:d5:99:30:7a:70:4a:e7:78: 77:e7:30:5a:d8:1f:77:5e:f2:85:e1:c2:05:41:6e: 81:e0:1e:e9:a2:ca:48:6e:36:f5:4a:38:34:b0:8f: 8f:1d:2a:56:77:50:a5:b9:8c:f1:78:ef:1e:67:78: fa:ac:2e:29:3c:59:e3:86:33:9e:95:bd:37:0c:11: 0b:a6:90:8e:ef:eb:75:fd:52:c7:67:92:c1:86:98: 28:a4:22:03:db:5d:72:85:09:7e:e4:d6:9b:9d:3f: 80:1c:b7:ba:03:af:69:a7:c8:a7:f6:b7:87:6b:ff: ba:73:34:08:8d:bb:b3:9a:69:37:5a:d1:19:5c:7f: 34:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:08:20:B7:70:DF:0E:FC:78:90:86:51:17:FB:43:48:C5:C2:9F:98 X509v3 Authority Key Identifier: keyid:05:19:DE:7B:48:66:03:B7:BA:5B:66:DA:B9:89:20:3F:DF:2D:B4:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91912DD/DB4A6CFC10D311EA9BD1A55DC4F9AE02/BRnee0hmA7e6W2bauYkgP98ttJQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/BRnee0hmA7e6W2bauYkgP98ttJQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91912DD/DB4A6CFC10D311EA9BD1A55DC4F9AE02/BRnee0hmA7e6W2bauYkgP98ttJQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:12:07:bb:bf:0d:b2:27:6a:bd:d6:15:36:ae:45:a3:66:71: 14:cd:61:6a:ea:26:a8:1d:43:38:46:73:05:83:91:6a:e3:be: d0:de:a1:1d:16:b6:5f:8e:33:02:ad:63:71:9a:00:fa:d8:a1: ee:93:6c:dd:75:f6:f7:29:cf:c2:32:16:fc:ac:8e:2f:81:7c: 24:1e:04:1a:df:d4:eb:99:fa:13:0f:72:b3:a2:7d:e6:ad:b8: e0:87:64:ec:0d:02:fe:d1:16:98:92:f6:fc:ab:12:42:4e:32: 7b:b6:bd:ce:aa:d1:ff:06:9a:07:06:eb:13:f9:44:b3:cd:05: 6b:b1:eb:ae:8f:8f:f0:df:fc:73:44:34:bd:1f:7f:3b:45:f5: 7c:79:1e:b4:58:c9:b6:b8:b3:e9:19:50:d8:ca:a3:8a:f8:95: 80:96:44:06:db:43:81:7f:38:37:7e:bb:f9:09:07:68:b1:da: 6f:03:f0:fe:af:04:58:75:e4:75:ee:15:dd:12:76:3a:76:69: 80:79:73:da:ae:b2:39:9f:aa:3e:d6:c9:1d:db:00:c7:81:36: 26:ad:b1:8b:95:dd:9a:d1:38:21:e4:e5:88:a9:77:b6:0d:f8: 1b:3f:f7:fe:e3:79:f1:48:72:6c:fa:f0:08:cc:d1:16:f2:f3: 0d:a0:e7:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDHkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTEyREQxMTAvBgNVBAUTKDA1MTlERTdCNDg2NjAzQjdCQTVCNjZEQUI5ODkyMDNG REYyREI0OTQwHhcNMjUxMjIwMTYyNTE1WhcNMjUxMjI3MTYyNTE1WjAYMRYwFAYD VQQDDA02OTQ2Y2RlYi01OWQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAokTU25wETFYVGcMEmJyicmj5if8t/2lqyIXc9+7l4pzNjFwYcgbTfQH9Qq9K KH0yAOSlwKZe6s9SO3Bd6ZyoQREwP8XceSt+wuRDFRyNbKbi7OUcpeeBNL6F5V2w 1PNGNSss+AjfL3bnxcj99xBpJnrGKwK8XE7a/78ztGKL1ZkwenBK53h35zBa2B93 XvKF4cIFQW6B4B7pospIbjb1Sjg0sI+PHSpWd1CluYzxeO8eZ3j6rC4pPFnjhjOe lb03DBELppCO7+t1/VLHZ5LBhpgopCID211yhQl+5NabnT+AHLe6A69pp8in9reH a/+6czQIjbuzmmk3WtEZXH80JwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNEIILdw 3w78eJCGURf7Q0jFwp+YMB8GA1UdIwQYMBaAFAUZ3ntIZgO3ultm2rmJID/fLbSU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTJERC9EQjRBNkNGQzEw RDMxMUVBOUJEMUE1NURDNEY5QUUwMi9CUm5lZTBobUE3ZTZXMmJhdVlrZ1A5OHR0 SlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0JSbmVlMGhtQTdlNlcyYmF1WWtnUDk4dHRKUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MTJERC9EQjRBNkNGQzEwRDMxMUVBOUJEMUE1NURDNEY5QUUwMi9CUm5lZTBobUE3 ZTZXMmJhdVlrZ1A5OHR0SlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTEge7vw2yJ2q91hU2rkWjZnEUzWFq6iaoHUM4RnMFg5Fq477Q3qEd FrZfjjMCrWNxmgD62KHuk2zddfb3Kc/CMhb8rI4vgXwkHgQa39TrmfoTD3Kzon3m rbjgh2TsDQL+0RaYkvb8qxJCTjJ7tr3OqtH/BpoHBusT+USzzQVrseuuj4/w3/xz RDS9H387RfV8eR60WMm2uLPpGVDYyqOK+JWAlkQG20OBfzg3frv5CQdosdpvA/D+ rwRYdeR17hXdEnY6dmmAeXParrI5n6o+1skd2wDHgTYmrbGLld2a0Tgh5OWIqXe2 DfgbP/f+43nxSHJs+vAIzNEW8vMNoOcM -----END CERTIFICATE-----Generated at Sun Dec 21 11:30:07 2025 by rpki-client