This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8CD2/043C6AF4D8E511EB80685D5FC4F9AE02/bjPVE5klw9tNCFk3zmms03vqeU0.mft File: bjPVE5klw9tNCFk3zmms03vqeU0.mft (raw, json) Hash identifier: 8BTq8Ijj8TUZaP4RY+skvukrQMNVS/yGq2orWb/U/20= Subject key identifier: C7:0F:EC:0D:50:C7:7C:D9:46:4A:65:5F:FE:1F:DF:2F:C8:5B:6E:3C Authority key identifier: 6E:33:D5:13:99:25:C3:DB:4D:08:59:37:CE:69:AC:D3:7B:EA:79:4D Certificate issuer: /CN=A91A8CD2/serialNumber=6E33D5139925C3DB4D085937CE69ACD37BEA794D Certificate serial: 05F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bjPVE5klw9tNCFk3zmms03vqeU0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8CD2/043C6AF4D8E511EB80685D5FC4F9AE02/bjPVE5klw9tNCFk3zmms03vqeU0.mft Manifest number: 05ED Signing time: Mon 22 Dec 2025 22:05:39 +0000 Manifest this update: Mon 22 Dec 2025 22:05:38 +0000 Manifest next update: Mon 29 Dec 2025 22:05:38 +0000 Files and hashes: 1: bjPVE5klw9tNCFk3zmms03vqeU0.crl (hash: +5tcOEayl0cmBZyJ2epOgG0AFLLNp+sfy3piiXm9kCc=) 2: 5D10DEF0D8E811EB8ACD3C66C4F9AE02.roa (hash: /8hy3Bbn1TLOvORzZ60crKTvCR9C6tYBcsWimqCiQa8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8CD2/043C6AF4D8E511EB80685D5FC4F9AE02/bjPVE5klw9tNCFk3zmms03vqeU0.crl rsync://rpki.apnic.net/member_repository/A91A8CD2/043C6AF4D8E511EB80685D5FC4F9AE02/bjPVE5klw9tNCFk3zmms03vqeU0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bjPVE5klw9tNCFk3zmms03vqeU0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 22:05:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1522 (0x5f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8CD2, serialNumber=6E33D5139925C3DB4D085937CE69ACD37BEA794D Validity Not Before: Dec 22 22:05:38 2025 GMT Not After : Dec 29 22:05:38 2025 GMT Subject: CN=6949c0b3-7243 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:45:4f:df:2b:60:bd:0f:55:15:4b:39:45:76: 20:4c:61:7a:a4:c3:a0:7d:82:b0:57:fc:38:76:5a: 81:30:b8:0a:5f:38:00:2c:37:e2:b2:69:84:6f:4e: 47:2b:f8:42:ce:a9:f6:4a:60:d5:72:76:73:bd:0d: f2:f7:fb:59:6a:3d:69:44:0c:6c:83:f4:e5:24:d9: 12:13:be:76:0b:f6:6e:86:31:ca:c8:29:31:03:ed: 9f:14:b1:07:03:d3:db:d9:62:a9:fd:9a:e5:2c:7a: 77:b5:82:3e:79:5a:5e:c7:18:7a:00:47:32:ba:16: 6d:e0:95:93:d1:49:04:b6:ec:76:8a:49:88:78:af: 82:11:0f:57:cf:54:98:c2:ca:6e:c1:e0:d7:ff:08: b0:4d:c2:70:ed:62:45:8a:07:96:c5:16:4e:46:87: 67:36:9b:67:5a:2e:42:83:9a:c0:21:98:a7:62:0f: 2b:6f:f2:32:16:12:2b:b3:62:8c:93:ff:b7:b4:60: a5:25:f7:59:54:e0:70:0d:a4:2a:04:4d:cb:aa:cc: ce:79:88:e6:1d:9f:67:72:d2:a6:41:65:b1:35:6a: 4b:54:9c:ed:d2:8c:4f:52:1d:6f:bd:4b:70:39:e2: 2d:e2:ea:67:5c:73:fe:fc:83:35:db:2b:f9:e5:02: 7e:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:0F:EC:0D:50:C7:7C:D9:46:4A:65:5F:FE:1F:DF:2F:C8:5B:6E:3C X509v3 Authority Key Identifier: keyid:6E:33:D5:13:99:25:C3:DB:4D:08:59:37:CE:69:AC:D3:7B:EA:79:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8CD2/043C6AF4D8E511EB80685D5FC4F9AE02/bjPVE5klw9tNCFk3zmms03vqeU0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bjPVE5klw9tNCFk3zmms03vqeU0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8CD2/043C6AF4D8E511EB80685D5FC4F9AE02/bjPVE5klw9tNCFk3zmms03vqeU0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d1:ec:03:e9:1b:5a:6c:94:e3:20:f7:ef:2d:15:12:37:fa:c2: d0:4b:eb:1e:05:36:21:06:a7:d1:be:a3:47:e0:75:04:72:b3: 15:e0:3e:ab:9e:9e:a7:3e:b9:f7:6d:e2:d4:db:94:61:5b:84: 72:28:d5:af:97:93:ee:48:01:20:a1:65:74:d1:f1:75:cf:ec: 16:58:00:75:d0:5c:0b:82:0a:86:a9:d6:89:ca:94:6d:e2:fc: ca:1a:20:8f:62:cc:1f:43:5e:2a:8a:f6:1b:c7:14:a6:cc:e9: 47:1f:64:bc:73:d8:48:59:17:7c:f8:0c:96:5c:8e:aa:ed:6d: 89:70:7f:e0:a2:3c:56:bb:62:e9:e7:6f:1a:52:44:0a:b5:d6: 7e:32:36:f6:60:9f:db:ff:15:b9:8e:3e:bc:53:19:f0:8d:dc: 8e:b3:25:0e:b4:99:36:68:c8:0b:e9:6f:41:61:1c:01:38:26: a8:d2:e1:1f:43:a8:0f:e3:5e:c9:a5:8f:fc:87:e9:be:a3:59: d9:d2:b5:74:c1:24:0e:1f:48:04:ee:db:d3:29:ff:f3:70:73: 35:7e:d8:a0:52:a7:e3:50:c7:44:dd:cd:4a:21:f9:ed:42:6e: d5:47:c8:6e:53:c5:38:42:28:dc:75:c7:ca:1b:a9:a6:d8:87: db:18:f7:fa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBfIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QThDRDIxMTAvBgNVBAUTKDZFMzNENTEzOTkyNUMzREI0RDA4NTkzN0NFNjlBQ0Qz N0JFQTc5NEQwHhcNMjUxMjIyMjIwNTM4WhcNMjUxMjI5MjIwNTM4WjAYMRYwFAYD VQQDDA02OTQ5YzBiMy03MjQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4UVP3ytgvQ9VFUs5RXYgTGF6pMOgfYKwV/w4dlqBMLgKXzgALDfismmEb05H K/hCzqn2SmDVcnZzvQ3y9/tZaj1pRAxsg/TlJNkSE752C/ZuhjHKyCkxA+2fFLEH A9Pb2WKp/ZrlLHp3tYI+eVpexxh6AEcyuhZt4JWT0UkEtux2ikmIeK+CEQ9Xz1SY wspuweDX/wiwTcJw7WJFigeWxRZORodnNptnWi5Cg5rAIZinYg8rb/IyFhIrs2KM k/+3tGClJfdZVOBwDaQqBE3LqszOeYjmHZ9nctKmQWWxNWpLVJzt0oxPUh1vvUtw OeIt4upnXHP+/IM12yv55QJ+dQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMcP7A1Q x3zZRkplX/4f3y/IW248MB8GA1UdIwQYMBaAFG4z1ROZJcPbTQhZN85prNN76nlN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOENEMi8wNDNDNkFGNEQ4 RTUxMUVCODA2ODVENUZDNEY5QUUwMi9ialBWRTVrbHc5dE5DRmszem1tczAzdnFl VTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JqUFZFNWtsdzl0TkNGazN6bW1zMDN2cWVVMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OENEMi8wNDNDNkFGNEQ4RTUxMUVCODA2ODVENUZDNEY5QUUwMi9ialBWRTVrbHc5 dE5DRmszem1tczAzdnFlVTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDR7APpG1pslOMg9+8tFRI3+sLQS+seBTYhBqfRvqNH4HUEcrMV4D6r np6nPrn3beLU25RhW4RyKNWvl5PuSAEgoWV00fF1z+wWWAB10FwLggqGqdaJypRt 4vzKGiCPYswfQ14qivYbxxSmzOlHH2S8c9hIWRd8+AyWXI6q7W2JcH/gojxWu2Lp 528aUkQKtdZ+Mjb2YJ/b/xW5jj68UxnwjdyOsyUOtJk2aMgL6W9BYRwBOCao0uEf Q6gP417JpY/8h+m+o1nZ0rV0wSQOH0gE7tvTKf/zcHM1ftigUqfjUMdE3c1KIfnt Qm7VR8huU8U4QijcdcfKG6mm2IfbGPf6 -----END CERTIFICATE-----Generated at Tue Dec 23 09:13:37 2025 by rpki-client