This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB1F6/0F14015094C911EAB1DB627CC4F9AE02/CBzlpnA274VGmQv1lMzWMoB0BR0.mft File: CBzlpnA274VGmQv1lMzWMoB0BR0.mft (raw, json) Hash identifier: XQqp2KXoS3hzaB4Pr2em/B48ls+nKreOnVFaIUYJJes= Subject key identifier: B9:A9:64:C3:DE:9A:FA:73:AB:7D:FF:EA:9E:CE:24:0B:05:F5:09:39 Authority key identifier: 08:1C:E5:A6:70:36:EF:85:46:99:0B:F5:94:CC:D6:32:80:74:05:1D Certificate issuer: /CN=A91AB1F6/serialNumber=081CE5A67036EF8546990BF594CCD6328074051D Certificate serial: 09DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CBzlpnA274VGmQv1lMzWMoB0BR0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB1F6/0F14015094C911EAB1DB627CC4F9AE02/CBzlpnA274VGmQv1lMzWMoB0BR0.mft Manifest number: 09CF Signing time: Thu 18 Dec 2025 19:31:28 +0000 Manifest this update: Thu 18 Dec 2025 19:31:28 +0000 Manifest next update: Thu 25 Dec 2025 19:31:28 +0000 Files and hashes: 1: CBzlpnA274VGmQv1lMzWMoB0BR0.crl (hash: ZSmPyLJUq09Ejy8pfoLFOslws7DD8hclu9N7BX0weVA=) 2: 59675AB20A4011F0AC302962C4F9AE02.roa (hash: fiBakfl0c7PhMdoRRAbYSKMEPuxbVJY/KVuQO5mDKMk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB1F6/0F14015094C911EAB1DB627CC4F9AE02/CBzlpnA274VGmQv1lMzWMoB0BR0.crl rsync://rpki.apnic.net/member_repository/A91AB1F6/0F14015094C911EAB1DB627CC4F9AE02/CBzlpnA274VGmQv1lMzWMoB0BR0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CBzlpnA274VGmQv1lMzWMoB0BR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 19:31:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2522 (0x9da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB1F6, serialNumber=081CE5A67036EF8546990BF594CCD6328074051D Validity Not Before: Dec 18 19:31:28 2025 GMT Not After : Dec 25 19:31:28 2025 GMT Subject: CN=69445690-46af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:32:b1:05:74:bc:06:17:ec:58:a7:c5:fe:0a: 21:9b:13:af:a9:29:70:a3:76:3e:2e:d1:fa:9e:76: cc:35:b0:f7:bb:5d:ce:2d:4a:24:aa:8a:0e:5e:2e: 2e:03:57:c1:65:0b:da:ca:9e:01:9f:b5:c0:31:a8: df:08:46:85:88:69:de:6e:65:fd:57:9a:e8:1e:c2: 23:b6:ab:49:d7:09:05:9b:6b:52:13:ac:0b:ae:d5: 43:3d:10:cb:cd:fe:43:78:aa:7f:a3:39:2f:8d:17: a2:28:59:4b:af:9d:41:c2:46:89:2e:71:f8:d3:98: 3e:02:ce:b4:81:4a:30:f5:6a:fe:b4:c1:5f:38:ae: ac:68:ec:1f:15:c9:bb:dc:c4:af:5e:51:00:0b:63: 41:ff:92:0a:f5:a5:eb:bc:00:2f:a1:1c:cf:40:6f: c1:31:a1:eb:a9:1c:64:57:f9:b0:48:28:3e:fa:55: ce:cb:15:18:b0:8b:13:f5:2e:49:18:cc:c4:88:81: fb:d9:8b:04:bb:ef:c8:4b:d4:ed:a5:be:a9:38:86: 2d:ca:96:24:70:0a:28:ab:ae:31:23:7c:c5:24:d6: b3:cb:c5:1d:f1:41:74:ec:b1:5b:c6:af:94:5f:82: b0:b9:a8:f6:e1:11:87:06:f2:63:f8:58:52:b9:a0: d2:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:A9:64:C3:DE:9A:FA:73:AB:7D:FF:EA:9E:CE:24:0B:05:F5:09:39 X509v3 Authority Key Identifier: keyid:08:1C:E5:A6:70:36:EF:85:46:99:0B:F5:94:CC:D6:32:80:74:05:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB1F6/0F14015094C911EAB1DB627CC4F9AE02/CBzlpnA274VGmQv1lMzWMoB0BR0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CBzlpnA274VGmQv1lMzWMoB0BR0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB1F6/0F14015094C911EAB1DB627CC4F9AE02/CBzlpnA274VGmQv1lMzWMoB0BR0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:79:38:b1:12:71:78:6c:ae:9d:fc:8e:34:0e:fb:80:f4:3a: 71:12:e9:d3:9d:0c:b7:2c:03:00:d2:83:49:23:9a:1b:bb:32: 0d:56:25:1f:a2:84:4b:da:0d:ae:b5:5d:d3:0d:93:24:8d:14: f0:ff:7f:a9:1a:e5:23:9c:bf:15:53:44:e1:a1:55:57:19:0c: b3:60:37:fd:94:61:00:dc:b7:c4:86:58:b3:a3:d3:6e:09:c9: f3:93:ce:0d:15:24:3b:94:46:a5:25:22:9b:36:c0:e5:8c:0a: 03:aa:44:28:ed:31:71:1c:75:c4:df:3b:2e:00:0d:c6:c8:31: 85:b6:a6:13:8b:84:a9:fc:80:6e:5e:a4:8a:95:23:b3:93:bd: 63:6a:51:e5:e1:8a:4c:1d:bc:8d:8f:3d:54:4a:fa:d6:23:ea: bd:26:d4:d2:77:00:d6:9d:74:c5:24:c8:9e:07:30:bb:0a:c4: 4e:4d:25:11:f9:e3:9d:81:1c:37:70:f4:5b:52:71:66:d0:de: b5:5e:ad:8f:0d:06:ad:84:17:98:23:a7:27:dc:4c:1a:45:9d: 35:8d:fd:e4:8d:72:a7:5e:8b:4f:88:49:0d:06:f2:3e:a7:94: 10:88:85:21:27:30:67:6c:d1:ff:d7:88:94:b9:40:8f:34:d1: 69:ae:f8:bd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCdowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUIxRjYxMTAvBgNVBAUTKDA4MUNFNUE2NzAzNkVGODU0Njk5MEJGNTk0Q0NENjMy ODA3NDA1MUQwHhcNMjUxMjE4MTkzMTI4WhcNMjUxMjI1MTkzMTI4WjAYMRYwFAYD VQQDDA02OTQ0NTY5MC00NmFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvjKxBXS8BhfsWKfF/gohmxOvqSlwo3Y+LtH6nnbMNbD3u13OLUokqooOXi4u A1fBZQvayp4Bn7XAMajfCEaFiGnebmX9V5roHsIjtqtJ1wkFm2tSE6wLrtVDPRDL zf5DeKp/ozkvjReiKFlLr51BwkaJLnH405g+As60gUow9Wr+tMFfOK6saOwfFcm7 3MSvXlEAC2NB/5IK9aXrvAAvoRzPQG/BMaHrqRxkV/mwSCg++lXOyxUYsIsT9S5J GMzEiIH72YsEu+/IS9Ttpb6pOIYtypYkcAooq64xI3zFJNazy8Ud8UF07LFbxq+U X4Kwuaj24RGHBvJj+FhSuaDSSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLmpZMPe mvpzq33/6p7OJAsF9Qk5MB8GA1UdIwQYMBaAFAgc5aZwNu+FRpkL9ZTM1jKAdAUd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjFGNi8wRjE0MDE1MDk0 QzkxMUVBQjFEQjYyN0NDNEY5QUUwMi9DQnpscG5BMjc0VkdtUXYxbE16V01vQjBC UjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NCemxwbkEyNzRWR21RdjFsTXpXTW9CMEJSMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjFGNi8wRjE0MDE1MDk0QzkxMUVBQjFEQjYyN0NDNEY5QUUwMi9DQnpscG5BMjc0 VkdtUXYxbE16V01vQjBCUjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVeTixEnF4bK6d/I40DvuA9DpxEunTnQy3LAMA0oNJI5obuzINViUf ooRL2g2utV3TDZMkjRTw/3+pGuUjnL8VU0ThoVVXGQyzYDf9lGEA3LfEhlizo9Nu Ccnzk84NFSQ7lEalJSKbNsDljAoDqkQo7TFxHHXE3zsuAA3GyDGFtqYTi4Sp/IBu XqSKlSOzk71jalHl4YpMHbyNjz1USvrWI+q9JtTSdwDWnXTFJMieBzC7CsROTSUR +eOdgRw3cPRbUnFm0N61Xq2PDQathBeYI6cn3EwaRZ01jf3kjXKnXotPiEkNBvI+ p5QQiIUhJzBnbNH/14iUuUCPNNFprvi9 -----END CERTIFICATE-----Generated at Fri Dec 19 20:30:24 2025 by rpki-client