This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4873/56A5B2AE38E711EF844B4F65C4F9AE02/bdB1wHDNGUBcCU1NPUvaFjQM7vw.mft File: bdB1wHDNGUBcCU1NPUvaFjQM7vw.mft (raw, json) Hash identifier: f88P2feopjrpDJ7rhlILVP6/RiMhTAN5RMcDZY5YGHY= Subject key identifier: 08:97:7A:3E:47:4D:B2:BB:C3:18:AE:51:A3:D2:34:BA:3B:F8:FD:95 Authority key identifier: 6D:D0:75:C0:70:CD:19:40:5C:09:4D:4D:3D:4B:DA:16:34:0C:EE:FC Certificate issuer: /CN=A91B4873/serialNumber=6DD075C070CD19405C094D4D3D4BDA16340CEEFC Certificate serial: 0110 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bdB1wHDNGUBcCU1NPUvaFjQM7vw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4873/56A5B2AE38E711EF844B4F65C4F9AE02/bdB1wHDNGUBcCU1NPUvaFjQM7vw.mft Manifest number: 0110 Signing time: Fri 19 Dec 2025 04:01:11 +0000 Manifest this update: Fri 19 Dec 2025 04:01:11 +0000 Manifest next update: Fri 26 Dec 2025 04:01:11 +0000 Files and hashes: 1: bdB1wHDNGUBcCU1NPUvaFjQM7vw.crl (hash: cbghjBp9SUbEEQkhDXVGPizTkY4NQT0usjiTblHNoNs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4873/56A5B2AE38E711EF844B4F65C4F9AE02/bdB1wHDNGUBcCU1NPUvaFjQM7vw.crl rsync://rpki.apnic.net/member_repository/A91B4873/56A5B2AE38E711EF844B4F65C4F9AE02/bdB1wHDNGUBcCU1NPUvaFjQM7vw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bdB1wHDNGUBcCU1NPUvaFjQM7vw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 04:01:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 272 (0x110) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4873, serialNumber=6DD075C070CD19405C094D4D3D4BDA16340CEEFC Validity Not Before: Dec 19 04:01:11 2025 GMT Not After : Dec 26 04:01:11 2025 GMT Subject: CN=6944ce07-702b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:57:15:b3:65:4d:e7:00:e7:be:fc:48:6b:e5: 3e:e1:ca:3c:b9:67:ea:91:a6:4c:98:ab:68:aa:c5: c9:41:36:ff:31:46:92:ad:78:61:71:38:b0:b2:40: 4d:32:a4:27:b3:53:1e:6c:92:81:c4:00:6c:85:d9: 2b:ef:f0:77:01:2b:1c:1b:0f:b6:ff:f7:ca:f6:99: 2c:ce:51:e0:2c:36:38:48:98:cf:80:b0:b6:14:31: db:6f:2b:52:5b:ce:6f:bb:7b:c1:e9:7f:91:ca:39: c5:fb:10:ed:2e:09:d2:72:b2:3f:70:f1:b3:74:3c: 9d:8a:c8:b3:c9:ad:df:40:30:7c:10:a9:1f:7c:56: 3f:d6:2f:64:0c:f1:dc:97:82:a5:78:65:e9:82:e4: 90:b2:e9:ca:1d:f3:9c:2a:52:dd:c4:f3:36:a9:ef: a0:9c:77:a5:cd:14:55:3e:08:82:06:96:e3:d4:1c: 73:c9:17:df:7c:59:c9:ae:2e:55:ab:03:9c:95:1e: 5e:8f:29:da:81:1f:cd:09:e8:07:10:bf:d9:fc:29: 51:ee:75:15:cb:15:35:75:8a:3f:9d:c2:46:b0:ef: d4:38:90:25:bf:32:b1:00:ca:50:83:93:4a:a3:bf: a1:c8:fd:33:4c:ae:e8:55:ac:a2:c6:05:68:64:31: 93:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:97:7A:3E:47:4D:B2:BB:C3:18:AE:51:A3:D2:34:BA:3B:F8:FD:95 X509v3 Authority Key Identifier: keyid:6D:D0:75:C0:70:CD:19:40:5C:09:4D:4D:3D:4B:DA:16:34:0C:EE:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4873/56A5B2AE38E711EF844B4F65C4F9AE02/bdB1wHDNGUBcCU1NPUvaFjQM7vw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bdB1wHDNGUBcCU1NPUvaFjQM7vw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4873/56A5B2AE38E711EF844B4F65C4F9AE02/bdB1wHDNGUBcCU1NPUvaFjQM7vw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:60:c9:eb:a4:88:0b:45:36:7c:1d:e0:f3:9b:ef:93:a0:b8: 6d:13:a4:bf:68:f4:86:79:8a:b8:78:09:e3:01:ae:db:34:ce: 89:d7:0f:3e:71:c4:51:5f:f6:85:d9:76:d4:34:8b:a3:75:82: 27:b6:ca:e4:ed:d5:8c:a2:f0:a2:2d:34:9a:4b:d7:15:f0:30: 59:a6:79:5c:e6:8f:52:59:3f:9c:d7:a7:67:6d:27:22:81:90: dd:fc:9c:6f:39:72:3b:38:ff:c8:00:43:37:76:ec:c0:c3:3d: 10:10:a4:6e:b5:f3:f0:da:3d:68:97:9b:b3:18:4b:7a:26:63: 38:b1:3d:8b:14:ae:57:d7:95:dd:b6:ae:1f:42:87:6a:05:91: 02:67:49:e1:5e:2d:41:5d:b1:3e:b5:f0:07:d8:1e:25:9e:45: 68:e2:08:7d:f4:81:b1:d9:5c:71:5f:18:1d:93:c4:db:1c:be: 1b:0d:bc:11:40:c9:3c:d2:23:94:32:72:ad:a3:95:ce:90:25: 90:c9:0f:df:60:80:62:10:a0:aa:af:5f:70:53:2b:70:63:ad: 22:d0:3d:36:ed:b0:e2:37:6f:67:64:4e:c1:73:9f:68:2f:15: 6b:b7:20:41:47:14:70:31:8f:14:bc:0d:4b:f3:3d:fa:cf:22: 72:a4:24:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQ4NzMxMTAvBgNVBAUTKDZERDA3NUMwNzBDRDE5NDA1QzA5NEQ0RDNENEJEQTE2 MzQwQ0VFRkMwHhcNMjUxMjE5MDQwMTExWhcNMjUxMjI2MDQwMTExWjAYMRYwFAYD VQQDDA02OTQ0Y2UwNy03MDJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp1cVs2VN5wDnvvxIa+U+4co8uWfqkaZMmKtoqsXJQTb/MUaSrXhhcTiwskBN MqQns1MebJKBxABshdkr7/B3ASscGw+2//fK9pkszlHgLDY4SJjPgLC2FDHbbytS W85vu3vB6X+RyjnF+xDtLgnScrI/cPGzdDydisizya3fQDB8EKkffFY/1i9kDPHc l4KleGXpguSQsunKHfOcKlLdxPM2qe+gnHelzRRVPgiCBpbj1BxzyRfffFnJri5V qwOclR5ejynagR/NCegHEL/Z/ClR7nUVyxU1dYo/ncJGsO/UOJAlvzKxAMpQg5NK o7+hyP0zTK7oVayixgVoZDGTcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAiXej5H TbK7wxiuUaPSNLo7+P2VMB8GA1UdIwQYMBaAFG3QdcBwzRlAXAlNTT1L2hY0DO78 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDg3My81NkE1QjJBRTM4 RTcxMUVGODQ0QjRGNjVDNEY5QUUwMi9iZEIxd0hETkdVQmNDVTFOUFV2YUZqUU03 dncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JkQjF3SEROR1VCY0NVMU5QVXZhRmpRTTd2dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDg3My81NkE1QjJBRTM4RTcxMUVGODQ0QjRGNjVDNEY5QUUwMi9iZEIxd0hETkdV QmNDVTFOUFV2YUZqUU03dncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZYMnrpIgLRTZ8HeDzm++ToLhtE6S/aPSGeYq4eAnjAa7bNM6J1w8+ ccRRX/aF2XbUNIujdYIntsrk7dWMovCiLTSaS9cV8DBZpnlc5o9SWT+c16dnbSci gZDd/JxvOXI7OP/IAEM3duzAwz0QEKRutfPw2j1ol5uzGEt6JmM4sT2LFK5X15Xd tq4fQodqBZECZ0nhXi1BXbE+tfAH2B4lnkVo4gh99IGx2VxxXxgdk8TbHL4bDbwR QMk80iOUMnKto5XOkCWQyQ/fYIBiEKCqr19wUytwY60i0D027bDiN29nZE7Bc59o LxVrtyBBRxRwMY8UvA1L8z36zyJypCSc -----END CERTIFICATE-----Generated at Fri Dec 19 19:05:38 2025 by rpki-client