This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4AA0/1041E5EAE2C311EAB818D17FC4F9AE02/BM9X8qf_ynLAdGioxtXyRRf_Rrk.mft File: BM9X8qf_ynLAdGioxtXyRRf_Rrk.mft (raw, json) Hash identifier: 9cFfSRUGRmf6K/jOHk6k7OJmZTf1PGXmBVH6lvOPzFk= Subject key identifier: 9C:FE:14:CB:B1:6C:26:F5:A8:8C:4A:EE:7D:9A:72:6D:D1:3E:40:24 Authority key identifier: 04:CF:57:F2:A7:FF:CA:72:C0:74:68:A8:C6:D5:F2:45:17:FF:46:B9 Certificate issuer: /CN=A91B4AA0/serialNumber=04CF57F2A7FFCA72C07468A8C6D5F24517FF46B9 Certificate serial: 087A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BM9X8qf_ynLAdGioxtXyRRf_Rrk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4AA0/1041E5EAE2C311EAB818D17FC4F9AE02/BM9X8qf_ynLAdGioxtXyRRf_Rrk.mft Manifest number: 086E Signing time: Wed 24 Dec 2025 20:04:46 +0000 Manifest this update: Wed 24 Dec 2025 20:04:46 +0000 Manifest next update: Wed 31 Dec 2025 20:04:46 +0000 Files and hashes: 1: BM9X8qf_ynLAdGioxtXyRRf_Rrk.crl (hash: Yn28IqfFUmXGM9sQvsL0lvOOyxp+EaNoN16OaQbE72Q=) 2: 02F863F6C09211EC8950E57AC4F9AE02.roa (hash: CW8cYbzHOyc7H5WlbPNiikLuHtC0kPX2gHGH/bCo7qc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4AA0/1041E5EAE2C311EAB818D17FC4F9AE02/BM9X8qf_ynLAdGioxtXyRRf_Rrk.crl rsync://rpki.apnic.net/member_repository/A91B4AA0/1041E5EAE2C311EAB818D17FC4F9AE02/BM9X8qf_ynLAdGioxtXyRRf_Rrk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BM9X8qf_ynLAdGioxtXyRRf_Rrk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Dec 2025 20:04:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2170 (0x87a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4AA0, serialNumber=04CF57F2A7FFCA72C07468A8C6D5F24517FF46B9 Validity Not Before: Dec 24 20:04:46 2025 GMT Not After : Dec 31 20:04:46 2025 GMT Subject: CN=694c475e-b3c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:e6:c4:be:c6:60:c9:d4:d7:77:0e:99:d1:6d: 5b:d1:7d:50:2a:71:43:44:0a:a1:89:10:ce:74:c7: 14:50:00:3d:23:e0:bb:11:67:4d:25:a8:58:ce:01: e6:29:cd:f4:c9:29:24:fb:4d:c2:51:9e:d3:32:63: f8:ef:00:97:05:b3:c2:c8:48:86:d9:9e:e7:fb:be: 2d:87:a6:9d:c6:d1:84:0d:ac:2d:b4:71:05:3a:e0: a4:d2:79:0d:ad:5d:36:34:61:09:2d:74:05:01:2c: 81:b2:11:f0:aa:f1:73:1d:c1:78:2a:52:4b:d1:1b: 22:31:00:c2:0d:22:f5:70:1a:a3:d4:33:b0:db:cf: 65:95:ee:0c:fe:8f:e3:60:59:9c:a1:3e:9c:00:92: 22:9d:b8:b2:df:c3:26:ea:1e:f4:7d:b2:73:d6:d9: 9f:da:4e:34:2d:dd:75:f0:6c:1a:c1:79:b7:d5:c6: 83:6d:1c:f9:e7:18:25:0e:dd:f7:89:77:fa:44:e0: b5:94:54:f0:1d:61:07:0d:c1:01:0d:12:d0:ac:72: a9:3b:cc:b6:de:9d:66:aa:3d:9b:70:79:84:82:ea: c5:e7:b5:86:cc:99:58:62:b3:19:b6:67:f7:f9:55: a8:59:c4:a5:1b:64:c7:60:17:85:b4:dc:93:fc:7c: 7a:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:FE:14:CB:B1:6C:26:F5:A8:8C:4A:EE:7D:9A:72:6D:D1:3E:40:24 X509v3 Authority Key Identifier: keyid:04:CF:57:F2:A7:FF:CA:72:C0:74:68:A8:C6:D5:F2:45:17:FF:46:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4AA0/1041E5EAE2C311EAB818D17FC4F9AE02/BM9X8qf_ynLAdGioxtXyRRf_Rrk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BM9X8qf_ynLAdGioxtXyRRf_Rrk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4AA0/1041E5EAE2C311EAB818D17FC4F9AE02/BM9X8qf_ynLAdGioxtXyRRf_Rrk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:d5:59:44:ed:c5:ba:a7:a5:ad:09:f4:aa:6c:b9:e4:a6:9a: 8d:4e:c9:bb:a2:dc:cf:f8:8e:96:10:d4:47:9f:07:26:61:68: 38:60:c4:62:23:a1:88:6e:e1:5e:b8:f8:53:ad:52:9e:33:5f: 7a:76:d3:78:88:50:d7:f1:b4:bf:53:2f:4b:3b:b2:c7:25:a8: fd:65:8b:38:2e:c6:e0:72:ef:79:8f:9d:dc:e8:7d:e6:05:28: bd:f5:c5:98:93:10:df:7e:c8:99:9a:0a:37:dd:ba:94:1c:99: 11:b8:7d:3c:87:47:c9:39:98:d1:6d:9a:b8:d3:e0:ed:fc:7a: 15:df:48:77:44:9f:93:b2:85:83:54:e4:0e:f8:5a:3d:ce:a4: 33:b9:b3:61:9b:66:9b:1e:0f:3d:6e:da:32:26:bd:8d:5e:13: f4:9d:24:5c:82:4a:27:07:f8:31:1a:0e:a4:ee:bb:8f:36:af: b9:23:61:9a:2f:d3:1a:88:4c:58:f9:83:15:25:9b:a5:4c:19: d9:29:76:8b:d2:3e:51:4d:f2:3e:cf:0b:96:98:64:37:40:61: eb:19:de:41:20:24:3d:a7:c9:80:61:39:3e:87:78:c6:65:83: d6:2d:01:46:28:11:6d:a0:9d:6b:fb:f7:8e:25:6b:98:e3:d5: 8e:19:37:e5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCHowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjRBQTAxMTAvBgNVBAUTKDA0Q0Y1N0YyQTdGRkNBNzJDMDc0NjhBOEM2RDVGMjQ1 MTdGRjQ2QjkwHhcNMjUxMjI0MjAwNDQ2WhcNMjUxMjMxMjAwNDQ2WjAYMRYwFAYD VQQDDA02OTRjNDc1ZS1iM2MyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0ebEvsZgydTXdw6Z0W1b0X1QKnFDRAqhiRDOdMcUUAA9I+C7EWdNJahYzgHm Kc30ySkk+03CUZ7TMmP47wCXBbPCyEiG2Z7n+74th6adxtGEDawttHEFOuCk0nkN rV02NGEJLXQFASyBshHwqvFzHcF4KlJL0RsiMQDCDSL1cBqj1DOw289lle4M/o/j YFmcoT6cAJIinbiy38Mm6h70fbJz1tmf2k40Ld118GwawXm31caDbRz55xglDt33 iXf6ROC1lFTwHWEHDcEBDRLQrHKpO8y23p1mqj2bcHmEgurF57WGzJlYYrMZtmf3 +VWoWcSlG2THYBeFtNyT/Hx6twIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJz+FMux bCb1qIxK7n2acm3RPkAkMB8GA1UdIwQYMBaAFATPV/Kn/8pywHRoqMbV8kUX/0a5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNEFBMC8xMDQxRTVFQUUy QzMxMUVBQjgxOEQxN0ZDNEY5QUUwMi9CTTlYOHFmX3luTEFkR2lveHRYeVJSZl9S cmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JNOVg4cWZfeW5MQWRHaW94dFh5UlJmX1Jyay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NEFBMC8xMDQxRTVFQUUyQzMxMUVBQjgxOEQxN0ZDNEY5QUUwMi9CTTlYOHFmX3lu TEFkR2lveHRYeVJSZl9ScmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCe1VlE7cW6p6WtCfSqbLnkppqNTsm7otzP+I6WENRHnwcmYWg4YMRi I6GIbuFeuPhTrVKeM196dtN4iFDX8bS/Uy9LO7LHJaj9ZYs4Lsbgcu95j53c6H3m BSi99cWYkxDffsiZmgo33bqUHJkRuH08h0fJOZjRbZq40+Dt/HoV30h3RJ+TsoWD VOQO+Fo9zqQzubNhm2abHg89btoyJr2NXhP0nSRcgkonB/gxGg6k7ruPNq+5I2Ga L9MaiExY+YMVJZulTBnZKXaL0j5RTfI+zwuWmGQ3QGHrGd5BICQ9p8mAYTk+h3jG ZYPWLQFGKBFtoJ1r+/eOJWuY49WOGTfl -----END CERTIFICATE-----Generated at Fri Dec 26 03:21:02 2025 by rpki-client