This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4AA0/1041E5EAE2C311EAB818D17FC4F9AE02/BM9X8qf_ynLAdGioxtXyRRf_Rrk.mft File: BM9X8qf_ynLAdGioxtXyRRf_Rrk.mft (raw, json) Hash identifier: /L5pd+5PCfHQoDDWJRgQR85unznd4yiI5aPuZHicoxE= Subject key identifier: E0:9B:8D:F0:73:FB:21:B5:2F:40:54:47:11:7E:6D:1A:9B:16:87:AD Authority key identifier: 04:CF:57:F2:A7:FF:CA:72:C0:74:68:A8:C6:D5:F2:45:17:FF:46:B9 Certificate issuer: /CN=A91B4AA0/serialNumber=04CF57F2A7FFCA72C07468A8C6D5F24517FF46B9 Certificate serial: 087B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BM9X8qf_ynLAdGioxtXyRRf_Rrk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4AA0/1041E5EAE2C311EAB818D17FC4F9AE02/BM9X8qf_ynLAdGioxtXyRRf_Rrk.mft Manifest number: 086F Signing time: Fri 26 Dec 2025 20:00:32 +0000 Manifest this update: Fri 26 Dec 2025 20:00:31 +0000 Manifest next update: Fri 02 Jan 2026 20:00:31 +0000 Files and hashes: 1: BM9X8qf_ynLAdGioxtXyRRf_Rrk.crl (hash: 0W3cX8zuMW7vBN6rmiQ2zBWY6wsci7FmnVPILyZ7Tvs=) 2: 02F863F6C09211EC8950E57AC4F9AE02.roa (hash: CW8cYbzHOyc7H5WlbPNiikLuHtC0kPX2gHGH/bCo7qc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4AA0/1041E5EAE2C311EAB818D17FC4F9AE02/BM9X8qf_ynLAdGioxtXyRRf_Rrk.crl rsync://rpki.apnic.net/member_repository/A91B4AA0/1041E5EAE2C311EAB818D17FC4F9AE02/BM9X8qf_ynLAdGioxtXyRRf_Rrk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BM9X8qf_ynLAdGioxtXyRRf_Rrk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 Jan 2026 20:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2171 (0x87b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4AA0, serialNumber=04CF57F2A7FFCA72C07468A8C6D5F24517FF46B9 Validity Not Before: Dec 26 20:00:31 2025 GMT Not After : Jan 2 20:00:31 2026 GMT Subject: CN=694ee960-3392 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:95:4c:5b:c4:0f:03:7b:0c:82:8d:6f:0f:a7: 3f:cd:42:ec:3e:55:5d:85:4f:2f:d4:e4:f9:e0:3b: ea:cd:b2:bb:64:e6:29:62:2a:61:6c:d8:cd:54:90: 63:18:3c:ab:69:45:e1:c9:95:2d:d0:95:80:15:53: b7:38:16:c3:2e:79:d2:e2:ee:cb:d6:6b:37:e4:11: 94:b1:f4:30:5e:fa:a2:57:e0:7d:4c:7a:c4:7f:bb: a5:b4:76:e6:18:f2:b5:8c:91:47:86:8b:20:ef:fe: 4a:b0:4a:f5:22:31:17:ba:11:98:86:09:7d:aa:cb: f3:ec:3d:83:dd:6e:cb:00:85:ff:dd:39:cd:98:de: b4:1c:ed:12:f5:3b:21:9e:f1:0e:ee:2b:bd:82:b9: da:14:7b:20:41:2b:b6:f0:eb:c2:32:29:d4:68:b6: a0:bc:5d:11:5f:e1:47:0a:89:ab:06:44:5b:f3:50: 4a:a9:a3:48:77:e6:ab:c2:b4:62:c8:f5:9d:65:64: d5:4b:65:d4:d1:29:34:b2:a3:fa:74:4c:13:36:ae: 37:05:61:37:45:f6:56:31:8b:7d:7f:be:e8:26:cf: b8:49:fd:e7:2e:71:af:63:21:eb:dd:9b:47:bc:0b: 82:e7:2b:c5:b9:0b:dc:db:0b:4d:32:62:81:17:04: c9:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:9B:8D:F0:73:FB:21:B5:2F:40:54:47:11:7E:6D:1A:9B:16:87:AD X509v3 Authority Key Identifier: keyid:04:CF:57:F2:A7:FF:CA:72:C0:74:68:A8:C6:D5:F2:45:17:FF:46:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4AA0/1041E5EAE2C311EAB818D17FC4F9AE02/BM9X8qf_ynLAdGioxtXyRRf_Rrk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BM9X8qf_ynLAdGioxtXyRRf_Rrk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4AA0/1041E5EAE2C311EAB818D17FC4F9AE02/BM9X8qf_ynLAdGioxtXyRRf_Rrk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:51:5a:80:28:16:c5:fe:b6:fc:ba:91:19:46:3d:b8:22:28: 4a:9f:47:76:e4:43:da:af:28:28:85:2e:e8:e3:85:55:d5:b3: e0:76:c6:a2:9f:ea:94:17:e6:89:a5:44:71:90:20:79:af:a2: 9f:92:8a:9e:dd:17:dd:0f:47:cd:50:0a:f8:4b:56:1e:a2:27: 53:a7:7f:fc:8e:67:a8:45:8f:f8:75:3f:14:16:24:e8:6d:c6: 5d:0e:c3:b1:db:64:61:1a:19:7c:88:24:dc:8f:2e:a8:93:99: f6:de:a1:62:f2:e7:b2:6b:0c:47:17:30:e3:c4:0d:6e:f8:90: 02:ed:a2:88:ed:39:dc:50:bd:3d:e1:b5:79:10:56:82:af:09: 70:65:07:ef:8a:1f:e9:bf:92:46:21:68:92:39:64:48:58:39: 9d:bb:6a:30:af:72:40:44:04:00:d4:ea:ba:33:01:33:40:02: c7:39:de:7d:42:42:28:7f:7d:eb:33:73:e6:0c:45:1f:26:50: 13:42:d5:d4:0b:7c:04:de:a1:bc:3b:97:c4:bb:aa:7a:6f:a4: 8f:86:07:fb:8e:1e:9f:97:84:ab:ce:55:db:3d:7b:ef:f7:66: f8:38:e5:7f:86:4e:64:db:bb:db:2b:d4:31:73:d3:0d:8b:39: 0a:50:06:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCHswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjRBQTAxMTAvBgNVBAUTKDA0Q0Y1N0YyQTdGRkNBNzJDMDc0NjhBOEM2RDVGMjQ1 MTdGRjQ2QjkwHhcNMjUxMjI2MjAwMDMxWhcNMjYwMTAyMjAwMDMxWjAYMRYwFAYD VQQDDA02OTRlZTk2MC0zMzkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo5VMW8QPA3sMgo1vD6c/zULsPlVdhU8v1OT54DvqzbK7ZOYpYiphbNjNVJBj GDyraUXhyZUt0JWAFVO3OBbDLnnS4u7L1ms35BGUsfQwXvqiV+B9THrEf7ultHbm GPK1jJFHhosg7/5KsEr1IjEXuhGYhgl9qsvz7D2D3W7LAIX/3TnNmN60HO0S9Tsh nvEO7iu9grnaFHsgQSu28OvCMinUaLagvF0RX+FHComrBkRb81BKqaNId+arwrRi yPWdZWTVS2XU0Sk0sqP6dEwTNq43BWE3RfZWMYt9f77oJs+4Sf3nLnGvYyHr3ZtH vAuC5yvFuQvc2wtNMmKBFwTJjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOCbjfBz +yG1L0BURxF+bRqbFoetMB8GA1UdIwQYMBaAFATPV/Kn/8pywHRoqMbV8kUX/0a5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNEFBMC8xMDQxRTVFQUUy QzMxMUVBQjgxOEQxN0ZDNEY5QUUwMi9CTTlYOHFmX3luTEFkR2lveHRYeVJSZl9S cmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JNOVg4cWZfeW5MQWRHaW94dFh5UlJmX1Jyay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NEFBMC8xMDQxRTVFQUUyQzMxMUVBQjgxOEQxN0ZDNEY5QUUwMi9CTTlYOHFmX3lu TEFkR2lveHRYeVJSZl9ScmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrUVqAKBbF/rb8upEZRj24IihKn0d25EParygohS7o44VV1bPgdsai n+qUF+aJpURxkCB5r6Kfkoqe3RfdD0fNUAr4S1YeoidTp3/8jmeoRY/4dT8UFiTo bcZdDsOx22RhGhl8iCTcjy6ok5n23qFi8ueyawxHFzDjxA1u+JAC7aKI7TncUL09 4bV5EFaCrwlwZQfvih/pv5JGIWiSOWRIWDmdu2owr3JARAQA1Oq6MwEzQALHOd59 QkIof33rM3PmDEUfJlATQtXUC3wE3qG8O5fEu6p6b6SPhgf7jh6fl4SrzlXbPXvv 92b4OOV/hk5k27vbK9Qxc9MNizkKUAb8 -----END CERTIFICATE-----Generated at Sun Dec 28 05:51:25 2025 by rpki-client