This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B732A/FFF2E6A8B63011EFA2D7FB63C4F9AE02/bz4CYgDVU58n4POqUNMgokUo1X0.mft File: bz4CYgDVU58n4POqUNMgokUo1X0.mft (raw, json) Hash identifier: 1KN+ExiHfsmWQ6Zdd4JdeLqcimVTvBydcm73zol3KOo= Subject key identifier: 5C:87:FE:18:28:64:21:B1:A7:95:63:56:7B:E9:B6:1D:AB:74:86:C9 Authority key identifier: 6F:3E:02:62:00:D5:53:9F:27:E0:F3:AA:50:D3:20:A2:45:28:D5:7D Certificate issuer: /CN=A91B732A/serialNumber=6F3E026200D5539F27E0F3AA50D320A24528D57D Certificate serial: CA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bz4CYgDVU58n4POqUNMgokUo1X0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B732A/FFF2E6A8B63011EFA2D7FB63C4F9AE02/bz4CYgDVU58n4POqUNMgokUo1X0.mft Manifest number: C8 Signing time: Sat 27 Dec 2025 04:48:19 +0000 Manifest this update: Sat 27 Dec 2025 04:48:18 +0000 Manifest next update: Sat 03 Jan 2026 04:48:18 +0000 Files and hashes: 1: bz4CYgDVU58n4POqUNMgokUo1X0.crl (hash: fynye7FTwipIG6Y3Xi5tw6x6xsP/tgJq3WXp85C8HSo=) 2: 31EC2E5CBAAB11EFA97B2C66C4F9AE02.roa (hash: QpBoEt1C2EBI43s0+/uUFeo0zNr6mDnCWlKa7GcSILU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B732A/FFF2E6A8B63011EFA2D7FB63C4F9AE02/bz4CYgDVU58n4POqUNMgokUo1X0.crl rsync://rpki.apnic.net/member_repository/A91B732A/FFF2E6A8B63011EFA2D7FB63C4F9AE02/bz4CYgDVU58n4POqUNMgokUo1X0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bz4CYgDVU58n4POqUNMgokUo1X0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 Jan 2026 04:48:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 202 (0xca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B732A, serialNumber=6F3E026200D5539F27E0F3AA50D320A24528D57D Validity Not Before: Dec 27 04:48:18 2025 GMT Not After : Jan 3 04:48:18 2026 GMT Subject: CN=694f6512-9dcc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:0d:2a:d9:52:ab:8b:95:04:1e:0e:f3:5e:f0: 53:3e:25:93:d4:99:20:cf:7e:a5:54:16:d0:87:01: 0c:4e:23:5a:53:a2:e4:25:d2:a0:0b:9f:15:6f:68: 4c:67:31:45:64:ef:86:20:22:3c:b8:4d:c9:31:7c: c8:99:dd:78:e5:6b:d4:e7:16:16:b3:a6:8c:1c:33: 17:2c:b4:fd:8d:00:e0:36:37:bb:7b:a8:63:e4:2a: 35:a7:05:89:51:c4:a6:85:b6:e2:ec:e7:c4:21:64: e1:0b:2d:3b:5a:8b:23:5b:10:0f:90:ab:12:f9:60: a9:bf:53:2d:2c:ca:be:a4:9e:f3:57:b7:99:bf:48: f9:9d:33:7d:2d:22:35:70:fc:f3:84:21:9d:ef:91: 03:16:a7:35:aa:2a:73:be:6c:8b:a2:97:d7:d6:4c: 9f:ef:44:6e:30:e8:d1:c0:6f:23:98:0f:09:2a:aa: db:c8:e0:76:1b:72:98:7d:08:6c:63:51:74:0e:10: b3:e9:b9:92:73:09:e0:65:ad:d6:ab:d7:82:6e:76: a3:d1:32:f9:3c:33:2e:aa:40:42:5e:2c:7f:1c:6f: 26:ab:7c:e9:f7:63:10:53:3a:46:b7:ca:d8:fe:2f: 2f:f7:90:bf:93:6a:e5:e7:fb:78:9f:e2:f5:eb:4d: 0a:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:87:FE:18:28:64:21:B1:A7:95:63:56:7B:E9:B6:1D:AB:74:86:C9 X509v3 Authority Key Identifier: keyid:6F:3E:02:62:00:D5:53:9F:27:E0:F3:AA:50:D3:20:A2:45:28:D5:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B732A/FFF2E6A8B63011EFA2D7FB63C4F9AE02/bz4CYgDVU58n4POqUNMgokUo1X0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bz4CYgDVU58n4POqUNMgokUo1X0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B732A/FFF2E6A8B63011EFA2D7FB63C4F9AE02/bz4CYgDVU58n4POqUNMgokUo1X0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:72:d3:f4:28:6a:ee:e1:9e:57:a6:23:ff:21:4a:a4:cb:29: a8:45:df:f0:53:a1:98:19:34:2f:41:39:2d:c2:bf:48:1c:b4: 2b:f6:ce:a7:43:11:c0:12:3b:64:e2:be:dd:28:dd:44:43:2b: d9:3b:81:c1:27:0c:e5:72:29:56:c8:86:d6:6a:3d:bc:9e:66: 53:45:93:ad:e0:d5:54:2e:ee:bf:c9:83:80:d3:7d:4e:41:07: 6e:02:b8:d2:5a:aa:55:b2:7a:64:f5:bd:f2:ce:1a:1e:96:70: 93:d1:27:c4:e5:17:be:0f:e1:65:4a:19:6f:5d:3c:c7:55:fa: 1e:4c:5f:05:99:b2:31:dc:e7:df:e9:02:f2:50:e0:82:52:4b: e7:6d:97:bf:56:43:cd:31:a6:b2:36:2b:73:c3:4c:71:1a:27: ef:8d:c1:05:9b:22:ae:66:b2:c3:a6:dd:11:bc:af:c7:33:f6: 28:4b:5f:55:4b:48:62:18:3f:dd:c7:3a:0f:46:ac:37:9f:82: 3d:23:89:2d:76:d9:4f:55:bb:49:a3:89:23:e3:a5:70:e2:b3: 8f:91:40:fd:2c:6a:60:5f:82:fe:8a:8e:a6:c2:d7:3c:20:23: 7b:5d:d5:1d:f4:fa:97:31:ac:77:7e:c2:db:5b:05:8c:2d:c9: 67:46:b7:d0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjczMkExMTAvBgNVBAUTKDZGM0UwMjYyMDBENTUzOUYyN0UwRjNBQTUwRDMyMEEy NDUyOEQ1N0QwHhcNMjUxMjI3MDQ0ODE4WhcNMjYwMTAzMDQ0ODE4WjAYMRYwFAYD VQQDDA02OTRmNjUxMi05ZGNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyA0q2VKri5UEHg7zXvBTPiWT1Jkgz36lVBbQhwEMTiNaU6LkJdKgC58Vb2hM ZzFFZO+GICI8uE3JMXzImd145WvU5xYWs6aMHDMXLLT9jQDgNje7e6hj5Co1pwWJ UcSmhbbi7OfEIWThCy07WosjWxAPkKsS+WCpv1MtLMq+pJ7zV7eZv0j5nTN9LSI1 cPzzhCGd75EDFqc1qipzvmyLopfX1kyf70RuMOjRwG8jmA8JKqrbyOB2G3KYfQhs Y1F0DhCz6bmScwngZa3Wq9eCbnaj0TL5PDMuqkBCXix/HG8mq3zp92MQUzpGt8rY /i8v95C/k2rl5/t4n+L1600K1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFyH/hgo ZCGxp5VjVnvpth2rdIbJMB8GA1UdIwQYMBaAFG8+AmIA1VOfJ+DzqlDTIKJFKNV9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzMyQS9GRkYyRTZBOEI2 MzAxMUVGQTJEN0ZCNjNDNEY5QUUwMi9iejRDWWdEVlU1OG40UE9xVU5NZ29rVW8x WDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2J6NENZZ0RWVTU4bjRQT3FVTk1nb2tVbzFYMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NzMyQS9GRkYyRTZBOEI2MzAxMUVGQTJEN0ZCNjNDNEY5QUUwMi9iejRDWWdEVlU1 OG40UE9xVU5NZ29rVW8xWDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARctP0KGru4Z5XpiP/IUqkyymoRd/wU6GYGTQvQTktwr9IHLQr9s6n QxHAEjtk4r7dKN1EQyvZO4HBJwzlcilWyIbWaj28nmZTRZOt4NVULu6/yYOA031O QQduArjSWqpVsnpk9b3yzhoelnCT0SfE5Re+D+FlShlvXTzHVfoeTF8FmbIx3Off 6QLyUOCCUkvnbZe/VkPNMaayNitzw0xxGifvjcEFmyKuZrLDpt0RvK/HM/YoS19V S0hiGD/dxzoPRqw3n4I9I4ktdtlPVbtJo4kj46Vw4rOPkUD9LGpgX4L+io6mwtc8 ICN7XdUd9PqXMax3fsLbWwWMLclnRrfQ -----END CERTIFICATE-----Generated at Sat Dec 27 15:45:31 2025 by rpki-client