This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B732A/FFF2E6A8B63011EFA2D7FB63C4F9AE02/bz4CYgDVU58n4POqUNMgokUo1X0.mft File: bz4CYgDVU58n4POqUNMgokUo1X0.mft (raw, json) Hash identifier: ZzGBzqiox8qvzWPlsPxtTlM96K9KhXraAgbTlihUeGY= Subject key identifier: 67:0A:D4:A5:F3:7A:5A:52:6B:DB:CC:9D:E9:A9:54:46:C3:A1:77:85 Authority key identifier: 6F:3E:02:62:00:D5:53:9F:27:E0:F3:AA:50:D3:20:A2:45:28:D5:7D Certificate issuer: /CN=A91B732A/serialNumber=6F3E026200D5539F27E0F3AA50D320A24528D57D Certificate serial: C6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bz4CYgDVU58n4POqUNMgokUo1X0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B732A/FFF2E6A8B63011EFA2D7FB63C4F9AE02/bz4CYgDVU58n4POqUNMgokUo1X0.mft Manifest number: C4 Signing time: Fri 19 Dec 2025 05:02:19 +0000 Manifest this update: Fri 19 Dec 2025 05:02:19 +0000 Manifest next update: Fri 26 Dec 2025 05:02:19 +0000 Files and hashes: 1: bz4CYgDVU58n4POqUNMgokUo1X0.crl (hash: Z4mxUL/f4oEhMuzjY7nZCAbbJyoxtfq3pIlXELJa+fg=) 2: 31EC2E5CBAAB11EFA97B2C66C4F9AE02.roa (hash: QpBoEt1C2EBI43s0+/uUFeo0zNr6mDnCWlKa7GcSILU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B732A/FFF2E6A8B63011EFA2D7FB63C4F9AE02/bz4CYgDVU58n4POqUNMgokUo1X0.crl rsync://rpki.apnic.net/member_repository/A91B732A/FFF2E6A8B63011EFA2D7FB63C4F9AE02/bz4CYgDVU58n4POqUNMgokUo1X0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bz4CYgDVU58n4POqUNMgokUo1X0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 05:02:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 198 (0xc6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B732A, serialNumber=6F3E026200D5539F27E0F3AA50D320A24528D57D Validity Not Before: Dec 19 05:02:19 2025 GMT Not After : Dec 26 05:02:19 2025 GMT Subject: CN=6944dc5b-9346 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:9a:f2:66:29:bb:6f:6f:93:1b:c2:73:c3:83: 81:f7:2a:01:3b:bf:d0:2e:5e:f3:07:44:76:3a:2d: 7c:d6:e1:e3:fa:64:f0:82:41:1d:d1:f5:16:e0:5f: 73:84:4d:06:92:18:96:8f:6d:c2:58:17:1d:29:e0: 22:d1:66:84:a1:80:be:80:98:23:98:bd:c4:74:62: 6e:37:e3:45:3c:70:69:99:dd:67:75:23:d8:d8:6d: c9:ef:97:41:d1:06:d7:1d:ae:43:a9:d5:92:7a:1c: 59:ee:ca:81:23:bb:50:65:3b:fd:ec:8d:e2:49:fa: fc:aa:87:23:4d:fb:11:8f:84:fb:31:54:c8:28:38: 78:05:da:48:be:fd:1f:bb:47:20:50:29:f2:8c:8d: f4:04:6d:a8:fd:8a:46:98:be:d6:51:ee:bc:ff:c2: f0:b8:a4:7a:82:7d:c6:c2:e3:ac:b1:eb:91:f7:67: fd:bb:57:84:ee:44:4e:df:7d:55:4b:78:69:8d:e4: fe:5c:9a:b5:88:68:7c:dc:ea:59:a7:8c:b9:36:78: 78:ef:de:e2:a4:16:63:7a:d4:45:99:9a:e5:de:fc: 75:33:a6:ab:54:aa:ca:5a:86:4a:6e:ba:bb:0e:1f: b5:41:e3:9e:64:d1:99:36:c1:e4:57:06:db:5b:ed: 1c:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:0A:D4:A5:F3:7A:5A:52:6B:DB:CC:9D:E9:A9:54:46:C3:A1:77:85 X509v3 Authority Key Identifier: keyid:6F:3E:02:62:00:D5:53:9F:27:E0:F3:AA:50:D3:20:A2:45:28:D5:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B732A/FFF2E6A8B63011EFA2D7FB63C4F9AE02/bz4CYgDVU58n4POqUNMgokUo1X0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bz4CYgDVU58n4POqUNMgokUo1X0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B732A/FFF2E6A8B63011EFA2D7FB63C4F9AE02/bz4CYgDVU58n4POqUNMgokUo1X0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:f0:74:8b:26:a0:08:00:09:da:99:19:d4:9c:2c:2e:c1:c3: f3:83:04:d3:61:f8:3a:b4:eb:43:06:10:15:84:44:6f:11:2d: f2:a8:dc:e7:7a:b5:c6:f6:28:26:ee:8f:2b:1d:51:8e:64:26: db:c2:67:32:9b:ac:e1:00:a7:04:17:4d:08:65:03:df:46:33: 57:17:71:40:7a:8b:77:3e:06:91:e0:00:fe:09:ce:75:7f:d0: cf:57:a0:ba:fe:97:f4:8d:71:d3:ae:90:61:29:1c:0a:ba:7b: 04:a9:c6:81:b7:40:be:ba:5e:3c:60:04:94:08:cd:59:19:4b: db:97:e6:0f:b9:b0:2a:7a:49:52:fa:7a:1e:ea:ab:36:e7:33: 0e:65:b2:71:e9:26:f9:2d:04:c6:3d:48:6e:42:c4:5b:01:61: e2:eb:13:1b:a7:12:bc:a7:b2:bf:56:d9:da:c2:fc:45:ba:f4: 58:df:b7:07:ca:73:22:ed:92:bc:4b:c8:3c:27:ff:52:1e:83: 5a:8a:01:c4:66:92:51:ed:7a:c2:fa:44:f6:06:e7:6c:60:89: 2f:eb:3b:94:17:ab:23:ca:17:2d:3e:05:4b:b4:32:a9:1b:1c: 92:97:1f:af:e0:73:08:e2:73:ac:e0:d9:2d:bc:6b:a2:a7:0b: 0b:e3:21:2d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjczMkExMTAvBgNVBAUTKDZGM0UwMjYyMDBENTUzOUYyN0UwRjNBQTUwRDMyMEEy NDUyOEQ1N0QwHhcNMjUxMjE5MDUwMjE5WhcNMjUxMjI2MDUwMjE5WjAYMRYwFAYD VQQDDA02OTQ0ZGM1Yi05MzQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx5ryZim7b2+TG8Jzw4OB9yoBO7/QLl7zB0R2Oi181uHj+mTwgkEd0fUW4F9z hE0GkhiWj23CWBcdKeAi0WaEoYC+gJgjmL3EdGJuN+NFPHBpmd1ndSPY2G3J75dB 0QbXHa5DqdWSehxZ7sqBI7tQZTv97I3iSfr8qocjTfsRj4T7MVTIKDh4BdpIvv0f u0cgUCnyjI30BG2o/YpGmL7WUe68/8LwuKR6gn3GwuOsseuR92f9u1eE7kRO331V S3hpjeT+XJq1iGh83OpZp4y5Nnh4797ipBZjetRFmZrl3vx1M6arVKrKWoZKbrq7 Dh+1QeOeZNGZNsHkVwbbW+0cOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGcK1KXz elpSa9vMnempVEbDoXeFMB8GA1UdIwQYMBaAFG8+AmIA1VOfJ+DzqlDTIKJFKNV9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzMyQS9GRkYyRTZBOEI2 MzAxMUVGQTJEN0ZCNjNDNEY5QUUwMi9iejRDWWdEVlU1OG40UE9xVU5NZ29rVW8x WDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2J6NENZZ0RWVTU4bjRQT3FVTk1nb2tVbzFYMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NzMyQS9GRkYyRTZBOEI2MzAxMUVGQTJEN0ZCNjNDNEY5QUUwMi9iejRDWWdEVlU1 OG40UE9xVU5NZ29rVW8xWDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAo8HSLJqAIAAnamRnUnCwuwcPzgwTTYfg6tOtDBhAVhERvES3yqNzn erXG9igm7o8rHVGOZCbbwmcym6zhAKcEF00IZQPfRjNXF3FAeot3PgaR4AD+Cc51 f9DPV6C6/pf0jXHTrpBhKRwKunsEqcaBt0C+ul48YASUCM1ZGUvbl+YPubAqeklS +noe6qs25zMOZbJx6Sb5LQTGPUhuQsRbAWHi6xMbpxK8p7K/VtnawvxFuvRY37cH ynMi7ZK8S8g8J/9SHoNaigHEZpJR7XrC+kT2BudsYIkv6zuUF6sjyhctPgVLtDKp GxySlx+v4HMI4nOs4NktvGuipwsL4yEt -----END CERTIFICATE-----Generated at Sat Dec 20 00:55:06 2025 by rpki-client