This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BBA80/B98E81D605B911EA8208996EC4F9AE02/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.mft File: Bg9-d8AKy-CGjcC4_KI9Sl8H13o.mft (raw, json) Hash identifier: Z2y0grBToGthhk3fBjrGqMBLLw/qHdmM/kFrIt8n024= Subject key identifier: 40:FE:65:87:77:AD:D5:59:75:0D:E5:F2:37:28:1C:79:58:89:7A:55 Authority key identifier: 06:0F:7E:77:C0:0A:CB:E0:86:8D:C0:B8:FC:A2:3D:4A:5F:07:D7:7A Certificate issuer: /CN=A91BBA80/serialNumber=060F7E77C00ACBE0868DC0B8FCA23D4A5F07D77A Certificate serial: 0D1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BBA80/B98E81D605B911EA8208996EC4F9AE02/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.mft Manifest number: 0CE5 Signing time: Tue 30 Dec 2025 17:58:07 +0000 Manifest this update: Tue 30 Dec 2025 17:58:07 +0000 Manifest next update: Tue 06 Jan 2026 17:58:07 +0000 Files and hashes: 1: Bg9-d8AKy-CGjcC4_KI9Sl8H13o.crl (hash: KKnbwTopVWWtAllSWd90jcFRAbjivOchGdO8DaW0uqA=) 2: 12561046368911EEA0CB766BC4F9AE02.roa (hash: ZsNiLxfxjjXIOR9efOK6g19RpsthQOBE4XYCmM1hnq8=) 3: 22E63812221211EF9624DB0CC4F9AE02.roa (hash: tEtTFQOPTziC3M/Up8UOSv6VFGJx+4dP/cUQCVWj4l4=) 4: 2FC3DE84B15B11EB8CCCD624C4F9AE02.roa (hash: e/Kuo5QdtsaM/mztDHYG4XkizjKIPPrgUEb1ap1W45w=) 5: 21A9C2D4221211EF9624DB0CC4F9AE02.roa (hash: UuY5qtUwk8Dlu801YZxvnO/xKQaWGop0bKAvOOHuar0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BBA80/B98E81D605B911EA8208996EC4F9AE02/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.crl rsync://rpki.apnic.net/member_repository/A91BBA80/B98E81D605B911EA8208996EC4F9AE02/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 06 Jan 2026 17:58:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3357 (0xd1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BBA80, serialNumber=060F7E77C00ACBE0868DC0B8FCA23D4A5F07D77A Validity Not Before: Dec 30 17:58:07 2025 GMT Not After : Jan 6 17:58:07 2026 GMT Subject: CN=695412af-c935 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:8b:6f:ab:00:3d:5a:83:2d:c6:f8:e2:1f:d1: cd:45:87:2b:81:f1:97:a9:31:1d:89:0c:16:84:25: 02:bb:c5:72:30:aa:18:0e:8d:77:de:9e:9f:5f:1f: 50:15:c5:d5:a1:bd:e5:83:1f:00:1a:05:ad:0e:7c: d3:6e:57:cf:d1:71:61:0a:36:b0:e8:0a:4c:39:aa: de:0a:ed:f5:5c:dd:8c:3f:3c:2c:3b:e4:be:d9:f2: fe:f8:14:7a:51:5e:23:7d:64:0e:91:c9:9a:66:63: b0:c9:af:c1:c4:a7:3e:f3:c8:f7:09:ee:08:2e:b8: d5:82:f5:75:2a:f7:e7:79:a5:82:23:68:f4:bd:4b: dd:b3:ce:ff:6c:d6:31:4b:0f:ba:05:e4:37:68:98: 53:05:ce:62:b4:d0:33:a3:58:81:48:d5:73:66:c2: f6:f2:8d:e7:48:8f:39:eb:84:e6:bb:1a:9c:72:df: 98:d1:7a:05:c8:8a:a6:cb:b5:23:54:5f:ba:16:b3: 3e:d9:e4:cd:21:7e:22:33:49:8d:33:03:9e:c9:f9: 6b:8a:34:59:25:f7:76:90:99:bf:6e:0b:1a:5e:b1: bd:3a:99:2c:a3:93:e3:b5:8b:79:6a:4a:15:09:c7: 62:87:c7:39:63:6e:5a:67:9d:bd:60:fd:6b:5a:39: d4:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:FE:65:87:77:AD:D5:59:75:0D:E5:F2:37:28:1C:79:58:89:7A:55 X509v3 Authority Key Identifier: keyid:06:0F:7E:77:C0:0A:CB:E0:86:8D:C0:B8:FC:A2:3D:4A:5F:07:D7:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BBA80/B98E81D605B911EA8208996EC4F9AE02/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BBA80/B98E81D605B911EA8208996EC4F9AE02/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:f2:7a:a8:1c:2f:c9:21:0c:32:54:bd:8b:8c:1c:f2:3a:5d: ae:df:53:b1:08:1e:c0:20:23:9c:2c:56:7e:4f:3c:02:5f:4c: 1e:c1:9f:e3:d6:e9:4f:dd:46:41:92:28:0a:2a:6b:66:c0:13: 62:f7:de:1b:79:b2:38:8d:1a:f1:4f:f3:6b:b5:7c:54:63:58: 83:3c:03:0d:0a:97:e5:cc:45:37:be:0c:4d:4d:70:6b:29:35: 61:45:fd:06:5e:1a:15:0f:9d:80:65:b0:3f:1a:05:ca:28:af: 17:e0:44:44:fe:20:1d:03:8b:2b:cf:bc:41:ea:77:ce:0e:4c: da:93:1f:0c:0e:45:bc:09:c1:d3:a2:a3:41:c3:e2:ad:7f:2b: 6a:3a:cf:c9:2f:1c:57:f4:8a:6f:7f:4e:3c:31:84:9b:71:bb: bc:99:13:ad:98:b8:d4:14:25:3d:1f:d2:a5:12:b4:9c:29:07: fe:98:01:36:31:25:77:4f:bc:ad:82:de:67:57:fb:d8:d2:d3: dd:05:d5:ed:8e:8d:0a:34:4d:bb:da:c1:45:d9:5e:ee:44:fc: 1a:65:d3:c9:62:1f:4b:59:c0:35:57:e3:59:84:d9:8b:09:5a: 47:ce:60:6c:a4:7e:47:e9:93:3b:95:04:bb:74:07:64:fc:52: da:ac:b8:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDR0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkJBODAxMTAvBgNVBAUTKDA2MEY3RTc3QzAwQUNCRTA4NjhEQzBCOEZDQTIzRDRB NUYwN0Q3N0EwHhcNMjUxMjMwMTc1ODA3WhcNMjYwMTA2MTc1ODA3WjAYMRYwFAYD VQQDDA02OTU0MTJhZi1jOTM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnYtvqwA9WoMtxvjiH9HNRYcrgfGXqTEdiQwWhCUCu8VyMKoYDo133p6fXx9Q FcXVob3lgx8AGgWtDnzTblfP0XFhCjaw6ApMOareCu31XN2MPzwsO+S+2fL++BR6 UV4jfWQOkcmaZmOwya/BxKc+88j3Ce4ILrjVgvV1KvfneaWCI2j0vUvds87/bNYx Sw+6BeQ3aJhTBc5itNAzo1iBSNVzZsL28o3nSI8564Tmuxqcct+Y0XoFyIqmy7Uj VF+6FrM+2eTNIX4iM0mNMwOeyflrijRZJfd2kJm/bgsaXrG9Opkso5PjtYt5akoV Ccdih8c5Y25aZ529YP1rWjnUqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFED+ZYd3 rdVZdQ3l8jcoHHlYiXpVMB8GA1UdIwQYMBaAFAYPfnfACsvgho3AuPyiPUpfB9d6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQkE4MC9COThFODFENjA1 QjkxMUVBODIwODk5NkVDNEY5QUUwMi9CZzktZDhBS3ktQ0dqY0M0X0tJOVNsOEgx M28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JnOS1kOEFLeS1DR2pjQzRfS0k5U2w4SDEzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QkE4MC9COThFODFENjA1QjkxMUVBODIwODk5NkVDNEY5QUUwMi9CZzktZDhBS3kt Q0dqY0M0X0tJOVNsOEgxM28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBg8nqoHC/JIQwyVL2LjBzyOl2u31OxCB7AICOcLFZ+TzwCX0wewZ/j 1ulP3UZBkigKKmtmwBNi994bebI4jRrxT/NrtXxUY1iDPAMNCpflzEU3vgxNTXBr KTVhRf0GXhoVD52AZbA/GgXKKK8X4ERE/iAdA4srz7xB6nfODkzakx8MDkW8CcHT oqNBw+KtfytqOs/JLxxX9Ipvf048MYSbcbu8mROtmLjUFCU9H9KlErScKQf+mAE2 MSV3T7ytgt5nV/vY0tPdBdXtjo0KNE272sFF2V7uRPwaZdPJYh9LWcA1V+NZhNmL CVpHzmBspH5H6ZM7lQS7dAdk/FLarLga -----END CERTIFICATE-----Generated at Wed Dec 31 09:35:06 2025 by rpki-client