This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C40D1/CC7830B0C30911E8900E5F21C4F9AE02/bLMNwI7ylzDp3wScVPOVgquFvpQ.mft File: bLMNwI7ylzDp3wScVPOVgquFvpQ.mft (raw, json) Hash identifier: DLgHkKmdg6Qid3+3HUvfvbe9zfkv6hm2vPTRP7J4i00= Subject key identifier: AF:3A:D7:04:18:B9:9F:B2:B5:65:35:2F:8B:CA:5E:5D:61:CF:DD:FA Authority key identifier: 6C:B3:0D:C0:8E:F2:97:30:E9:DF:04:9C:54:F3:95:82:AB:85:BE:94 Certificate issuer: /CN=A91C40D1/serialNumber=6CB30DC08EF29730E9DF049C54F39582AB85BE94 Certificate serial: 1326 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bLMNwI7ylzDp3wScVPOVgquFvpQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C40D1/CC7830B0C30911E8900E5F21C4F9AE02/bLMNwI7ylzDp3wScVPOVgquFvpQ.mft Manifest number: 131A Signing time: Thu 18 Dec 2025 16:53:09 +0000 Manifest this update: Thu 18 Dec 2025 16:53:09 +0000 Manifest next update: Thu 25 Dec 2025 16:53:09 +0000 Files and hashes: 1: bLMNwI7ylzDp3wScVPOVgquFvpQ.crl (hash: M5RzqEBTFr1kw9oOUOhVEDw0oGM7ZLo+uR2bb7OMkMA=) 2: 18272628C30B11E8A6851824C4F9AE02.roa (hash: zpfEObk6bGVxgP9cE546XnlUvOzTcNHctZB0k7/qSd0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C40D1/CC7830B0C30911E8900E5F21C4F9AE02/bLMNwI7ylzDp3wScVPOVgquFvpQ.crl rsync://rpki.apnic.net/member_repository/A91C40D1/CC7830B0C30911E8900E5F21C4F9AE02/bLMNwI7ylzDp3wScVPOVgquFvpQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bLMNwI7ylzDp3wScVPOVgquFvpQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 16:53:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4902 (0x1326) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C40D1, serialNumber=6CB30DC08EF29730E9DF049C54F39582AB85BE94 Validity Not Before: Dec 18 16:53:09 2025 GMT Not After : Dec 25 16:53:09 2025 GMT Subject: CN=69443175-d803 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:84:a8:84:7a:b9:e1:33:d4:c8:f9:df:ae:f4: 91:33:57:3c:b4:1d:b3:c7:48:4b:e5:da:24:31:54: e2:10:94:16:b0:18:2e:f7:ab:cb:fd:c5:6e:c5:66: 8b:87:e6:b8:ea:6f:fe:47:42:e6:8a:d6:83:10:3f: e4:e8:19:f5:05:08:df:3b:c9:a3:1e:81:9e:a3:3f: e4:aa:f8:a3:b1:94:3b:ce:bd:6f:4c:a1:7b:45:d5: af:d0:79:37:4a:42:c3:3f:9f:7e:b7:97:8b:52:b5: e8:4b:b9:29:b8:1e:cb:c8:99:0c:4d:01:a6:e1:df: 79:29:82:78:a6:d4:4f:0c:43:c3:4b:72:d2:cd:05: 11:35:68:ae:7e:32:5b:11:8a:9d:a3:49:7c:d9:29: 5e:ed:9f:e2:6d:0a:9d:fe:d7:7e:8b:3c:d9:74:ca: 17:2c:f4:67:5b:68:e8:04:e6:1a:4d:2a:2a:86:fc: 3d:0f:b2:3d:eb:5b:58:b3:10:2a:c8:a4:7c:b9:93: 48:66:37:c0:2f:76:9b:34:b6:46:2e:8e:90:23:58: 39:2a:b6:08:22:53:97:67:48:0f:95:21:38:20:60: 90:01:0a:cb:2f:39:2b:c3:e3:e0:79:34:97:cc:d3: f7:bf:00:e4:53:7a:bf:f5:85:27:2c:28:e9:37:a2: 4d:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:3A:D7:04:18:B9:9F:B2:B5:65:35:2F:8B:CA:5E:5D:61:CF:DD:FA X509v3 Authority Key Identifier: keyid:6C:B3:0D:C0:8E:F2:97:30:E9:DF:04:9C:54:F3:95:82:AB:85:BE:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C40D1/CC7830B0C30911E8900E5F21C4F9AE02/bLMNwI7ylzDp3wScVPOVgquFvpQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bLMNwI7ylzDp3wScVPOVgquFvpQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C40D1/CC7830B0C30911E8900E5F21C4F9AE02/bLMNwI7ylzDp3wScVPOVgquFvpQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ec:f6:fc:fe:e4:0b:fc:cb:5d:6d:f1:8c:ab:ce:10:3c:89:15: 6c:20:01:18:3d:13:92:93:f6:58:ad:1e:14:b5:f7:d1:dd:25: 45:13:b9:34:91:9b:47:25:e9:90:cb:e4:f1:0b:5b:39:29:ac: 8f:5d:e1:b4:f6:05:f3:57:e6:56:d0:b2:de:00:af:15:e5:c9: a0:bd:42:dc:76:26:49:b3:9f:b2:30:cb:bb:f3:ec:08:22:df: 87:05:0b:ca:12:10:01:2a:e4:83:7f:f3:0a:94:d8:c9:22:80: ba:e2:f9:46:3c:8e:0e:89:00:68:af:da:e4:fe:92:c9:e3:0e: 94:fa:6a:85:a3:f3:d3:d5:de:cc:f7:50:a9:8f:2c:b4:70:05: 49:1e:0d:11:ec:68:71:e1:ac:76:bd:ee:75:ef:7b:3f:2a:7f: e7:11:c1:90:15:f1:33:58:99:15:45:8c:5c:9f:51:20:c7:aa: af:a8:cb:1a:83:0c:d9:bf:cb:9f:28:17:4d:db:d0:39:3f:5e: 05:80:96:3c:d5:3f:b8:71:11:ca:b0:a7:eb:ba:e2:8e:f1:84: c6:ac:3e:6e:7b:e6:9c:0a:f3:f9:a5:eb:80:3f:41:aa:92:fd: 59:ee:c1:56:4f:d1:e7:ae:f4:28:3f:a4:4d:fb:d6:f6:f4:61: 2a:c9:06:10 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEyYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzQwRDExMTAvBgNVBAUTKDZDQjMwREMwOEVGMjk3MzBFOURGMDQ5QzU0RjM5NTgy QUI4NUJFOTQwHhcNMjUxMjE4MTY1MzA5WhcNMjUxMjI1MTY1MzA5WjAYMRYwFAYD VQQDDA02OTQ0MzE3NS1kODAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsoSohHq54TPUyPnfrvSRM1c8tB2zx0hL5dokMVTiEJQWsBgu96vL/cVuxWaL h+a46m/+R0LmitaDED/k6Bn1BQjfO8mjHoGeoz/kqvijsZQ7zr1vTKF7RdWv0Hk3 SkLDP59+t5eLUrXoS7kpuB7LyJkMTQGm4d95KYJ4ptRPDEPDS3LSzQURNWiufjJb EYqdo0l82Sle7Z/ibQqd/td+izzZdMoXLPRnW2joBOYaTSoqhvw9D7I961tYsxAq yKR8uZNIZjfAL3abNLZGLo6QI1g5KrYIIlOXZ0gPlSE4IGCQAQrLLzkrw+PgeTSX zNP3vwDkU3q/9YUnLCjpN6JNZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK861wQY uZ+ytWU1L4vKXl1hz936MB8GA1UdIwQYMBaAFGyzDcCO8pcw6d8EnFTzlYKrhb6U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNDBEMS9DQzc4MzBCMEMz MDkxMUU4OTAwRTVGMjFDNEY5QUUwMi9iTE1Od0k3eWx6RHAzd1NjVlBPVmdxdUZ2 cFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JMTU53STd5bHpEcDN3U2NWUE9WZ3F1RnZwUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NDBEMS9DQzc4MzBCMEMzMDkxMUU4OTAwRTVGMjFDNEY5QUUwMi9iTE1Od0k3eWx6 RHAzd1NjVlBPVmdxdUZ2cFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDs9vz+5Av8y11t8YyrzhA8iRVsIAEYPROSk/ZYrR4UtffR3SVFE7k0 kZtHJemQy+TxC1s5KayPXeG09gXzV+ZW0LLeAK8V5cmgvULcdiZJs5+yMMu78+wI It+HBQvKEhABKuSDf/MKlNjJIoC64vlGPI4OiQBor9rk/pLJ4w6U+mqFo/PT1d7M 91Cpjyy0cAVJHg0R7Ghx4ax2ve5173s/Kn/nEcGQFfEzWJkVRYxcn1Egx6qvqMsa gwzZv8ufKBdN29A5P14FgJY81T+4cRHKsKfruuKO8YTGrD5ue+acCvP5peuAP0Gq kv1Z7sFWT9HnrvQoP6RN+9b29GEqyQYQ -----END CERTIFICATE-----Generated at Fri Dec 19 19:04:28 2025 by rpki-client