This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.mft File: bxP1UQCfJIptmHQ2AE6FeVFWkns.mft (raw, json) Hash identifier: d0ECe4niCGM55wbyFf/VbfVU7KLGF2h3zmnRazzofCw= Subject key identifier: 23:F6:D2:46:CA:D0:10:B1:D6:26:C7:EC:5E:55:16:B0:6E:01:CF:CD Authority key identifier: 6F:13:F5:51:00:9F:24:8A:6D:98:74:36:00:4E:85:79:51:56:92:7B Certificate issuer: /CN=A91CAFC4/serialNumber=6F13F551009F248A6D987436004E85795156927B Certificate serial: 096E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bxP1UQCfJIptmHQ2AE6FeVFWkns.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.mft Manifest number: 095A Signing time: Fri 26 Dec 2025 19:33:55 +0000 Manifest this update: Fri 26 Dec 2025 19:33:55 +0000 Manifest next update: Fri 02 Jan 2026 19:33:55 +0000 Files and hashes: 1: bxP1UQCfJIptmHQ2AE6FeVFWkns.crl (hash: vJHBWnL5S3avUmpkYkiaUAs1XW/dzCJrNbC04Gh6PPQ=) 2: D2039A56AABC11EEA0370F2CC4F9AE02.roa (hash: 16iyVUl1us+C5aneeiDrqUhIKgGXREeaDcDEtZkcKLg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.crl rsync://rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bxP1UQCfJIptmHQ2AE6FeVFWkns.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 Jan 2026 19:33:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2414 (0x96e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CAFC4, serialNumber=6F13F551009F248A6D987436004E85795156927B Validity Not Before: Dec 26 19:33:55 2025 GMT Not After : Jan 2 19:33:55 2026 GMT Subject: CN=694ee323-7286 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:e7:d9:78:45:8e:4a:e0:04:1e:57:67:ae:1a: 39:bc:c3:d1:60:ad:ac:81:18:6a:4e:a1:3c:6d:ef: e6:df:eb:89:65:95:b8:1f:cc:c0:c9:6e:1f:49:e2: d6:1f:eb:d3:6f:ca:fe:3a:3f:de:9e:eb:48:83:31: e0:af:e6:53:5b:31:9f:6e:a3:d2:05:a1:48:84:63: e5:c0:44:91:75:29:1c:9b:c1:11:56:1e:dd:d3:73: af:c4:a5:dc:f6:2d:c1:5d:f6:99:18:a5:96:b2:aa: d1:35:b8:8e:b7:31:3d:51:70:3e:30:5f:ce:a7:9d: 06:9e:3d:23:57:ff:ed:c9:3a:c1:10:e5:a1:03:82: 46:f2:8f:49:cb:5f:50:25:27:43:5e:fa:6a:0c:6d: b0:e0:13:02:b1:63:27:89:a9:80:4e:65:3a:3f:de: 52:72:57:c7:0c:d4:82:f1:dd:ba:34:ee:37:eb:67: dd:0c:8d:78:ee:55:60:3b:0c:d9:09:33:67:ac:01: 28:08:e2:ca:15:bd:cb:c9:91:f5:54:dd:f0:65:ae: b0:a7:78:73:b0:b5:66:c1:d2:b0:72:49:f5:51:1a: 64:22:54:84:13:18:ce:b0:3e:a2:eb:e2:0c:74:0c: 9c:70:40:e0:0b:b4:c6:8c:59:b5:1f:05:c9:f1:f5: 16:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:F6:D2:46:CA:D0:10:B1:D6:26:C7:EC:5E:55:16:B0:6E:01:CF:CD X509v3 Authority Key Identifier: keyid:6F:13:F5:51:00:9F:24:8A:6D:98:74:36:00:4E:85:79:51:56:92:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bxP1UQCfJIptmHQ2AE6FeVFWkns.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:5a:aa:2f:2f:9c:95:51:d2:32:4e:3c:bc:e1:35:e1:f0:58: f4:cc:4c:70:1d:dc:db:9d:4f:d9:71:eb:b0:38:05:42:d2:e4: 2f:17:53:c4:bb:c6:b7:3e:8d:3a:bc:be:e8:b8:33:94:a5:25: 0f:dd:9d:c4:07:8d:5c:28:25:31:08:c8:95:8a:70:7a:b5:a1: 54:ab:e5:fb:1f:e0:94:0c:7f:9f:50:9b:10:4f:47:10:9a:d9: 0e:2c:af:2f:e7:92:36:fb:0b:ed:64:fb:63:64:4d:ec:a2:1f: 16:cf:d1:bb:05:43:e1:e9:86:a7:fc:1e:83:a1:1e:27:54:10: e3:d2:0b:c9:73:a2:ad:8b:69:15:08:25:e8:ae:02:81:ea:a4: e6:f5:d5:2c:5a:5f:da:3f:82:41:7e:bb:c3:2a:41:f9:31:b7: 6d:71:ba:09:b0:6b:5e:fb:e7:2f:12:f4:f0:1d:b6:76:af:37: db:a7:b5:97:8c:bc:fc:85:91:98:33:8d:0e:80:fc:c9:e0:69: f4:e4:87:e7:43:4d:f1:18:5a:8e:46:07:35:97:d3:73:4a:0d: 41:24:97:1c:09:71:96:4b:1e:84:81:5c:23:b6:cc:bf:46:7e: 99:63:31:50:02:ab:27:24:78:86:1d:cf:2e:81:07:94:60:38: a9:af:22:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCW4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0FGQzQxMTAvBgNVBAUTKDZGMTNGNTUxMDA5RjI0OEE2RDk4NzQzNjAwNEU4NTc5 NTE1NjkyN0IwHhcNMjUxMjI2MTkzMzU1WhcNMjYwMTAyMTkzMzU1WjAYMRYwFAYD VQQDDA02OTRlZTMyMy03Mjg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyOfZeEWOSuAEHldnrho5vMPRYK2sgRhqTqE8be/m3+uJZZW4H8zAyW4fSeLW H+vTb8r+Oj/enutIgzHgr+ZTWzGfbqPSBaFIhGPlwESRdSkcm8ERVh7d03OvxKXc 9i3BXfaZGKWWsqrRNbiOtzE9UXA+MF/Op50Gnj0jV//tyTrBEOWhA4JG8o9Jy19Q JSdDXvpqDG2w4BMCsWMniamATmU6P95SclfHDNSC8d26NO4362fdDI147lVgOwzZ CTNnrAEoCOLKFb3LyZH1VN3wZa6wp3hzsLVmwdKwckn1URpkIlSEExjOsD6i6+IM dAyccEDgC7TGjFm1HwXJ8fUWTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCP20kbK 0BCx1ibH7F5VFrBuAc/NMB8GA1UdIwQYMBaAFG8T9VEAnySKbZh0NgBOhXlRVpJ7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQUZDNC9CQzYwNjJEQ0FG OEExMUVBODU0MkQ4NUZDNEY5QUUwMi9ieFAxVVFDZkpJcHRtSFEyQUU2RmVWRldr bnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J4UDFVUUNmSklwdG1IUTJBRTZGZVZGV2tucy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QUZDNC9CQzYwNjJEQ0FGOEExMUVBODU0MkQ4NUZDNEY5QUUwMi9ieFAxVVFDZkpJ cHRtSFEyQUU2RmVWRldrbnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPWqovL5yVUdIyTjy84TXh8Fj0zExwHdzbnU/ZceuwOAVC0uQvF1PE u8a3Po06vL7ouDOUpSUP3Z3EB41cKCUxCMiVinB6taFUq+X7H+CUDH+fUJsQT0cQ mtkOLK8v55I2+wvtZPtjZE3soh8Wz9G7BUPh6Yan/B6DoR4nVBDj0gvJc6Kti2kV CCXorgKB6qTm9dUsWl/aP4JBfrvDKkH5MbdtcboJsGte++cvEvTwHbZ2rzfbp7WX jLz8hZGYM40OgPzJ4Gn05IfnQ03xGFqORgc1l9NzSg1BJJccCXGWSx6EgVwjtsy/ Rn6ZYzFQAqsnJHiGHc8ugQeUYDipryJA -----END CERTIFICATE-----Generated at Sun Dec 28 06:23:34 2025 by rpki-client