This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft File: bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft (raw, json) Hash identifier: c+4MgZ6KtGjxoj03YpfoXTfVJcJcu3nQeLY1KgHIHdE= Subject key identifier: 0F:38:A2:FC:5D:D2:48:31:21:D5:EE:A3:11:BD:42:43:DA:0F:9E:CC Authority key identifier: 6C:19:46:97:81:6F:9B:13:0B:A5:3C:F4:BE:E6:76:01:59:4E:8C:B1 Certificate issuer: /CN=A91CCAF1/serialNumber=6C194697816F9B130BA53CF4BEE67601594E8CB1 Certificate serial: E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft Manifest number: E0 Signing time: Fri 19 Dec 2025 04:40:05 +0000 Manifest this update: Fri 19 Dec 2025 04:40:05 +0000 Manifest next update: Fri 26 Dec 2025 04:40:05 +0000 Files and hashes: 1: bBlGl4FvmxMLpTz0vuZ2AVlOjLE.crl (hash: gurcFh0sDPJVV7QgTpmae+Y8sYg492HOe6Yu5T0Wp6o=) 2: BF71D9D0F26811EFBC446868C4F9AE02.roa (hash: 2f3u95lJSNskCNREu+ioXj6oMF+zHFPqIr2DagPPIWc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.crl rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 04:40:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 226 (0xe2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CCAF1, serialNumber=6C194697816F9B130BA53CF4BEE67601594E8CB1 Validity Not Before: Dec 19 04:40:05 2025 GMT Not After : Dec 26 04:40:05 2025 GMT Subject: CN=6944d725-cb02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:6c:cd:35:f9:ce:b3:fd:18:4e:03:d8:16:c8: 1d:e6:07:bb:da:46:79:00:61:81:d9:7a:75:73:79: 31:2f:2e:50:8b:eb:e2:3a:15:18:96:8d:1f:3c:51: c1:4c:9f:f0:d9:e8:d4:8b:6b:42:ee:a9:93:be:85: 90:47:06:8d:9b:00:98:78:ba:d1:c7:fd:1d:94:ad: 86:8c:3d:88:72:3f:da:f6:09:b2:cf:10:94:eb:6e: fc:84:34:3c:0d:2b:9f:2e:23:04:f7:30:58:9f:b1: db:57:87:3d:ba:01:69:d4:20:66:b4:c3:4a:9c:fe: ea:d6:2a:22:e0:25:44:43:30:8f:a4:2c:77:ee:16: 52:87:f9:63:a1:77:a6:e7:0b:1d:03:42:9e:38:70: 13:c0:4f:51:f0:e2:d1:ce:bf:9a:2d:d4:98:0c:aa: 4e:03:6f:8e:7d:01:06:49:2e:bb:29:c8:4e:5e:e4: 32:f8:59:3d:22:6b:1c:ca:5d:95:1f:e0:5b:8a:93: a3:91:c8:ec:28:a0:cb:37:d7:09:cd:6a:91:60:d3: 8a:3e:f8:b0:d6:66:9f:e5:d9:27:c7:76:bc:59:2a: ae:8d:d2:1a:94:e0:c8:a3:8c:57:b2:6b:62:75:ee: 79:d0:7c:17:5a:a3:c2:a5:87:a7:4e:3a:6c:7d:06: 1f:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:38:A2:FC:5D:D2:48:31:21:D5:EE:A3:11:BD:42:43:DA:0F:9E:CC X509v3 Authority Key Identifier: keyid:6C:19:46:97:81:6F:9B:13:0B:A5:3C:F4:BE:E6:76:01:59:4E:8C:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:d8:88:21:6e:c7:0c:14:d6:fa:aa:30:ba:8c:95:f4:e0:12: 4a:83:52:54:d1:d9:44:11:ae:51:b2:49:8f:8f:df:c7:26:c2: bd:79:e5:a0:7d:36:14:c9:0f:45:f7:d9:4a:7c:6d:03:83:0d: e7:a9:39:25:db:f6:aa:89:3b:ee:28:cd:20:a8:1d:d8:4f:92: d2:da:7e:35:28:d1:d3:b7:28:0a:40:a8:71:56:ae:e8:7d:a5: 6f:d9:7e:90:f5:4d:e8:6b:ed:3f:f8:c4:98:7e:78:63:6b:0c: c8:47:0c:c6:77:6c:89:09:56:d1:ec:bc:62:54:37:97:5e:1d: 35:41:3e:2c:7a:c9:5d:e6:34:64:fc:83:ad:5f:58:94:d7:c7: e7:ef:63:3c:c2:f1:f1:fd:63:3b:86:32:e4:3e:8e:6e:a0:41: 0c:1f:dc:bf:63:95:c1:4e:0d:38:e5:0f:5e:bc:a0:b7:16:e6: 58:93:da:31:81:c3:c7:b1:fc:56:e7:fa:7d:b1:33:56:b0:ec: 9f:17:9c:b9:be:a0:a6:d5:22:94:b0:5f:c8:34:70:37:10:92: 35:3d:de:a1:32:f2:ae:b1:b2:8d:88:fb:63:85:f8:8b:bd:15: 68:70:f5:8f:53:75:e2:dd:3c:90:cf:77:c3:31:bf:cd:80:0f: c4:25:f1:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0NBRjExMTAvBgNVBAUTKDZDMTk0Njk3ODE2RjlCMTMwQkE1M0NGNEJFRTY3NjAx NTk0RThDQjEwHhcNMjUxMjE5MDQ0MDA1WhcNMjUxMjI2MDQ0MDA1WjAYMRYwFAYD VQQDDA02OTQ0ZDcyNS1jYjAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvGzNNfnOs/0YTgPYFsgd5ge72kZ5AGGB2Xp1c3kxLy5Qi+viOhUYlo0fPFHB TJ/w2ejUi2tC7qmTvoWQRwaNmwCYeLrRx/0dlK2GjD2Icj/a9gmyzxCU6278hDQ8 DSufLiME9zBYn7HbV4c9ugFp1CBmtMNKnP7q1ioi4CVEQzCPpCx37hZSh/ljoXem 5wsdA0KeOHATwE9R8OLRzr+aLdSYDKpOA2+OfQEGSS67KchOXuQy+Fk9Imscyl2V H+BbipOjkcjsKKDLN9cJzWqRYNOKPviw1maf5dknx3a8WSqujdIalODIo4xXsmti de550HwXWqPCpYenTjpsfQYf9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA84ovxd 0kgxIdXuoxG9QkPaD57MMB8GA1UdIwQYMBaAFGwZRpeBb5sTC6U89L7mdgFZToyx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQ0FGMS8wOUMwRDM2NjhB QUQxMUVGQkVGOTE2NkFDNEY5QUUwMi9iQmxHbDRGdm14TUxwVHowdnVaMkFWbE9q TEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JCbEdsNEZ2bXhNTHBUejB2dVoyQVZsT2pMRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Q0FGMS8wOUMwRDM2NjhBQUQxMUVGQkVGOTE2NkFDNEY5QUUwMi9iQmxHbDRGdm14 TUxwVHowdnVaMkFWbE9qTEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBA2IghbscMFNb6qjC6jJX04BJKg1JU0dlEEa5RskmPj9/HJsK9eeWg fTYUyQ9F99lKfG0Dgw3nqTkl2/aqiTvuKM0gqB3YT5LS2n41KNHTtygKQKhxVq7o faVv2X6Q9U3oa+0/+MSYfnhjawzIRwzGd2yJCVbR7LxiVDeXXh01QT4sesld5jRk /IOtX1iU18fn72M8wvHx/WM7hjLkPo5uoEEMH9y/Y5XBTg045Q9evKC3FuZYk9ox gcPHsfxW5/p9sTNWsOyfF5y5vqCm1SKUsF/INHA3EJI1Pd6hMvKusbKNiPtjhfiL vRVocPWPU3Xi3TyQz3fDMb/NgA/EJfEU -----END CERTIFICATE-----Generated at Fri Dec 19 23:53:24 2025 by rpki-client