This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.mft File: bb1cTQEh_LMY54xFG29WcyCYYAI.mft (raw, json) Hash identifier: EuoZ15FB3eCCE6ZJKSKBz7PNmwmyLCDx2OKe2KYGMds= Subject key identifier: 56:C2:DB:F8:DC:B7:AA:2B:17:FA:52:C0:DE:02:D5:1B:77:65:79:4B Authority key identifier: 6D:BD:5C:4D:01:21:FC:B3:18:E7:8C:45:1B:6F:56:73:20:98:60:02 Certificate issuer: /CN=A91D1216/serialNumber=6DBD5C4D0121FCB318E78C451B6F567320986002 Certificate serial: 042E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bb1cTQEh_LMY54xFG29WcyCYYAI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.mft Manifest number: 03F6 Signing time: Fri 26 Dec 2025 23:42:21 +0000 Manifest this update: Fri 26 Dec 2025 23:42:20 +0000 Manifest next update: Fri 02 Jan 2026 23:42:20 +0000 Files and hashes: 1: bb1cTQEh_LMY54xFG29WcyCYYAI.crl (hash: gRddL3DOA6WQU8mf5An3/Rrw8vBjhY+pumBwrIwvmGQ=) 2: 9B0C244C73B611EEB18A0385C4F9AE02.roa (hash: 2Y9sjJKHecukVuvVbaq82FcEcKk1PVtU2APTvtdHmf4=) 3: 943D15902D1011EFBBEBA67BC4F9AE02.roa (hash: bpDflyeDea4iA77MAsR1yqXpb72az5BwoapOKhJMn4E=) 4: AEE9F9E6326011ED9031BC4FC4F9AE02.roa (hash: o0bGkeKtz3bzG/bWSV5R/zZyXNKnvRhJi3bUD0NjFsE=) 5: AD17704445F611EE97DF317CC4F9AE02.roa (hash: Clfd7tFcfwoObvQimW3finauT91uWKGe0cqtaB1OpHA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.crl rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bb1cTQEh_LMY54xFG29WcyCYYAI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 Jan 2026 23:42:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1070 (0x42e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1216, serialNumber=6DBD5C4D0121FCB318E78C451B6F567320986002 Validity Not Before: Dec 26 23:42:20 2025 GMT Not After : Jan 2 23:42:20 2026 GMT Subject: CN=694f1d5d-8b5e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:0d:c4:54:32:b1:2a:2e:d8:99:e9:4b:d2:27: 72:06:5f:b5:45:c7:4b:25:a2:05:e3:90:c4:bd:f4: ac:8b:2d:3a:e0:90:63:49:ed:54:b1:2d:c1:38:e1: a3:1b:84:b2:66:71:1f:86:25:41:f1:26:49:91:6d: 9d:11:76:1e:04:e9:ab:67:0d:64:6c:9d:a8:ba:22: 27:9c:4d:fd:35:63:63:e3:6e:4f:df:b3:6c:8b:75: 79:fa:c8:3a:84:91:b6:87:11:27:4c:35:db:69:51: 62:cb:2d:8b:8a:85:64:9b:9b:8d:06:d6:0f:5d:cd: 95:61:41:72:a7:24:e2:7d:1b:c9:03:38:fc:72:de: b9:c1:2e:e7:4d:b9:c5:03:ab:cf:e0:1a:0d:63:f0: 77:ae:9c:e1:c6:b9:fc:4a:23:1b:85:45:e7:4c:49: e2:ac:c7:9e:54:bc:6a:de:b8:15:b6:10:98:b1:0e: 90:44:bd:3f:8a:d2:d1:eb:e1:c6:83:d9:33:ff:e7: c9:2b:ca:88:db:f6:6d:56:99:66:6c:6f:04:63:f8: 40:91:42:d6:0a:37:61:81:cd:b5:3b:bc:d2:1b:0a: 3a:5c:9a:40:d9:79:be:98:64:31:63:18:d0:cf:7d: 43:ab:83:3e:74:f6:38:5b:94:4e:b0:f8:02:35:eb: 4c:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:C2:DB:F8:DC:B7:AA:2B:17:FA:52:C0:DE:02:D5:1B:77:65:79:4B X509v3 Authority Key Identifier: keyid:6D:BD:5C:4D:01:21:FC:B3:18:E7:8C:45:1B:6F:56:73:20:98:60:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bb1cTQEh_LMY54xFG29WcyCYYAI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:4b:49:cf:93:b4:3b:28:d4:08:f5:f2:5c:8b:fa:1c:8a:0d: 66:fe:c0:d9:7c:5c:bf:4d:84:bb:ba:1e:0d:f2:c6:64:6b:dd: 6a:06:92:30:7e:99:4e:45:38:3c:0a:8b:d6:3e:f4:36:a2:a8: 52:a1:d7:1a:7a:15:00:19:cc:61:85:d0:0c:e1:10:2f:32:26: e0:e3:09:49:be:00:c8:78:8c:f0:02:d0:3e:2c:75:15:c5:13: 9a:49:30:f2:de:6b:1c:93:3a:d1:38:43:fd:58:70:89:94:00: fd:4d:40:53:48:d7:ba:15:94:b5:f5:9a:aa:a8:e1:37:48:57: bf:3c:b8:01:fa:50:1e:59:6d:0a:e9:a6:0d:9c:9c:13:0c:a6: 32:79:45:0d:ca:a3:70:8f:9f:64:58:01:fe:25:13:76:a1:90: 24:db:d8:68:0a:95:1d:20:3f:5f:8d:42:7f:70:a3:32:dd:68: c0:4c:ef:fe:40:82:2a:50:9d:48:10:20:1c:0b:5c:e4:ea:34: 3b:c8:26:f8:97:cf:5b:d8:52:b8:ef:fb:6f:cb:8d:09:c7:fa: 28:8a:38:16:fe:bd:60:cf:59:84:18:6b:44:2f:53:0a:73:b0: 1a:9f:f7:0c:fe:2b:a0:ad:94:00:21:2d:40:27:79:c4:02:c1: 66:b4:46:ec -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBC4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDEyMTYxMTAvBgNVBAUTKDZEQkQ1QzREMDEyMUZDQjMxOEU3OEM0NTFCNkY1Njcz MjA5ODYwMDIwHhcNMjUxMjI2MjM0MjIwWhcNMjYwMTAyMjM0MjIwWjAYMRYwFAYD VQQDDA02OTRmMWQ1ZC04YjVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApA3EVDKxKi7YmelL0idyBl+1RcdLJaIF45DEvfSsiy064JBjSe1UsS3BOOGj G4SyZnEfhiVB8SZJkW2dEXYeBOmrZw1kbJ2ouiInnE39NWNj425P37Nsi3V5+sg6 hJG2hxEnTDXbaVFiyy2LioVkm5uNBtYPXc2VYUFypyTifRvJAzj8ct65wS7nTbnF A6vP4BoNY/B3rpzhxrn8SiMbhUXnTEnirMeeVLxq3rgVthCYsQ6QRL0/itLR6+HG g9kz/+fJK8qI2/ZtVplmbG8EY/hAkULWCjdhgc21O7zSGwo6XJpA2Xm+mGQxYxjQ z31Dq4M+dPY4W5ROsPgCNetMZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFbC2/jc t6orF/pSwN4C1Rt3ZXlLMB8GA1UdIwQYMBaAFG29XE0BIfyzGOeMRRtvVnMgmGAC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTIxNi9EQzc4MjY4Q0I5 NEIxMUVDODMyQjc0MTlDNEY5QUUwMi9iYjFjVFFFaF9MTVk1NHhGRzI5V2N5Q1lZ QUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JiMWNUUUVoX0xNWTU0eEZHMjlXY3lDWVlBSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTIxNi9EQzc4MjY4Q0I5NEIxMUVDODMyQjc0MTlDNEY5QUUwMi9iYjFjVFFFaF9M TVk1NHhGRzI5V2N5Q1lZQUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAIS0nPk7Q7KNQI9fJci/ocig1m/sDZfFy/TYS7uh4N8sZka91qBpIw fplORTg8CovWPvQ2oqhSodcaehUAGcxhhdAM4RAvMibg4wlJvgDIeIzwAtA+LHUV xROaSTDy3msckzrROEP9WHCJlAD9TUBTSNe6FZS19ZqqqOE3SFe/PLgB+lAeWW0K 6aYNnJwTDKYyeUUNyqNwj59kWAH+JRN2oZAk29hoCpUdID9fjUJ/cKMy3WjATO/+ QIIqUJ1IECAcC1zk6jQ7yCb4l89b2FK47/tvy40Jx/ooijgW/r1gz1mEGGtEL1MK c7Aan/cM/iugrZQAIS1AJ3nEAsFmtEbs -----END CERTIFICATE-----Generated at Mon Dec 29 00:45:02 2025 by rpki-client