This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5BA2/14FEC2EC579311ECBA2FB048C4F9AE02/bKwrcgiF6COCTBln7fw2Psh0do0.mft File: bKwrcgiF6COCTBln7fw2Psh0do0.mft (raw, json) Hash identifier: 5vCX3Tp0Vhlr4bKKQFCU3SSrNU0TBMNCWL6p5k1RgCA= Subject key identifier: E5:65:C5:1A:6D:A3:2D:7F:0A:5E:05:7D:A7:40:48:CC:B6:4B:37:D8 Authority key identifier: 6C:AC:2B:72:08:85:E8:23:82:4C:19:67:ED:FC:36:3E:C8:74:76:8D Certificate issuer: /CN=A91D5BA2/serialNumber=6CAC2B720885E823824C1967EDFC363EC874768D Certificate serial: 04B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKwrcgiF6COCTBln7fw2Psh0do0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5BA2/14FEC2EC579311ECBA2FB048C4F9AE02/bKwrcgiF6COCTBln7fw2Psh0do0.mft Manifest number: 04AF Signing time: Thu 18 Dec 2025 23:16:13 +0000 Manifest this update: Thu 18 Dec 2025 23:16:12 +0000 Manifest next update: Thu 25 Dec 2025 23:16:12 +0000 Files and hashes: 1: bKwrcgiF6COCTBln7fw2Psh0do0.crl (hash: tXXqoggV7ppASPEfMlpMcODE+g8HSh0G2Z/t0AOyCLI=) 2: AA5ADA7C579511ECA9BDE14AC4F9AE02.roa (hash: /NgK3u5jqw1d//qoTXrGcCnkIoepRe7WzeoPLGdtL+k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5BA2/14FEC2EC579311ECBA2FB048C4F9AE02/bKwrcgiF6COCTBln7fw2Psh0do0.crl rsync://rpki.apnic.net/member_repository/A91D5BA2/14FEC2EC579311ECBA2FB048C4F9AE02/bKwrcgiF6COCTBln7fw2Psh0do0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKwrcgiF6COCTBln7fw2Psh0do0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 23:16:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1204 (0x4b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5BA2, serialNumber=6CAC2B720885E823824C1967EDFC363EC874768D Validity Not Before: Dec 18 23:16:12 2025 GMT Not After : Dec 25 23:16:12 2025 GMT Subject: CN=69448b3d-349f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:5a:53:3b:e9:1b:2a:d6:a2:54:26:f4:97:51: 4d:55:b0:1f:c7:a0:bb:f9:3d:30:ba:0d:11:31:5d: c1:5d:d7:7b:ee:78:58:96:5c:76:db:1c:34:be:d1: f8:1a:1d:9b:49:bf:42:b3:d0:e9:cd:77:72:50:3a: 8a:55:ab:7d:8e:7e:1f:9d:d8:8a:a2:01:48:94:f0: 5f:0c:4b:d6:e6:35:f7:b3:f1:5a:68:74:54:8d:30: c4:be:3f:32:17:32:03:aa:44:29:a0:be:3f:5d:13: 3c:c3:f0:f5:79:7c:2c:6d:61:cc:40:bf:50:06:1c: 1a:e7:b5:41:bd:1d:47:c5:c9:e2:a2:45:de:b3:66: ab:ca:e1:da:e8:ab:83:c3:a4:35:8a:1f:98:12:d7: b2:7f:54:c0:79:f9:8b:1b:a1:f8:bd:1a:65:0c:93: e4:35:00:8a:51:f8:79:3e:57:af:58:01:4c:5f:de: 5e:8e:bd:96:69:e6:9c:c5:d2:43:b7:e3:a0:50:6a: 08:26:d1:6d:9d:41:95:ed:ce:eb:e6:fc:03:63:0b: f0:a2:7d:15:e6:54:0b:92:28:f8:f9:31:dd:19:f5: a3:c9:8b:27:41:94:34:bc:ca:8c:c6:ba:52:6b:5c: 2e:fb:84:78:06:5d:8d:9f:53:5b:c6:41:07:57:d7: b0:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:65:C5:1A:6D:A3:2D:7F:0A:5E:05:7D:A7:40:48:CC:B6:4B:37:D8 X509v3 Authority Key Identifier: keyid:6C:AC:2B:72:08:85:E8:23:82:4C:19:67:ED:FC:36:3E:C8:74:76:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5BA2/14FEC2EC579311ECBA2FB048C4F9AE02/bKwrcgiF6COCTBln7fw2Psh0do0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKwrcgiF6COCTBln7fw2Psh0do0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5BA2/14FEC2EC579311ECBA2FB048C4F9AE02/bKwrcgiF6COCTBln7fw2Psh0do0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:d9:1a:89:d4:e0:39:46:12:4c:e2:92:66:68:5c:5b:45:29: dd:05:fc:6c:34:3e:44:a0:94:12:34:b0:15:01:8d:54:9b:fa: 5e:8a:cf:19:4d:46:2c:f7:ed:98:b0:a8:bf:da:bd:ae:d2:1f: c5:6d:9d:e2:cd:26:7e:74:48:d6:6d:4d:0a:9c:ba:94:55:29: a4:38:7c:23:73:47:e6:68:85:ba:61:c7:99:00:fb:b4:05:aa: ba:f1:45:a2:96:9b:e3:45:f9:1d:53:8e:05:57:19:1e:3a:b9: db:15:bf:40:75:2f:8f:dc:47:0c:77:e1:63:11:d1:2a:f3:ab: cd:69:85:44:d2:34:6a:6f:59:2e:dd:18:48:8b:4a:4b:37:97: 5f:81:cb:bf:3c:a6:dc:41:5a:59:13:82:77:f4:5c:a5:be:e3: 9f:6f:0e:68:b2:67:55:66:81:47:da:c4:ac:67:ec:9b:85:2a: 96:81:31:7b:e5:91:8c:bd:26:b7:e9:7b:12:1d:23:f6:f1:ed: 64:8c:d7:bc:52:85:d6:d7:8f:ac:c0:8e:11:b6:e2:ca:66:56: 56:41:3b:33:f1:5a:ed:b9:cd:76:6d:58:e8:bd:98:bd:0e:4d: cc:3d:7f:89:95:3a:9e:24:06:ae:b8:11:3b:b4:69:bf:64:11: 41:82:39:93 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBLQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDVCQTIxMTAvBgNVBAUTKDZDQUMyQjcyMDg4NUU4MjM4MjRDMTk2N0VERkMzNjNF Qzg3NDc2OEQwHhcNMjUxMjE4MjMxNjEyWhcNMjUxMjI1MjMxNjEyWjAYMRYwFAYD VQQDDA02OTQ0OGIzZC0zNDlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAylpTO+kbKtaiVCb0l1FNVbAfx6C7+T0wug0RMV3BXdd77nhYllx22xw0vtH4 Gh2bSb9Cs9DpzXdyUDqKVat9jn4fndiKogFIlPBfDEvW5jX3s/FaaHRUjTDEvj8y FzIDqkQpoL4/XRM8w/D1eXwsbWHMQL9QBhwa57VBvR1HxcniokXes2aryuHa6KuD w6Q1ih+YEteyf1TAefmLG6H4vRplDJPkNQCKUfh5PlevWAFMX95ejr2WaeacxdJD t+OgUGoIJtFtnUGV7c7r5vwDYwvwon0V5lQLkij4+THdGfWjyYsnQZQ0vMqMxrpS a1wu+4R4Bl2Nn1NbxkEHV9ewXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOVlxRpt oy1/Cl4FfadASMy2SzfYMB8GA1UdIwQYMBaAFGysK3IIhegjgkwZZ+38Nj7IdHaN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENUJBMi8xNEZFQzJFQzU3 OTMxMUVDQkEyRkIwNDhDNEY5QUUwMi9iS3dyY2dpRjZDT0NUQmxuN2Z3MlBzaDBk bzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JLd3JjZ2lGNkNPQ1RCbG43ZncyUHNoMGRvMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NUJBMi8xNEZFQzJFQzU3OTMxMUVDQkEyRkIwNDhDNEY5QUUwMi9iS3dyY2dpRjZD T0NUQmxuN2Z3MlBzaDBkbzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAy2RqJ1OA5RhJM4pJmaFxbRSndBfxsND5EoJQSNLAVAY1Um/peis8Z TUYs9+2YsKi/2r2u0h/FbZ3izSZ+dEjWbU0KnLqUVSmkOHwjc0fmaIW6YceZAPu0 Baq68UWilpvjRfkdU44FVxkeOrnbFb9AdS+P3EcMd+FjEdEq86vNaYVE0jRqb1ku 3RhIi0pLN5dfgcu/PKbcQVpZE4J39FylvuOfbw5osmdVZoFH2sSsZ+ybhSqWgTF7 5ZGMvSa36XsSHSP28e1kjNe8UoXW14+swI4RtuLKZlZWQTsz8Vrtuc12bVjovZi9 Dk3MPX+JlTqeJAauuBE7tGm/ZBFBgjmT -----END CERTIFICATE-----Generated at Fri Dec 19 20:25:27 2025 by rpki-client