This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D795B/A88FB3E200C011EC96C2D583C4F9AE02/Bb7zt2RjVs5An8Vj8qaQeGd5Xvc.mft File: Bb7zt2RjVs5An8Vj8qaQeGd5Xvc.mft (raw, json) Hash identifier: 2xxwwJTOS/s3Y5bZvhejvMUo73DUTY2juRTfPHoSo6c= Subject key identifier: C2:A0:0A:94:62:B0:66:76:DC:58:5C:08:A5:6C:4D:1E:B1:51:FB:ED Authority key identifier: 05:BE:F3:B7:64:63:56:CE:40:9F:C5:63:F2:A6:90:78:67:79:5E:F7 Certificate issuer: /CN=A91D795B/serialNumber=05BEF3B7646356CE409FC563F2A6907867795EF7 Certificate serial: 058D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bb7zt2RjVs5An8Vj8qaQeGd5Xvc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D795B/A88FB3E200C011EC96C2D583C4F9AE02/Bb7zt2RjVs5An8Vj8qaQeGd5Xvc.mft Manifest number: 0587 Signing time: Thu 18 Dec 2025 22:37:08 +0000 Manifest this update: Thu 18 Dec 2025 22:37:07 +0000 Manifest next update: Thu 25 Dec 2025 22:37:07 +0000 Files and hashes: 1: Bb7zt2RjVs5An8Vj8qaQeGd5Xvc.crl (hash: YOkh81eFKUUa3s9gP8YbUZhzE5jfqwB3LN45Dq30CdQ=) 2: 7C05ACEE75B311EF83EC6F78C4F9AE02.roa (hash: i9keOrGgDPDdpLU7sFp0e9zDGCL/M7UVsmnKpkq7UPk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D795B/A88FB3E200C011EC96C2D583C4F9AE02/Bb7zt2RjVs5An8Vj8qaQeGd5Xvc.crl rsync://rpki.apnic.net/member_repository/A91D795B/A88FB3E200C011EC96C2D583C4F9AE02/Bb7zt2RjVs5An8Vj8qaQeGd5Xvc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bb7zt2RjVs5An8Vj8qaQeGd5Xvc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 22:37:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1421 (0x58d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D795B, serialNumber=05BEF3B7646356CE409FC563F2A6907867795EF7 Validity Not Before: Dec 18 22:37:07 2025 GMT Not After : Dec 25 22:37:07 2025 GMT Subject: CN=69448213-42b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:87:ab:e1:01:a8:fe:6c:f9:76:40:18:de:45: 69:48:8b:6b:14:31:57:c2:79:c2:59:b7:e5:b8:a1: b9:11:2c:56:84:28:55:f7:ea:bf:fe:3d:60:78:0d: b8:2f:c7:d8:a5:cc:d9:1c:70:4c:25:5f:a3:a8:ae: d0:36:14:5f:33:b1:16:61:5a:95:f9:d9:7c:26:17: c4:e6:a1:0d:48:f7:b0:44:3b:3a:c8:02:9c:bf:21: 24:a0:ac:7c:6b:8f:d5:fc:c2:b8:a4:ea:31:2e:9e: fb:af:65:79:af:69:de:86:de:27:36:7f:4f:56:17: 05:de:0a:c9:3b:17:da:db:d6:44:41:9e:47:a3:6a: b4:65:7c:2c:99:23:36:28:91:f3:13:a7:6f:a0:f9: bb:77:60:af:0c:c5:c3:46:7d:62:11:a5:0f:ab:4b: 19:1c:fc:37:36:eb:5c:e5:f8:38:f6:ed:e8:7b:89: 32:72:c6:d3:16:35:55:6c:6a:c4:7c:c5:71:d5:67: ed:51:65:38:51:ad:8d:05:d3:e4:8d:61:98:96:68: 62:67:01:0a:7e:e4:04:67:1b:2b:d5:e4:74:a1:ec: 01:92:16:a0:db:c9:38:ed:79:b8:aa:d1:cb:67:ab: e2:82:27:79:72:8b:2f:fa:70:5e:28:83:1b:ab:10: f2:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:A0:0A:94:62:B0:66:76:DC:58:5C:08:A5:6C:4D:1E:B1:51:FB:ED X509v3 Authority Key Identifier: keyid:05:BE:F3:B7:64:63:56:CE:40:9F:C5:63:F2:A6:90:78:67:79:5E:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D795B/A88FB3E200C011EC96C2D583C4F9AE02/Bb7zt2RjVs5An8Vj8qaQeGd5Xvc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bb7zt2RjVs5An8Vj8qaQeGd5Xvc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D795B/A88FB3E200C011EC96C2D583C4F9AE02/Bb7zt2RjVs5An8Vj8qaQeGd5Xvc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:f0:d0:4e:a8:03:5a:8f:44:e0:9e:e1:e3:93:bc:dc:8b:34: f5:19:86:37:29:22:4e:e0:b1:3c:df:27:62:3f:3b:84:0d:f0: 9e:15:fe:b8:2d:4c:23:69:fe:ef:d1:6c:6f:b3:5a:93:3e:d9: ea:f4:6d:e2:55:43:22:71:f6:65:b1:15:63:9f:86:a2:24:d7: ab:60:db:f7:30:75:47:b6:9d:4b:88:d6:17:08:75:33:38:cb: 41:c0:d9:b7:3c:fa:27:cd:97:10:24:59:b5:bd:4c:f0:66:3d: 93:c2:b0:85:95:03:e6:8a:7d:01:54:1a:9a:ab:ea:cb:69:bc: 41:1e:a0:70:42:04:62:e7:5c:dd:42:1a:3b:09:58:17:dc:78: 22:5b:25:4e:c2:2c:d8:52:42:2c:4a:02:de:2b:9c:49:ec:1b: 81:bc:b5:12:e6:8b:51:9c:99:94:15:c0:c7:eb:3b:b9:71:a1: 93:91:0a:a8:38:b7:0e:19:fb:e0:71:1b:8c:dd:b2:9c:a0:02: 1d:4d:c8:ba:e4:b2:35:82:77:fd:a9:4e:65:79:3e:0c:89:52: a3:67:b1:27:7d:e4:7d:d8:69:b8:d7:5c:d2:94:d0:92:6a:82: 6f:1c:a2:0b:ac:28:38:29:6c:77:32:29:a8:8c:9b:c7:b9:db: 94:6b:f3:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBY0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDc5NUIxMTAvBgNVBAUTKDA1QkVGM0I3NjQ2MzU2Q0U0MDlGQzU2M0YyQTY5MDc4 Njc3OTVFRjcwHhcNMjUxMjE4MjIzNzA3WhcNMjUxMjI1MjIzNzA3WjAYMRYwFAYD VQQDDA02OTQ0ODIxMy00MmI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuYer4QGo/mz5dkAY3kVpSItrFDFXwnnCWbfluKG5ESxWhChV9+q//j1geA24 L8fYpczZHHBMJV+jqK7QNhRfM7EWYVqV+dl8JhfE5qENSPewRDs6yAKcvyEkoKx8 a4/V/MK4pOoxLp77r2V5r2neht4nNn9PVhcF3grJOxfa29ZEQZ5Ho2q0ZXwsmSM2 KJHzE6dvoPm7d2CvDMXDRn1iEaUPq0sZHPw3Nutc5fg49u3oe4kycsbTFjVVbGrE fMVx1WftUWU4Ua2NBdPkjWGYlmhiZwEKfuQEZxsr1eR0oewBkhag28k47Xm4qtHL Z6vigid5cosv+nBeKIMbqxDyAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMKgCpRi sGZ23FhcCKVsTR6xUfvtMB8GA1UdIwQYMBaAFAW+87dkY1bOQJ/FY/KmkHhneV73 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENzk1Qi9BODhGQjNFMjAw QzAxMUVDOTZDMkQ1ODNDNEY5QUUwMi9CYjd6dDJSalZzNUFuOFZqOHFhUWVHZDVY dmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JiN3p0MlJqVnM1QW44Vmo4cWFRZUdkNVh2Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Nzk1Qi9BODhGQjNFMjAwQzAxMUVDOTZDMkQ1ODNDNEY5QUUwMi9CYjd6dDJSalZz NUFuOFZqOHFhUWVHZDVYdmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAR8NBOqANaj0TgnuHjk7zcizT1GYY3KSJO4LE83ydiPzuEDfCeFf64 LUwjaf7v0Wxvs1qTPtnq9G3iVUMicfZlsRVjn4aiJNerYNv3MHVHtp1LiNYXCHUz OMtBwNm3PPonzZcQJFm1vUzwZj2TwrCFlQPmin0BVBqaq+rLabxBHqBwQgRi51zd Qho7CVgX3HgiWyVOwizYUkIsSgLeK5xJ7BuBvLUS5otRnJmUFcDH6zu5caGTkQqo OLcOGfvgcRuM3bKcoAIdTci65LI1gnf9qU5leT4MiVKjZ7EnfeR92Gm411zSlNCS aoJvHKILrCg4KWx3MimojJvHuduUa/M1 -----END CERTIFICATE-----Generated at Fri Dec 19 23:54:42 2025 by rpki-client