This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2EFF/A314847C484911F0BF070370C4F9AE02/BstI9X1UOpeC2KfJbaTh3tvDwws.mft File: BstI9X1UOpeC2KfJbaTh3tvDwws.mft (raw, json) Hash identifier: +hUtgFgWrB+1UOT6RcRfSES/BXJQ0aYXd15WTEP7Eow= Subject key identifier: F7:06:2B:BE:E3:27:2B:71:16:87:C6:7E:3A:B5:78:9C:59:F0:D9:E8 Authority key identifier: 06:CB:48:F5:7D:54:3A:97:82:D8:A7:C9:6D:A4:E1:DE:DB:C3:C3:0B Certificate issuer: /CN=A91E2EFF/serialNumber=06CB48F57D543A9782D8A7C96DA4E1DEDBC3C30B Certificate serial: 63 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BstI9X1UOpeC2KfJbaTh3tvDwws.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2EFF/A314847C484911F0BF070370C4F9AE02/BstI9X1UOpeC2KfJbaTh3tvDwws.mft Manifest number: 62 Signing time: Sun 21 Dec 2025 06:05:22 +0000 Manifest this update: Sun 21 Dec 2025 06:05:21 +0000 Manifest next update: Sun 28 Dec 2025 06:05:21 +0000 Files and hashes: 1: BstI9X1UOpeC2KfJbaTh3tvDwws.crl (hash: Q/Qs1Zs5zRGwuNLE1iMDPOOsKwSUshCeY7Lcp7dkR7k=) 2: 3698C9BA484A11F0B96B9D10C4F9AE02.roa (hash: 3/VlviI5lXmsXT9HHGTTjCEqy33hQJaRKWakW7gYvqc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2EFF/A314847C484911F0BF070370C4F9AE02/BstI9X1UOpeC2KfJbaTh3tvDwws.crl rsync://rpki.apnic.net/member_repository/A91E2EFF/A314847C484911F0BF070370C4F9AE02/BstI9X1UOpeC2KfJbaTh3tvDwws.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BstI9X1UOpeC2KfJbaTh3tvDwws.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 06:05:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 99 (0x63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2EFF, serialNumber=06CB48F57D543A9782D8A7C96DA4E1DEDBC3C30B Validity Not Before: Dec 21 06:05:21 2025 GMT Not After : Dec 28 06:05:21 2025 GMT Subject: CN=69478e22-0420 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:e4:ee:86:36:24:1d:e8:1b:bc:8e:d9:02:11: 92:e1:e3:fa:a3:19:c6:6d:b5:26:75:81:19:e9:30: 8d:46:18:e5:c1:e3:c1:f1:f5:f8:1b:aa:dc:1f:a9: f3:f3:03:9b:13:aa:ce:cb:af:eb:74:a8:24:23:79: fc:e9:e8:9e:b1:d4:5c:9c:06:ac:7d:37:89:7e:89: 92:14:6b:f0:0f:76:47:df:4b:3e:c3:be:f4:8b:c8: f9:c5:5c:0b:86:d4:2d:b6:f5:6d:27:65:65:e6:77: 89:b8:95:89:c7:09:2b:65:4a:ec:09:02:20:cf:a3: 17:d8:96:a2:fb:8f:9b:76:09:c0:14:e3:ee:87:f5: c6:e6:b4:a7:c5:90:8f:58:cd:de:eb:a4:96:02:cd: 39:ea:a9:05:0e:f6:98:9f:ed:24:a0:a5:5c:8f:28: 04:48:16:b4:cd:ad:ec:0a:67:53:dc:67:66:20:72: 4d:c8:cc:f8:01:da:2e:76:c9:72:14:07:54:aa:82: 14:69:ff:2c:c7:98:35:6e:4f:5a:39:40:e9:5b:db: 1a:ae:c3:cb:2c:ab:86:92:00:e9:24:98:d3:5b:98: 0e:47:b1:4e:10:da:00:ed:01:ae:e2:5e:4d:0e:ba: cf:a9:45:e7:a5:a7:30:6e:1e:17:a3:4f:57:9c:9a: 76:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:06:2B:BE:E3:27:2B:71:16:87:C6:7E:3A:B5:78:9C:59:F0:D9:E8 X509v3 Authority Key Identifier: keyid:06:CB:48:F5:7D:54:3A:97:82:D8:A7:C9:6D:A4:E1:DE:DB:C3:C3:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2EFF/A314847C484911F0BF070370C4F9AE02/BstI9X1UOpeC2KfJbaTh3tvDwws.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BstI9X1UOpeC2KfJbaTh3tvDwws.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2EFF/A314847C484911F0BF070370C4F9AE02/BstI9X1UOpeC2KfJbaTh3tvDwws.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:43:81:d0:f0:a1:40:42:17:78:a9:02:8b:ac:59:fe:bd:51: 76:28:d0:ff:a7:63:17:4b:c5:d0:07:b9:91:54:cc:05:bf:e2: 0f:c0:61:5a:e2:1b:de:97:fb:d5:8b:89:84:33:71:c8:07:83: 9e:dc:e7:43:50:75:22:af:8f:e4:61:2b:33:d6:54:e5:3c:04: 69:87:f3:cc:1f:43:06:8a:85:94:d0:31:43:dc:a5:fb:a0:d8: ab:21:ed:c9:de:72:5c:54:ac:7b:aa:62:bc:f3:45:42:8c:62: 98:69:d4:21:3f:30:96:6a:16:a2:47:14:b5:80:c4:94:8b:70: f6:79:48:80:2c:5a:12:3c:5d:e2:c5:59:7a:77:5e:f9:20:6c: 57:16:6a:bb:b5:e3:ab:64:08:ee:5e:a1:93:4f:8f:05:a6:72: 55:f4:d8:37:83:f8:0b:34:ff:6f:e9:3d:28:1f:c3:bd:17:32: b7:eb:e3:ee:38:01:3c:a6:c8:09:c7:0d:15:bc:48:fe:04:8e: 71:1f:bf:2c:a7:9a:3b:ea:a4:e1:bb:53:2c:19:3e:ad:25:d7: 97:1f:a4:d2:f8:0d:0f:b0:d0:21:6d:75:74:f9:49:34:b8:51: 8b:1b:e6:4f:fc:26:2a:a1:f7:e2:bc:43:d1:70:a3:60:a7:51: 20:2a:b7:e3 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF MkVGRjExMC8GA1UEBRMoMDZDQjQ4RjU3RDU0M0E5NzgyRDhBN0M5NkRBNEUxREVE QkMzQzMwQjAeFw0yNTEyMjEwNjA1MjFaFw0yNTEyMjgwNjA1MjFaMBgxFjAUBgNV BAMMDTY5NDc4ZTIyLTA0MjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDu5O6GNiQd6Bu8jtkCEZLh4/qjGcZttSZ1gRnpMI1GGOXB48Hx9fgbqtwfqfPz A5sTqs7Lr+t0qCQjefzp6J6x1FycBqx9N4l+iZIUa/APdkffSz7DvvSLyPnFXAuG 1C229W0nZWXmd4m4lYnHCStlSuwJAiDPoxfYlqL7j5t2CcAU4+6H9cbmtKfFkI9Y zd7rpJYCzTnqqQUO9pif7SSgpVyPKARIFrTNrewKZ1PcZ2Ygck3IzPgB2i52yXIU B1SqghRp/yzHmDVuT1o5QOlb2xquw8ssq4aSAOkkmNNbmA5HsU4Q2gDtAa7iXk0O us+pReelpzBuHhejT1ecmna9AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU9wYrvuMn K3EWh8Z+OrV4nFnw2egwHwYDVR0jBBgwFoAUBstI9X1UOpeC2KfJbaTh3tvDwwsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUyRUZGL0EzMTQ4NDdDNDg0 OTExRjBCRjA3MDM3MEM0RjlBRTAyL0JzdEk5WDFVT3BlQzJLZkpiYVRoM3R2RHd3 cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvQnN0STlYMVVPcGVDMktmSmJhVGgzdHZEd3dzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUy RUZGL0EzMTQ4NDdDNDg0OTExRjBCRjA3MDM3MEM0RjlBRTAyL0JzdEk5WDFVT3Bl QzJLZkpiYVRoM3R2RHd3cy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABtDgdDwoUBCF3ipAousWf69UXYo0P+nYxdLxdAHuZFUzAW/4g/AYVri G96X+9WLiYQzccgHg57c50NQdSKvj+RhKzPWVOU8BGmH88wfQwaKhZTQMUPcpfug 2Ksh7cneclxUrHuqYrzzRUKMYphp1CE/MJZqFqJHFLWAxJSLcPZ5SIAsWhI8XeLF WXp3XvkgbFcWaru146tkCO5eoZNPjwWmclX02DeD+As0/2/pPSgfw70XMrfr4+44 ATymyAnHDRW8SP4EjnEfvyynmjvqpOG7UywZPq0l15cfpNL4DQ+w0CFtdXT5STS4 UYsb5k/8Jiqh9+K8Q9Fwo2CnUSAqt+M= -----END CERTIFICATE-----Generated at Sun Dec 21 18:38:52 2025 by rpki-client