This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF2E1/3F69CC667F0311EBA081A02BC4F9AE02/bBl9pJIs_dxOmMiEbgOn19DkC3E.mft File: bBl9pJIs_dxOmMiEbgOn19DkC3E.mft (raw, json) Hash identifier: XxgPImk71dItTip19lA/4SVIlK4Mu8XlKRemftEfTAo= Subject key identifier: C8:F3:E5:95:0B:65:E5:36:52:6B:B3:0D:3A:6D:72:84:55:74:91:88 Authority key identifier: 6C:19:7D:A4:92:2C:FD:DC:4E:98:C8:84:6E:03:A7:D7:D0:E4:0B:71 Certificate issuer: /CN=A91EF2E1/serialNumber=6C197DA4922CFDDC4E98C8846E03A7D7D0E40B71 Certificate serial: 06E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBl9pJIs_dxOmMiEbgOn19DkC3E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF2E1/3F69CC667F0311EBA081A02BC4F9AE02/bBl9pJIs_dxOmMiEbgOn19DkC3E.mft Manifest number: 06D1 Signing time: Thu 18 Dec 2025 21:29:48 +0000 Manifest this update: Thu 18 Dec 2025 21:29:47 +0000 Manifest next update: Thu 25 Dec 2025 21:29:47 +0000 Files and hashes: 1: bBl9pJIs_dxOmMiEbgOn19DkC3E.crl (hash: MIkmdmRxImtuQkUT3CqumgEtaobavoBe5Msz+4R1wxM=) 2: 7D6F53547F0411EBB8CAEE2BC4F9AE02.roa (hash: VneqGQNP18iG+RzoK9rzGT1v0y/EKMK88ucBZjMvCCE=) 3: 397ED08A2F7911ED93B17C0FC4F9AE02.roa (hash: sO+5ZUlz1ZfgN4m9jGacz4xKmgRg5xQ7WfaHnr5n8EY=) 4: ECCDCA04809A11EB9093216EC4F9AE02.roa (hash: //P4Dwc0yC8aNI6dL5grZWmAPuUGPAB2QMNisS1s91o=) 5: 08C849682F6E11EDA8ABA74BC4F9AE02.roa (hash: hmEwq8j3GlUgHO4QkFMDsLDsFyKYgDX+OadwrR+PhRU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF2E1/3F69CC667F0311EBA081A02BC4F9AE02/bBl9pJIs_dxOmMiEbgOn19DkC3E.crl rsync://rpki.apnic.net/member_repository/A91EF2E1/3F69CC667F0311EBA081A02BC4F9AE02/bBl9pJIs_dxOmMiEbgOn19DkC3E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBl9pJIs_dxOmMiEbgOn19DkC3E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 21:29:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1766 (0x6e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF2E1, serialNumber=6C197DA4922CFDDC4E98C8846E03A7D7D0E40B71 Validity Not Before: Dec 18 21:29:47 2025 GMT Not After : Dec 25 21:29:47 2025 GMT Subject: CN=6944724c-40f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:65:45:4b:96:18:c2:73:63:fb:3b:0b:f8:20: 8d:a3:94:02:55:32:61:00:5b:35:c6:76:8e:e7:4b: c4:d1:1f:a6:9c:77:70:32:fd:30:10:73:32:e0:7b: a5:7f:30:f5:70:57:31:7b:1f:59:c3:80:65:0e:4a: 14:f8:6b:70:ce:dd:ee:2f:65:00:22:f3:fb:30:5d: 79:6e:3a:8e:01:f8:0c:17:e9:13:c6:d6:72:b5:df: d2:8b:b1:c2:64:75:28:fd:e2:b3:37:97:af:44:ef: 44:78:80:21:bd:20:ac:a7:7e:d0:a2:fe:c5:2e:a8: 6b:9e:fd:86:ce:16:01:c4:30:85:57:12:ea:f5:a7: 62:ca:53:38:43:da:9e:93:60:5f:95:bf:75:ff:6a: a1:2e:d8:2e:67:ee:50:cf:68:65:5b:f6:0a:b3:07: 71:e1:f6:7d:92:44:3c:2a:7c:72:c7:4d:af:6d:37: 71:c6:0c:fe:5b:d5:77:ec:30:fe:3e:fd:8d:94:c2: a9:e1:af:ab:89:31:09:cd:78:9c:96:67:39:9d:63: 81:16:34:a7:78:46:c8:48:f7:6c:f9:ea:3a:ec:2a: 46:5b:de:4b:cf:91:05:d1:e1:6c:f0:c8:8d:10:9f: 9e:8d:d2:bf:3d:a3:7d:49:8f:b4:ef:33:e4:99:2a: 66:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:F3:E5:95:0B:65:E5:36:52:6B:B3:0D:3A:6D:72:84:55:74:91:88 X509v3 Authority Key Identifier: keyid:6C:19:7D:A4:92:2C:FD:DC:4E:98:C8:84:6E:03:A7:D7:D0:E4:0B:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF2E1/3F69CC667F0311EBA081A02BC4F9AE02/bBl9pJIs_dxOmMiEbgOn19DkC3E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBl9pJIs_dxOmMiEbgOn19DkC3E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF2E1/3F69CC667F0311EBA081A02BC4F9AE02/bBl9pJIs_dxOmMiEbgOn19DkC3E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:b0:d5:4e:2a:52:80:b3:f1:1e:29:4f:b3:7e:bd:5a:c6:bb: a6:96:2c:38:03:cd:e5:3b:37:29:82:04:45:6d:64:d2:93:24: 78:0f:de:71:3c:12:55:6e:91:63:e6:a1:cb:36:97:d0:9d:e3: 39:a7:13:5a:6b:31:93:03:ba:16:c7:27:84:a6:c4:6f:e3:b7: 0b:e6:23:04:ff:e8:1d:b9:ff:dc:40:f3:30:b7:22:09:1e:e5: ea:2e:9b:5b:7e:15:e7:dd:63:41:8c:f9:e9:63:2b:1a:19:6e: 1a:03:b3:d4:ef:01:01:23:2e:10:fe:62:c0:8b:74:39:8b:95: 79:58:8b:64:9d:e5:b0:02:2d:59:f9:a4:36:8a:eb:c3:74:fe: f2:fe:c0:a7:4c:ee:ac:7e:e5:dc:3c:f3:5f:5e:a5:15:a2:ab: c8:ff:82:f3:40:9a:f6:65:5c:c1:0f:f0:e4:67:98:7b:0f:13: a8:b1:9d:d7:fd:c6:ed:8c:3b:0f:66:5f:2f:82:15:c9:8e:91: aa:0e:ea:8f:b5:9c:fa:ba:a7:60:c7:a4:2c:fe:25:48:fa:3b: 01:9d:43:f0:4f:08:b2:3a:40:75:b0:d4:eb:25:1f:ab:09:16: 37:29:c9:08:8d:23:8a:68:32:be:65:e8:dd:70:da:04:b1:92: 9b:89:ed:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBuYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUYyRTExMTAvBgNVBAUTKDZDMTk3REE0OTIyQ0ZEREM0RTk4Qzg4NDZFMDNBN0Q3 RDBFNDBCNzEwHhcNMjUxMjE4MjEyOTQ3WhcNMjUxMjI1MjEyOTQ3WjAYMRYwFAYD VQQDDA02OTQ0NzI0Yy00MGYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjWVFS5YYwnNj+zsL+CCNo5QCVTJhAFs1xnaO50vE0R+mnHdwMv0wEHMy4Hul fzD1cFcxex9Zw4BlDkoU+Gtwzt3uL2UAIvP7MF15bjqOAfgMF+kTxtZytd/Si7HC ZHUo/eKzN5evRO9EeIAhvSCsp37Qov7FLqhrnv2GzhYBxDCFVxLq9adiylM4Q9qe k2Bflb91/2qhLtguZ+5Qz2hlW/YKswdx4fZ9kkQ8Knxyx02vbTdxxgz+W9V37DD+ Pv2NlMKp4a+riTEJzXiclmc5nWOBFjSneEbISPds+eo67CpGW95Lz5EF0eFs8MiN EJ+ejdK/PaN9SY+07zPkmSpmKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMjz5ZUL ZeU2UmuzDTptcoRVdJGIMB8GA1UdIwQYMBaAFGwZfaSSLP3cTpjIhG4Dp9fQ5Atx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjJFMS8zRjY5Q0M2NjdG MDMxMUVCQTA4MUEwMkJDNEY5QUUwMi9iQmw5cEpJc19keE9tTWlFYmdPbjE5RGtD M0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JCbDlwSklzX2R4T21NaUViZ09uMTlEa0MzRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RjJFMS8zRjY5Q0M2NjdGMDMxMUVCQTA4MUEwMkJDNEY5QUUwMi9iQmw5cEpJc19k eE9tTWlFYmdPbjE5RGtDM0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBisNVOKlKAs/EeKU+zfr1axrumliw4A83lOzcpggRFbWTSkyR4D95x PBJVbpFj5qHLNpfQneM5pxNaazGTA7oWxyeEpsRv47cL5iME/+gduf/cQPMwtyIJ HuXqLptbfhXn3WNBjPnpYysaGW4aA7PU7wEBIy4Q/mLAi3Q5i5V5WItkneWwAi1Z +aQ2iuvDdP7y/sCnTO6sfuXcPPNfXqUVoqvI/4LzQJr2ZVzBD/DkZ5h7DxOosZ3X /cbtjDsPZl8vghXJjpGqDuqPtZz6uqdgx6Qs/iVI+jsBnUPwTwiyOkB1sNTrJR+r CRY3KckIjSOKaDK+ZejdcNoEsZKbie1g -----END CERTIFICATE-----Generated at Fri Dec 19 18:49:46 2025 by rpki-client