This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.mft File: BNhIIeE7gDAzVMS-NDMdURHyvKY.mft (raw, json) Hash identifier: V+jRdTz5CjtTwuvoVKpz7sYN5Abnmd0JtgTrauK9EQk= Subject key identifier: 3B:F2:91:F6:21:DE:62:DD:EC:DA:4F:38:D6:E2:AB:84:6B:B9:26:20 Authority key identifier: 04:D8:48:21:E1:3B:80:30:33:54:C4:BE:34:33:1D:51:11:F2:BC:A6 Certificate issuer: /CN=A91F0721/serialNumber=04D84821E13B80303354C4BE34331D5111F2BCA6 Certificate serial: 0217 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BNhIIeE7gDAzVMS-NDMdURHyvKY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.mft Manifest number: 0213 Signing time: Fri 19 Dec 2025 01:27:24 +0000 Manifest this update: Fri 19 Dec 2025 01:27:23 +0000 Manifest next update: Fri 26 Dec 2025 01:27:23 +0000 Files and hashes: 1: BNhIIeE7gDAzVMS-NDMdURHyvKY.crl (hash: R9AuKeCRfIcC/pusJQ3WQ0v0I2TbSgi1nh/Y+w/V8xo=) 2: 7659B89AADCC11ED84051211C4F9AE02.roa (hash: 4xZDEw3FRBWFRylijPU5JOuTB9KaN3fmrPD43soo8sQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.crl rsync://rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BNhIIeE7gDAzVMS-NDMdURHyvKY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 01:27:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 535 (0x217) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0721, serialNumber=04D84821E13B80303354C4BE34331D5111F2BCA6 Validity Not Before: Dec 19 01:27:23 2025 GMT Not After : Dec 26 01:27:23 2025 GMT Subject: CN=6944a9fb-f669 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:b8:34:1c:dc:4f:9f:e5:d1:52:bd:fc:73:ef: c7:23:ae:6d:fb:21:4b:33:11:0d:24:87:79:63:f7: 35:bd:80:11:f5:00:b5:9f:27:94:c2:3a:70:a4:2c: 0e:16:d2:e7:ec:47:63:a1:08:e4:00:72:d3:03:17: c8:e7:eb:b6:63:9a:f7:61:6c:3b:59:c0:0e:fc:c6: f7:f3:21:09:a4:89:35:6b:dc:51:11:ed:d3:00:d9: c5:54:40:79:c1:68:b1:53:a9:fc:d7:d7:5b:38:7a: b9:bf:54:92:b9:31:e9:d3:94:7c:af:26:f0:aa:b4: b3:2e:b2:1b:ed:0f:6c:a2:40:fe:93:c7:3f:7b:95: 04:dd:5b:77:40:98:c9:94:27:a1:bf:5b:a7:7c:db: 79:89:23:bd:e2:d0:f7:04:ce:9c:49:fe:d4:ea:3e: 8d:15:23:f8:15:9c:3e:a8:f0:d0:03:28:73:8c:06: 4b:97:31:aa:9a:cc:13:da:3d:2a:a6:6a:65:83:50: 76:98:85:1a:1b:b6:55:77:d5:84:07:05:53:71:15: ed:66:97:08:5c:66:55:b5:8d:63:6f:df:b8:b8:4c: 83:df:0f:a9:2e:56:3b:76:b4:35:21:52:e7:bb:86: 1b:aa:02:fa:6c:2e:9b:8d:c5:ce:a7:28:1b:fc:b5: d2:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:F2:91:F6:21:DE:62:DD:EC:DA:4F:38:D6:E2:AB:84:6B:B9:26:20 X509v3 Authority Key Identifier: keyid:04:D8:48:21:E1:3B:80:30:33:54:C4:BE:34:33:1D:51:11:F2:BC:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BNhIIeE7gDAzVMS-NDMdURHyvKY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:b7:92:5b:b8:af:fc:69:21:0e:ee:f8:90:e5:07:c1:49:3d: ed:39:36:26:9f:75:93:c6:05:f9:8a:e9:96:13:2f:29:26:cc: 8c:60:1a:4b:b0:64:f1:7b:34:7e:7c:80:2d:c4:c1:b9:f3:58: af:a0:17:8b:2a:c3:f4:90:75:d4:86:be:14:6b:81:c0:91:62: 42:08:23:64:a2:9e:15:1d:d4:26:75:0b:20:2e:8f:eb:5d:7f: 2c:88:84:93:2b:e4:43:53:19:e3:24:cb:85:17:4c:76:5c:a6: b6:cb:57:56:41:64:02:0d:dd:30:37:7f:8a:d4:56:c2:c8:2e: c4:d1:01:3a:0f:7b:b5:f3:7f:49:ef:03:d1:10:60:c8:d4:cb: 5c:33:d8:66:92:bc:62:0c:85:7d:1c:a2:bd:d7:8b:74:34:c1: 50:03:dd:53:26:19:57:5e:8f:68:10:02:22:c8:48:33:d8:02: 3a:7c:11:99:da:e9:46:1c:6e:66:4f:75:08:64:2d:aa:bf:54: 9c:48:39:ce:57:87:09:11:61:30:b3:f6:4c:76:a0:00:5f:33: 09:5d:bf:1e:9e:f5:39:d4:db:d0:56:68:ff:13:e5:3f:79:73: 37:ff:2e:c5:73:0a:37:b2:98:fa:68:c9:ff:21:88:d6:78:db: 39:f0:85:2d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjA3MjExMTAvBgNVBAUTKDA0RDg0ODIxRTEzQjgwMzAzMzU0QzRCRTM0MzMxRDUx MTFGMkJDQTYwHhcNMjUxMjE5MDEyNzIzWhcNMjUxMjI2MDEyNzIzWjAYMRYwFAYD VQQDDA02OTQ0YTlmYi1mNjY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAybg0HNxPn+XRUr38c+/HI65t+yFLMxENJId5Y/c1vYAR9QC1nyeUwjpwpCwO FtLn7EdjoQjkAHLTAxfI5+u2Y5r3YWw7WcAO/Mb38yEJpIk1a9xREe3TANnFVEB5 wWixU6n819dbOHq5v1SSuTHp05R8rybwqrSzLrIb7Q9sokD+k8c/e5UE3Vt3QJjJ lCehv1unfNt5iSO94tD3BM6cSf7U6j6NFSP4FZw+qPDQAyhzjAZLlzGqmswT2j0q pmplg1B2mIUaG7ZVd9WEBwVTcRXtZpcIXGZVtY1jb9+4uEyD3w+pLlY7drQ1IVLn u4YbqgL6bC6bjcXOpygb/LXS7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDvykfYh 3mLd7NpPONbiq4RruSYgMB8GA1UdIwQYMBaAFATYSCHhO4AwM1TEvjQzHVER8rym MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMDcyMS9DOTEyN0IzRUFE QzgxMUVEOTIxNjIyMEVDNEY5QUUwMi9CTmhJSWVFN2dEQXpWTVMtTkRNZFVSSHl2 S1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JOaElJZUU3Z0RBelZNUy1ORE1kVVJIeXZLWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MDcyMS9DOTEyN0IzRUFEQzgxMUVEOTIxNjIyMEVDNEY5QUUwMi9CTmhJSWVFN2dE QXpWTVMtTkRNZFVSSHl2S1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbt5JbuK/8aSEO7viQ5QfBST3tOTYmn3WTxgX5iumWEy8pJsyMYBpL sGTxezR+fIAtxMG581ivoBeLKsP0kHXUhr4Ua4HAkWJCCCNkop4VHdQmdQsgLo/r XX8siISTK+RDUxnjJMuFF0x2XKa2y1dWQWQCDd0wN3+K1FbCyC7E0QE6D3u1839J 7wPREGDI1MtcM9hmkrxiDIV9HKK914t0NMFQA91TJhlXXo9oEAIiyEgz2AI6fBGZ 2ulGHG5mT3UIZC2qv1ScSDnOV4cJEWEws/ZMdqAAXzMJXb8envU51NvQVmj/E+U/ eXM3/y7Fcwo3spj6aMn/IYjWeNs58IUt -----END CERTIFICATE-----Generated at Fri Dec 19 23:54:41 2025 by rpki-client