This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.mft File: BmZq7NeMCl7RN5Cl6apAw0kPvPE.mft (raw, json) Hash identifier: 7LTREyOPRF/Uitv5RBitIIq08iyUpCj6JVtiZShlDL8= Subject key identifier: 70:44:65:E9:EC:4C:64:A0:DC:E7:26:DE:8C:95:6A:91:86:DF:C9:39 Authority key identifier: 06:66:6A:EC:D7:8C:0A:5E:D1:37:90:A5:E9:AA:40:C3:49:0F:BC:F1 Certificate issuer: /CN=A91F63DC/serialNumber=06666AECD78C0A5ED13790A5E9AA40C3490FBCF1 Certificate serial: 019D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BmZq7NeMCl7RN5Cl6apAw0kPvPE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.mft Manifest number: 019B Signing time: Fri 19 Dec 2025 02:33:31 +0000 Manifest this update: Fri 19 Dec 2025 02:33:30 +0000 Manifest next update: Fri 26 Dec 2025 02:33:30 +0000 Files and hashes: 1: BmZq7NeMCl7RN5Cl6apAw0kPvPE.crl (hash: EOcM/aUd+VX8XeJKL/EAW++UTHbCbjHyP2rBnkaS3fc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.crl rsync://rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BmZq7NeMCl7RN5Cl6apAw0kPvPE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 02:33:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 413 (0x19d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F63DC, serialNumber=06666AECD78C0A5ED13790A5E9AA40C3490FBCF1 Validity Not Before: Dec 19 02:33:30 2025 GMT Not After : Dec 26 02:33:30 2025 GMT Subject: CN=6944b97b-0549 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:ef:07:c4:bf:3e:08:c4:97:4f:14:05:81:3c: 39:1c:64:d5:89:78:82:c7:bd:f0:56:37:e2:8e:f0: 42:67:62:e2:21:f6:e5:5a:f0:63:ad:75:58:18:8c: d8:37:11:20:79:d1:b4:13:61:d8:1d:4f:35:fa:3c: 5d:3c:41:97:61:36:a9:de:7a:32:2b:53:91:dd:19: 2b:e2:c8:83:79:bc:64:ed:f1:09:e0:9b:0d:d3:a2: 3d:7b:c8:f5:9b:08:d9:58:dc:6f:fd:71:55:97:ab: cc:00:66:fb:f8:29:da:30:94:c7:00:e6:14:9c:c9: 33:03:a4:b2:09:86:d3:58:ae:c8:52:72:6e:69:d5: 21:88:03:37:9d:41:78:31:57:21:0f:fe:98:60:d9: 07:a2:8b:85:df:f2:0d:4b:74:3b:53:ab:57:9c:b0: 4c:dc:2f:49:f0:9f:bd:2e:31:92:d3:87:2f:d0:ac: c1:96:ff:b4:1b:54:cb:4b:dc:7d:da:3c:8d:dc:31: 80:c1:51:13:43:79:85:c0:a9:d8:b8:f9:63:ba:89: 06:4b:cc:be:27:1b:44:c5:48:26:7d:bb:0f:8d:c3: b5:a6:35:2c:73:18:d5:18:3a:a0:29:fb:72:5a:7f: 39:74:6e:b0:b9:c1:7b:38:10:12:06:2b:f9:6c:2f: 2b:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:44:65:E9:EC:4C:64:A0:DC:E7:26:DE:8C:95:6A:91:86:DF:C9:39 X509v3 Authority Key Identifier: keyid:06:66:6A:EC:D7:8C:0A:5E:D1:37:90:A5:E9:AA:40:C3:49:0F:BC:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BmZq7NeMCl7RN5Cl6apAw0kPvPE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:c3:3c:a7:63:e5:ab:91:81:0d:52:e9:d3:f6:24:ca:c2:78: 1d:9a:4d:6b:56:e1:ee:a6:c6:33:2d:80:b7:fb:5f:23:2e:89: 84:3d:76:ae:e6:e6:6e:a1:dd:28:a8:33:3e:a3:2f:24:ca:cf: 2d:41:ef:a2:c3:6c:af:58:d6:60:33:6c:60:8f:55:17:da:d1: a7:42:07:72:3c:63:34:c1:14:41:6a:d2:22:d3:7f:ac:49:a6: 39:e2:a2:41:78:bd:45:60:c6:b9:d0:09:4f:e1:b7:3b:8e:82: 31:f4:58:37:6b:16:15:ef:51:bd:00:35:3c:f5:33:58:c9:eb: 5d:34:86:cd:1c:9c:c3:1d:e6:e9:c9:c5:32:82:66:d3:18:e4: ef:09:fa:19:03:c9:0c:de:9b:59:83:31:f9:8b:67:71:d6:9a: 99:c1:18:c6:ee:29:2f:98:be:4e:1b:c5:1e:3f:76:0e:1d:1c: a0:b7:1e:91:9c:b9:66:bc:89:89:f1:00:6f:22:15:5a:20:05: b3:21:3c:a9:77:10:55:2b:66:93:aa:74:03:c6:65:07:f4:44: 3b:2f:ee:29:50:f7:9a:ba:6b:d8:2d:9b:9d:d8:66:1b:30:04: 21:32:48:1d:b8:e2:b2:7f:f3:f0:9c:80:45:88:46:9b:a0:8c: e3:49:f8:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjYzREMxMTAvBgNVBAUTKDA2NjY2QUVDRDc4QzBBNUVEMTM3OTBBNUU5QUE0MEMz NDkwRkJDRjEwHhcNMjUxMjE5MDIzMzMwWhcNMjUxMjI2MDIzMzMwWjAYMRYwFAYD VQQDDA02OTQ0Yjk3Yi0wNTQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAk+8HxL8+CMSXTxQFgTw5HGTViXiCx73wVjfijvBCZ2LiIfblWvBjrXVYGIzY NxEgedG0E2HYHU81+jxdPEGXYTap3noyK1OR3Rkr4siDebxk7fEJ4JsN06I9e8j1 mwjZWNxv/XFVl6vMAGb7+CnaMJTHAOYUnMkzA6SyCYbTWK7IUnJuadUhiAM3nUF4 MVchD/6YYNkHoouF3/INS3Q7U6tXnLBM3C9J8J+9LjGS04cv0KzBlv+0G1TLS9x9 2jyN3DGAwVETQ3mFwKnYuPljuokGS8y+JxtExUgmfbsPjcO1pjUscxjVGDqgKfty Wn85dG6wucF7OBASBiv5bC8r3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHBEZens TGSg3Ocm3oyVapGG38k5MB8GA1UdIwQYMBaAFAZmauzXjApe0TeQpemqQMNJD7zx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjNEQy8wNDMxNTJFMjY2 NTMxMUVFOUM2OEVFMkJDNEY5QUUwMi9CbVpxN05lTUNsN1JONUNsNmFwQXcwa1B2 UEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JtWnE3TmVNQ2w3Uk41Q2w2YXBBdzBrUHZQRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjNEQy8wNDMxNTJFMjY2NTMxMUVFOUM2OEVFMkJDNEY5QUUwMi9CbVpxN05lTUNs N1JONUNsNmFwQXcwa1B2UEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCtwzynY+WrkYENUunT9iTKwngdmk1rVuHupsYzLYC3+18jLomEPXau 5uZuod0oqDM+oy8kys8tQe+iw2yvWNZgM2xgj1UX2tGnQgdyPGM0wRRBatIi03+s SaY54qJBeL1FYMa50AlP4bc7joIx9Fg3axYV71G9ADU89TNYyetdNIbNHJzDHebp ycUygmbTGOTvCfoZA8kM3ptZgzH5i2dx1pqZwRjG7ikvmL5OG8UeP3YOHRygtx6R nLlmvImJ8QBvIhVaIAWzITypdxBVK2aTqnQDxmUH9EQ7L+4pUPeaumvYLZud2GYb MAQhMkgduOKyf/PwnIBFiEaboIzjSfgM -----END CERTIFICATE-----Generated at Sat Dec 20 08:18:37 2025 by rpki-client