This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FBD28/26758BB43AB511E7B8609F1CC4F9AE02/bkhhCqDmsOLF7tQC3QeDOqc-fqI.mft File: bkhhCqDmsOLF7tQC3QeDOqc-fqI.mft (raw, json) Hash identifier: ZAxPOaGVPyk8UCRzY0CrVFBksdYg7y4VOv58C44WZHU= Subject key identifier: 18:0B:78:E2:49:BC:E2:36:3B:0D:3C:E2:3D:FE:C2:15:DD:90:82:D0 Authority key identifier: 6E:48:61:0A:A0:E6:B0:E2:C5:EE:D4:02:DD:07:83:3A:A7:3E:7E:A2 Certificate issuer: /CN=A91FBD28/serialNumber=6E48610AA0E6B0E2C5EED402DD07833AA73E7EA2 Certificate serial: 1B1B Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/bkhhCqDmsOLF7tQC3QeDOqc-fqI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FBD28/26758BB43AB511E7B8609F1CC4F9AE02/bkhhCqDmsOLF7tQC3QeDOqc-fqI.mft Manifest number: 1B05 Signing time: Sat 20 Dec 2025 15:32:39 +0000 Manifest this update: Sat 20 Dec 2025 15:32:39 +0000 Manifest next update: Sat 27 Dec 2025 15:32:39 +0000 Files and hashes: 1: bkhhCqDmsOLF7tQC3QeDOqc-fqI.crl (hash: DAw0KoVmW2hoUlotFeyFsPqWh9FKrUYVQPGquQ6y6WE=) 2: D8B92776A16A11EAA517B11EC4F9AE02.roa (hash: 0/HP0DwNYOfkRXXhvxhJ7qmLcNQDOwmKr3HHIF1F5nU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FBD28/26758BB43AB511E7B8609F1CC4F9AE02/bkhhCqDmsOLF7tQC3QeDOqc-fqI.crl rsync://rpki.apnic.net/member_repository/A91FBD28/26758BB43AB511E7B8609F1CC4F9AE02/bkhhCqDmsOLF7tQC3QeDOqc-fqI.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/bkhhCqDmsOLF7tQC3QeDOqc-fqI.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 14:50:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6939 (0x1b1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FBD28, serialNumber=6E48610AA0E6B0E2C5EED402DD07833AA73E7EA2 Validity Not Before: Dec 20 15:32:39 2025 GMT Not After : Dec 27 15:32:39 2025 GMT Subject: CN=6946c197-8ce8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:7e:2b:b4:ae:41:6d:b5:58:56:82:87:35:a5: b9:26:23:70:bc:21:e9:52:09:8e:98:63:35:22:5c: a3:b0:9f:f6:78:9c:c3:7d:79:25:7c:64:42:77:55: aa:d0:d8:fe:7a:5e:ad:84:10:f6:18:4f:84:71:4e: 8e:d1:6a:19:97:19:a5:8b:53:2d:f9:ae:90:c0:de: 30:75:8a:a6:2e:6a:9a:8d:cf:d3:21:96:0d:84:4f: ad:f5:31:87:0d:96:45:9e:b1:35:c7:ff:50:4f:20: 46:53:90:40:e7:c8:69:63:ca:a6:28:87:61:27:94: 9f:0f:6a:75:91:9c:4c:ca:75:76:01:03:dd:06:2c: e5:61:de:e2:cd:4a:1c:69:51:fc:a5:68:74:f3:32: 83:67:ff:9b:06:0a:7a:50:b0:68:c2:c2:73:30:e9: e6:a0:ca:64:8b:3e:21:12:ab:0d:9c:6f:05:14:96: 46:bd:87:13:1c:97:af:e6:5a:0f:a9:b1:cf:ea:c1: 6b:a6:7c:4f:2a:79:5b:aa:65:13:1a:a0:9f:0c:e9: a5:66:19:ee:6c:da:cc:00:24:d9:e7:3c:c1:09:be: b1:b2:d6:2d:53:d5:8c:d5:21:8a:71:0e:8a:36:0d: c1:b5:cb:3e:1c:71:f6:a5:80:e1:20:95:02:c0:62: d2:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:0B:78:E2:49:BC:E2:36:3B:0D:3C:E2:3D:FE:C2:15:DD:90:82:D0 X509v3 Authority Key Identifier: keyid:6E:48:61:0A:A0:E6:B0:E2:C5:EE:D4:02:DD:07:83:3A:A7:3E:7E:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FBD28/26758BB43AB511E7B8609F1CC4F9AE02/bkhhCqDmsOLF7tQC3QeDOqc-fqI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/bkhhCqDmsOLF7tQC3QeDOqc-fqI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FBD28/26758BB43AB511E7B8609F1CC4F9AE02/bkhhCqDmsOLF7tQC3QeDOqc-fqI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:0b:7c:75:ea:7b:a7:28:df:bd:db:08:bf:80:10:c6:65:81: 1d:4e:69:03:a4:ee:8b:d8:bb:5f:97:a7:fe:9f:d1:b4:a1:e6: 1a:fb:3d:19:44:1f:74:d5:a5:64:82:8a:e1:0d:b7:c1:2c:0a: bd:b8:e4:35:e1:49:2e:9d:58:00:62:c9:60:40:7e:6b:59:2d: d8:2c:42:4d:08:39:17:7c:11:c0:56:cf:f1:73:17:c7:8e:43: f3:75:cc:65:12:8f:0c:70:4f:0c:29:c6:e5:aa:27:ee:2d:7f: 6d:99:d7:a3:71:9e:68:aa:75:1a:52:01:6e:99:5b:c3:e7:62: 07:fe:b5:95:57:b5:df:ff:83:16:68:4c:82:76:72:ab:f8:15: 96:4e:9c:3c:b9:b3:68:76:62:6e:b8:c1:50:c7:94:f0:a1:fe: c4:76:45:1c:b5:9d:7a:30:4a:70:3e:e4:c3:ef:df:f6:99:04: 6d:57:97:fb:de:a8:b3:e5:d0:b2:54:a1:17:15:7f:72:f9:ad: 5f:7d:13:c7:cb:9e:d4:e6:03:d9:47:16:ca:2b:5a:ec:f3:e7: 77:65:a3:4a:5d:19:ff:b6:b1:8a:0e:fc:29:9c:bd:37:38:94: 01:bb:ab:ae:58:b7:0d:18:f3:07:c8:d4:fc:27:7c:90:a5:a9: e1:62:05:c3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGxswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkJEMjgxMTAvBgNVBAUTKDZFNDg2MTBBQTBFNkIwRTJDNUVFRDQwMkREMDc4MzNB QTczRTdFQTIwHhcNMjUxMjIwMTUzMjM5WhcNMjUxMjI3MTUzMjM5WjAYMRYwFAYD VQQDDA02OTQ2YzE5Ny04Y2U4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4X4rtK5BbbVYVoKHNaW5JiNwvCHpUgmOmGM1IlyjsJ/2eJzDfXklfGRCd1Wq 0Nj+el6thBD2GE+EcU6O0WoZlxmli1Mt+a6QwN4wdYqmLmqajc/TIZYNhE+t9TGH DZZFnrE1x/9QTyBGU5BA58hpY8qmKIdhJ5SfD2p1kZxMynV2AQPdBizlYd7izUoc aVH8pWh08zKDZ/+bBgp6ULBowsJzMOnmoMpkiz4hEqsNnG8FFJZGvYcTHJev5loP qbHP6sFrpnxPKnlbqmUTGqCfDOmlZhnubNrMACTZ5zzBCb6xstYtU9WM1SGKcQ6K Ng3Btcs+HHH2pYDhIJUCwGLSaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBgLeOJJ vOI2Ow084j3+whXdkILQMB8GA1UdIwQYMBaAFG5IYQqg5rDixe7UAt0HgzqnPn6i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQkQyOC8yNjc1OEJCNDNB QjUxMUU3Qjg2MDlGMUNDNEY5QUUwMi9ia2hoQ3FEbXNPTEY3dFFDM1FlRE9xYy1m cUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2JraGhDcURtc09MRjd0UUMzUWVET3FjLWZxSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QkQyOC8yNjc1OEJCNDNBQjUxMUU3Qjg2MDlGMUNDNEY5QUUwMi9ia2hoQ3FEbXNP TEY3dFFDM1FlRE9xYy1mcUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBEC3x16nunKN+92wi/gBDGZYEdTmkDpO6L2Ltfl6f+n9G0oeYa+z0Z RB901aVkgorhDbfBLAq9uOQ14UkunVgAYslgQH5rWS3YLEJNCDkXfBHAVs/xcxfH jkPzdcxlEo8McE8MKcblqifuLX9tmdejcZ5oqnUaUgFumVvD52IH/rWVV7Xf/4MW aEyCdnKr+BWWTpw8ubNodmJuuMFQx5Twof7EdkUctZ16MEpwPuTD79/2mQRtV5f7 3qiz5dCyVKEXFX9y+a1ffRPHy57U5gPZRxbKK1rs8+d3ZaNKXRn/trGKDvwpnL03 OJQBu6uuWLcNGPMHyNT8J3yQpanhYgXD -----END CERTIFICATE-----Generated at Sat Dec 20 21:10:39 2025 by rpki-client