This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.mft File: bX2AV2xLO-av9DH40yM49x_fAd0.mft (raw, json) Hash identifier: Ch9svmzkZz8D65Uv7t1NoqOpzClp7wSr+1PhBVR74I8= Subject key identifier: 66:02:EA:FE:A4:87:55:7E:1F:44:A4:EE:8E:30:86:17:C5:FB:5A:EC Authority key identifier: 6D:7D:80:57:6C:4B:3B:E6:AF:F4:31:F8:D3:23:38:F7:1F:DF:01:DD Certificate issuer: /CN=A91FC1B8/serialNumber=6D7D80576C4B3BE6AFF431F8D32338F71FDF01DD Certificate serial: 0F04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bX2AV2xLO-av9DH40yM49x_fAd0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.mft Manifest number: 0EFA Signing time: Thu 18 Dec 2025 17:25:40 +0000 Manifest this update: Thu 18 Dec 2025 17:25:39 +0000 Manifest next update: Thu 25 Dec 2025 17:25:39 +0000 Files and hashes: 1: bX2AV2xLO-av9DH40yM49x_fAd0.crl (hash: 6XnzR4VAji0as3Y5r4+/fe/YgWbk9W+7/pjCvi9Nkos=) 2: DA481A0CB61811F0ABB14C31C4F9AE02.roa (hash: T3+CRirqLtz1Ta4crR0HI+okuEb0BcJI1bh/9/iVPTY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.crl rsync://rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bX2AV2xLO-av9DH40yM49x_fAd0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 17:25:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3844 (0xf04) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC1B8, serialNumber=6D7D80576C4B3BE6AFF431F8D32338F71FDF01DD Validity Not Before: Dec 18 17:25:39 2025 GMT Not After : Dec 25 17:25:39 2025 GMT Subject: CN=69443914-37c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:05:56:dd:91:83:cb:08:c3:f2:35:7d:a2:11: 7f:35:61:da:35:2c:09:16:da:ab:42:07:39:65:aa: 36:33:f8:71:fe:f6:89:8d:7d:00:61:ba:44:5a:2a: 1c:94:ea:f5:37:0e:b0:0c:4b:10:fc:1e:c2:be:ee: ad:e0:f7:80:92:d3:d1:21:86:b4:99:29:47:90:d6: 9d:45:f8:a9:bb:ce:6f:f0:b0:e7:05:86:ba:4a:b4: b4:29:ad:ee:ce:dc:06:08:b8:9d:12:95:c8:73:b8: c4:ab:07:42:a6:df:a4:f7:e4:28:79:82:06:62:f3: b6:b3:32:a4:56:b7:ce:3c:bf:c0:69:a0:05:44:57: 97:5c:1d:bd:67:87:f6:af:5f:71:9d:72:cd:43:09: a3:bf:c5:7e:56:bb:a4:3b:41:65:a7:46:52:29:bf: d2:98:3a:27:31:b2:f5:47:6a:7c:2b:b2:66:eb:3d: 25:c9:c3:d0:37:cf:59:29:36:a4:92:1d:dc:85:7a: 31:0a:d3:36:55:54:81:cb:33:56:57:16:a3:95:69: 26:c9:56:16:c2:d0:68:fd:47:a1:cc:39:cf:08:0a: 83:ce:f9:d2:db:19:e0:3d:d2:a8:68:9e:84:8a:41: 3c:d9:2e:2b:5a:90:db:3f:e8:49:76:2b:8e:38:76: be:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:02:EA:FE:A4:87:55:7E:1F:44:A4:EE:8E:30:86:17:C5:FB:5A:EC X509v3 Authority Key Identifier: keyid:6D:7D:80:57:6C:4B:3B:E6:AF:F4:31:F8:D3:23:38:F7:1F:DF:01:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bX2AV2xLO-av9DH40yM49x_fAd0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:4f:6f:a7:50:73:69:e0:3e:a9:79:13:ca:d2:55:c0:e8:f4: 3a:9a:6d:2b:86:84:4c:4c:a9:98:b4:7c:dd:0f:f7:56:3c:aa: e8:a3:d4:c3:db:09:75:c2:ff:ca:17:f3:75:10:fe:43:93:94: b0:40:d4:7a:0c:a4:c1:91:03:dd:24:5e:ab:f4:52:db:ff:cd: 34:06:25:23:4d:6d:ca:e9:6f:62:df:4e:70:56:aa:ab:35:71: 51:d8:b7:dd:07:e0:77:94:cc:e6:48:b3:a0:b3:67:37:97:8e: 11:e3:ef:df:ae:b8:d4:9b:96:f3:a9:2a:6e:52:c5:2e:c3:b6: 90:7d:99:c7:a1:5a:0c:5e:7f:24:68:34:e4:6a:23:2d:2d:4b: a1:64:f9:ea:97:ec:7a:56:37:ea:31:2e:f3:f8:c7:0e:7d:bf: 7e:c4:7f:21:e8:54:7a:1d:ad:33:38:01:cf:a3:0e:1c:3b:94: e0:15:5d:39:f4:d7:6c:43:ee:0e:1d:7a:70:88:6b:f5:42:29: 20:60:8a:c0:90:42:bf:08:31:ed:6a:32:e6:be:18:4c:d6:38: c2:0d:de:8a:d5:8b:d9:8b:29:e4:fd:a7:1c:76:5b:e3:42:99: c1:61:13:f3:98:21:2c:5d:f5:39:63:c7:ea:64:02:2d:61:34: a4:18:f0:f0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDwQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkMxQjgxMTAvBgNVBAUTKDZEN0Q4MDU3NkM0QjNCRTZBRkY0MzFGOEQzMjMzOEY3 MUZERjAxREQwHhcNMjUxMjE4MTcyNTM5WhcNMjUxMjI1MTcyNTM5WjAYMRYwFAYD VQQDDA02OTQ0MzkxNC0zN2M3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7wVW3ZGDywjD8jV9ohF/NWHaNSwJFtqrQgc5Zao2M/hx/vaJjX0AYbpEWioc lOr1Nw6wDEsQ/B7Cvu6t4PeAktPRIYa0mSlHkNadRfipu85v8LDnBYa6SrS0Ka3u ztwGCLidEpXIc7jEqwdCpt+k9+QoeYIGYvO2szKkVrfOPL/AaaAFRFeXXB29Z4f2 r19xnXLNQwmjv8V+VrukO0Flp0ZSKb/SmDonMbL1R2p8K7Jm6z0lycPQN89ZKTak kh3chXoxCtM2VVSByzNWVxajlWkmyVYWwtBo/UehzDnPCAqDzvnS2xngPdKoaJ6E ikE82S4rWpDbP+hJdiuOOHa+JQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGYC6v6k h1V+H0Sk7o4whhfF+1rsMB8GA1UdIwQYMBaAFG19gFdsSzvmr/Qx+NMjOPcf3wHd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzFCOC9GQkRFOTlGQTkw RkIxMUU5OTJENTk4N0ZDNEY5QUUwMi9iWDJBVjJ4TE8tYXY5REg0MHlNNDl4X2ZB ZDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JYMkFWMnhMTy1hdjlESDQweU00OXhfZkFkMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QzFCOC9GQkRFOTlGQTkwRkIxMUU5OTJENTk4N0ZDNEY5QUUwMi9iWDJBVjJ4TE8t YXY5REg0MHlNNDl4X2ZBZDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAST2+nUHNp4D6peRPK0lXA6PQ6mm0rhoRMTKmYtHzdD/dWPKroo9TD 2wl1wv/KF/N1EP5Dk5SwQNR6DKTBkQPdJF6r9FLb/800BiUjTW3K6W9i305wVqqr NXFR2LfdB+B3lMzmSLOgs2c3l44R4+/frrjUm5bzqSpuUsUuw7aQfZnHoVoMXn8k aDTkaiMtLUuhZPnql+x6VjfqMS7z+McOfb9+xH8h6FR6Ha0zOAHPow4cO5TgFV05 9NdsQ+4OHXpwiGv1QikgYIrAkEK/CDHtajLmvhhM1jjCDd6K1YvZiynk/accdlvj QpnBYRPzmCEsXfU5Y8fqZAItYTSkGPDw -----END CERTIFICATE-----Generated at Fri Dec 19 23:54:36 2025 by rpki-client