This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.mft File: BZ5vA652dqnQ8J1fbL25CGGFWlc.mft (raw, json) Hash identifier: lubG9SRa2hZeMTi+UMFJZihH/XVOOkRoxp9vzDWnb50= Subject key identifier: A0:E1:97:78:B5:DD:49:25:69:5F:74:7B:31:D6:74:AE:A6:10:56:8E Authority key identifier: 05:9E:6F:03:AE:76:76:A9:D0:F0:9D:5F:6C:BD:B9:08:61:85:5A:57 Certificate issuer: /CN=A91FF74B/serialNumber=059E6F03AE7676A9D0F09D5F6CBDB90861855A57 Certificate serial: 073D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BZ5vA652dqnQ8J1fbL25CGGFWlc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.mft Manifest number: 071F Signing time: Sun 28 Dec 2025 20:48:36 +0000 Manifest this update: Sun 28 Dec 2025 20:48:35 +0000 Manifest next update: Sun 04 Jan 2026 20:48:35 +0000 Files and hashes: 1: BZ5vA652dqnQ8J1fbL25CGGFWlc.crl (hash: l0qC+DqwwHysCf5k70IsM7i9SjPhC4vEmEcl1m4R2X8=) 2: 7E0AB01C782C11EBB0B71971C4F9AE02.roa (hash: StZZUcpTqb1W1S9eXsQ5qcrkA/Ri8svuc1kgwSxho5k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.crl rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BZ5vA652dqnQ8J1fbL25CGGFWlc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 Jan 2026 20:48:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1853 (0x73d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF74B, serialNumber=059E6F03AE7676A9D0F09D5F6CBDB90861855A57 Validity Not Before: Dec 28 20:48:35 2025 GMT Not After : Jan 4 20:48:35 2026 GMT Subject: CN=695197a4-b5f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:3d:1d:dc:b0:c1:c1:7e:5c:0e:5e:c2:a3:7e: f4:f4:8e:35:ba:1b:ef:71:5e:15:99:d7:1b:45:71: 08:d7:7f:06:e7:ee:b4:8d:57:e6:51:0b:f8:1d:3b: 66:c7:df:83:5d:c5:56:f1:ac:5b:19:c7:1c:68:7f: 4b:fa:8d:1f:66:57:54:c4:29:8d:f7:94:4d:6c:06: 28:08:08:4c:e1:c0:6d:c7:4b:6e:65:79:eb:70:bb: 1a:d3:e3:b1:47:60:f9:d8:04:d0:4f:52:58:92:43: 7b:4f:33:7c:bb:28:df:f8:93:61:1f:d0:db:74:02: c8:32:e2:a4:67:40:44:5a:f0:0b:a4:08:40:2a:7d: 07:36:fe:ff:19:55:b0:8e:cc:ca:d6:bd:09:69:0d: 80:c4:ad:91:ef:a3:68:97:f1:98:78:07:ec:ec:6f: 31:c7:24:fb:0c:74:27:a6:41:0b:b3:c3:40:9c:e6: 68:0a:84:c4:66:b2:ba:b6:3a:64:b0:b6:22:cb:94: 33:fe:03:3e:17:17:84:44:8e:cd:19:c5:be:d8:30: 9b:83:5b:78:2c:50:86:a2:a5:a0:1b:9c:20:db:9c: 7f:60:a5:37:8c:69:e5:08:ed:dd:de:f8:dd:a9:df: 57:61:94:b3:d6:b3:fe:8b:f3:d4:f7:21:d5:17:3a: 37:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:E1:97:78:B5:DD:49:25:69:5F:74:7B:31:D6:74:AE:A6:10:56:8E X509v3 Authority Key Identifier: keyid:05:9E:6F:03:AE:76:76:A9:D0:F0:9D:5F:6C:BD:B9:08:61:85:5A:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BZ5vA652dqnQ8J1fbL25CGGFWlc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:32:56:d8:6e:a7:45:a0:b4:d4:d5:0f:a4:e3:2e:f1:94:b7: ea:fb:7b:8c:36:ba:af:40:3d:45:70:72:9d:bd:ae:b7:cf:9c: 77:41:e0:1c:c9:4f:9d:fd:3a:a8:a4:d7:c7:da:fb:ea:c7:c2: 21:b8:59:e1:7e:57:e7:5f:79:f2:29:08:a0:10:be:d1:6b:d2: fb:f4:1c:32:6a:00:75:b6:17:a9:5d:e9:2b:1c:6d:bd:b2:a6: 8b:b4:f5:f0:60:31:27:b9:35:80:a2:a5:f2:fe:e3:a5:cf:bd: 98:bf:fa:b3:1f:ff:87:26:7b:25:d8:6f:68:55:45:3e:14:74: b1:ab:f6:2e:8a:0d:98:c6:1a:7b:07:cc:fe:75:65:97:7c:b4: a3:e3:96:3e:18:af:ad:82:b6:72:a3:60:7e:20:7b:09:1b:98: cb:22:78:de:66:1e:4e:b5:7c:4a:79:af:cf:c2:c9:2b:fc:45: 18:86:50:10:38:1e:48:00:0c:b1:68:c2:83:21:3f:0f:8f:7d: 40:43:4a:52:5f:cd:0f:d5:8f:ed:32:04:91:c7:c8:a4:47:48: 76:ce:4b:ad:e9:e7:b7:86:98:4c:46:4c:3c:a1:d1:78:e5:17: 1e:b1:91:f1:25:70:cd:24:e6:8e:72:af:e0:a0:67:0e:18:e6: e3:06:86:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBz0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY3NEIxMTAvBgNVBAUTKDA1OUU2RjAzQUU3Njc2QTlEMEYwOUQ1RjZDQkRCOTA4 NjE4NTVBNTcwHhcNMjUxMjI4MjA0ODM1WhcNMjYwMTA0MjA0ODM1WjAYMRYwFAYD VQQDDA02OTUxOTdhNC1iNWYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtz0d3LDBwX5cDl7Co3709I41uhvvcV4VmdcbRXEI138G5+60jVfmUQv4HTtm x9+DXcVW8axbGcccaH9L+o0fZldUxCmN95RNbAYoCAhM4cBtx0tuZXnrcLsa0+Ox R2D52ATQT1JYkkN7TzN8uyjf+JNhH9DbdALIMuKkZ0BEWvALpAhAKn0HNv7/GVWw jszK1r0JaQ2AxK2R76Nol/GYeAfs7G8xxyT7DHQnpkELs8NAnOZoCoTEZrK6tjpk sLYiy5Qz/gM+FxeERI7NGcW+2DCbg1t4LFCGoqWgG5wg25x/YKU3jGnlCO3d3vjd qd9XYZSz1rP+i/PU9yHVFzo3mQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKDhl3i1 3UklaV90ezHWdK6mEFaOMB8GA1UdIwQYMBaAFAWebwOudnap0PCdX2y9uQhhhVpX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjc0Qi82MUEzMzg0QTc4 MkMxMUVCQUMwNEY2NzJDNEY5QUUwMi9CWjV2QTY1MmRxblE4SjFmYkwyNUNHR0ZX bGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JaNXZBNjUyZHFuUThKMWZiTDI1Q0dHRldsYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Rjc0Qi82MUEzMzg0QTc4MkMxMUVCQUMwNEY2NzJDNEY5QUUwMi9CWjV2QTY1MmRx blE4SjFmYkwyNUNHR0ZXbGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAMlbYbqdFoLTU1Q+k4y7xlLfq+3uMNrqvQD1FcHKdva63z5x3QeAc yU+d/TqopNfH2vvqx8IhuFnhflfnX3nyKQigEL7Ra9L79BwyagB1thepXekrHG29 sqaLtPXwYDEnuTWAoqXy/uOlz72Yv/qzH/+HJnsl2G9oVUU+FHSxq/Yuig2Yxhp7 B8z+dWWXfLSj45Y+GK+tgrZyo2B+IHsJG5jLInjeZh5OtXxKea/Pwskr/EUYhlAQ OB5IAAyxaMKDIT8Pj31AQ0pSX80P1Y/tMgSRx8ikR0h2zkut6ee3hphMRkw8odF4 5RcesZHxJXDNJOaOcq/goGcOGObjBoY7 -----END CERTIFICATE-----Generated at Tue Dec 30 10:34:39 2025 by rpki-client