This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.mft File: BQFHuU3J1svowLDxrQwBg6YHfDQ.mft (raw, json) Hash identifier: Ssl7OJazEKUgJeLAqHO8k2r1iTkOkPpHWci6EQgXj2o= Subject key identifier: AB:20:17:03:49:15:F1:34:0F:22:E6:EB:4F:92:A6:87:1A:00:DE:B6 Authority key identifier: 05:01:47:B9:4D:C9:D6:CB:E8:C0:B0:F1:AD:0C:01:83:A6:07:7C:34 Certificate issuer: /CN=A91629AA/serialNumber=050147B94DC9D6CBE8C0B0F1AD0C0183A6077C34 Certificate serial: 0145 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQFHuU3J1svowLDxrQwBg6YHfDQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.mft Manifest number: 0141 Signing time: Fri 05 Dec 2025 02:31:33 +0000 Manifest this update: Fri 05 Dec 2025 02:31:32 +0000 Manifest next update: Fri 12 Dec 2025 02:31:32 +0000 Files and hashes: 1: BQFHuU3J1svowLDxrQwBg6YHfDQ.crl (hash: 2JxE5+W6wu03qyA3KZqEP29WwLiCwDnvFrVgM/608U8=) 2: 1E347CDCE74A11EE8602742BC4F9AE02.roa (hash: 1KFMJqeP1xSunnIgreiULJOt/F6oOyvmT80gXMxgyXA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.crl rsync://rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQFHuU3J1svowLDxrQwBg6YHfDQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 02:31:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 325 (0x145) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91629AA, serialNumber=050147B94DC9D6CBE8C0B0F1AD0C0183A6077C34 Validity Not Before: Dec 5 02:31:32 2025 GMT Not After : Dec 12 02:31:32 2025 GMT Subject: CN=69324404-defb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:72:8c:80:61:6b:4f:b4:48:4b:8d:2d:d6:d7: 68:07:b5:3a:c0:f6:21:52:98:65:1c:72:c1:df:11: 6b:b2:03:76:fb:e3:25:0e:53:56:8c:a3:60:b6:3d: 0a:5e:62:2a:d0:4f:08:f7:47:79:42:39:e1:20:3c: 55:af:e2:7d:22:d6:07:48:48:f0:f0:e1:2d:d6:6f: e6:54:28:d2:f9:95:5c:08:9d:c2:6d:9e:fd:93:52: e1:c6:5e:2d:2f:34:b1:84:32:cb:19:1a:1a:9a:38: fe:4e:9d:bb:2a:67:46:cd:63:bb:ce:eb:1f:68:4f: 25:f1:ab:50:3d:9d:b5:03:0f:83:8e:37:17:25:57: 69:86:f0:f5:62:12:1e:b1:61:60:00:51:97:1b:3d: 16:4a:cd:52:0f:a8:0f:e5:96:7a:7f:be:18:98:a4: e4:24:75:8e:a3:74:cb:74:d4:df:af:2e:0c:4d:67: 9b:5c:66:97:8d:6b:ff:e0:0e:9f:4d:57:cf:b6:99: a0:c1:88:0a:a1:e4:29:69:45:5c:85:cf:e1:46:35: 7b:02:9d:e7:2a:9e:93:f1:31:53:20:1f:8b:69:e5: f9:9a:63:c4:14:40:9d:1d:84:38:0f:3e:3b:f0:d4: 52:3f:54:07:0f:a1:85:e2:f6:7a:58:0e:a0:6b:dd: 13:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:20:17:03:49:15:F1:34:0F:22:E6:EB:4F:92:A6:87:1A:00:DE:B6 X509v3 Authority Key Identifier: keyid:05:01:47:B9:4D:C9:D6:CB:E8:C0:B0:F1:AD:0C:01:83:A6:07:7C:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQFHuU3J1svowLDxrQwBg6YHfDQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:e2:c5:4f:49:4b:60:b8:9f:23:17:fa:36:cd:33:ff:1f:80: a9:3d:39:86:a2:03:b0:41:48:14:fe:fa:26:51:3e:5d:e8:a4: 69:23:de:86:5e:bc:1e:6e:48:6b:2c:66:54:73:f4:e0:bf:a7: bf:cd:e8:3c:5b:0a:30:7c:6f:bc:d5:90:1f:f5:df:f1:7e:a5: f0:90:db:b1:ab:f9:c1:a1:67:d5:ca:d3:84:ec:e9:ce:bc:71: 9d:1d:4e:3b:82:8f:32:b3:37:f8:e3:de:a0:c3:96:51:de:d3: 46:58:17:4d:9c:b4:1d:ee:35:93:41:25:d4:3f:c7:a4:df:13: 52:e7:89:56:9e:12:ac:39:21:6e:3a:47:fb:ba:f1:5e:b0:1b: be:d0:79:e3:c5:13:7a:8b:19:5d:92:d9:0b:f9:52:15:74:21: 84:a1:2b:2d:49:fe:a3:aa:9e:e4:11:ca:d2:b7:ba:76:8d:47: f0:1c:5c:36:66:d8:bd:eb:a5:7e:8a:0f:e5:f5:63:74:c1:f3: a9:bc:5a:98:a8:3b:67:e5:13:07:ce:52:e5:19:4c:5b:87:26: 24:f2:f8:ff:b5:f6:ba:89:ac:af:8e:08:fa:23:a1:39:24:c3: 4d:8e:7f:e4:ab:02:7c:7e:86:02:d0:13:05:39:05:de:3b:cb: bf:68:86:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjI5QUExMTAvBgNVBAUTKDA1MDE0N0I5NERDOUQ2Q0JFOEMwQjBGMUFEMEMwMTgz QTYwNzdDMzQwHhcNMjUxMjA1MDIzMTMyWhcNMjUxMjEyMDIzMTMyWjAYMRYwFAYD VQQDEw02OTMyNDQwNC1kZWZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAynKMgGFrT7RIS40t1tdoB7U6wPYhUphlHHLB3xFrsgN2++MlDlNWjKNgtj0K XmIq0E8I90d5QjnhIDxVr+J9ItYHSEjw8OEt1m/mVCjS+ZVcCJ3CbZ79k1Lhxl4t LzSxhDLLGRoamjj+Tp27KmdGzWO7zusfaE8l8atQPZ21Aw+DjjcXJVdphvD1YhIe sWFgAFGXGz0WSs1SD6gP5ZZ6f74YmKTkJHWOo3TLdNTfry4MTWebXGaXjWv/4A6f TVfPtpmgwYgKoeQpaUVchc/hRjV7Ap3nKp6T8TFTIB+LaeX5mmPEFECdHYQ4Dz47 8NRSP1QHD6GF4vZ6WA6ga90TlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKsgFwNJ FfE0DyLm60+SpocaAN62MB8GA1UdIwQYMBaAFAUBR7lNydbL6MCw8a0MAYOmB3w0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MjlBQS81RjA2OTNGNEU3 NDkxMUVFQkM1MjZGMjlDNEY5QUUwMi9CUUZIdVUzSjFzdm93TER4clF3Qmc2WUhm RFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JRRkh1VTNKMXN2b3dMRHhyUXdCZzZZSGZEUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MjlBQS81RjA2OTNGNEU3NDkxMUVFQkM1MjZGMjlDNEY5QUUwMi9CUUZIdVUzSjFz dm93TER4clF3Qmc2WUhmRFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAD4sVPSUtguJ8jF/o2zTP/H4CpPTmGogOwQUgU/vomUT5d6KRpI96G XrwebkhrLGZUc/Tgv6e/zeg8WwowfG+81ZAf9d/xfqXwkNuxq/nBoWfVytOE7OnO vHGdHU47go8yszf4496gw5ZR3tNGWBdNnLQd7jWTQSXUP8ek3xNS54lWnhKsOSFu Okf7uvFesBu+0HnjxRN6ixldktkL+VIVdCGEoSstSf6jqp7kEcrSt7p2jUfwHFw2 Zti966V+ig/l9WN0wfOpvFqYqDtn5RMHzlLlGUxbhyYk8vj/tfa6iayvjgj6I6E5 JMNNjn/kqwJ8foYC0BMFOQXeO8u/aIbM -----END CERTIFICATE-----Generated at Sat Dec 6 19:38:49 2025 by rpki-client