This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8CD2/043C6AF4D8E511EB80685D5FC4F9AE02/bjPVE5klw9tNCFk3zmms03vqeU0.mft File: bjPVE5klw9tNCFk3zmms03vqeU0.mft (raw, json) Hash identifier: 1YFlbwAx7iNy3HIOJhoxrin8PFLfwMnp6Amknt9DAqM= Subject key identifier: 60:55:91:98:27:C4:CD:65:CA:33:46:74:58:2B:1F:8A:AA:71:AD:FD Authority key identifier: 6E:33:D5:13:99:25:C3:DB:4D:08:59:37:CE:69:AC:D3:7B:EA:79:4D Certificate issuer: /CN=A91A8CD2/serialNumber=6E33D5139925C3DB4D085937CE69ACD37BEA794D Certificate serial: 05F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bjPVE5klw9tNCFk3zmms03vqeU0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8CD2/043C6AF4D8E511EB80685D5FC4F9AE02/bjPVE5klw9tNCFk3zmms03vqeU0.mft Manifest number: 05EC Signing time: Sat 20 Dec 2025 22:14:55 +0000 Manifest this update: Sat 20 Dec 2025 22:14:54 +0000 Manifest next update: Sat 27 Dec 2025 22:14:54 +0000 Files and hashes: 1: bjPVE5klw9tNCFk3zmms03vqeU0.crl (hash: QmREsscmCowFAVwypta/IajrI9VUS2O+4qSY5XtlUto=) 2: 5D10DEF0D8E811EB8ACD3C66C4F9AE02.roa (hash: /8hy3Bbn1TLOvORzZ60crKTvCR9C6tYBcsWimqCiQa8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8CD2/043C6AF4D8E511EB80685D5FC4F9AE02/bjPVE5klw9tNCFk3zmms03vqeU0.crl rsync://rpki.apnic.net/member_repository/A91A8CD2/043C6AF4D8E511EB80685D5FC4F9AE02/bjPVE5klw9tNCFk3zmms03vqeU0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bjPVE5klw9tNCFk3zmms03vqeU0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 22:14:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1521 (0x5f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8CD2, serialNumber=6E33D5139925C3DB4D085937CE69ACD37BEA794D Validity Not Before: Dec 20 22:14:54 2025 GMT Not After : Dec 27 22:14:54 2025 GMT Subject: CN=69471fdf-4fac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:66:fb:b8:ee:aa:77:39:f0:2b:4a:8d:c4:b4: be:ef:de:67:e6:3f:4c:dd:a7:67:e3:d3:05:b5:90: 84:5b:c0:21:01:67:52:14:4b:af:65:e0:dc:db:0d: 27:71:ca:23:14:62:65:4a:25:23:23:3a:c1:80:8f: 6d:43:85:f2:50:61:76:36:a6:de:57:7d:b2:03:4a: 11:e4:c6:f1:0b:ca:ea:02:ed:71:e4:58:1d:44:a0: b5:71:fd:5e:49:d2:ab:6b:54:78:e9:86:00:5f:a0: 79:10:a4:71:81:e5:6b:40:88:d5:a8:91:32:51:c3: ea:9e:95:25:25:4f:f5:6f:39:80:dd:2a:d2:1e:c6: 99:96:cd:81:8c:ce:38:0f:4f:69:f5:f7:1d:88:c2: d3:e7:ec:f4:87:cb:de:e5:0c:29:ef:04:9b:6a:b7: 99:3c:53:8a:ec:14:1c:c1:b0:89:0a:9e:dc:ae:15: f9:4d:32:06:85:6f:a0:74:12:63:07:72:b0:84:76: 33:b9:e7:3c:87:45:ba:12:6f:dc:59:04:2a:66:e3: 60:67:5a:64:0a:8a:42:aa:c2:6c:43:8f:67:cd:5e: 4a:c8:9e:c5:76:8a:de:49:ca:f5:6f:e0:d3:fe:8f: c6:85:16:b5:92:b2:7f:81:f1:cb:1b:b3:a0:1d:2f: 17:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:55:91:98:27:C4:CD:65:CA:33:46:74:58:2B:1F:8A:AA:71:AD:FD X509v3 Authority Key Identifier: keyid:6E:33:D5:13:99:25:C3:DB:4D:08:59:37:CE:69:AC:D3:7B:EA:79:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8CD2/043C6AF4D8E511EB80685D5FC4F9AE02/bjPVE5klw9tNCFk3zmms03vqeU0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bjPVE5klw9tNCFk3zmms03vqeU0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8CD2/043C6AF4D8E511EB80685D5FC4F9AE02/bjPVE5klw9tNCFk3zmms03vqeU0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:e9:ee:a7:38:5f:24:ad:f3:e2:6b:8d:20:eb:e5:35:c0:6a: 00:53:eb:d9:bb:3c:ff:fe:8d:2f:01:07:22:e6:14:3a:fc:a9: 59:53:42:e0:15:f0:c3:37:6b:91:14:83:23:7f:9f:73:2f:83: 7c:57:a8:ea:50:92:67:7e:d0:46:a1:65:d5:29:89:a5:f8:6b: c3:1c:f4:e8:b2:c9:9a:7f:52:bb:97:80:23:82:c7:40:e6:be: 5d:ba:81:79:ea:7a:22:ed:44:22:f9:42:40:73:fa:73:fb:e6: db:69:d1:a2:fb:89:64:4a:b5:50:54:83:33:a5:43:de:7f:43: 73:26:51:d0:39:d0:77:20:2a:97:c4:e3:b6:39:ca:8c:6f:3d: 08:c3:91:f0:dc:73:2b:8e:72:ae:6d:c6:6e:92:c8:5f:51:9a: 3c:f2:dd:28:b0:b1:ec:f4:5a:1a:f1:e0:6e:77:10:9b:38:5f: ff:03:ea:8c:bc:4a:71:71:8f:07:13:ed:c1:e1:5d:5a:be:66: 6f:83:93:14:17:ed:d8:a8:6e:e5:4b:ff:a5:56:da:dd:da:6f: f7:2a:68:54:4b:00:7f:b3:b3:76:33:60:6f:46:4c:15:42:81: 62:4f:2f:aa:8d:eb:66:54:d0:07:7a:ce:98:41:26:4b:1f:04: 45:13:e2:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBfEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QThDRDIxMTAvBgNVBAUTKDZFMzNENTEzOTkyNUMzREI0RDA4NTkzN0NFNjlBQ0Qz N0JFQTc5NEQwHhcNMjUxMjIwMjIxNDU0WhcNMjUxMjI3MjIxNDU0WjAYMRYwFAYD VQQDDA02OTQ3MWZkZi00ZmFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0mb7uO6qdznwK0qNxLS+795n5j9M3adn49MFtZCEW8AhAWdSFEuvZeDc2w0n ccojFGJlSiUjIzrBgI9tQ4XyUGF2NqbeV32yA0oR5MbxC8rqAu1x5FgdRKC1cf1e SdKra1R46YYAX6B5EKRxgeVrQIjVqJEyUcPqnpUlJU/1bzmA3SrSHsaZls2BjM44 D09p9fcdiMLT5+z0h8ve5Qwp7wSbareZPFOK7BQcwbCJCp7crhX5TTIGhW+gdBJj B3KwhHYzuec8h0W6Em/cWQQqZuNgZ1pkCopCqsJsQ49nzV5KyJ7FdoreScr1b+DT /o/GhRa1krJ/gfHLG7OgHS8XGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGBVkZgn xM1lyjNGdFgrH4qqca39MB8GA1UdIwQYMBaAFG4z1ROZJcPbTQhZN85prNN76nlN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOENEMi8wNDNDNkFGNEQ4 RTUxMUVCODA2ODVENUZDNEY5QUUwMi9ialBWRTVrbHc5dE5DRmszem1tczAzdnFl VTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JqUFZFNWtsdzl0TkNGazN6bW1zMDN2cWVVMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OENEMi8wNDNDNkFGNEQ4RTUxMUVCODA2ODVENUZDNEY5QUUwMi9ialBWRTVrbHc5 dE5DRmszem1tczAzdnFlVTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAA6e6nOF8krfPia40g6+U1wGoAU+vZuzz//o0vAQci5hQ6/KlZU0Lg FfDDN2uRFIMjf59zL4N8V6jqUJJnftBGoWXVKYml+GvDHPTossmaf1K7l4AjgsdA 5r5duoF56noi7UQi+UJAc/pz++bbadGi+4lkSrVQVIMzpUPef0NzJlHQOdB3ICqX xOO2OcqMbz0Iw5Hw3HMrjnKubcZukshfUZo88t0osLHs9Foa8eBudxCbOF//A+qM vEpxcY8HE+3B4V1avmZvg5MUF+3YqG7lS/+lVtrd2m/3KmhUSwB/s7N2M2BvRkwV QoFiTy+qjetmVNAHes6YQSZLHwRFE+Ih -----END CERTIFICATE-----Generated at Sun Dec 21 03:51:21 2025 by rpki-client