This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9B3C/3F3362DA86FA11EBB3C7BB29C4F9AE02/b2FOWP6Tat901zb1OS3tX9FrdYc.mft File: b2FOWP6Tat901zb1OS3tX9FrdYc.mft (raw, json) Hash identifier: ONZpphcTuqRjdAt22CDkTmbPVs3pxAAL3yS2rD00Iys= Subject key identifier: 82:5C:28:6D:47:DA:FD:88:6A:47:03:69:13:E1:FF:6A:A9:B2:5A:D9 Authority key identifier: 6F:61:4E:58:FE:93:6A:DF:74:D7:36:F5:39:2D:ED:5F:D1:6B:75:87 Certificate issuer: /CN=A91A9B3C/serialNumber=6F614E58FE936ADF74D736F5392DED5FD16B7587 Certificate serial: 06B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2FOWP6Tat901zb1OS3tX9FrdYc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9B3C/3F3362DA86FA11EBB3C7BB29C4F9AE02/b2FOWP6Tat901zb1OS3tX9FrdYc.mft Manifest number: 06B4 Signing time: Thu 04 Dec 2025 21:04:24 +0000 Manifest this update: Thu 04 Dec 2025 21:04:23 +0000 Manifest next update: Thu 11 Dec 2025 21:04:23 +0000 Files and hashes: 1: b2FOWP6Tat901zb1OS3tX9FrdYc.crl (hash: bynMvJfW91izyh2Cv+rfoaUmmRkFHgW0ZaB6MfxbuDA=) 2: 00D8BE5286FC11EB8A95642DC4F9AE02.roa (hash: k0J17sE1EdNCFMHPLLouV8rIaMP7CAywUqJdG5phE9Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9B3C/3F3362DA86FA11EBB3C7BB29C4F9AE02/b2FOWP6Tat901zb1OS3tX9FrdYc.crl rsync://rpki.apnic.net/member_repository/A91A9B3C/3F3362DA86FA11EBB3C7BB29C4F9AE02/b2FOWP6Tat901zb1OS3tX9FrdYc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2FOWP6Tat901zb1OS3tX9FrdYc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 21:04:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1721 (0x6b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9B3C, serialNumber=6F614E58FE936ADF74D736F5392DED5FD16B7587 Validity Not Before: Dec 4 21:04:23 2025 GMT Not After : Dec 11 21:04:23 2025 GMT Subject: CN=6931f757-b2c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:90:2e:be:99:79:c8:26:fd:fb:b8:a9:35:68: 67:57:00:e1:03:04:2d:81:87:3f:1c:a6:b8:44:9c: 98:84:97:2f:15:26:35:34:fa:70:eb:ad:bb:9e:4b: 66:e6:a8:fc:18:a4:3f:27:62:6f:64:d8:a0:0f:4a: 12:a9:1b:e6:55:58:a8:8c:89:0d:9a:ae:64:d1:88: bf:a3:4b:c1:af:13:a9:4f:87:7b:58:2d:21:cd:32: 80:98:6b:17:56:f6:a4:c2:80:6e:4a:da:f7:aa:cd: 0e:c3:6d:d8:69:5e:eb:78:58:40:a1:f7:c8:88:b5: 4e:b1:87:30:c1:54:08:e3:5e:e2:f9:83:10:65:31: b4:45:4f:e1:fb:20:b5:97:49:17:b6:4d:e3:f5:ac: 55:2a:07:f6:9f:4b:09:61:a4:f3:dc:b5:95:7e:a2: 29:6a:ac:b8:10:aa:d2:b0:c5:ff:9d:57:1b:d8:47: 06:0a:d3:b6:85:b1:fa:27:93:d4:ff:86:bc:3c:e2: 95:99:a7:01:e3:d3:68:54:fb:c3:15:92:f2:05:53: 82:f1:8a:e5:ff:f5:b9:0d:a6:22:0f:64:5e:9e:fe: 2d:97:cd:f8:16:97:ac:6b:51:32:2f:16:e1:27:95: f2:49:1c:04:7d:9a:35:5c:cb:57:c4:7f:27:65:0b: 8e:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:5C:28:6D:47:DA:FD:88:6A:47:03:69:13:E1:FF:6A:A9:B2:5A:D9 X509v3 Authority Key Identifier: keyid:6F:61:4E:58:FE:93:6A:DF:74:D7:36:F5:39:2D:ED:5F:D1:6B:75:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9B3C/3F3362DA86FA11EBB3C7BB29C4F9AE02/b2FOWP6Tat901zb1OS3tX9FrdYc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2FOWP6Tat901zb1OS3tX9FrdYc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9B3C/3F3362DA86FA11EBB3C7BB29C4F9AE02/b2FOWP6Tat901zb1OS3tX9FrdYc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:bd:0c:14:cd:35:08:59:66:2b:b5:b3:45:45:b4:4b:e8:62: 4c:1b:0b:31:12:45:7b:0d:af:9f:7b:b7:47:58:7e:4d:1b:92: 0e:29:30:c5:ca:2b:33:48:7a:da:e2:82:7c:b4:a4:bf:8e:23: 21:17:33:3b:54:03:d2:1f:e5:cb:20:9d:71:7a:3c:c8:e2:19: 57:b0:2f:f4:c2:bd:66:cd:a9:7e:ae:06:bf:57:92:50:37:04: 2c:60:57:7c:7a:78:77:12:ae:80:a5:e1:d1:54:fb:9c:78:d3: 8f:ed:f7:1c:e3:2b:41:10:47:5b:02:0d:09:1f:bc:b5:33:b0: 9b:df:c5:95:57:43:36:69:24:f7:55:41:73:70:d9:9d:d0:12: 45:b4:ff:1e:00:ba:40:e7:d2:83:5c:97:28:e8:e6:a7:f8:0e: 3f:8a:ed:91:c3:16:0f:13:d3:98:49:be:0b:08:1d:73:5d:6e: 44:50:88:28:e8:29:6a:7a:78:9d:12:2f:ad:2b:8a:10:65:b3: 69:1b:a2:98:a8:1c:b7:13:52:57:a6:01:22:ce:ef:24:22:ca: 76:eb:22:38:c3:68:62:05:1e:e8:58:1b:d5:40:18:58:f7:7f: e1:db:f0:82:59:bd:df:93:82:67:e7:93:75:25:e2:83:15:e9: e6:18:99:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBrkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTlCM0MxMTAvBgNVBAUTKDZGNjE0RTU4RkU5MzZBREY3NEQ3MzZGNTM5MkRFRDVG RDE2Qjc1ODcwHhcNMjUxMjA0MjEwNDIzWhcNMjUxMjExMjEwNDIzWjAYMRYwFAYD VQQDEw02OTMxZjc1Ny1iMmMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw5Auvpl5yCb9+7ipNWhnVwDhAwQtgYc/HKa4RJyYhJcvFSY1NPpw6627nktm 5qj8GKQ/J2JvZNigD0oSqRvmVViojIkNmq5k0Yi/o0vBrxOpT4d7WC0hzTKAmGsX VvakwoBuStr3qs0Ow23YaV7reFhAoffIiLVOsYcwwVQI417i+YMQZTG0RU/h+yC1 l0kXtk3j9axVKgf2n0sJYaTz3LWVfqIpaqy4EKrSsMX/nVcb2EcGCtO2hbH6J5PU /4a8POKVmacB49NoVPvDFZLyBVOC8Yrl//W5DaYiD2Renv4tl834Fpesa1EyLxbh J5XySRwEfZo1XMtXxH8nZQuO1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIJcKG1H 2v2IakcDaRPh/2qpslrZMB8GA1UdIwQYMBaAFG9hTlj+k2rfdNc29Tkt7V/Ra3WH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOUIzQy8zRjMzNjJEQTg2 RkExMUVCQjNDN0JCMjlDNEY5QUUwMi9iMkZPV1A2VGF0OTAxemIxT1MzdFg5RnJk WWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2IyRk9XUDZUYXQ5MDF6YjFPUzN0WDlGcmRZYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OUIzQy8zRjMzNjJEQTg2RkExMUVCQjNDN0JCMjlDNEY5QUUwMi9iMkZPV1A2VGF0 OTAxemIxT1MzdFg5RnJkWWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvvQwUzTUIWWYrtbNFRbRL6GJMGwsxEkV7Da+fe7dHWH5NG5IOKTDF yiszSHra4oJ8tKS/jiMhFzM7VAPSH+XLIJ1xejzI4hlXsC/0wr1mzal+rga/V5JQ NwQsYFd8enh3Eq6ApeHRVPuceNOP7fcc4ytBEEdbAg0JH7y1M7Cb38WVV0M2aST3 VUFzcNmd0BJFtP8eALpA59KDXJco6Oan+A4/iu2RwxYPE9OYSb4LCB1zXW5EUIgo 6ClqenidEi+tK4oQZbNpG6KYqBy3E1JXpgEizu8kIsp26yI4w2hiBR7oWBvVQBhY 93/h2/CCWb3fk4Jn55N1JeKDFenmGJla -----END CERTIFICATE-----Generated at Sat Dec 6 13:29:37 2025 by rpki-client