This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.mft File: bzPCWtM2F4RBLEKweYYz0Dslvso.mft (raw, json) Hash identifier: NOkHGOCZqPd3QIxGZs5YEOGHuB3+YlcZY3t2wPROWAY= Subject key identifier: FE:E0:F0:D9:10:72:26:E8:20:DB:63:37:00:33:D9:96:8E:13:D4:2A Authority key identifier: 6F:33:C2:5A:D3:36:17:84:41:2C:42:B0:79:86:33:D0:3B:25:BE:CA Certificate issuer: /CN=A91AB027/serialNumber=6F33C25AD3361784412C42B0798633D03B25BECA Certificate serial: 0F95 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bzPCWtM2F4RBLEKweYYz0Dslvso.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.mft Manifest number: 0F8C Signing time: Sat 06 Dec 2025 17:01:27 +0000 Manifest this update: Sat 06 Dec 2025 17:01:26 +0000 Manifest next update: Sat 13 Dec 2025 17:01:26 +0000 Files and hashes: 1: bzPCWtM2F4RBLEKweYYz0Dslvso.crl (hash: wgka26wup7kqocxnx/nm7JLIAU+jklSCjG2kETGQ58c=) 2: 62C1F5587ACD11E9AC0A867BC4F9AE02.roa (hash: zJtFuv9ERKF2VcP0kXnp4PcKZFEJbjxQnX3bWZEEZas=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.crl rsync://rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bzPCWtM2F4RBLEKweYYz0Dslvso.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3989 (0xf95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB027, serialNumber=6F33C25AD3361784412C42B0798633D03B25BECA Validity Not Before: Dec 6 17:01:26 2025 GMT Not After : Dec 13 17:01:26 2025 GMT Subject: CN=69346167-017e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:03:c9:2f:37:f9:42:f4:94:bb:70:37:a9:4b: eb:d2:e4:fd:80:75:17:f9:c7:e1:06:c4:01:a6:0c: d3:05:89:7b:70:e6:77:4e:de:ec:5e:fa:c3:78:33: cc:df:5c:f6:1c:d8:80:f0:90:5f:a4:58:b4:2c:f2: ea:5c:2c:1b:e1:5b:f7:70:7d:23:ae:4b:ee:0a:a3: e3:73:b3:0f:99:c9:a3:ea:80:10:bd:5a:75:cd:e9: 72:ec:34:b3:c2:31:a4:79:d6:26:6c:3c:f4:82:a2: f6:9a:f4:86:f5:63:32:16:dd:67:bb:80:53:21:df: 40:22:77:9e:5d:0d:95:dd:6e:2e:92:a9:ec:92:40: 77:a8:08:99:ee:93:bd:bb:22:04:5e:a2:b6:b1:1d: cf:85:a0:89:35:b7:d5:5f:00:a5:db:c4:c1:7f:d4: df:9c:4a:24:ea:c2:f2:f5:9a:51:b7:5e:a2:d6:de: 04:4a:44:86:ad:40:2f:b5:e4:02:d3:0f:fe:28:83: fa:b2:18:4f:a7:f2:07:65:30:ec:f0:36:ec:5a:66: 6d:9a:e2:8f:86:41:85:1d:9a:f6:b5:06:97:f3:29: fd:2e:dd:bb:1c:e3:70:00:f2:e5:41:1e:4b:fb:6d: f8:dd:d9:73:56:ea:fc:fe:3e:73:6f:86:28:83:ff: 30:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:E0:F0:D9:10:72:26:E8:20:DB:63:37:00:33:D9:96:8E:13:D4:2A X509v3 Authority Key Identifier: keyid:6F:33:C2:5A:D3:36:17:84:41:2C:42:B0:79:86:33:D0:3B:25:BE:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bzPCWtM2F4RBLEKweYYz0Dslvso.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:89:56:53:88:f5:8a:1b:f9:34:9e:5b:a8:16:97:dd:e7:0e: 4b:ec:dd:6d:b6:e7:44:6c:b6:3f:5d:cb:45:eb:61:57:fa:76: 3d:9b:2b:39:2b:a9:2f:ee:f4:6f:68:a2:84:47:e6:74:ad:b4: 46:92:4a:6e:32:72:01:b9:6c:4b:0e:b1:08:a7:c8:55:f0:9b: 7d:bd:2e:b3:a7:c5:de:26:b0:72:e4:49:6b:d1:4b:e5:c2:03: e3:12:b0:14:a3:47:2c:a3:a3:49:f4:c9:8f:7e:27:ce:3e:44: 29:db:98:9c:50:38:16:15:81:75:6a:09:da:e2:81:42:b0:2d: a7:c2:54:53:21:26:b5:f1:e4:70:9f:b2:f3:b1:cf:ec:1a:a6: e6:5e:b8:45:fe:2d:6d:22:b2:42:e5:60:1e:1f:6d:a1:03:c9: 9f:f0:74:20:10:f4:00:31:5e:88:70:fd:a7:dd:dc:2c:fd:43: 4b:46:9a:19:6f:22:36:6f:2e:86:e5:db:17:a7:be:bd:1c:cd: d9:5d:41:33:e8:ac:9d:37:3f:28:66:06:d4:05:f7:d6:69:74: 25:33:a7:e8:20:24:ce:d5:d8:b6:1c:14:72:f8:d5:3a:2e:46: 36:62:50:40:13:e0:ba:62:27:04:e9:e4:95:23:d8:17:43:94: 91:8f:e3:8f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD5UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUIwMjcxMTAvBgNVBAUTKDZGMzNDMjVBRDMzNjE3ODQ0MTJDNDJCMDc5ODYzM0Qw M0IyNUJFQ0EwHhcNMjUxMjA2MTcwMTI2WhcNMjUxMjEzMTcwMTI2WjAYMRYwFAYD VQQDEw02OTM0NjE2Ny0wMTdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArwPJLzf5QvSUu3A3qUvr0uT9gHUX+cfhBsQBpgzTBYl7cOZ3Tt7sXvrDeDPM 31z2HNiA8JBfpFi0LPLqXCwb4Vv3cH0jrkvuCqPjc7MPmcmj6oAQvVp1zely7DSz wjGkedYmbDz0gqL2mvSG9WMyFt1nu4BTId9AIneeXQ2V3W4ukqnskkB3qAiZ7pO9 uyIEXqK2sR3PhaCJNbfVXwCl28TBf9TfnEok6sLy9ZpRt16i1t4ESkSGrUAvteQC 0w/+KIP6shhPp/IHZTDs8DbsWmZtmuKPhkGFHZr2tQaX8yn9Lt27HONwAPLlQR5L +2343dlzVur8/j5zb4Yog/8w7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP7g8NkQ ciboINtjNwAz2ZaOE9QqMB8GA1UdIwQYMBaAFG8zwlrTNheEQSxCsHmGM9A7Jb7K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjAyNy82OEY3NTkxMDcz NDYxMUU5QUQ1NjFCNDdDNEY5QUUwMi9ielBDV3RNMkY0UkJMRUt3ZVlZejBEc2x2 c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J6UENXdE0yRjRSQkxFS3dlWVl6MERzbHZzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjAyNy82OEY3NTkxMDczNDYxMUU5QUQ1NjFCNDdDNEY5QUUwMi9ielBDV3RNMkY0 UkJMRUt3ZVlZejBEc2x2c28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbiVZTiPWKG/k0nluoFpfd5w5L7N1ttudEbLY/XctF62FX+nY9mys5 K6kv7vRvaKKER+Z0rbRGkkpuMnIBuWxLDrEIp8hV8Jt9vS6zp8XeJrBy5Elr0Uvl wgPjErAUo0cso6NJ9MmPfifOPkQp25icUDgWFYF1agna4oFCsC2nwlRTISa18eRw n7Lzsc/sGqbmXrhF/i1tIrJC5WAeH22hA8mf8HQgEPQAMV6IcP2n3dws/UNLRpoZ byI2by6G5dsXp769HM3ZXUEz6KydNz8oZgbUBffWaXQlM6foICTO1di2HBRy+NU6 LkY2YlBAE+C6YicE6eSVI9gXQ5SRj+OP -----END CERTIFICATE-----Generated at Sat Dec 6 22:34:32 2025 by rpki-client