This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.mft File: bzPCWtM2F4RBLEKweYYz0Dslvso.mft (raw, json) Hash identifier: YxEkxxqYDse7IYXraEDQIb94kLwc4iXEupTERmidSjk= Subject key identifier: 71:AB:9A:03:7E:51:EA:CD:66:2F:ED:63:7D:CA:46:36:0B:46:CD:05 Authority key identifier: 6F:33:C2:5A:D3:36:17:84:41:2C:42:B0:79:86:33:D0:3B:25:BE:CA Certificate issuer: /CN=A91AB027/serialNumber=6F33C25AD3361784412C42B0798633D03B25BECA Certificate serial: 0F9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bzPCWtM2F4RBLEKweYYz0Dslvso.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.mft Manifest number: 0F91 Signing time: Tue 16 Dec 2025 17:24:10 +0000 Manifest this update: Tue 16 Dec 2025 17:24:10 +0000 Manifest next update: Tue 23 Dec 2025 17:24:10 +0000 Files and hashes: 1: bzPCWtM2F4RBLEKweYYz0Dslvso.crl (hash: a4L1RMhHy3EZnm2q4V66uB9AZJCTxp7R+ag8vYDBE1A=) 2: 62C1F5587ACD11E9AC0A867BC4F9AE02.roa (hash: zJtFuv9ERKF2VcP0kXnp4PcKZFEJbjxQnX3bWZEEZas=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.crl rsync://rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bzPCWtM2F4RBLEKweYYz0Dslvso.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Dec 2025 17:24:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3994 (0xf9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB027, serialNumber=6F33C25AD3361784412C42B0798633D03B25BECA Validity Not Before: Dec 16 17:24:10 2025 GMT Not After : Dec 23 17:24:10 2025 GMT Subject: CN=694195ba-95a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:0b:0a:09:35:80:85:0a:ca:dd:cd:15:74:87: 70:f2:76:c6:3e:0d:d2:38:6d:c0:ff:8a:0b:21:17: 26:7d:98:fa:25:ca:d4:7f:7f:d1:ba:bd:74:9b:7b: a8:d3:b1:c3:33:25:0b:03:70:6a:ea:e6:48:7c:91: 46:54:e3:fe:47:aa:81:8f:e1:f6:fc:cc:1b:a9:3a: 12:0d:6e:2e:3f:96:8e:65:50:86:29:db:c7:d0:97: bc:45:07:c6:06:bc:aa:98:73:ab:b2:a3:d6:cb:aa: 02:8b:2a:f1:c9:ba:15:15:db:8b:fb:4c:33:92:e3: 2a:37:d8:9d:1c:9f:25:c8:38:8e:37:e2:a5:6e:3d: 09:9e:94:49:9d:98:49:66:58:2f:cd:e0:8a:dd:c7: 40:d8:10:87:cb:09:f2:63:69:b2:cb:81:7c:32:ba: a1:a6:d0:c3:79:a9:b7:d8:bd:4a:aa:f1:cb:06:39: 13:02:12:9a:5f:be:65:37:23:3e:0f:7a:6b:a1:05: 2b:64:e2:f7:3b:02:4e:9b:3c:38:d9:ab:53:33:54: c5:3e:6d:c0:61:47:96:90:f3:9f:61:7b:36:e9:5d: ea:ae:57:05:48:27:6d:27:31:88:f9:2f:59:ab:c8: f9:f7:6a:08:ab:fc:22:c0:c5:c0:44:38:7f:aa:70: b2:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:AB:9A:03:7E:51:EA:CD:66:2F:ED:63:7D:CA:46:36:0B:46:CD:05 X509v3 Authority Key Identifier: keyid:6F:33:C2:5A:D3:36:17:84:41:2C:42:B0:79:86:33:D0:3B:25:BE:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bzPCWtM2F4RBLEKweYYz0Dslvso.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:ff:60:a2:37:43:b0:f1:66:82:38:ff:ea:2b:4a:d9:d7:d9: bb:cd:68:ff:cc:f5:03:cc:29:e3:08:0c:68:f8:1f:42:54:0b: fc:27:a9:d0:73:60:df:e3:c5:5a:eb:dc:b0:0b:82:67:32:59: 95:74:b1:19:6a:8a:a4:16:60:34:c8:a0:05:4a:55:a6:88:1b: 6d:18:32:68:43:c5:39:44:c2:b1:96:e0:4a:af:5c:d2:d9:f1: aa:92:2c:d0:28:c8:05:2d:bf:6c:df:58:25:16:63:2e:11:c3: 96:0c:07:71:c2:d0:49:c8:64:a7:4f:27:0c:4d:f5:14:12:99: 21:5f:40:63:8d:8b:75:06:54:7d:fe:24:85:67:7d:8a:c4:25: 08:58:1f:99:28:42:9e:63:c7:74:d8:9d:74:03:86:b9:b4:3f: 12:d8:7f:8f:68:bb:e1:d6:1b:eb:87:80:f9:44:e4:f9:b0:17: b4:d1:41:46:10:af:50:fd:36:51:9b:27:3c:0a:28:cf:6a:f6: a8:f2:9f:cd:d0:30:bb:05:47:ac:6c:f9:34:ef:be:c8:13:e1: 1d:22:e7:5a:6f:c0:db:f2:53:54:3e:1f:c6:b2:40:b3:36:ce: 1c:94:3f:94:6f:1e:4c:9a:ff:c3:57:bd:02:0f:67:da:52:dc: fd:85:43:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD5owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUIwMjcxMTAvBgNVBAUTKDZGMzNDMjVBRDMzNjE3ODQ0MTJDNDJCMDc5ODYzM0Qw M0IyNUJFQ0EwHhcNMjUxMjE2MTcyNDEwWhcNMjUxMjIzMTcyNDEwWjAYMRYwFAYD VQQDDA02OTQxOTViYS05NWExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtgsKCTWAhQrK3c0VdIdw8nbGPg3SOG3A/4oLIRcmfZj6JcrUf3/Rur10m3uo 07HDMyULA3Bq6uZIfJFGVOP+R6qBj+H2/MwbqToSDW4uP5aOZVCGKdvH0Je8RQfG BryqmHOrsqPWy6oCiyrxyboVFduL+0wzkuMqN9idHJ8lyDiON+Klbj0JnpRJnZhJ ZlgvzeCK3cdA2BCHywnyY2myy4F8MrqhptDDeam32L1KqvHLBjkTAhKaX75lNyM+ D3proQUrZOL3OwJOmzw42atTM1TFPm3AYUeWkPOfYXs26V3qrlcFSCdtJzGI+S9Z q8j592oIq/wiwMXARDh/qnCyeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHGrmgN+ UerNZi/tY33KRjYLRs0FMB8GA1UdIwQYMBaAFG8zwlrTNheEQSxCsHmGM9A7Jb7K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjAyNy82OEY3NTkxMDcz NDYxMUU5QUQ1NjFCNDdDNEY5QUUwMi9ielBDV3RNMkY0UkJMRUt3ZVlZejBEc2x2 c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J6UENXdE0yRjRSQkxFS3dlWVl6MERzbHZzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjAyNy82OEY3NTkxMDczNDYxMUU5QUQ1NjFCNDdDNEY5QUUwMi9ielBDV3RNMkY0 UkJMRUt3ZVlZejBEc2x2c28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBA/2CiN0Ow8WaCOP/qK0rZ19m7zWj/zPUDzCnjCAxo+B9CVAv8J6nQ c2Df48Va69ywC4JnMlmVdLEZaoqkFmA0yKAFSlWmiBttGDJoQ8U5RMKxluBKr1zS 2fGqkizQKMgFLb9s31glFmMuEcOWDAdxwtBJyGSnTycMTfUUEpkhX0BjjYt1BlR9 /iSFZ32KxCUIWB+ZKEKeY8d02J10A4a5tD8S2H+PaLvh1hvrh4D5ROT5sBe00UFG EK9Q/TZRmyc8CijPavao8p/N0DC7BUesbPk0777IE+EdIudab8Db8lNUPh/GskCz Ns4clD+Ubx5Mmv/DV70CD2faUtz9hUMk -----END CERTIFICATE-----Generated at Thu Dec 18 11:22:19 2025 by rpki-client