This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.mft File: BQ5HmwmNZLazhlsr5GiFdeotTVE.mft (raw, json) Hash identifier: SeEUggckOXSOXe6zHNVobz+ULZF2EhSx1n/wKGVzmEY= Subject key identifier: 00:D4:E0:39:8D:D4:58:16:DD:11:C3:FE:4C:B5:DC:A5:46:06:A5:6D Authority key identifier: 05:0E:47:9B:09:8D:64:B6:B3:86:5B:2B:E4:68:85:75:EA:2D:4D:51 Certificate issuer: /CN=A91AB457/serialNumber=050E479B098D64B6B3865B2BE4688575EA2D4D51 Certificate serial: 0C22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ5HmwmNZLazhlsr5GiFdeotTVE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.mft Manifest number: 0C22 Signing time: Thu 04 Dec 2025 18:08:00 +0000 Manifest this update: Thu 04 Dec 2025 18:07:59 +0000 Manifest next update: Thu 11 Dec 2025 18:07:59 +0000 Files and hashes: 1: BQ5HmwmNZLazhlsr5GiFdeotTVE.crl (hash: Jx01y0M+mh3t1Y3UP1OD3xYKh/GemEUMeGl/NzkxR/I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.crl rsync://rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ5HmwmNZLazhlsr5GiFdeotTVE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 18:07:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3106 (0xc22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB457, serialNumber=050E479B098D64B6B3865B2BE4688575EA2D4D51 Validity Not Before: Dec 4 18:07:59 2025 GMT Not After : Dec 11 18:07:59 2025 GMT Subject: CN=6931cdff-5243 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:20:c5:32:3d:77:22:82:19:0e:6b:29:9a:f5: 44:f8:02:7c:56:d8:42:b9:9d:8a:82:60:e1:21:27: 35:fe:ec:6f:91:1c:74:cc:bf:cc:6e:f3:48:24:8f: cf:47:38:f3:26:94:a3:b7:85:4b:e1:d2:fd:de:83: ac:f9:b2:fb:a7:46:59:6d:ee:21:1c:0f:ca:0b:f3: 64:a0:e8:1c:83:b4:9d:78:15:d3:8b:65:5f:78:4e: 14:41:a5:04:4f:75:a4:1d:35:e1:04:a1:7c:1a:f3: 61:9b:da:b6:4e:5a:86:b7:09:92:bf:f0:47:03:18: be:e4:f4:0e:74:38:72:9d:4e:dc:ac:cd:c7:af:b8: 24:d3:91:39:bd:76:af:9c:55:43:c1:b9:f9:07:ea: a5:6a:28:cf:4b:9b:b2:45:12:4f:8d:78:40:af:ae: ba:98:06:c5:6c:51:69:d8:05:c1:0c:e2:b1:56:0c: aa:e4:08:8d:ef:57:81:b2:1e:cf:7f:31:60:d1:a2: 62:8b:76:1f:2f:84:21:b7:ce:46:7e:a2:0c:e1:88: 04:48:64:df:e0:4b:42:3c:06:8b:c4:eb:84:a4:98: c7:a3:63:48:7f:36:cb:6d:eb:59:0c:8b:84:b3:3a: 9f:d4:92:de:3d:04:be:20:85:09:4d:ad:49:2a:64: ce:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:D4:E0:39:8D:D4:58:16:DD:11:C3:FE:4C:B5:DC:A5:46:06:A5:6D X509v3 Authority Key Identifier: keyid:05:0E:47:9B:09:8D:64:B6:B3:86:5B:2B:E4:68:85:75:EA:2D:4D:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ5HmwmNZLazhlsr5GiFdeotTVE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:b6:ee:c2:fe:1d:e0:6d:fe:73:a9:51:9d:0c:c9:c1:5b:8d: 82:85:be:80:f5:77:58:14:39:68:53:7b:ed:a6:26:16:ce:eb: 9c:67:d8:7b:be:05:29:39:63:13:c1:68:fe:33:e2:a6:f8:11: 3b:eb:43:2f:30:50:3c:7b:37:3c:ac:27:12:d8:09:ff:dc:b5: b2:a8:44:d5:33:aa:5e:73:ef:db:29:26:0d:77:4c:4d:0b:b3: 35:16:30:a8:52:4c:14:e8:42:41:d7:b9:64:e7:36:b0:7b:33: 05:de:00:1c:bb:64:24:0a:6c:9a:1a:27:f4:19:8c:39:ee:90: ec:4a:fa:c5:30:77:cc:4d:a5:d9:ff:92:d8:81:7b:6a:9b:fc: 5b:e6:7e:b7:58:ee:8f:36:72:a6:17:0e:49:90:b9:1e:43:d4: 22:cd:de:6c:93:36:04:48:62:79:a2:3c:42:11:53:08:72:2b: b6:db:97:0c:08:da:30:ae:d3:ce:73:e2:eb:90:38:7f:61:dc: 91:7e:6b:41:a4:92:ea:40:f4:11:2a:89:7a:f0:06:a4:2e:df: a6:7e:3e:bc:fb:ab:b9:f2:a5:00:2f:08:c6:2b:d3:6d:3b:bd: d9:e2:89:8c:b7:a6:fc:8b:1e:2d:2a:e8:ab:51:7c:7e:c2:7d: 3b:84:d0:a4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDCIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI0NTcxMTAvBgNVBAUTKDA1MEU0NzlCMDk4RDY0QjZCMzg2NUIyQkU0Njg4NTc1 RUEyRDRENTEwHhcNMjUxMjA0MTgwNzU5WhcNMjUxMjExMTgwNzU5WjAYMRYwFAYD VQQDEw02OTMxY2RmZi01MjQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtCDFMj13IoIZDmspmvVE+AJ8VthCuZ2KgmDhISc1/uxvkRx0zL/MbvNIJI/P RzjzJpSjt4VL4dL93oOs+bL7p0ZZbe4hHA/KC/NkoOgcg7SdeBXTi2VfeE4UQaUE T3WkHTXhBKF8GvNhm9q2TlqGtwmSv/BHAxi+5PQOdDhynU7crM3Hr7gk05E5vXav nFVDwbn5B+qlaijPS5uyRRJPjXhAr666mAbFbFFp2AXBDOKxVgyq5AiN71eBsh7P fzFg0aJii3YfL4Qht85GfqIM4YgESGTf4EtCPAaLxOuEpJjHo2NIfzbLbetZDIuE szqf1JLePQS+IIUJTa1JKmTOfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFADU4DmN 1FgW3RHD/ky13KVGBqVtMB8GA1UdIwQYMBaAFAUOR5sJjWS2s4ZbK+RohXXqLU1R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjQ1Ny81QUY2NjEwMjFD OTgxMUVBQjQ3NDNGMEZDNEY5QUUwMi9CUTVIbXdtTlpMYXpobHNyNUdpRmRlb3RU VkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JRNUhtd21OWkxhemhsc3I1R2lGZGVvdFRWRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjQ1Ny81QUY2NjEwMjFDOTgxMUVBQjQ3NDNGMEZDNEY5QUUwMi9CUTVIbXdtTlpM YXpobHNyNUdpRmRlb3RUVkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBetu7C/h3gbf5zqVGdDMnBW42Chb6A9XdYFDloU3vtpiYWzuucZ9h7 vgUpOWMTwWj+M+Km+BE760MvMFA8ezc8rCcS2An/3LWyqETVM6pec+/bKSYNd0xN C7M1FjCoUkwU6EJB17lk5zawezMF3gAcu2QkCmyaGif0GYw57pDsSvrFMHfMTaXZ /5LYgXtqm/xb5n63WO6PNnKmFw5JkLkeQ9Qizd5skzYESGJ5ojxCEVMIciu225cM CNowrtPOc+LrkDh/YdyRfmtBpJLqQPQRKol68AakLt+mfj68+6u58qUALwjGK9Nt O73Z4omMt6b8ix4tKuirUXx+wn07hNCk -----END CERTIFICATE-----Generated at Sat Dec 6 12:18:47 2025 by rpki-client