This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C40D1/CC7830B0C30911E8900E5F21C4F9AE02/bLMNwI7ylzDp3wScVPOVgquFvpQ.mft File: bLMNwI7ylzDp3wScVPOVgquFvpQ.mft (raw, json) Hash identifier: Q1UubPBMxGFjv9SEBhu0F7S6MqHjzZ+WQiSnFL+LISw= Subject key identifier: C8:00:63:EB:5D:42:00:3A:A8:6C:41:2F:1D:F3:D4:49:6C:D4:A0:00 Authority key identifier: 6C:B3:0D:C0:8E:F2:97:30:E9:DF:04:9C:54:F3:95:82:AB:85:BE:94 Certificate issuer: /CN=A91C40D1/serialNumber=6CB30DC08EF29730E9DF049C54F39582AB85BE94 Certificate serial: 1320 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bLMNwI7ylzDp3wScVPOVgquFvpQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C40D1/CC7830B0C30911E8900E5F21C4F9AE02/bLMNwI7ylzDp3wScVPOVgquFvpQ.mft Manifest number: 1314 Signing time: Sat 06 Dec 2025 16:34:12 +0000 Manifest this update: Sat 06 Dec 2025 16:34:11 +0000 Manifest next update: Sat 13 Dec 2025 16:34:11 +0000 Files and hashes: 1: bLMNwI7ylzDp3wScVPOVgquFvpQ.crl (hash: dJ1DtstJ1tGaui2PkmX7M1JJnAIEyvLlGrWUj9i999o=) 2: 18272628C30B11E8A6851824C4F9AE02.roa (hash: zpfEObk6bGVxgP9cE546XnlUvOzTcNHctZB0k7/qSd0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C40D1/CC7830B0C30911E8900E5F21C4F9AE02/bLMNwI7ylzDp3wScVPOVgquFvpQ.crl rsync://rpki.apnic.net/member_repository/A91C40D1/CC7830B0C30911E8900E5F21C4F9AE02/bLMNwI7ylzDp3wScVPOVgquFvpQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bLMNwI7ylzDp3wScVPOVgquFvpQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 16:34:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4896 (0x1320) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C40D1, serialNumber=6CB30DC08EF29730E9DF049C54F39582AB85BE94 Validity Not Before: Dec 6 16:34:11 2025 GMT Not After : Dec 13 16:34:11 2025 GMT Subject: CN=69345b04-b05f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:b5:ee:91:22:c0:15:4d:2e:8d:a1:52:a8:17: 29:00:a1:16:a0:71:88:6d:d9:f5:9b:40:36:ba:03: 40:59:94:c2:6e:d6:e5:56:2c:eb:9c:dc:fb:82:be: 08:67:aa:f6:58:5f:e6:50:2c:ee:af:54:f9:79:87: 16:6b:08:ff:1f:1c:9e:c8:94:56:1a:d6:d4:ff:76: 93:02:b5:b5:89:08:27:9a:54:00:2b:f9:45:15:39: ff:84:83:c9:f5:d0:09:fa:68:5c:de:95:80:54:35: 77:63:0f:b9:b8:56:e6:b8:e1:80:4d:2d:c3:1e:6f: 8f:08:d3:bb:96:27:a7:60:cd:ff:08:ba:97:33:f5: 09:12:de:fe:b1:80:0a:2f:9e:9e:aa:c6:03:b8:36: 36:3f:05:fb:ca:49:14:82:4e:be:ec:28:6e:9b:1b: 99:5f:05:92:a8:26:9e:69:3c:b4:5e:6b:ae:b6:9b: 25:2d:8e:2d:97:fe:7e:27:00:85:2d:7d:65:5a:04: 22:ba:14:e4:41:ac:db:fd:90:de:ab:65:09:6a:c6: 27:be:f0:1d:bf:60:a1:2f:d9:68:d8:7e:23:e5:5c: 86:54:20:21:d9:c5:91:fb:1c:07:8e:cb:40:65:f9: d1:82:b5:a3:d0:1f:29:6d:f1:68:73:0b:50:11:3b: a1:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:00:63:EB:5D:42:00:3A:A8:6C:41:2F:1D:F3:D4:49:6C:D4:A0:00 X509v3 Authority Key Identifier: keyid:6C:B3:0D:C0:8E:F2:97:30:E9:DF:04:9C:54:F3:95:82:AB:85:BE:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C40D1/CC7830B0C30911E8900E5F21C4F9AE02/bLMNwI7ylzDp3wScVPOVgquFvpQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bLMNwI7ylzDp3wScVPOVgquFvpQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C40D1/CC7830B0C30911E8900E5F21C4F9AE02/bLMNwI7ylzDp3wScVPOVgquFvpQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d8:dc:08:1e:6c:c5:d3:58:d8:92:e9:9f:3d:19:53:a5:a9:5d: 9e:47:c2:78:22:32:a3:10:ea:a6:a2:11:45:aa:87:59:cf:0d: bb:00:0e:e0:42:83:8f:ef:24:ef:22:37:32:38:2b:05:26:79: b4:36:de:f9:7b:51:94:24:72:e9:04:02:56:38:ad:36:76:a4: 22:39:17:c8:b4:66:a6:f6:02:2c:da:13:f2:e4:41:30:c8:22: 18:fb:5e:74:7b:23:85:df:f7:44:80:98:86:13:43:ab:1c:36: d6:b4:d8:30:76:48:45:c9:7b:05:bf:b3:6a:b0:47:c3:4d:9e: 6f:c1:a6:15:18:72:7b:6e:d2:2a:9f:e9:0c:af:bf:34:6f:e7: ce:0f:60:ea:59:c5:bc:60:2e:47:57:07:3e:2e:dd:38:6c:81: e6:a7:d2:92:a7:e5:19:4d:fa:54:52:ea:37:2c:26:5a:52:55: 88:05:44:5a:37:19:2c:af:6b:4a:e4:1f:34:c1:37:71:80:a4: ed:52:99:49:9e:f9:64:74:a3:54:1b:4f:39:d1:12:12:24:50: 61:fb:15:fd:39:ab:48:88:b1:32:06:01:96:14:ae:12:02:c6: 51:0d:90:27:1a:9f:d5:9f:58:15:cf:fe:77:d6:f9:93:e0:17: 3d:69:84:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEyAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzQwRDExMTAvBgNVBAUTKDZDQjMwREMwOEVGMjk3MzBFOURGMDQ5QzU0RjM5NTgy QUI4NUJFOTQwHhcNMjUxMjA2MTYzNDExWhcNMjUxMjEzMTYzNDExWjAYMRYwFAYD VQQDEw02OTM0NWIwNC1iMDVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4bXukSLAFU0ujaFSqBcpAKEWoHGIbdn1m0A2ugNAWZTCbtblVizrnNz7gr4I Z6r2WF/mUCzur1T5eYcWawj/HxyeyJRWGtbU/3aTArW1iQgnmlQAK/lFFTn/hIPJ 9dAJ+mhc3pWAVDV3Yw+5uFbmuOGATS3DHm+PCNO7lienYM3/CLqXM/UJEt7+sYAK L56eqsYDuDY2PwX7ykkUgk6+7ChumxuZXwWSqCaeaTy0XmuutpslLY4tl/5+JwCF LX1lWgQiuhTkQazb/ZDeq2UJasYnvvAdv2ChL9lo2H4j5VyGVCAh2cWR+xwHjstA ZfnRgrWj0B8pbfFocwtQETuhHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMgAY+td QgA6qGxBLx3z1Els1KAAMB8GA1UdIwQYMBaAFGyzDcCO8pcw6d8EnFTzlYKrhb6U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNDBEMS9DQzc4MzBCMEMz MDkxMUU4OTAwRTVGMjFDNEY5QUUwMi9iTE1Od0k3eWx6RHAzd1NjVlBPVmdxdUZ2 cFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JMTU53STd5bHpEcDN3U2NWUE9WZ3F1RnZwUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NDBEMS9DQzc4MzBCMEMzMDkxMUU4OTAwRTVGMjFDNEY5QUUwMi9iTE1Od0k3eWx6 RHAzd1NjVlBPVmdxdUZ2cFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDY3AgebMXTWNiS6Z89GVOlqV2eR8J4IjKjEOqmohFFqodZzw27AA7g QoOP7yTvIjcyOCsFJnm0Nt75e1GUJHLpBAJWOK02dqQiORfItGam9gIs2hPy5EEw yCIY+150eyOF3/dEgJiGE0OrHDbWtNgwdkhFyXsFv7NqsEfDTZ5vwaYVGHJ7btIq n+kMr780b+fOD2DqWcW8YC5HVwc+Lt04bIHmp9KSp+UZTfpUUuo3LCZaUlWIBURa Nxksr2tK5B80wTdxgKTtUplJnvlkdKNUG0850RISJFBh+xX9OatIiLEyBgGWFK4S AsZRDZAnGp/Vn1gVz/531vmT4Bc9aYRE -----END CERTIFICATE-----Generated at Sun Dec 7 03:42:53 2025 by rpki-client