This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft File: bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft (raw, json) Hash identifier: oPxDgZ9xdgJXu8bmWhCMIxdJ9PGKoE5/saGGnZaTEuE= Subject key identifier: 20:15:9F:97:7A:B8:16:A8:B4:7E:1B:E6:B4:E3:33:C6:77:56:21:E1 Authority key identifier: 6C:19:46:97:81:6F:9B:13:0B:A5:3C:F4:BE:E6:76:01:59:4E:8C:B1 Certificate issuer: /CN=A91CCAF1/serialNumber=6C194697816F9B130BA53CF4BEE67601594E8CB1 Certificate serial: DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft Manifest number: D9 Signing time: Fri 05 Dec 2025 03:38:06 +0000 Manifest this update: Fri 05 Dec 2025 03:38:06 +0000 Manifest next update: Fri 12 Dec 2025 03:38:06 +0000 Files and hashes: 1: bBlGl4FvmxMLpTz0vuZ2AVlOjLE.crl (hash: 9YdGIsztMwJBJI1UkPGufVbQcF09Vytw7l9CCN72G0o=) 2: BF71D9D0F26811EFBC446868C4F9AE02.roa (hash: 2f3u95lJSNskCNREu+ioXj6oMF+zHFPqIr2DagPPIWc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.crl rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 03:38:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 219 (0xdb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CCAF1, serialNumber=6C194697816F9B130BA53CF4BEE67601594E8CB1 Validity Not Before: Dec 5 03:38:06 2025 GMT Not After : Dec 12 03:38:06 2025 GMT Subject: CN=6932539e-3c08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:5a:4b:0b:49:a4:24:e1:a0:20:1e:fd:f4:14: 38:26:85:cf:40:ea:34:84:3f:67:98:59:3c:4d:ec: 9f:f3:d5:93:54:88:a3:91:60:d8:64:49:c4:f9:b6: 9f:fa:c3:ee:03:d0:d3:96:f9:de:be:33:0b:e7:bd: 04:9c:89:b9:45:b2:db:df:54:dc:e6:54:57:84:21: 1a:ea:50:98:73:ff:fb:76:29:ed:d9:2d:ff:1f:f7: 99:8b:95:03:31:f2:55:54:bd:f3:d9:31:de:2f:9c: 37:02:b3:db:9e:b1:98:e7:d7:ab:c2:de:b4:5b:1a: 0a:2d:4f:a5:76:1a:08:cb:a3:d4:cb:00:ea:57:42: 58:b3:1b:56:0d:7b:0b:33:3a:33:68:41:03:57:ad: 13:69:9d:6f:67:0a:6b:93:a0:43:bb:14:ca:45:2e: ce:0f:cc:db:6a:61:a9:d4:e1:b2:38:5c:ea:8d:59: 43:7b:6e:49:56:cb:fa:40:14:ef:30:58:b8:0a:6b: 05:17:b0:61:a2:2e:ee:51:0f:62:93:7c:97:c2:10: 4a:2a:f5:b4:24:23:ae:f3:a3:7c:46:d6:96:cc:97: ba:f9:7f:02:b0:e3:a2:88:6c:1e:a9:c7:dd:da:ec: 53:3f:b2:8a:90:00:80:bf:4e:42:1c:94:4b:bc:71: 04:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:15:9F:97:7A:B8:16:A8:B4:7E:1B:E6:B4:E3:33:C6:77:56:21:E1 X509v3 Authority Key Identifier: keyid:6C:19:46:97:81:6F:9B:13:0B:A5:3C:F4:BE:E6:76:01:59:4E:8C:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:b6:5e:54:ac:cc:4f:b6:42:ed:3f:15:42:35:d0:8c:fc:8e: 3e:99:f9:95:66:07:fe:b6:57:03:13:aa:a5:89:91:c4:b4:25: 8b:0f:46:ed:ea:b2:33:2c:1a:dd:e5:6e:81:81:e7:c7:40:a6: d1:50:4e:7c:2e:2f:85:c5:5e:a0:19:37:62:37:a2:2d:dd:0f: 6e:7b:c6:4b:a6:8f:d8:b8:de:08:eb:0b:35:23:94:76:65:0e: 35:d7:2a:13:38:cd:24:bc:42:b0:de:81:b0:c6:91:81:47:bb: 08:7b:d8:e2:c5:b6:65:e7:4e:44:3b:7d:75:5e:ea:9b:cd:75: 81:12:17:f9:1c:4e:4d:3b:fd:34:02:75:64:23:ab:4d:22:01: 3a:64:3f:21:28:59:14:b2:6e:d6:8c:3a:67:52:53:3f:e1:b2: 83:81:b4:26:e5:21:5f:86:13:ab:50:c9:2f:c5:67:87:a1:c2: 20:93:3d:34:19:e2:e5:5f:86:7b:53:09:36:d5:28:2d:fc:ee: fe:4a:4e:d7:b6:58:f9:fd:fb:48:6a:10:9d:e2:8a:25:cd:1b: 58:1c:54:c9:77:c9:2b:e0:ec:43:83:ad:4a:22:9a:7a:78:eb: bb:5f:04:36:e3:ae:f2:7e:9d:35:2a:e1:36:3d:44:53:9d:f0: 46:60:32:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0NBRjExMTAvBgNVBAUTKDZDMTk0Njk3ODE2RjlCMTMwQkE1M0NGNEJFRTY3NjAx NTk0RThDQjEwHhcNMjUxMjA1MDMzODA2WhcNMjUxMjEyMDMzODA2WjAYMRYwFAYD VQQDEw02OTMyNTM5ZS0zYzA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwVpLC0mkJOGgIB799BQ4JoXPQOo0hD9nmFk8Teyf89WTVIijkWDYZEnE+baf +sPuA9DTlvnevjML570EnIm5RbLb31Tc5lRXhCEa6lCYc//7dint2S3/H/eZi5UD MfJVVL3z2THeL5w3ArPbnrGY59erwt60WxoKLU+ldhoIy6PUywDqV0JYsxtWDXsL MzozaEEDV60TaZ1vZwprk6BDuxTKRS7OD8zbamGp1OGyOFzqjVlDe25JVsv6QBTv MFi4CmsFF7Bhoi7uUQ9ik3yXwhBKKvW0JCOu86N8RtaWzJe6+X8CsOOiiGweqcfd 2uxTP7KKkACAv05CHJRLvHEEBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCAVn5d6 uBaotH4b5rTjM8Z3ViHhMB8GA1UdIwQYMBaAFGwZRpeBb5sTC6U89L7mdgFZToyx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQ0FGMS8wOUMwRDM2NjhB QUQxMUVGQkVGOTE2NkFDNEY5QUUwMi9iQmxHbDRGdm14TUxwVHowdnVaMkFWbE9q TEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JCbEdsNEZ2bXhNTHBUejB2dVoyQVZsT2pMRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Q0FGMS8wOUMwRDM2NjhBQUQxMUVGQkVGOTE2NkFDNEY5QUUwMi9iQmxHbDRGdm14 TUxwVHowdnVaMkFWbE9qTEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCstl5UrMxPtkLtPxVCNdCM/I4+mfmVZgf+tlcDE6qliZHEtCWLD0bt 6rIzLBrd5W6BgefHQKbRUE58Li+FxV6gGTdiN6It3Q9ue8ZLpo/YuN4I6ws1I5R2 ZQ411yoTOM0kvEKw3oGwxpGBR7sIe9jixbZl505EO311XuqbzXWBEhf5HE5NO/00 AnVkI6tNIgE6ZD8hKFkUsm7WjDpnUlM/4bKDgbQm5SFfhhOrUMkvxWeHocIgkz00 GeLlX4Z7Uwk21Sgt/O7+Sk7Xtlj5/ftIahCd4oolzRtYHFTJd8kr4OxDg61KIpp6 eOu7XwQ2467yfp01KuE2PURTnfBGYDIg -----END CERTIFICATE-----Generated at Sat Dec 6 12:10:34 2025 by rpki-client