This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFBA9/5730159AA77511F094DEBF2DC4F9AE02/BFm798uEwX7tUbaM6tlBlX14X68.mft File: BFm798uEwX7tUbaM6tlBlX14X68.mft (raw, json) Hash identifier: /9F1JHxa6C3oAfX57MSUdC4uEkJy//ku6+Liu8RCG4A= Subject key identifier: F6:B7:0B:02:70:D4:8D:F1:A1:DF:36:AF:A3:36:F8:B3:EF:07:BE:08 Authority key identifier: 04:59:BB:F7:CB:84:C1:7E:ED:51:B6:8C:EA:D9:41:95:7D:78:5F:AF Certificate issuer: /CN=A91CFBA9/serialNumber=0459BBF7CB84C17EED51B68CEAD941957D785FAF Certificate serial: 22 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BFm798uEwX7tUbaM6tlBlX14X68.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFBA9/5730159AA77511F094DEBF2DC4F9AE02/BFm798uEwX7tUbaM6tlBlX14X68.mft Manifest number: 20 Signing time: Fri 05 Dec 2025 05:37:00 +0000 Manifest this update: Fri 05 Dec 2025 05:37:00 +0000 Manifest next update: Fri 12 Dec 2025 05:37:00 +0000 Files and hashes: 1: BFm798uEwX7tUbaM6tlBlX14X68.crl (hash: TgYFwXwQ93siqo+O3KBPJZtmqU6+g7FN9S6uW4F1UUg=) 2: 88B9736AA77811F092FD731BC4F9AE02.roa (hash: u+cn9UutTPsBz+rSTM9fD/qL+39w/7zRbkPYbDsgfs4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFBA9/5730159AA77511F094DEBF2DC4F9AE02/BFm798uEwX7tUbaM6tlBlX14X68.crl rsync://rpki.apnic.net/member_repository/A91CFBA9/5730159AA77511F094DEBF2DC4F9AE02/BFm798uEwX7tUbaM6tlBlX14X68.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BFm798uEwX7tUbaM6tlBlX14X68.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 05:36:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34 (0x22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFBA9, serialNumber=0459BBF7CB84C17EED51B68CEAD941957D785FAF Validity Not Before: Dec 5 05:37:00 2025 GMT Not After : Dec 12 05:37:00 2025 GMT Subject: CN=69326f7c-e862 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:e7:41:78:c0:8a:f2:10:e1:7c:ff:11:e9:08: 41:03:83:f7:2a:55:08:68:f5:9d:d1:93:e9:1a:14: 47:85:35:98:0b:b6:82:f3:2e:af:71:6d:a2:cc:58: b9:ee:02:7c:9e:17:55:33:75:76:ad:19:a8:04:c7: e7:41:6f:78:9e:be:0d:1a:c6:9a:47:d8:38:1f:35: f0:6b:7e:d9:34:99:57:13:23:6d:c1:98:23:2b:d4: a5:9c:b0:c4:61:71:af:a2:d7:5c:5f:5c:8a:ff:50: 9d:26:e2:1d:7f:01:cf:81:02:13:21:66:2f:7b:dc: fe:26:41:b7:96:b7:a3:77:ee:bd:29:d7:8d:7b:26: d8:a9:e1:4e:bb:ff:0c:90:7c:1c:45:90:8e:5a:ec: f3:b9:1d:90:64:0e:0b:21:c5:fc:19:7e:be:65:45: 25:a7:60:11:9a:3d:88:de:66:d5:e5:fa:6b:71:2a: 68:4d:d3:3f:9e:8c:83:ec:17:b3:06:90:d6:24:af: 17:5f:18:96:b3:c2:d5:b0:f4:53:5a:c8:99:10:75: 5d:c2:7b:a7:90:e7:fe:7c:ed:a0:6f:e9:4a:7d:a1: 05:84:c1:03:4f:90:9a:ac:8e:79:dd:7f:8f:6b:da: e6:41:fe:74:19:7c:cf:a6:b9:a2:30:98:43:fe:a0: 0c:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:B7:0B:02:70:D4:8D:F1:A1:DF:36:AF:A3:36:F8:B3:EF:07:BE:08 X509v3 Authority Key Identifier: keyid:04:59:BB:F7:CB:84:C1:7E:ED:51:B6:8C:EA:D9:41:95:7D:78:5F:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFBA9/5730159AA77511F094DEBF2DC4F9AE02/BFm798uEwX7tUbaM6tlBlX14X68.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BFm798uEwX7tUbaM6tlBlX14X68.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFBA9/5730159AA77511F094DEBF2DC4F9AE02/BFm798uEwX7tUbaM6tlBlX14X68.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:14:ca:8a:1c:7b:3d:46:59:8e:3d:9f:db:24:57:57:c5:09: 9b:a7:4d:32:11:96:a1:d0:fc:22:5f:0f:90:78:9d:fd:0a:d6: 9b:cf:29:3d:78:37:0f:76:41:bc:f5:df:19:8c:a2:df:91:a2: f1:17:50:2a:38:3f:31:3d:7c:72:0d:8a:e7:b8:bf:e1:80:bb: 71:35:ef:65:7c:c0:85:89:ec:9e:5f:e9:94:2b:25:6d:13:39: 46:97:28:4d:b6:b2:42:c1:86:f2:ca:0a:31:30:3a:83:7b:df: 60:8c:e1:21:6a:94:16:05:f5:12:b2:c9:66:15:b4:be:a7:2a: dd:1e:3d:f5:59:f3:58:ef:cb:4c:70:fd:64:79:f7:28:61:0a: 83:5a:09:b8:1f:5c:90:2e:e0:c1:07:3e:82:62:03:8e:d4:9d: a3:77:ae:a5:6d:f2:6e:7e:b5:11:97:59:36:f6:09:1a:82:3e: 9b:09:28:ed:f0:2b:79:bf:dc:e4:25:ad:17:34:f5:4a:60:6b: 72:db:ef:b5:02:fa:1e:dd:13:a5:94:59:8f:95:68:a4:bc:03: ab:bc:00:05:59:7a:59:fa:67:7c:0b:18:b8:91:02:de:5b:f4: ce:80:57:d4:e8:16:70:b8:30:c9:24:f8:e1:39:9b:16:a9:4c: d3:4b:b8:2a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBIjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD RkJBOTExMC8GA1UEBRMoMDQ1OUJCRjdDQjg0QzE3RUVENTFCNjhDRUFEOTQxOTU3 RDc4NUZBRjAeFw0yNTEyMDUwNTM3MDBaFw0yNTEyMTIwNTM3MDBaMBgxFjAUBgNV BAMTDTY5MzI2ZjdjLWU4NjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCe50F4wIryEOF8/xHpCEEDg/cqVQho9Z3Rk+kaFEeFNZgLtoLzLq9xbaLMWLnu AnyeF1UzdXatGagEx+dBb3ievg0axppH2DgfNfBrftk0mVcTI23BmCMr1KWcsMRh ca+i11xfXIr/UJ0m4h1/Ac+BAhMhZi973P4mQbeWt6N37r0p1417Jtip4U67/wyQ fBxFkI5a7PO5HZBkDgshxfwZfr5lRSWnYBGaPYjeZtXl+mtxKmhN0z+ejIPsF7MG kNYkrxdfGJazwtWw9FNayJkQdV3Ce6eQ5/587aBv6Up9oQWEwQNPkJqsjnndf49r 2uZB/nQZfM+muaIwmEP+oAxHAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU9rcLAnDU jfGh3zavozb4s+8HvggwHwYDVR0jBBgwFoAUBFm798uEwX7tUbaM6tlBlX14X68w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNGQkE5LzU3MzAxNTlBQTc3 NTExRjA5NERFQkYyREM0RjlBRTAyL0JGbTc5OHVFd1g3dFViYU02dGxCbFgxNFg2 OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvQkZtNzk4dUV3WDd0VWJhTTZ0bEJsWDE0WDY4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNG QkE5LzU3MzAxNTlBQTc3NTExRjA5NERFQkYyREM0RjlBRTAyL0JGbTc5OHVFd1g3 dFViYU02dGxCbFgxNFg2OC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACcUyoocez1GWY49n9skV1fFCZunTTIRlqHQ/CJfD5B4nf0K1pvPKT14 Nw92Qbz13xmMot+RovEXUCo4PzE9fHINiue4v+GAu3E172V8wIWJ7J5f6ZQrJW0T OUaXKE22skLBhvLKCjEwOoN732CM4SFqlBYF9RKyyWYVtL6nKt0ePfVZ81jvy0xw /WR59yhhCoNaCbgfXJAu4MEHPoJiA47UnaN3rqVt8m5+tRGXWTb2CRqCPpsJKO3w K3m/3OQlrRc09Upga3Lb77UC+h7dE6WUWY+VaKS8A6u8AAVZeln6Z3wLGLiRAt5b 9M6AV9ToFnC4MMkk+OE5mxapTNNLuCo= -----END CERTIFICATE-----Generated at Sun Dec 7 01:55:33 2025 by rpki-client