This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.mft File: BUM8OuqKSXAsmoLuyV0WtVA86mA.mft (raw, json) Hash identifier: ItN31E6363ue/Jln/gJ/d5xg0/TPFrUmzphaqm29SAI= Subject key identifier: F5:88:BA:CA:B6:02:48:CB:88:65:C2:6B:E0:EC:DD:B2:FB:AD:BF:EF Authority key identifier: 05:43:3C:3A:EA:8A:49:70:2C:9A:82:EE:C9:5D:16:B5:50:3C:EA:60 Certificate issuer: /CN=A91CFFA0/serialNumber=05433C3AEA8A49702C9A82EEC95D16B5503CEA60 Certificate serial: 0DB4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BUM8OuqKSXAsmoLuyV0WtVA86mA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.mft Manifest number: 0D92 Signing time: Sat 06 Dec 2025 17:21:49 +0000 Manifest this update: Sat 06 Dec 2025 17:21:48 +0000 Manifest next update: Sat 13 Dec 2025 17:21:48 +0000 Files and hashes: 1: BUM8OuqKSXAsmoLuyV0WtVA86mA.crl (hash: tR93O/domrWu7jCJHbP9/OE70Tx8QAUm4yu/1PLrlDw=) 2: 83ECD7C40CCA11ED97820077C4F9AE02.roa (hash: tsWCAJh3hDUuF0jt3mDhnNo48pJ1cTxWnbkE+ZQXBxw=) 3: 0E3F36D8C43D11EBAB31777FC4F9AE02.roa (hash: BThAKf2icEZsZqpXgnFl9VpqvpRKYGs7e0515Blb0yw=) 4: 1F4E1CC014D311EA81309110C4F9AE02.roa (hash: zPumQuSa3V5Do5kU4HAy8QEzfyGrDVZPMvaKh+jhJxk=) 5: E6F0F39214CE11EA9E740182C4F9AE02.roa (hash: zpETj3vTU+4JGJFNH2bJangxDJpoV//my0UXRjaLeMk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.crl rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BUM8OuqKSXAsmoLuyV0WtVA86mA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3508 (0xdb4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFFA0, serialNumber=05433C3AEA8A49702C9A82EEC95D16B5503CEA60 Validity Not Before: Dec 6 17:21:48 2025 GMT Not After : Dec 13 17:21:48 2025 GMT Subject: CN=6934662d-b2df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:42:d2:49:63:10:94:87:36:da:5b:2c:7e:e0: 3e:4a:12:fe:82:f7:cf:03:32:ab:0e:86:c3:34:11: 8b:67:6a:45:da:04:90:09:77:7a:a5:63:24:28:0f: b4:dc:57:37:e5:6d:b3:8d:8c:95:ea:62:81:39:0c: 89:39:53:36:5c:c7:02:a0:15:be:86:8e:3f:06:ef: f8:0d:fc:13:47:9b:91:80:75:ec:23:4c:76:e8:7a: 71:74:77:4c:55:63:2d:00:24:4d:cd:72:2b:10:12: fd:84:a9:4c:fd:73:7c:a9:05:c1:f9:61:b8:d3:e0: 21:91:9f:71:1e:79:1a:47:f9:01:2f:27:1e:9d:f7: 62:d2:f1:22:52:a6:23:42:cb:5b:79:4f:c8:ea:26: b4:c2:e9:74:84:5d:0c:65:92:83:ba:cc:a1:9a:b0: 04:6e:9b:06:8e:ad:bc:54:c2:55:fa:e4:b4:94:4f: a5:a8:69:07:21:81:f5:5f:7b:4f:38:d3:4c:ae:d9: 50:8b:ee:13:a7:21:c3:b1:7e:c7:33:db:86:c4:c9: c5:16:ec:94:7d:46:ca:d9:b1:67:2e:4f:cd:c2:88: 70:67:76:79:7c:8c:27:50:7c:f0:68:3e:a5:1d:f4: 10:97:71:06:2f:85:8e:b2:91:b0:77:30:1c:9d:77: f3:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:88:BA:CA:B6:02:48:CB:88:65:C2:6B:E0:EC:DD:B2:FB:AD:BF:EF X509v3 Authority Key Identifier: keyid:05:43:3C:3A:EA:8A:49:70:2C:9A:82:EE:C9:5D:16:B5:50:3C:EA:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BUM8OuqKSXAsmoLuyV0WtVA86mA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:5c:22:b2:83:04:34:63:16:29:f3:9f:be:55:26:7c:10:63: 81:3b:62:4a:b8:bc:83:a7:6a:76:5c:fd:ae:5c:ee:68:bb:13: d3:5b:3f:74:d4:e2:ae:d2:9b:0a:e7:e7:ed:19:13:80:1f:54: 78:9c:bf:70:9b:a0:c3:ca:20:9f:50:f2:52:55:fd:c4:ba:68: e3:d5:75:52:0d:58:2f:fc:2f:19:57:60:ee:02:c4:18:08:0c: 99:0c:7b:83:d8:50:b9:cb:c2:25:71:ab:b0:27:85:cb:df:39: 4e:87:ac:75:4d:5f:f5:b7:09:61:33:66:10:0f:1a:2f:d0:f8: 06:50:3e:f3:b7:9d:6e:1b:ae:06:70:f4:fa:6b:81:43:4e:c3: ca:9a:2c:82:7a:64:99:ed:c9:cf:9d:ed:ff:bd:30:eb:c3:43: b0:50:8b:3b:cb:33:40:1f:30:fc:94:a7:65:ab:08:b1:5c:b8: 34:41:ec:e4:06:d8:7a:7d:a1:65:4a:8e:2a:8f:5f:74:ba:64: 4e:18:25:c4:32:35:e5:1c:ce:8f:a9:ba:f3:45:3f:23:9b:b9: f2:58:59:fd:77:89:34:2a:89:1e:e5:93:82:8e:81:e9:d1:b0: 4f:d5:b6:bd:f2:ee:19:9a:ca:13:7c:16:25:a0:59:f7:86:0b: d4:ec:88:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDbQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZGQTAxMTAvBgNVBAUTKDA1NDMzQzNBRUE4QTQ5NzAyQzlBODJFRUM5NUQxNkI1 NTAzQ0VBNjAwHhcNMjUxMjA2MTcyMTQ4WhcNMjUxMjEzMTcyMTQ4WjAYMRYwFAYD VQQDEw02OTM0NjYyZC1iMmRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvELSSWMQlIc22lssfuA+ShL+gvfPAzKrDobDNBGLZ2pF2gSQCXd6pWMkKA+0 3Fc35W2zjYyV6mKBOQyJOVM2XMcCoBW+ho4/Bu/4DfwTR5uRgHXsI0x26HpxdHdM VWMtACRNzXIrEBL9hKlM/XN8qQXB+WG40+AhkZ9xHnkaR/kBLycenfdi0vEiUqYj QstbeU/I6ia0wul0hF0MZZKDusyhmrAEbpsGjq28VMJV+uS0lE+lqGkHIYH1X3tP ONNMrtlQi+4TpyHDsX7HM9uGxMnFFuyUfUbK2bFnLk/NwohwZ3Z5fIwnUHzwaD6l HfQQl3EGL4WOspGwdzAcnXfz7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPWIusq2 AkjLiGXCa+Ds3bL7rb/vMB8GA1UdIwQYMBaAFAVDPDrqiklwLJqC7sldFrVQPOpg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkZBMC8xNTBCRjY5MEQ4 Q0IxMUU5QkFFMjREMjFDNEY5QUUwMi9CVU04T3VxS1NYQXNtb0x1eVYwV3RWQTg2 bUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JVTThPdXFLU1hBc21vTHV5VjBXdFZBODZtQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkZBMC8xNTBCRjY5MEQ4Q0IxMUU5QkFFMjREMjFDNEY5QUUwMi9CVU04T3VxS1NY QXNtb0x1eVYwV3RWQTg2bUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFXCKygwQ0YxYp85++VSZ8EGOBO2JKuLyDp2p2XP2uXO5ouxPTWz90 1OKu0psK5+ftGROAH1R4nL9wm6DDyiCfUPJSVf3Eumjj1XVSDVgv/C8ZV2DuAsQY CAyZDHuD2FC5y8IlcauwJ4XL3zlOh6x1TV/1twlhM2YQDxov0PgGUD7zt51uG64G cPT6a4FDTsPKmiyCemSZ7cnPne3/vTDrw0OwUIs7yzNAHzD8lKdlqwixXLg0Qezk Bth6faFlSo4qj190umROGCXEMjXlHM6PqbrzRT8jm7nyWFn9d4k0Koke5ZOCjoHp 0bBP1ba98u4ZmsoTfBYloFn3hgvU7Ihw -----END CERTIFICATE-----Generated at Sun Dec 7 01:38:41 2025 by rpki-client