This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5BA2/14FEC2EC579311ECBA2FB048C4F9AE02/bKwrcgiF6COCTBln7fw2Psh0do0.mft File: bKwrcgiF6COCTBln7fw2Psh0do0.mft (raw, json) Hash identifier: pbATlQLepsAMMDeZ/tYqNp3wowpq4I6maU3wlUbv3W0= Subject key identifier: E0:5C:95:22:A3:01:08:D4:EC:2C:03:0F:6C:49:B4:99:C4:6B:B2:44 Authority key identifier: 6C:AC:2B:72:08:85:E8:23:82:4C:19:67:ED:FC:36:3E:C8:74:76:8D Certificate issuer: /CN=A91D5BA2/serialNumber=6CAC2B720885E823824C1967EDFC363EC874768D Certificate serial: 04AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKwrcgiF6COCTBln7fw2Psh0do0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5BA2/14FEC2EC579311ECBA2FB048C4F9AE02/bKwrcgiF6COCTBln7fw2Psh0do0.mft Manifest number: 04A9 Signing time: Sat 06 Dec 2025 22:40:28 +0000 Manifest this update: Sat 06 Dec 2025 22:40:27 +0000 Manifest next update: Sat 13 Dec 2025 22:40:27 +0000 Files and hashes: 1: bKwrcgiF6COCTBln7fw2Psh0do0.crl (hash: QcuKKOXbE1HC72B9SGwy/GfbN/bg6cZIjZINqVOFkmw=) 2: AA5ADA7C579511ECA9BDE14AC4F9AE02.roa (hash: /NgK3u5jqw1d//qoTXrGcCnkIoepRe7WzeoPLGdtL+k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5BA2/14FEC2EC579311ECBA2FB048C4F9AE02/bKwrcgiF6COCTBln7fw2Psh0do0.crl rsync://rpki.apnic.net/member_repository/A91D5BA2/14FEC2EC579311ECBA2FB048C4F9AE02/bKwrcgiF6COCTBln7fw2Psh0do0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKwrcgiF6COCTBln7fw2Psh0do0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 22:40:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1198 (0x4ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5BA2, serialNumber=6CAC2B720885E823824C1967EDFC363EC874768D Validity Not Before: Dec 6 22:40:27 2025 GMT Not After : Dec 13 22:40:27 2025 GMT Subject: CN=6934b0db-f3ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:a9:f9:38:1e:e9:63:b7:e8:96:57:a2:e0:d1: 5b:1a:d1:21:ac:ed:cb:60:22:1d:af:32:7f:52:98: b4:f2:7b:f8:71:9b:68:ad:1c:2d:16:4f:bc:06:fa: 4d:7b:df:79:3a:76:e2:c2:6b:c7:aa:6c:5c:d3:39: da:36:d9:9f:46:02:4b:70:eb:58:d7:a6:9a:48:25: 98:1a:6f:a0:4c:3e:c7:3c:ea:82:29:37:8e:36:7e: b0:bf:6e:9f:44:a6:6d:c8:d6:c3:de:62:ce:11:98: 55:80:1b:5a:01:b8:b9:fb:28:e1:2c:c4:26:ed:6d: bb:8a:37:a6:25:d0:fa:7b:3a:34:fc:bc:06:a6:9f: c3:1d:13:67:a4:d3:5a:eb:f4:fd:80:51:1c:f5:4f: 46:ff:87:87:86:e0:db:49:6a:57:93:83:bc:37:76: d9:d0:74:bf:19:80:2c:2d:aa:1c:20:ea:61:16:4a: 7a:68:65:c7:38:cd:03:af:ed:7c:e0:01:df:53:78: 48:ca:8c:d9:ca:62:af:90:6e:53:32:6a:53:2e:b3: 18:e6:dc:a1:04:39:58:ca:ff:31:0d:94:ef:c8:fa: f9:8e:59:b8:64:20:b5:41:c5:ab:00:2f:5b:c3:68: ba:c4:82:c0:86:60:9d:cc:2c:6f:ea:10:d4:52:1e: fe:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:5C:95:22:A3:01:08:D4:EC:2C:03:0F:6C:49:B4:99:C4:6B:B2:44 X509v3 Authority Key Identifier: keyid:6C:AC:2B:72:08:85:E8:23:82:4C:19:67:ED:FC:36:3E:C8:74:76:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5BA2/14FEC2EC579311ECBA2FB048C4F9AE02/bKwrcgiF6COCTBln7fw2Psh0do0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKwrcgiF6COCTBln7fw2Psh0do0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5BA2/14FEC2EC579311ECBA2FB048C4F9AE02/bKwrcgiF6COCTBln7fw2Psh0do0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:90:0d:c1:67:be:63:5f:78:e9:a7:01:dc:0a:c5:e5:b3:68: 8b:19:c2:fe:1b:9c:d5:77:cf:d1:76:d8:6d:37:4f:79:50:52: ae:a4:03:8a:62:f9:31:b9:48:81:3e:9c:53:ef:94:01:37:69: 36:f6:a2:89:ad:ef:91:9a:74:28:86:5d:89:f5:a6:60:56:c1: 82:fc:2f:28:4a:61:0b:b5:53:6b:83:cc:67:71:e7:25:77:0c: 5d:f0:81:49:57:15:e4:df:97:77:16:ff:80:24:40:6b:44:f1: 8f:9d:b3:08:f1:75:b2:6c:9b:80:68:40:56:cc:05:16:e8:32: f2:b7:68:b2:62:81:bc:af:2b:63:e2:c8:94:d4:cd:86:99:3f: d2:8c:f7:de:65:c7:d0:59:cf:02:f5:67:51:1f:48:fc:60:32: 5b:f9:99:7a:69:3e:c9:eb:c1:a7:9b:f6:16:85:41:42:0e:61: 28:7d:aa:0c:e1:05:27:d2:d3:cb:50:f6:d6:c2:05:44:f1:ce: be:7c:92:a4:ba:36:98:02:06:10:ce:4d:c6:dc:39:ee:93:28: 45:f3:bb:66:0e:a6:35:7e:c1:fe:45:7b:6f:ca:7a:4a:00:bc: 3c:63:d5:a7:aa:30:ce:22:6b:29:00:87:e2:e2:11:22:70:02: f9:c0:ea:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBK4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDVCQTIxMTAvBgNVBAUTKDZDQUMyQjcyMDg4NUU4MjM4MjRDMTk2N0VERkMzNjNF Qzg3NDc2OEQwHhcNMjUxMjA2MjI0MDI3WhcNMjUxMjEzMjI0MDI3WjAYMRYwFAYD VQQDEw02OTM0YjBkYi1mM2NhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3qn5OB7pY7follei4NFbGtEhrO3LYCIdrzJ/Upi08nv4cZtorRwtFk+8BvpN e995OnbiwmvHqmxc0znaNtmfRgJLcOtY16aaSCWYGm+gTD7HPOqCKTeONn6wv26f RKZtyNbD3mLOEZhVgBtaAbi5+yjhLMQm7W27ijemJdD6ezo0/LwGpp/DHRNnpNNa 6/T9gFEc9U9G/4eHhuDbSWpXk4O8N3bZ0HS/GYAsLaocIOphFkp6aGXHOM0Dr+18 4AHfU3hIyozZymKvkG5TMmpTLrMY5tyhBDlYyv8xDZTvyPr5jlm4ZCC1QcWrAC9b w2i6xILAhmCdzCxv6hDUUh7+BQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOBclSKj AQjU7CwDD2xJtJnEa7JEMB8GA1UdIwQYMBaAFGysK3IIhegjgkwZZ+38Nj7IdHaN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENUJBMi8xNEZFQzJFQzU3 OTMxMUVDQkEyRkIwNDhDNEY5QUUwMi9iS3dyY2dpRjZDT0NUQmxuN2Z3MlBzaDBk bzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JLd3JjZ2lGNkNPQ1RCbG43ZncyUHNoMGRvMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NUJBMi8xNEZFQzJFQzU3OTMxMUVDQkEyRkIwNDhDNEY5QUUwMi9iS3dyY2dpRjZD T0NUQmxuN2Z3MlBzaDBkbzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQkA3BZ75jX3jppwHcCsXls2iLGcL+G5zVd8/RdthtN095UFKupAOK YvkxuUiBPpxT75QBN2k29qKJre+RmnQohl2J9aZgVsGC/C8oSmELtVNrg8xncecl dwxd8IFJVxXk35d3Fv+AJEBrRPGPnbMI8XWybJuAaEBWzAUW6DLyt2iyYoG8rytj 4siU1M2GmT/SjPfeZcfQWc8C9WdRH0j8YDJb+Zl6aT7J68Gnm/YWhUFCDmEofaoM 4QUn0tPLUPbWwgVE8c6+fJKkujaYAgYQzk3G3DnukyhF87tmDqY1fsH+RXtvynpK ALw8Y9WnqjDOImspAIfi4hEicAL5wOrh -----END CERTIFICATE-----Generated at Sun Dec 7 04:57:28 2025 by rpki-client