This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2EFF/A314847C484911F0BF070370C4F9AE02/BstI9X1UOpeC2KfJbaTh3tvDwws.mft File: BstI9X1UOpeC2KfJbaTh3tvDwws.mft (raw, json) Hash identifier: UKFoXV+YP+09sDToYy9FUhMnHbUgU7wFhmNnFqEtqBo= Subject key identifier: 73:D6:3E:BF:A5:BA:E6:FD:BF:47:8D:6F:6A:DE:8B:F3:BA:84:BA:76 Authority key identifier: 06:CB:48:F5:7D:54:3A:97:82:D8:A7:C9:6D:A4:E1:DE:DB:C3:C3:0B Certificate issuer: /CN=A91E2EFF/serialNumber=06CB48F57D543A9782D8A7C96DA4E1DEDBC3C30B Certificate serial: 5B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BstI9X1UOpeC2KfJbaTh3tvDwws.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2EFF/A314847C484911F0BF070370C4F9AE02/BstI9X1UOpeC2KfJbaTh3tvDwws.mft Manifest number: 5A Signing time: Fri 05 Dec 2025 05:00:57 +0000 Manifest this update: Fri 05 Dec 2025 05:00:56 +0000 Manifest next update: Fri 12 Dec 2025 05:00:56 +0000 Files and hashes: 1: BstI9X1UOpeC2KfJbaTh3tvDwws.crl (hash: Ch8lYw92SVBC66lQuVbSnaqNTBOZ/BJcpdEDFVtpEg8=) 2: 3698C9BA484A11F0B96B9D10C4F9AE02.roa (hash: 3/VlviI5lXmsXT9HHGTTjCEqy33hQJaRKWakW7gYvqc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2EFF/A314847C484911F0BF070370C4F9AE02/BstI9X1UOpeC2KfJbaTh3tvDwws.crl rsync://rpki.apnic.net/member_repository/A91E2EFF/A314847C484911F0BF070370C4F9AE02/BstI9X1UOpeC2KfJbaTh3tvDwws.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BstI9X1UOpeC2KfJbaTh3tvDwws.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 05:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 91 (0x5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2EFF, serialNumber=06CB48F57D543A9782D8A7C96DA4E1DEDBC3C30B Validity Not Before: Dec 5 05:00:56 2025 GMT Not After : Dec 12 05:00:56 2025 GMT Subject: CN=69326709-711d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:22:7c:67:57:81:7f:9b:9f:0d:d2:75:3f:6c: 5b:77:a0:2c:6f:5d:bf:d5:f4:67:5b:48:bf:0a:03: 30:c1:17:0e:39:13:e5:2b:0e:3e:b9:da:c8:a9:1d: f5:45:23:02:e0:6c:eb:fa:77:bf:5a:7a:4d:d6:1e: ca:e4:0f:72:4f:5e:c1:ee:0e:3f:d7:69:4c:30:27: 20:22:a9:b4:0a:03:5e:aa:28:e6:6c:35:30:2b:ea: bb:3f:37:a7:54:0e:4c:aa:78:b6:8d:44:5a:89:7c: 17:39:7d:e3:32:28:10:4e:67:06:7b:94:2c:52:4c: d4:8c:7a:aa:b5:80:6c:ed:06:1a:85:3e:f6:c4:73: f5:c4:09:6a:78:fa:d0:67:ae:b2:f8:8a:14:61:13: a3:1a:ee:49:ae:64:b0:ad:6a:a9:31:45:02:b1:d0: 2b:d7:cd:62:0c:fa:3a:15:1d:b8:d6:ee:b7:cc:06: 0d:d4:4e:e4:b3:b4:f0:fd:dd:c9:bf:0b:65:57:a1: 4f:ee:ac:d7:61:6c:0f:bf:d6:fc:d1:61:94:c4:de: d3:4e:2d:96:a8:66:9f:fe:62:6d:a6:04:30:1c:64: 64:b1:6b:36:ae:49:63:e7:35:a3:49:3d:96:65:cc: 66:2c:89:a5:3a:4d:9b:85:f0:6a:05:7f:c7:a6:09: 96:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:D6:3E:BF:A5:BA:E6:FD:BF:47:8D:6F:6A:DE:8B:F3:BA:84:BA:76 X509v3 Authority Key Identifier: keyid:06:CB:48:F5:7D:54:3A:97:82:D8:A7:C9:6D:A4:E1:DE:DB:C3:C3:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2EFF/A314847C484911F0BF070370C4F9AE02/BstI9X1UOpeC2KfJbaTh3tvDwws.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BstI9X1UOpeC2KfJbaTh3tvDwws.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2EFF/A314847C484911F0BF070370C4F9AE02/BstI9X1UOpeC2KfJbaTh3tvDwws.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:f0:18:de:11:15:7d:fc:b3:02:8d:67:75:69:a4:72:0f:2a: a0:ad:af:20:7f:0c:55:5a:fd:56:aa:00:4a:45:94:f5:23:2a: 72:43:9a:36:28:cb:af:7f:b3:ce:d7:ba:b9:d3:8d:70:cf:91: eb:e8:cf:fc:a0:c0:0a:ea:a4:d0:6f:f0:c4:28:41:9b:a9:04: 22:8e:81:eb:17:83:8f:6e:1a:e8:14:8b:e0:1e:22:11:2d:6e: 12:e9:12:38:2b:1b:2c:9d:26:44:74:89:92:7c:84:2a:d2:3b: 18:b1:f5:0c:bc:e7:1c:a3:3a:bf:2a:69:34:f2:a0:73:8c:94: cc:21:e5:69:1d:a5:88:5a:84:64:27:a2:e8:68:b7:b5:6f:d4: 58:3b:93:97:c1:06:ec:cf:be:46:49:df:24:97:d5:d6:b7:9b: 5f:2e:c4:6e:1f:a7:61:f3:b2:f8:df:f7:6d:34:e8:8c:15:47: 7c:8c:ad:fc:4d:cd:dd:d0:02:9f:62:7a:e7:1d:16:49:79:48: 00:77:bc:1f:5f:70:cf:9e:3d:fc:dd:68:fc:e1:09:b5:5a:d1: cd:e1:46:be:40:c1:98:65:1c:15:ca:6e:0d:4f:af:69:db:7a: 44:f4:4f:b7:51:56:ce:d3:97:c1:99:38:92:93:8e:63:94:b3: b2:92:b4:47 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF MkVGRjExMC8GA1UEBRMoMDZDQjQ4RjU3RDU0M0E5NzgyRDhBN0M5NkRBNEUxREVE QkMzQzMwQjAeFw0yNTEyMDUwNTAwNTZaFw0yNTEyMTIwNTAwNTZaMBgxFjAUBgNV BAMTDTY5MzI2NzA5LTcxMWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDPInxnV4F/m58N0nU/bFt3oCxvXb/V9GdbSL8KAzDBFw45E+UrDj652sipHfVF IwLgbOv6d79aek3WHsrkD3JPXsHuDj/XaUwwJyAiqbQKA16qKOZsNTAr6rs/N6dU DkyqeLaNRFqJfBc5feMyKBBOZwZ7lCxSTNSMeqq1gGztBhqFPvbEc/XECWp4+tBn rrL4ihRhE6Ma7kmuZLCtaqkxRQKx0CvXzWIM+joVHbjW7rfMBg3UTuSztPD93cm/ C2VXoU/urNdhbA+/1vzRYZTE3tNOLZaoZp/+Ym2mBDAcZGSxazauSWPnNaNJPZZl zGYsiaU6TZuF8GoFf8emCZa/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUc9Y+v6W6 5v2/R41vat6L87qEunYwHwYDVR0jBBgwFoAUBstI9X1UOpeC2KfJbaTh3tvDwwsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUyRUZGL0EzMTQ4NDdDNDg0 OTExRjBCRjA3MDM3MEM0RjlBRTAyL0JzdEk5WDFVT3BlQzJLZkpiYVRoM3R2RHd3 cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvQnN0STlYMVVPcGVDMktmSmJhVGgzdHZEd3dzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUy RUZGL0EzMTQ4NDdDNDg0OTExRjBCRjA3MDM3MEM0RjlBRTAyL0JzdEk5WDFVT3Bl QzJLZkpiYVRoM3R2RHd3cy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALXwGN4RFX38swKNZ3VppHIPKqCtryB/DFVa/VaqAEpFlPUjKnJDmjYo y69/s87XurnTjXDPkevoz/ygwArqpNBv8MQoQZupBCKOgesXg49uGugUi+AeIhEt bhLpEjgrGyydJkR0iZJ8hCrSOxix9Qy85xyjOr8qaTTyoHOMlMwh5WkdpYhahGQn ouhot7Vv1Fg7k5fBBuzPvkZJ3ySX1da3m18uxG4fp2Hzsvjf92006IwVR3yMrfxN zd3QAp9ieucdFkl5SAB3vB9fcM+ePfzdaPzhCbVa0c3hRr5AwZhlHBXKbg1Pr2nb ekT0T7dRVs7Tl8GZOJKTjmOUs7KStEc= -----END CERTIFICATE-----Generated at Sat Dec 6 20:43:11 2025 by rpki-client