This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8881/089DE84000F811EBB217A449C4F9AE02/Bc1Un1RUvTKyKPavyN424Ej2SA0.mft File: Bc1Un1RUvTKyKPavyN424Ej2SA0.mft (raw, json) Hash identifier: g3WKR+NFLEvJP1IH6ZBxTuF6Q70ZW3pg/3rI2sPY9pM= Subject key identifier: 1C:60:ED:2C:DD:3E:A8:9D:0B:DE:7E:88:4B:05:F4:91:F7:50:BF:1F Authority key identifier: 05:CD:54:9F:54:54:BD:32:B2:28:F6:AF:C8:DE:36:E0:48:F6:48:0D Certificate issuer: /CN=A91E8881/serialNumber=05CD549F5454BD32B228F6AFC8DE36E048F6480D Certificate serial: 0816 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bc1Un1RUvTKyKPavyN424Ej2SA0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8881/089DE84000F811EBB217A449C4F9AE02/Bc1Un1RUvTKyKPavyN424Ej2SA0.mft Manifest number: 080E Signing time: Thu 04 Dec 2025 20:00:25 +0000 Manifest this update: Thu 04 Dec 2025 20:00:24 +0000 Manifest next update: Thu 11 Dec 2025 20:00:24 +0000 Files and hashes: 1: Bc1Un1RUvTKyKPavyN424Ej2SA0.crl (hash: PSZAW1gNC5rBQ8O3HQWg9ncAOcvt45X9nmf/b/kzKi0=) 2: EAC9D46200F911EB8E61B84CC4F9AE02.roa (hash: rdYM8QlFVAEWi173xe8sRij+RLkJG7jr88ybpEhjd18=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8881/089DE84000F811EBB217A449C4F9AE02/Bc1Un1RUvTKyKPavyN424Ej2SA0.crl rsync://rpki.apnic.net/member_repository/A91E8881/089DE84000F811EBB217A449C4F9AE02/Bc1Un1RUvTKyKPavyN424Ej2SA0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bc1Un1RUvTKyKPavyN424Ej2SA0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 20:00:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2070 (0x816) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8881, serialNumber=05CD549F5454BD32B228F6AFC8DE36E048F6480D Validity Not Before: Dec 4 20:00:24 2025 GMT Not After : Dec 11 20:00:24 2025 GMT Subject: CN=6931e858-c8df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:d8:51:98:a6:88:df:7f:75:bc:41:d5:26:9f: 0b:1f:2e:2d:5c:5d:32:8f:8c:a7:4a:e5:0c:d6:69: 1a:db:2b:40:fb:63:a8:f8:1e:01:6a:5c:4c:54:ed: b9:2d:9c:e4:29:0a:e4:e6:38:2f:53:22:ec:d4:2c: fd:5d:f9:13:3f:62:e4:de:ee:b0:7b:3c:1a:c1:55: ad:50:a7:01:18:9e:97:05:6b:d5:0c:fd:7a:62:ca: d6:4b:61:6e:77:4a:00:f7:4c:40:b7:78:1b:de:9e: 91:eb:1f:b6:9e:07:66:a6:49:7d:39:96:7f:21:f0: b7:9f:95:8b:40:c1:4a:a5:83:fc:8a:1e:ab:ec:c5: 70:d1:3d:6e:3c:25:e7:13:4f:b5:39:15:29:ea:1f: ae:d3:19:36:ac:0b:f5:bc:28:4f:71:32:27:ee:5f: 32:65:3d:9d:62:75:6c:2a:02:95:2b:66:a9:4f:92: 87:d1:77:9c:12:ed:dd:00:46:d8:83:f1:0f:be:31: be:55:c4:4b:66:fc:fb:dc:49:af:27:7b:44:40:ef: c1:75:6f:9b:b7:d9:07:63:a0:67:4a:d3:42:cf:fa: bf:03:e6:e5:31:0c:d2:95:65:80:88:bf:9b:95:b7: fb:94:e7:f1:cf:04:20:94:74:b5:ce:b3:88:7e:18: b8:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:60:ED:2C:DD:3E:A8:9D:0B:DE:7E:88:4B:05:F4:91:F7:50:BF:1F X509v3 Authority Key Identifier: keyid:05:CD:54:9F:54:54:BD:32:B2:28:F6:AF:C8:DE:36:E0:48:F6:48:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8881/089DE84000F811EBB217A449C4F9AE02/Bc1Un1RUvTKyKPavyN424Ej2SA0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bc1Un1RUvTKyKPavyN424Ej2SA0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8881/089DE84000F811EBB217A449C4F9AE02/Bc1Un1RUvTKyKPavyN424Ej2SA0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:a5:7e:5e:0d:db:74:f7:6c:3a:f5:5a:82:a5:a2:0a:a8:81: 4f:bf:a6:7b:1f:90:b4:90:f6:a5:c9:6e:84:df:a2:a2:11:37: 8c:9d:2a:93:63:94:4e:ea:d7:f9:c4:92:da:89:05:71:b1:5e: 24:50:7c:58:4a:3c:7e:99:98:66:be:fd:06:50:6b:83:8a:cc: 3d:4c:73:34:d0:37:9e:8a:65:25:04:b0:c6:8a:2a:84:91:7b: 35:0d:56:d8:82:ae:d7:4c:bc:37:2c:39:02:2f:74:5d:56:46: c3:5c:0c:7d:4c:5b:84:ac:9d:07:17:47:d7:93:d6:75:df:d7: 91:c9:d8:de:a4:0d:b0:ab:81:71:88:c5:7c:72:d7:c6:8a:4e: 04:6f:b7:0e:15:bc:0a:98:c0:c5:df:ee:5c:8e:2f:a3:b2:d3: 52:26:48:b8:9b:15:3a:07:4e:b9:67:ab:6d:df:27:34:e3:ee: e4:4b:b9:19:25:e8:9f:af:99:e6:6a:84:ec:2d:35:10:0f:3c: f3:90:db:65:b1:53:4b:a1:b3:bf:dd:13:cd:e7:29:79:37:8a: 30:5d:81:fb:3e:5f:b0:7d:55:45:cf:1b:61:9b:42:5a:28:69: 02:52:30:84:94:66:0a:24:c8:b0:9c:20:8a:28:27:b7:dc:7f: 5f:76:78:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCBYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg4ODExMTAvBgNVBAUTKDA1Q0Q1NDlGNTQ1NEJEMzJCMjI4RjZBRkM4REUzNkUw NDhGNjQ4MEQwHhcNMjUxMjA0MjAwMDI0WhcNMjUxMjExMjAwMDI0WjAYMRYwFAYD VQQDEw02OTMxZTg1OC1jOGRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvNhRmKaI3391vEHVJp8LHy4tXF0yj4ynSuUM1mka2ytA+2Oo+B4BalxMVO25 LZzkKQrk5jgvUyLs1Cz9XfkTP2Lk3u6wezwawVWtUKcBGJ6XBWvVDP16YsrWS2Fu d0oA90xAt3gb3p6R6x+2ngdmpkl9OZZ/IfC3n5WLQMFKpYP8ih6r7MVw0T1uPCXn E0+1ORUp6h+u0xk2rAv1vChPcTIn7l8yZT2dYnVsKgKVK2apT5KH0XecEu3dAEbY g/EPvjG+VcRLZvz73EmvJ3tEQO/BdW+bt9kHY6BnStNCz/q/A+blMQzSlWWAiL+b lbf7lOfxzwQglHS1zrOIfhi4WwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBxg7Szd PqidC95+iEsF9JH3UL8fMB8GA1UdIwQYMBaAFAXNVJ9UVL0ysij2r8jeNuBI9kgN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODg4MS8wODlERTg0MDAw RjgxMUVCQjIxN0E0NDlDNEY5QUUwMi9CYzFVbjFSVXZUS3lLUGF2eU40MjRFajJT QTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JjMVVuMVJVdlRLeUtQYXZ5TjQyNEVqMlNBMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF ODg4MS8wODlERTg0MDAwRjgxMUVCQjIxN0E0NDlDNEY5QUUwMi9CYzFVbjFSVXZU S3lLUGF2eU40MjRFajJTQTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCspX5eDdt092w69VqCpaIKqIFPv6Z7H5C0kPalyW6E36KiETeMnSqT Y5RO6tf5xJLaiQVxsV4kUHxYSjx+mZhmvv0GUGuDisw9THM00DeeimUlBLDGiiqE kXs1DVbYgq7XTLw3LDkCL3RdVkbDXAx9TFuErJ0HF0fXk9Z139eRydjepA2wq4Fx iMV8ctfGik4Eb7cOFbwKmMDF3+5cji+jstNSJki4mxU6B065Z6tt3yc04+7kS7kZ Jeifr5nmaoTsLTUQDzzzkNtlsVNLobO/3RPN5yl5N4owXYH7Pl+wfVVFzxthm0Ja KGkCUjCElGYKJMiwnCCKKCe33H9fdniM -----END CERTIFICATE-----Generated at Sat Dec 6 16:14:39 2025 by rpki-client