This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.mft File: BmZq7NeMCl7RN5Cl6apAw0kPvPE.mft (raw, json) Hash identifier: yuEk46VQ0ptsWhpuD7CY+qxzbyyF1VhaeQYtBzk0lhk= Subject key identifier: 70:BF:16:52:A8:A6:36:89:21:94:01:A2:36:02:55:98:9B:A4:ED:55 Authority key identifier: 06:66:6A:EC:D7:8C:0A:5E:D1:37:90:A5:E9:AA:40:C3:49:0F:BC:F1 Certificate issuer: /CN=A91F63DC/serialNumber=06666AECD78C0A5ED13790A5E9AA40C3490FBCF1 Certificate serial: 0196 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BmZq7NeMCl7RN5Cl6apAw0kPvPE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.mft Manifest number: 0194 Signing time: Fri 05 Dec 2025 01:39:59 +0000 Manifest this update: Fri 05 Dec 2025 01:39:58 +0000 Manifest next update: Fri 12 Dec 2025 01:39:58 +0000 Files and hashes: 1: BmZq7NeMCl7RN5Cl6apAw0kPvPE.crl (hash: Ap45kYjr18WIWGVgsbrJglUnLT8IXG3G/Z31CO0lA0g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.crl rsync://rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BmZq7NeMCl7RN5Cl6apAw0kPvPE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 01:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 406 (0x196) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F63DC, serialNumber=06666AECD78C0A5ED13790A5E9AA40C3490FBCF1 Validity Not Before: Dec 5 01:39:58 2025 GMT Not After : Dec 12 01:39:58 2025 GMT Subject: CN=693237ef-1016 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:2c:66:d2:5f:96:f9:e1:07:fa:de:b0:b4:72: 97:8b:6b:33:e6:d8:ef:c4:6f:d4:7e:74:b1:75:d8: 78:8a:cf:35:f5:d5:ac:81:e3:d5:3b:ea:85:cb:67: d4:d8:30:37:50:77:cc:12:ea:1b:45:81:10:a4:8f: 41:17:8e:c5:36:51:cc:fe:0d:9e:ae:6f:be:7c:f6: f5:e5:c4:42:c1:fd:df:49:33:1a:eb:59:82:e5:bc: 13:22:50:c4:0b:fa:5b:45:50:b6:da:89:03:11:30: 42:cb:5b:33:eb:2c:0a:e0:5f:78:2a:be:c3:8b:3a: b9:4a:41:64:63:14:52:2b:51:9c:e7:d2:1e:1a:e4: 89:c8:fb:1d:6e:3e:5f:6f:44:8e:12:62:90:3d:f7: d1:98:74:9e:ae:f6:bb:33:7c:74:8c:cd:72:c5:fb: 7b:1b:fb:8b:8e:a2:5a:11:f4:3a:5e:af:40:b9:12: 81:50:f2:8a:40:78:7c:33:b6:08:3c:f2:ec:54:9c: cc:f6:48:15:d3:a3:9c:b7:3e:6b:0b:3d:d4:63:73: 60:7c:42:3c:88:b7:c8:7c:75:ff:9e:c4:2c:c5:79: f6:27:d7:76:a8:6f:36:dc:77:3a:d3:fa:c7:bd:24: 7c:0d:cd:a3:f3:ab:a1:91:a8:59:b9:0f:d4:8d:0a: 02:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:BF:16:52:A8:A6:36:89:21:94:01:A2:36:02:55:98:9B:A4:ED:55 X509v3 Authority Key Identifier: keyid:06:66:6A:EC:D7:8C:0A:5E:D1:37:90:A5:E9:AA:40:C3:49:0F:BC:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BmZq7NeMCl7RN5Cl6apAw0kPvPE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bd:f8:6a:bf:6e:35:f4:4c:b2:2e:69:2f:9d:ef:53:16:8b:71: 87:7b:73:27:6e:fc:d0:3d:6d:59:62:e8:6e:f9:79:6c:c7:7f: 6f:35:72:b1:d6:d5:96:45:da:1d:9b:62:8e:77:80:97:46:e9: c4:71:64:66:bf:f9:29:db:96:bb:d5:2d:f7:bb:c7:bf:b3:7f: c5:6c:01:a5:fc:6c:ab:8b:70:b3:de:fa:9e:55:e2:60:0e:30: 52:67:85:31:79:2d:08:98:ee:bd:92:c1:46:70:6f:f3:41:72: 4e:2b:6b:09:9b:82:31:d9:6f:9d:8a:81:dd:ed:e7:61:ec:ef: 9e:b2:46:96:86:12:f3:4f:e5:90:4f:57:37:a4:bc:0a:00:39: cb:e1:8e:7b:c1:30:06:e7:08:64:c0:fe:e9:b2:19:f0:9b:e2: d5:89:7b:c7:51:a6:3b:b5:48:be:20:1a:50:91:32:2d:68:44: 5e:1e:5f:84:10:31:2c:ee:05:cc:19:c2:87:5b:00:29:8f:79: b8:0c:86:79:e8:0a:42:66:ec:2d:b1:bc:6c:ee:53:97:be:92: 01:ca:ce:d0:d4:ad:a8:70:ce:b5:1d:9b:32:68:6f:18:73:db: b4:39:b7:18:c2:e3:8c:1b:e2:66:95:c3:5a:39:2a:9a:83:8e: f1:29:60:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjYzREMxMTAvBgNVBAUTKDA2NjY2QUVDRDc4QzBBNUVEMTM3OTBBNUU5QUE0MEMz NDkwRkJDRjEwHhcNMjUxMjA1MDEzOTU4WhcNMjUxMjEyMDEzOTU4WjAYMRYwFAYD VQQDEw02OTMyMzdlZi0xMDE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1ixm0l+W+eEH+t6wtHKXi2sz5tjvxG/UfnSxddh4is819dWsgePVO+qFy2fU 2DA3UHfMEuobRYEQpI9BF47FNlHM/g2erm++fPb15cRCwf3fSTMa61mC5bwTIlDE C/pbRVC22okDETBCy1sz6ywK4F94Kr7Dizq5SkFkYxRSK1Gc59IeGuSJyPsdbj5f b0SOEmKQPffRmHServa7M3x0jM1yxft7G/uLjqJaEfQ6Xq9AuRKBUPKKQHh8M7YI PPLsVJzM9kgV06Octz5rCz3UY3NgfEI8iLfIfHX/nsQsxXn2J9d2qG823Hc60/rH vSR8Dc2j86uhkahZuQ/UjQoCWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHC/FlKo pjaJIZQBojYCVZibpO1VMB8GA1UdIwQYMBaAFAZmauzXjApe0TeQpemqQMNJD7zx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjNEQy8wNDMxNTJFMjY2 NTMxMUVFOUM2OEVFMkJDNEY5QUUwMi9CbVpxN05lTUNsN1JONUNsNmFwQXcwa1B2 UEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JtWnE3TmVNQ2w3Uk41Q2w2YXBBdzBrUHZQRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjNEQy8wNDMxNTJFMjY2NTMxMUVFOUM2OEVFMkJDNEY5QUUwMi9CbVpxN05lTUNs N1JONUNsNmFwQXcwa1B2UEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC9+Gq/bjX0TLIuaS+d71MWi3GHe3MnbvzQPW1ZYuhu+Xlsx39vNXKx 1tWWRdodm2KOd4CXRunEcWRmv/kp25a71S33u8e/s3/FbAGl/Gyri3Cz3vqeVeJg DjBSZ4UxeS0ImO69ksFGcG/zQXJOK2sJm4Ix2W+dioHd7edh7O+eskaWhhLzT+WQ T1c3pLwKADnL4Y57wTAG5whkwP7pshnwm+LViXvHUaY7tUi+IBpQkTItaEReHl+E EDEs7gXMGcKHWwApj3m4DIZ56ApCZuwtsbxs7lOXvpIBys7Q1K2ocM61HZsyaG8Y c9u0ObcYwuOMG+JmlcNaOSqag47xKWA/ -----END CERTIFICATE-----Generated at Sat Dec 6 18:43:59 2025 by rpki-client