This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FBD28/26758BB43AB511E7B8609F1CC4F9AE02/bkhhCqDmsOLF7tQC3QeDOqc-fqI.mft File: bkhhCqDmsOLF7tQC3QeDOqc-fqI.mft (raw, json) Hash identifier: y7tV8/xUMo5/IOLRn5sMzin0M29yoxFyppZH0QU7H68= Subject key identifier: 5A:DB:97:D4:38:80:09:73:B4:05:6C:55:76:53:23:C4:83:1C:22:98 Authority key identifier: 6E:48:61:0A:A0:E6:B0:E2:C5:EE:D4:02:DD:07:83:3A:A7:3E:7E:A2 Certificate issuer: /CN=A91FBD28/serialNumber=6E48610AA0E6B0E2C5EED402DD07833AA73E7EA2 Certificate serial: 1B14 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/bkhhCqDmsOLF7tQC3QeDOqc-fqI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FBD28/26758BB43AB511E7B8609F1CC4F9AE02/bkhhCqDmsOLF7tQC3QeDOqc-fqI.mft Manifest number: 1AFE Signing time: Sat 06 Dec 2025 15:26:44 +0000 Manifest this update: Sat 06 Dec 2025 15:26:44 +0000 Manifest next update: Sat 13 Dec 2025 15:26:44 +0000 Files and hashes: 1: bkhhCqDmsOLF7tQC3QeDOqc-fqI.crl (hash: w51eirwfomhAc8/rPnq7DFb4N478d1C+wlqQ3ZgTe4w=) 2: D8B92776A16A11EAA517B11EC4F9AE02.roa (hash: 0/HP0DwNYOfkRXXhvxhJ7qmLcNQDOwmKr3HHIF1F5nU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FBD28/26758BB43AB511E7B8609F1CC4F9AE02/bkhhCqDmsOLF7tQC3QeDOqc-fqI.crl rsync://rpki.apnic.net/member_repository/A91FBD28/26758BB43AB511E7B8609F1CC4F9AE02/bkhhCqDmsOLF7tQC3QeDOqc-fqI.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/bkhhCqDmsOLF7tQC3QeDOqc-fqI.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:11:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6932 (0x1b14) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FBD28, serialNumber=6E48610AA0E6B0E2C5EED402DD07833AA73E7EA2 Validity Not Before: Dec 6 15:26:44 2025 GMT Not After : Dec 13 15:26:44 2025 GMT Subject: CN=69344b34-7d2f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:59:f8:bc:6f:08:f8:0c:5d:ed:89:01:d9:c0: 28:9c:58:e9:d7:1f:97:28:0a:a2:fb:17:07:ce:a9: 2e:33:7a:49:a0:8c:bb:d7:2d:99:76:84:f3:cb:44: e7:6b:3a:ed:41:f3:a2:16:e9:10:8d:05:65:31:74: 7d:6d:8f:a9:51:a1:3f:83:27:92:a2:a0:b0:a0:6a: 10:56:dd:43:d3:90:c9:0b:b8:73:1d:d6:49:a8:e7: 30:8e:5d:29:3b:04:10:62:19:10:14:cf:76:ce:12: 8d:3d:c2:22:7f:fc:c1:70:ab:f5:8d:05:1e:de:d8: d0:b5:f3:e0:de:1c:6a:a2:8c:41:3e:0f:91:01:e2: a9:01:20:51:f2:35:f9:d0:57:d3:86:da:4c:a1:3b: 2a:81:8a:f5:49:a6:f7:5c:c3:14:dc:ad:56:17:91: ae:86:9a:fb:32:9e:12:b8:18:67:6b:cb:f2:1e:02: e9:38:74:ab:5a:86:68:12:a2:5b:f0:95:fe:23:16: d7:79:a7:4c:80:f7:df:15:77:0e:7b:a5:c2:b0:32: 83:63:a8:6d:66:3a:95:70:23:d9:fb:b0:4a:36:f8: ff:ea:4a:7b:40:c9:b1:99:35:2a:38:bd:f0:a6:2f: 43:7f:82:8e:34:dd:12:da:83:e2:67:62:a9:64:87: 85:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:DB:97:D4:38:80:09:73:B4:05:6C:55:76:53:23:C4:83:1C:22:98 X509v3 Authority Key Identifier: keyid:6E:48:61:0A:A0:E6:B0:E2:C5:EE:D4:02:DD:07:83:3A:A7:3E:7E:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FBD28/26758BB43AB511E7B8609F1CC4F9AE02/bkhhCqDmsOLF7tQC3QeDOqc-fqI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/bkhhCqDmsOLF7tQC3QeDOqc-fqI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FBD28/26758BB43AB511E7B8609F1CC4F9AE02/bkhhCqDmsOLF7tQC3QeDOqc-fqI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:84:e4:6c:48:a9:cd:2c:d8:9a:f2:9a:0b:96:32:5d:52:0a: 38:28:55:97:a2:29:75:65:2a:cf:de:81:3e:96:c0:a4:95:25: e6:5f:6e:72:70:eb:49:f7:61:d6:0f:3a:37:c0:ed:06:84:2f: 16:61:5d:9e:3a:b9:39:cd:b4:6d:52:03:5c:20:11:3a:47:6b: fc:8e:02:6a:75:0e:11:aa:94:38:89:03:b0:6a:ea:39:9f:a6: 67:5e:07:7e:36:cd:af:78:8a:bd:5f:d8:53:8c:bc:8f:7e:88: 71:48:95:26:40:f3:d2:0a:96:67:88:0f:51:21:51:08:d2:8f: d8:fa:06:c9:fa:fb:3e:97:bc:d1:1d:cb:4d:78:c5:45:3f:80: 7c:08:65:20:68:c5:6f:af:6f:3e:76:e4:2c:88:97:8e:87:03: 07:d8:1e:fc:83:e7:e1:d6:ec:06:1b:c7:ef:63:29:15:58:02: 33:2f:e4:e8:bd:35:1d:17:84:b0:22:23:a7:99:8c:ee:c4:42: f4:f1:45:c7:70:e1:b6:b8:47:00:a4:d5:e7:08:fe:54:e8:7d: 97:2d:b8:24:7a:eb:ff:08:ed:85:05:7b:0a:6e:4e:14:98:bd: bd:13:8f:45:ed:c3:2d:7e:fa:11:d8:d5:32:77:02:a9:86:18: 70:e5:00:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGxQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkJEMjgxMTAvBgNVBAUTKDZFNDg2MTBBQTBFNkIwRTJDNUVFRDQwMkREMDc4MzNB QTczRTdFQTIwHhcNMjUxMjA2MTUyNjQ0WhcNMjUxMjEzMTUyNjQ0WjAYMRYwFAYD VQQDEw02OTM0NGIzNC03ZDJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr1n4vG8I+Axd7YkB2cAonFjp1x+XKAqi+xcHzqkuM3pJoIy71y2ZdoTzy0Tn azrtQfOiFukQjQVlMXR9bY+pUaE/gyeSoqCwoGoQVt1D05DJC7hzHdZJqOcwjl0p OwQQYhkQFM92zhKNPcIif/zBcKv1jQUe3tjQtfPg3hxqooxBPg+RAeKpASBR8jX5 0FfThtpMoTsqgYr1Sab3XMMU3K1WF5Guhpr7Mp4SuBhna8vyHgLpOHSrWoZoEqJb 8JX+IxbXeadMgPffFXcOe6XCsDKDY6htZjqVcCPZ+7BKNvj/6kp7QMmxmTUqOL3w pi9Df4KONN0S2oPiZ2KpZIeFqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFrbl9Q4 gAlztAVsVXZTI8SDHCKYMB8GA1UdIwQYMBaAFG5IYQqg5rDixe7UAt0HgzqnPn6i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQkQyOC8yNjc1OEJCNDNB QjUxMUU3Qjg2MDlGMUNDNEY5QUUwMi9ia2hoQ3FEbXNPTEY3dFFDM1FlRE9xYy1m cUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2JraGhDcURtc09MRjd0UUMzUWVET3FjLWZxSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QkQyOC8yNjc1OEJCNDNBQjUxMUU3Qjg2MDlGMUNDNEY5QUUwMi9ia2hoQ3FEbXNP TEY3dFFDM1FlRE9xYy1mcUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGhORsSKnNLNia8poLljJdUgo4KFWXoil1ZSrP3oE+lsCklSXmX25y cOtJ92HWDzo3wO0GhC8WYV2eOrk5zbRtUgNcIBE6R2v8jgJqdQ4RqpQ4iQOwauo5 n6ZnXgd+Ns2veIq9X9hTjLyPfohxSJUmQPPSCpZniA9RIVEI0o/Y+gbJ+vs+l7zR HctNeMVFP4B8CGUgaMVvr28+duQsiJeOhwMH2B78g+fh1uwGG8fvYykVWAIzL+To vTUdF4SwIiOnmYzuxEL08UXHcOG2uEcApNXnCP5U6H2XLbgkeuv/CO2FBXsKbk4U mL29E49F7cMtfvoR2NUydwKphhhw5QDv -----END CERTIFICATE-----Generated at Sun Dec 7 01:57:07 2025 by rpki-client