This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.mft File: bX2AV2xLO-av9DH40yM49x_fAd0.mft (raw, json) Hash identifier: 5udGO1H98jj/PZntvTAGMeWqQejRAcIG0eKhMtXkRl8= Subject key identifier: DE:F6:51:58:15:99:77:B5:39:EA:9D:75:26:7A:C4:56:9D:71:8E:FC Authority key identifier: 6D:7D:80:57:6C:4B:3B:E6:AF:F4:31:F8:D3:23:38:F7:1F:DF:01:DD Certificate issuer: /CN=A91FC1B8/serialNumber=6D7D80576C4B3BE6AFF431F8D32338F71FDF01DD Certificate serial: 0EFD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bX2AV2xLO-av9DH40yM49x_fAd0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.mft Manifest number: 0EF3 Signing time: Thu 04 Dec 2025 17:11:28 +0000 Manifest this update: Thu 04 Dec 2025 17:11:27 +0000 Manifest next update: Thu 11 Dec 2025 17:11:27 +0000 Files and hashes: 1: bX2AV2xLO-av9DH40yM49x_fAd0.crl (hash: 27hokbDWOqW2JPN4xAX/E/iKloxujrXiI0v0UpHaImc=) 2: DA481A0CB61811F0ABB14C31C4F9AE02.roa (hash: T3+CRirqLtz1Ta4crR0HI+okuEb0BcJI1bh/9/iVPTY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.crl rsync://rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bX2AV2xLO-av9DH40yM49x_fAd0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 17:11:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3837 (0xefd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC1B8, serialNumber=6D7D80576C4B3BE6AFF431F8D32338F71FDF01DD Validity Not Before: Dec 4 17:11:27 2025 GMT Not After : Dec 11 17:11:27 2025 GMT Subject: CN=6931c0bf-daae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:b2:0c:49:cd:1e:af:ec:ab:89:2f:f7:1b:80: 0b:db:3e:6d:44:b6:e7:18:ee:a7:7e:48:d2:f3:82: 1c:75:a5:fa:9e:33:de:6d:27:7a:90:25:03:89:59: b9:f7:80:e6:59:9a:33:85:2b:56:d0:69:f0:55:af: 79:3a:3d:fc:fb:38:54:89:ef:b3:59:5b:23:ca:62: a1:67:be:a1:f2:c2:3e:14:38:0a:cb:ca:65:9e:b5: c8:27:17:5d:06:b1:70:0f:bf:bb:f4:26:8a:9f:c9: 42:2b:6f:08:50:ff:f8:45:69:8e:c6:7b:dd:fb:f0: 2b:f7:2c:ca:12:52:73:7a:3c:b2:c6:6d:ef:98:30: d2:a2:c5:87:5d:fc:9d:5f:c0:79:7f:81:79:a2:8f: 27:56:41:38:c8:61:b1:0f:7f:01:fe:96:74:8e:fc: ff:5e:9a:68:de:59:ff:1d:f9:15:22:6d:03:3a:56: 42:7c:56:9e:d8:62:5c:3d:b0:08:19:88:35:c2:ed: c6:15:fe:df:3c:a6:d7:17:88:44:ef:cc:47:47:a9: 97:79:9d:e3:a8:e1:d9:c2:e7:b7:ef:9c:74:f5:f4: d3:d3:38:30:da:c0:10:ff:3c:76:11:fa:b2:9d:f5: ad:6d:9b:95:a3:89:13:c6:73:12:01:11:ed:fd:e1: 5d:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:F6:51:58:15:99:77:B5:39:EA:9D:75:26:7A:C4:56:9D:71:8E:FC X509v3 Authority Key Identifier: keyid:6D:7D:80:57:6C:4B:3B:E6:AF:F4:31:F8:D3:23:38:F7:1F:DF:01:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bX2AV2xLO-av9DH40yM49x_fAd0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ca:c5:dd:b3:90:2e:02:36:46:e9:77:d1:25:4d:07:21:fb:34: e2:99:dd:b4:e2:07:a7:d4:b3:0e:d8:fa:06:6e:a7:4a:77:21: 3d:b5:d3:4f:a6:df:b9:a2:58:75:53:a7:1e:75:68:0b:76:3a: b3:22:f3:8b:03:cb:30:56:ac:9a:41:c7:6e:a1:b4:f6:74:d3: 7d:91:5b:92:58:5d:b1:2c:2e:4d:57:e2:6c:e4:df:ca:d2:2c: ab:0f:5c:8f:8c:5f:7c:22:4b:e6:9c:81:8d:2a:ab:27:49:9d: bd:97:08:12:4d:f6:63:75:84:b8:ae:4c:7f:f6:be:61:92:13: 0f:4f:f9:f4:18:3f:28:64:4e:82:f3:28:63:f5:04:21:40:d5: 72:a1:e0:fb:29:d0:80:92:4e:0a:02:01:8c:7b:71:67:23:b2: 55:c0:00:cd:c6:9c:c3:e4:bf:cb:c6:0f:49:60:66:21:33:04: 61:67:1c:f1:d1:9e:20:fc:b2:7f:84:68:ce:72:e0:88:41:51: 05:7e:73:1b:ac:bc:2a:32:7a:20:a7:50:d9:c1:64:95:37:a7: d5:67:97:96:0e:eb:0d:fd:f9:a8:c7:71:3e:ec:c1:ee:5d:22: 89:fe:c7:f6:97:c3:f7:03:e8:b5:73:f0:c3:2e:1a:7d:fa:e6: e0:e9:b2:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDv0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkMxQjgxMTAvBgNVBAUTKDZEN0Q4MDU3NkM0QjNCRTZBRkY0MzFGOEQzMjMzOEY3 MUZERjAxREQwHhcNMjUxMjA0MTcxMTI3WhcNMjUxMjExMTcxMTI3WjAYMRYwFAYD VQQDEw02OTMxYzBiZi1kYWFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo7IMSc0er+yriS/3G4AL2z5tRLbnGO6nfkjS84IcdaX6njPebSd6kCUDiVm5 94DmWZozhStW0GnwVa95Oj38+zhUie+zWVsjymKhZ76h8sI+FDgKy8plnrXIJxdd BrFwD7+79CaKn8lCK28IUP/4RWmOxnvd+/Ar9yzKElJzejyyxm3vmDDSosWHXfyd X8B5f4F5oo8nVkE4yGGxD38B/pZ0jvz/Xppo3ln/HfkVIm0DOlZCfFae2GJcPbAI GYg1wu3GFf7fPKbXF4hE78xHR6mXeZ3jqOHZwue375x09fTT0zgw2sAQ/zx2Efqy nfWtbZuVo4kTxnMSARHt/eFdxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN72UVgV mXe1OeqddSZ6xFadcY78MB8GA1UdIwQYMBaAFG19gFdsSzvmr/Qx+NMjOPcf3wHd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzFCOC9GQkRFOTlGQTkw RkIxMUU5OTJENTk4N0ZDNEY5QUUwMi9iWDJBVjJ4TE8tYXY5REg0MHlNNDl4X2ZB ZDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JYMkFWMnhMTy1hdjlESDQweU00OXhfZkFkMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QzFCOC9GQkRFOTlGQTkwRkIxMUU5OTJENTk4N0ZDNEY5QUUwMi9iWDJBVjJ4TE8t YXY5REg0MHlNNDl4X2ZBZDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDKxd2zkC4CNkbpd9ElTQch+zTimd204gen1LMO2PoGbqdKdyE9tdNP pt+5olh1U6cedWgLdjqzIvOLA8swVqyaQcduobT2dNN9kVuSWF2xLC5NV+Js5N/K 0iyrD1yPjF98IkvmnIGNKqsnSZ29lwgSTfZjdYS4rkx/9r5hkhMPT/n0GD8oZE6C 8yhj9QQhQNVyoeD7KdCAkk4KAgGMe3FnI7JVwADNxpzD5L/Lxg9JYGYhMwRhZxzx 0Z4g/LJ/hGjOcuCIQVEFfnMbrLwqMnogp1DZwWSVN6fVZ5eWDusN/fmox3E+7MHu XSKJ/sf2l8P3A+i1c/DDLhp9+ubg6bIT -----END CERTIFICATE-----Generated at Sat Dec 6 13:25:46 2025 by rpki-client