This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9132FD9/7F9A70342BB511F09DE5BA4EC4F9AE02/lyuQ2cUZIlatlkdbOSurGnp5zC0.mft File: lyuQ2cUZIlatlkdbOSurGnp5zC0.mft (raw, json) Hash identifier: qfpHDKs0leZGukb6bp05Zg3pPeYAcWsdTWN5Gc8Sb9g= Subject key identifier: DB:3C:33:50:6C:74:B5:73:DA:B0:8C:52:7A:09:DA:8F:A4:CD:BC:A2 Authority key identifier: 97:2B:90:D9:C5:19:22:56:AD:96:47:5B:39:2B:AB:1A:7A:79:CC:2D Certificate issuer: /CN=A9132FD9/serialNumber=972B90D9C5192256AD96475B392BAB1A7A79CC2D Certificate serial: 74 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lyuQ2cUZIlatlkdbOSurGnp5zC0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132FD9/7F9A70342BB511F09DE5BA4EC4F9AE02/lyuQ2cUZIlatlkdbOSurGnp5zC0.mft Manifest number: 70 Signing time: Fri 05 Dec 2025 04:49:13 +0000 Manifest this update: Fri 05 Dec 2025 04:49:13 +0000 Manifest next update: Fri 12 Dec 2025 04:49:13 +0000 Files and hashes: 1: lyuQ2cUZIlatlkdbOSurGnp5zC0.crl (hash: Si3LCCCagDQHH5AjRpnYCdfeLjy14FwBzStI2IKyePY=) 2: DCC2224A313011F0BE214A64C4F9AE02.roa (hash: boAAaQY0nzMtC8MdALGWU7uiMFPgsCoPJLOiVmNOgmU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132FD9/7F9A70342BB511F09DE5BA4EC4F9AE02/lyuQ2cUZIlatlkdbOSurGnp5zC0.crl rsync://rpki.apnic.net/member_repository/A9132FD9/7F9A70342BB511F09DE5BA4EC4F9AE02/lyuQ2cUZIlatlkdbOSurGnp5zC0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lyuQ2cUZIlatlkdbOSurGnp5zC0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:49:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 116 (0x74) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132FD9, serialNumber=972B90D9C5192256AD96475B392BAB1A7A79CC2D Validity Not Before: Dec 5 04:49:13 2025 GMT Not After : Dec 12 04:49:13 2025 GMT Subject: CN=69326449-be92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:2d:03:7c:09:16:d3:7b:0b:23:6a:f8:d1:5d: d5:f6:78:91:96:23:d9:a7:ce:b2:0f:39:39:47:fb: 5f:56:29:72:ed:5e:09:26:6a:e9:73:a6:43:9e:51: f3:eb:d2:fc:a7:13:86:b0:ab:c6:0f:82:25:d3:54: 8f:d4:b4:bb:aa:51:63:db:47:99:75:6b:6c:68:4c: 9c:1f:34:93:d5:93:00:03:d3:ee:47:47:c7:a5:93: cb:99:cc:17:63:a5:b7:05:9a:29:70:3c:e0:6e:72: 83:52:f7:e1:c5:c7:2e:4a:86:38:13:3d:17:c4:00: f0:b8:3e:2c:a7:02:a9:ab:43:47:e0:59:5b:87:be: 9c:74:83:c4:67:19:a5:ce:e3:3a:b8:94:04:2c:5b: bf:e8:e4:dc:33:6c:27:c8:71:16:a1:dd:bc:fb:93: ec:b5:7a:09:c5:f6:ba:5e:d2:64:9c:d1:80:06:dd: d6:b5:46:dd:5b:4a:20:32:f4:15:eb:ee:04:4c:74: a8:12:27:38:08:94:9e:15:2b:1a:89:6c:73:6a:19: 38:5f:ac:5c:e0:ae:49:76:bb:aa:e2:ea:16:7e:e1: 97:a4:c9:fc:40:9b:97:5e:2b:2a:82:24:0f:c0:70: b3:49:3b:0a:fc:92:95:a7:3e:6c:19:45:40:bd:29: ac:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:3C:33:50:6C:74:B5:73:DA:B0:8C:52:7A:09:DA:8F:A4:CD:BC:A2 X509v3 Authority Key Identifier: keyid:97:2B:90:D9:C5:19:22:56:AD:96:47:5B:39:2B:AB:1A:7A:79:CC:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132FD9/7F9A70342BB511F09DE5BA4EC4F9AE02/lyuQ2cUZIlatlkdbOSurGnp5zC0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lyuQ2cUZIlatlkdbOSurGnp5zC0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132FD9/7F9A70342BB511F09DE5BA4EC4F9AE02/lyuQ2cUZIlatlkdbOSurGnp5zC0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:77:63:4b:c4:53:41:c4:cf:7a:8d:2b:55:21:fb:12:37:7c: 4f:db:a1:e4:f0:49:82:b6:d0:95:6d:04:39:01:2c:1a:57:a5: bd:33:36:c7:34:2c:0d:11:a2:0a:d3:00:8c:ea:5f:b1:86:13: 6e:b8:05:ce:49:bf:a3:f5:b3:ab:83:a6:ed:f4:1e:0e:be:10: 50:1f:8c:52:f7:c4:36:4e:25:d2:65:e1:40:78:7e:67:de:98: c9:da:b7:55:71:b4:fc:44:be:da:8b:a6:d1:49:75:cf:db:39: b1:b7:51:17:cb:31:32:be:80:3d:54:c8:bb:e1:81:4c:27:31: 29:d8:30:a9:fb:71:9f:33:32:ba:3c:76:12:a6:95:bb:ee:c9: c9:b9:98:84:4f:fc:ec:42:43:75:c1:47:76:80:73:fc:74:1a: b0:40:58:fa:19:5a:f8:7c:1f:0d:c8:e0:8a:87:1b:17:55:89: 9c:cd:f1:3f:90:c0:f5:2c:46:1f:de:e6:fc:5f:7c:bb:1b:6a: 8b:2b:ee:9d:88:b3:39:89:8d:14:6d:ff:4a:ec:8c:4e:8d:12: 28:54:b3:9c:40:cf:88:25:a2:23:32:45:73:50:ca:2c:7f:30: 8c:54:e9:d0:dc:2f:89:04:98:1e:80:9e:be:6e:2a:01:b6:33: b7:41:9e:40 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz MkZEOTExMC8GA1UEBRMoOTcyQjkwRDlDNTE5MjI1NkFEOTY0NzVCMzkyQkFCMUE3 QTc5Q0MyRDAeFw0yNTEyMDUwNDQ5MTNaFw0yNTEyMTIwNDQ5MTNaMBgxFjAUBgNV BAMTDTY5MzI2NDQ5LWJlOTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC3LQN8CRbTewsjavjRXdX2eJGWI9mnzrIPOTlH+19WKXLtXgkmaulzpkOeUfPr 0vynE4awq8YPgiXTVI/UtLuqUWPbR5l1a2xoTJwfNJPVkwAD0+5HR8elk8uZzBdj pbcFmilwPOBucoNS9+HFxy5KhjgTPRfEAPC4PiynAqmrQ0fgWVuHvpx0g8RnGaXO 4zq4lAQsW7/o5NwzbCfIcRah3bz7k+y1egnF9rpe0mSc0YAG3da1Rt1bSiAy9BXr 7gRMdKgSJzgIlJ4VKxqJbHNqGThfrFzgrkl2u6ri6hZ+4ZekyfxAm5deKyqCJA/A cLNJOwr8kpWnPmwZRUC9KaxVAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU2zwzUGx0 tXPasIxSegnaj6TNvKIwHwYDVR0jBBgwFoAUlyuQ2cUZIlatlkdbOSurGnp5zC0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMyRkQ5LzdGOUE3MDM0MkJC NTExRjA5REU1QkE0RUM0RjlBRTAyL2x5dVEyY1VaSWxhdGxrZGJPU3VyR25wNXpD MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbHl1UTJjVVpJbGF0bGtkYk9TdXJHbnA1ekMwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMy RkQ5LzdGOUE3MDM0MkJCNTExRjA5REU1QkE0RUM0RjlBRTAyL2x5dVEyY1VaSWxh dGxrZGJPU3VyR25wNXpDMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAB53Y0vEU0HEz3qNK1Uh+xI3fE/boeTwSYK20JVtBDkBLBpXpb0zNsc0 LA0RogrTAIzqX7GGE264Bc5Jv6P1s6uDpu30Hg6+EFAfjFL3xDZOJdJl4UB4fmfe mMnat1VxtPxEvtqLptFJdc/bObG3URfLMTK+gD1UyLvhgUwnMSnYMKn7cZ8zMro8 dhKmlbvuycm5mIRP/OxCQ3XBR3aAc/x0GrBAWPoZWvh8Hw3I4IqHGxdViZzN8T+Q wPUsRh/e5vxffLsbaosr7p2IszmJjRRt/0rsjE6NEihUs5xAz4gloiMyRXNQyix/ MIxU6dDcL4kEmB6Anr5uKgG2M7dBnkA= -----END CERTIFICATE-----Generated at Sat Dec 6 18:13:19 2025 by rpki-client