This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91389E7/99D28C9C4C0911F09F38B628C4F9AE02/BYl-c1406PZYdVSprzc0CCziidk.mft File: BYl-c1406PZYdVSprzc0CCziidk.mft (raw, json) Hash identifier: +Cnhq1RchoU63HYkxl3tR0T9mRZ3df4QSbfkCRTCEmE= Subject key identifier: 5E:14:53:3F:43:0B:FD:9C:85:47:B3:B6:D4:14:00:3E:06:12:BE:05 Authority key identifier: 05:89:7E:73:5E:34:E8:F6:58:75:54:A9:AF:37:34:08:2C:E2:89:D9 Certificate issuer: /CN=A91389E7/serialNumber=05897E735E34E8F6587554A9AF3734082CE289D9 Certificate serial: 5C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BYl-c1406PZYdVSprzc0CCziidk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91389E7/99D28C9C4C0911F09F38B628C4F9AE02/BYl-c1406PZYdVSprzc0CCziidk.mft Manifest number: 5A Signing time: Fri 05 Dec 2025 05:02:41 +0000 Manifest this update: Fri 05 Dec 2025 05:02:40 +0000 Manifest next update: Fri 12 Dec 2025 05:02:40 +0000 Files and hashes: 1: BYl-c1406PZYdVSprzc0CCziidk.crl (hash: z6+LiDL3lesxqqK5xDQ0FfwwTCWNC0ze32mPWlun6w8=) 2: 2C3D8AAA50B511F09288303CC4F9AE02.roa (hash: BRO70xst4iX7U+BsAkMQkxP1DSIFJqspyvz/A47AIrw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91389E7/99D28C9C4C0911F09F38B628C4F9AE02/BYl-c1406PZYdVSprzc0CCziidk.crl rsync://rpki.apnic.net/member_repository/A91389E7/99D28C9C4C0911F09F38B628C4F9AE02/BYl-c1406PZYdVSprzc0CCziidk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BYl-c1406PZYdVSprzc0CCziidk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 05:02:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 92 (0x5c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91389E7, serialNumber=05897E735E34E8F6587554A9AF3734082CE289D9 Validity Not Before: Dec 5 05:02:40 2025 GMT Not After : Dec 12 05:02:40 2025 GMT Subject: CN=69326771-c382 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:d4:fb:d1:61:33:48:3e:5d:61:7a:97:f5:97: 86:5c:ae:03:10:42:25:1f:3f:82:31:00:4a:68:86: aa:91:8c:62:d9:d5:d0:30:9a:b9:06:db:42:2e:c8: 6f:ed:c1:9f:94:62:b0:1d:23:d9:23:39:05:88:63: ba:1b:ec:d1:05:87:1d:4a:89:47:bf:ed:dc:db:63: bb:a5:10:70:42:ec:8b:bb:5d:22:f5:79:d9:90:13: ff:f9:f9:9a:5b:0d:df:24:19:45:c0:5a:b6:73:1a: 86:4c:bf:3e:4c:70:19:08:ad:8c:63:f0:fd:58:f0: 90:ac:0e:9c:00:ac:20:f4:e2:27:37:8e:48:52:b3: 6b:ba:62:a2:2f:29:d0:73:98:f5:22:db:c1:f3:bf: 89:60:3a:3b:72:7a:33:67:07:81:6b:c5:cb:64:37: d1:43:bb:5f:cc:94:90:fa:8b:d4:c6:fe:04:35:ea: 3d:5f:ec:62:a1:9a:72:62:78:a1:13:24:ed:ae:a2: f0:b2:0f:76:f9:e1:f7:26:c9:17:26:34:22:b0:29: 8b:2d:92:bd:c4:98:49:79:e2:c3:c3:86:80:6c:75: e2:02:e7:42:f8:91:ca:4c:9c:7d:4e:0f:f9:96:12: d3:0a:23:37:ce:1b:47:a9:56:59:d0:78:e0:25:88: 11:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:14:53:3F:43:0B:FD:9C:85:47:B3:B6:D4:14:00:3E:06:12:BE:05 X509v3 Authority Key Identifier: keyid:05:89:7E:73:5E:34:E8:F6:58:75:54:A9:AF:37:34:08:2C:E2:89:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91389E7/99D28C9C4C0911F09F38B628C4F9AE02/BYl-c1406PZYdVSprzc0CCziidk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BYl-c1406PZYdVSprzc0CCziidk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91389E7/99D28C9C4C0911F09F38B628C4F9AE02/BYl-c1406PZYdVSprzc0CCziidk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:4a:64:ac:5d:34:63:dd:b0:3c:9c:03:2f:59:f4:51:38:70: 03:4c:75:4a:c6:f0:17:84:0d:42:c1:36:5a:07:96:60:19:3b: 64:f1:c6:23:7f:39:64:50:66:05:b6:4e:dc:34:54:bf:7d:f7: 63:9d:83:55:08:df:46:b4:76:50:c2:e6:66:11:1c:5c:a2:95: d4:b7:eb:78:c7:02:fa:31:70:54:d4:63:bf:61:8d:ec:f8:fc: 19:c4:25:34:be:3e:a9:60:ee:8e:4d:6c:2f:f1:63:b1:35:90: 8b:85:1b:c5:eb:7a:a3:cd:5a:56:a0:36:1e:60:fa:e4:d3:af: 04:a4:d8:df:ee:7d:69:7f:45:86:5b:56:4a:c0:2c:b0:2b:3b: f3:ba:f8:9c:ec:5b:e3:14:fc:7c:2e:2e:6e:9a:2b:99:e6:70: 54:b4:31:69:11:bf:9a:04:de:ed:34:ac:f4:8d:88:d7:58:d4: 67:30:c1:97:39:50:90:0b:da:ac:69:9a:c3:78:f1:ed:b1:e3: 6b:53:b1:e8:39:7f:61:56:4b:3f:2b:d8:50:4a:34:ee:57:93: 9e:66:2c:9a:96:44:28:de:5b:7d:31:28:c7:40:15:9b:1d:63: 6b:08:f6:27:8a:7b:7c:fd:9a:23:33:2f:c2:4f:36:32:23:05: bf:bc:bd:63 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz ODlFNzExMC8GA1UEBRMoMDU4OTdFNzM1RTM0RThGNjU4NzU1NEE5QUYzNzM0MDgy Q0UyODlEOTAeFw0yNTEyMDUwNTAyNDBaFw0yNTEyMTIwNTAyNDBaMBgxFjAUBgNV BAMTDTY5MzI2NzcxLWMzODIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDK1PvRYTNIPl1hepf1l4ZcrgMQQiUfP4IxAEpohqqRjGLZ1dAwmrkG20IuyG/t wZ+UYrAdI9kjOQWIY7ob7NEFhx1KiUe/7dzbY7ulEHBC7Iu7XSL1edmQE//5+Zpb Dd8kGUXAWrZzGoZMvz5McBkIrYxj8P1Y8JCsDpwArCD04ic3jkhSs2u6YqIvKdBz mPUi28Hzv4lgOjtyejNnB4FrxctkN9FDu1/MlJD6i9TG/gQ16j1f7GKhmnJieKET JO2uovCyD3b54fcmyRcmNCKwKYstkr3EmEl54sPDhoBsdeIC50L4kcpMnH1OD/mW EtMKIzfOG0epVlnQeOAliBGrAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUXhRTP0ML /ZyFR7O21BQAPgYSvgUwHwYDVR0jBBgwFoAUBYl+c1406PZYdVSprzc0CCziidkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM4OUU3Lzk5RDI4QzlDNEMw OTExRjA5RjM4QjYyOEM0RjlBRTAyL0JZbC1jMTQwNlBaWWRWU3ByemMwQ0N6aWlk ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvQllsLWMxNDA2UFpZZFZTcHJ6YzBDQ3ppaWRrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM4 OUU3Lzk5RDI4QzlDNEMwOTExRjA5RjM4QjYyOEM0RjlBRTAyL0JZbC1jMTQwNlBa WWRWU3ByemMwQ0N6aWlkay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAF5KZKxdNGPdsDycAy9Z9FE4cANMdUrG8BeEDULBNloHlmAZO2TxxiN/ OWRQZgW2Ttw0VL9992Odg1UI30a0dlDC5mYRHFyildS363jHAvoxcFTUY79hjez4 /BnEJTS+Pqlg7o5NbC/xY7E1kIuFG8XreqPNWlagNh5g+uTTrwSk2N/ufWl/RYZb VkrALLArO/O6+JzsW+MU/HwuLm6aK5nmcFS0MWkRv5oE3u00rPSNiNdY1GcwwZc5 UJAL2qxpmsN48e2x42tTseg5f2FWSz8r2FBKNO5Xk55mLJqWRCjeW30xKMdAFZsd Y2sI9ieKe3z9miMzL8JPNjIjBb+8vWM= -----END CERTIFICATE-----Generated at Sat Dec 6 19:15:09 2025 by rpki-client