This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9150B91/76304A785A9311E8B7C2161FC4F9AE02/s1py5W8JAsfhuNgSxdg2VBHdox0.mft File: s1py5W8JAsfhuNgSxdg2VBHdox0.mft (raw, json) Hash identifier: vMYccuXqyQES2H/YetB2B7KiznppeVYK5Z8llUwB6NQ= Subject key identifier: 90:36:70:4A:5D:D9:3F:53:DC:C9:D3:FF:28:77:75:53:9C:7F:CA:49 Authority key identifier: B3:5A:72:E5:6F:09:02:C7:E1:B8:D8:12:C5:D8:36:54:11:DD:A3:1D Certificate issuer: /CN=A9150B91/serialNumber=B35A72E56F0902C7E1B8D812C5D8365411DDA31D Certificate serial: 152C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s1py5W8JAsfhuNgSxdg2VBHdox0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150B91/76304A785A9311E8B7C2161FC4F9AE02/s1py5W8JAsfhuNgSxdg2VBHdox0.mft Manifest number: 1522 Signing time: Thu 04 Dec 2025 16:28:00 +0000 Manifest this update: Thu 04 Dec 2025 16:28:00 +0000 Manifest next update: Thu 11 Dec 2025 16:28:00 +0000 Files and hashes: 1: s1py5W8JAsfhuNgSxdg2VBHdox0.crl (hash: ovTGeyAFDU94kkPMi0H1wSSGEWN0JY+DQKdQ0V69fR0=) 2: 4674A74E5DB211E8A30DF983C4F9AE02.roa (hash: N2bOeXWWMqXx3Cr2oJVAhS+4yD+JJsp3ikRjUaNFufQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150B91/76304A785A9311E8B7C2161FC4F9AE02/s1py5W8JAsfhuNgSxdg2VBHdox0.crl rsync://rpki.apnic.net/member_repository/A9150B91/76304A785A9311E8B7C2161FC4F9AE02/s1py5W8JAsfhuNgSxdg2VBHdox0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s1py5W8JAsfhuNgSxdg2VBHdox0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 16:27:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5420 (0x152c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150B91, serialNumber=B35A72E56F0902C7E1B8D812C5D8365411DDA31D Validity Not Before: Dec 4 16:28:00 2025 GMT Not After : Dec 11 16:28:00 2025 GMT Subject: CN=6931b690-60c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:31:8e:a9:0c:0d:01:82:89:0c:09:1c:dc:22: 36:f4:ef:dc:f5:0e:b7:78:40:f2:dd:17:dc:f6:a5: 95:46:94:7a:90:3f:fb:c9:7c:35:97:41:5a:f7:16: 3c:27:49:6c:ab:17:1e:91:84:2e:4a:f3:c5:6b:86: 7e:42:9d:85:2e:d3:3a:0c:55:fb:87:f9:8e:77:bd: fb:3e:57:06:e6:b7:36:b7:c5:77:4d:23:3b:8b:c1: fc:a4:62:bd:a7:4c:37:a5:da:4f:60:a5:0f:f1:26: 17:a5:f3:17:23:80:7b:9c:c8:67:bb:fc:77:4d:34: 72:30:6b:25:93:d8:5b:25:bd:71:af:a7:56:11:c6: 30:57:22:39:f5:28:f0:68:48:84:92:23:23:27:df: 6b:02:87:84:15:73:10:40:a4:5a:fd:a3:5c:b5:a7: d7:70:e4:7e:d9:34:39:a7:58:b7:6f:5c:9a:92:4d: 0d:17:3b:eb:ac:6f:e0:42:c0:bb:59:4b:62:c0:25: ee:9b:86:7f:f5:1e:f9:b5:d8:16:d8:73:e1:df:0f: a6:a9:19:58:c5:4f:cf:bf:de:07:69:f7:d5:35:e3: 55:72:72:e8:33:89:ff:dd:c5:61:30:17:6d:75:c5: 8a:cd:80:95:b3:1e:45:fe:d0:b5:52:3e:25:43:56: 8f:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:36:70:4A:5D:D9:3F:53:DC:C9:D3:FF:28:77:75:53:9C:7F:CA:49 X509v3 Authority Key Identifier: keyid:B3:5A:72:E5:6F:09:02:C7:E1:B8:D8:12:C5:D8:36:54:11:DD:A3:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150B91/76304A785A9311E8B7C2161FC4F9AE02/s1py5W8JAsfhuNgSxdg2VBHdox0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s1py5W8JAsfhuNgSxdg2VBHdox0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150B91/76304A785A9311E8B7C2161FC4F9AE02/s1py5W8JAsfhuNgSxdg2VBHdox0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:aa:f6:1a:47:71:d7:56:51:f0:22:25:29:9b:b7:2f:38:ef: e3:36:e0:2e:2c:f2:6d:9a:73:61:d4:0d:1a:84:d7:f4:69:59: 7a:3e:f1:83:75:f6:7a:e0:ea:1c:fc:8a:c6:84:89:2a:60:ab: dd:eb:a7:08:e1:6f:98:05:fd:7b:81:f1:ff:19:2d:c7:a6:6f: 3b:29:8d:d6:bc:e4:79:cf:ad:19:32:01:dd:ec:0b:19:97:de: bb:d5:26:29:a9:5a:cc:88:2a:86:8b:4f:c8:9e:72:86:8a:e8: 4a:42:35:1d:a4:e2:9c:e5:0e:26:2f:fa:7a:e4:99:a0:9c:a3: 1d:17:e6:d4:3d:1f:88:6c:4a:ad:d7:d8:ad:98:6c:98:90:8e: b1:3a:51:46:66:80:dc:4e:0e:2a:1f:8f:cb:fe:44:7b:b2:b4: a7:60:97:bf:dc:37:57:62:74:4b:5d:3c:af:c5:cc:4f:b1:ed: c8:7c:91:58:2b:14:53:dc:61:32:25:2f:ac:93:1f:49:c6:2d: e9:57:54:31:2f:a5:0b:fb:82:41:b6:72:43:32:13:f8:77:82: 58:a5:18:39:2b:e6:5b:66:42:46:e4:dd:89:0c:60:4a:94:a4: 6e:56:de:db:db:eb:19:a3:1d:98:1a:0f:03:cc:0c:27:c8:e9: 40:23:f0:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFSwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTBCOTExMTAvBgNVBAUTKEIzNUE3MkU1NkYwOTAyQzdFMUI4RDgxMkM1RDgzNjU0 MTFEREEzMUQwHhcNMjUxMjA0MTYyODAwWhcNMjUxMjExMTYyODAwWjAYMRYwFAYD VQQDEw02OTMxYjY5MC02MGM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuDGOqQwNAYKJDAkc3CI29O/c9Q63eEDy3Rfc9qWVRpR6kD/7yXw1l0Fa9xY8 J0lsqxcekYQuSvPFa4Z+Qp2FLtM6DFX7h/mOd737PlcG5rc2t8V3TSM7i8H8pGK9 p0w3pdpPYKUP8SYXpfMXI4B7nMhnu/x3TTRyMGslk9hbJb1xr6dWEcYwVyI59Sjw aEiEkiMjJ99rAoeEFXMQQKRa/aNctafXcOR+2TQ5p1i3b1yakk0NFzvrrG/gQsC7 WUtiwCXum4Z/9R75tdgW2HPh3w+mqRlYxU/Pv94HaffVNeNVcnLoM4n/3cVhMBdt dcWKzYCVsx5F/tC1Uj4lQ1aPfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJA2cEpd 2T9T3MnT/yh3dVOcf8pJMB8GA1UdIwQYMBaAFLNacuVvCQLH4bjYEsXYNlQR3aMd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MEI5MS83NjMwNEE3ODVB OTMxMUU4QjdDMjE2MUZDNEY5QUUwMi9zMXB5NVc4SkFzZmh1TmdTeGRnMlZCSGRv eDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3MxcHk1VzhKQXNmaHVOZ1N4ZGcyVkJIZG94MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MEI5MS83NjMwNEE3ODVBOTMxMUU4QjdDMjE2MUZDNEY5QUUwMi9zMXB5NVc4SkFz Zmh1TmdTeGRnMlZCSGRveDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACqvYaR3HXVlHwIiUpm7cvOO/jNuAuLPJtmnNh1A0ahNf0aVl6PvGD dfZ64Ooc/IrGhIkqYKvd66cI4W+YBf17gfH/GS3Hpm87KY3WvOR5z60ZMgHd7AsZ l9671SYpqVrMiCqGi0/InnKGiuhKQjUdpOKc5Q4mL/p65JmgnKMdF+bUPR+IbEqt 19itmGyYkI6xOlFGZoDcTg4qH4/L/kR7srSnYJe/3DdXYnRLXTyvxcxPse3IfJFY KxRT3GEyJS+skx9Jxi3pV1QxL6UL+4JBtnJDMhP4d4JYpRg5K+ZbZkJG5N2JDGBK lKRuVt7b2+sZox2YGg8DzAwnyOlAI/Cg -----END CERTIFICATE-----Generated at Sat Dec 6 16:28:24 2025 by rpki-client