This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91557BA/6812DF9204EB11EAA72FA363C4F9AE02/ry1FO-u_318ptjrBZ1THjRsPy4g.mft File: ry1FO-u_318ptjrBZ1THjRsPy4g.mft (raw, json) Hash identifier: bI/N7C71iK5dskCtj6t+PGjqzgwI+gMR35lWN5CGY+c= Subject key identifier: 39:12:39:D5:4E:BE:38:81:6F:33:0B:32:C1:7F:F2:26:0E:E5:1C:F7 Authority key identifier: AF:2D:45:3B:EB:BF:DF:5F:29:B6:3A:C1:67:54:C7:8D:1B:0F:CB:88 Certificate issuer: /CN=A91557BA/serialNumber=AF2D453BEBBFDF5F29B63AC16754C78D1B0FCB88 Certificate serial: 0CB3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ry1FO-u_318ptjrBZ1THjRsPy4g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91557BA/6812DF9204EB11EAA72FA363C4F9AE02/ry1FO-u_318ptjrBZ1THjRsPy4g.mft Manifest number: 0CA9 Signing time: Sat 06 Dec 2025 17:39:52 +0000 Manifest this update: Sat 06 Dec 2025 17:39:52 +0000 Manifest next update: Sat 13 Dec 2025 17:39:52 +0000 Files and hashes: 1: ry1FO-u_318ptjrBZ1THjRsPy4g.crl (hash: qC6cYQWtEGcPw05UegjaqQ8yEN3f/eUbSdjWJeStZcc=) 2: 157A1BFC59EE11EBA398AA0AC4F9AE02.roa (hash: QXDdzYa6iyzovy5Z9ik5QXaJEcfXc3NGsSzn/V3Ryt4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91557BA/6812DF9204EB11EAA72FA363C4F9AE02/ry1FO-u_318ptjrBZ1THjRsPy4g.crl rsync://rpki.apnic.net/member_repository/A91557BA/6812DF9204EB11EAA72FA363C4F9AE02/ry1FO-u_318ptjrBZ1THjRsPy4g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ry1FO-u_318ptjrBZ1THjRsPy4g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3251 (0xcb3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91557BA, serialNumber=AF2D453BEBBFDF5F29B63AC16754C78D1B0FCB88 Validity Not Before: Dec 6 17:39:52 2025 GMT Not After : Dec 13 17:39:52 2025 GMT Subject: CN=69346a68-3b53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:69:6e:02:2c:3c:ca:27:58:15:44:0a:40:a7: fd:1d:72:ec:82:60:b5:c4:dd:72:a1:d4:b0:d0:1a: aa:da:32:61:35:74:2f:66:49:25:1c:11:e4:64:82: 72:16:9c:d8:f4:43:2d:51:57:bb:8d:a2:8a:6e:df: ac:a8:13:08:53:f4:57:b9:99:da:ba:43:5f:43:75: 41:85:83:c0:0a:3e:a2:44:c2:66:e0:59:ee:e6:6a: cd:2d:4c:1f:e9:25:08:43:3a:74:7b:b2:9b:18:49: 0e:4f:b8:5c:e6:0e:49:3a:48:23:dd:ae:81:68:b1: 64:8f:ff:54:0a:e1:0d:a2:be:59:d0:6a:07:d2:9c: 32:2b:44:59:69:25:27:bf:39:b7:2c:b2:7b:0e:f1: 74:81:6a:69:43:bd:1b:11:a2:85:6e:7f:eb:23:cf: 7e:3a:73:d1:62:28:86:6b:fb:e4:9b:83:91:b9:a7: a9:85:8f:f6:e8:cb:6d:e7:42:8f:cd:a2:2e:c4:dc: ec:94:ea:21:c0:01:94:7f:fa:42:e5:b9:f3:64:50: b2:4c:ee:20:39:99:c2:f4:ba:4c:72:62:6b:b4:92: 5a:43:ed:2b:f3:ac:bd:a2:ad:74:a7:04:30:2b:08: 71:1a:1a:34:ea:b1:7b:3e:f3:48:e5:f6:a5:cf:bc: 8d:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:12:39:D5:4E:BE:38:81:6F:33:0B:32:C1:7F:F2:26:0E:E5:1C:F7 X509v3 Authority Key Identifier: keyid:AF:2D:45:3B:EB:BF:DF:5F:29:B6:3A:C1:67:54:C7:8D:1B:0F:CB:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91557BA/6812DF9204EB11EAA72FA363C4F9AE02/ry1FO-u_318ptjrBZ1THjRsPy4g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ry1FO-u_318ptjrBZ1THjRsPy4g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91557BA/6812DF9204EB11EAA72FA363C4F9AE02/ry1FO-u_318ptjrBZ1THjRsPy4g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:8a:72:e8:d2:34:82:43:54:a5:bf:ab:b4:c0:3a:de:db:41: cb:b7:e9:95:60:cd:2a:84:2a:52:5b:24:0f:dc:6e:15:09:87: 05:9c:2f:0a:d4:c2:80:f8:c8:8f:ee:18:7a:4d:48:b7:7b:62: d8:1f:0b:de:bd:5d:36:8a:69:0d:ca:65:2f:76:28:f9:41:0d: 2b:37:86:fa:73:94:66:1f:e5:03:ad:3b:32:1d:f2:33:43:27: 5f:0c:27:24:f9:59:ab:0c:d5:c7:8b:b4:cc:5a:db:c8:5a:09: 9b:a8:06:5c:05:98:16:98:3a:f1:85:4d:24:1a:34:54:ca:d3: ce:53:67:fa:ae:3d:fb:9e:30:9b:3a:02:2d:76:f4:e4:20:de: 22:55:f9:7d:e8:14:95:fb:9a:7d:44:e5:35:24:88:84:07:b4: 5e:0a:e4:5f:70:55:5f:2c:77:5b:61:e2:77:3a:c2:1e:e0:71: 4d:5a:e1:e0:1d:bb:f2:6e:10:00:30:e3:ca:e9:66:53:05:79: 55:4b:aa:d8:62:9f:8f:c8:a6:4c:eb:32:83:42:07:1e:35:1d: a2:6b:54:77:bc:51:a2:0a:4d:50:59:c6:7e:fc:ce:1b:8c:a9: fe:e1:0b:fd:d7:a4:98:f8:05:ec:35:e7:a8:b3:fd:10:59:31: 84:0b:3b:16 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDLMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTU3QkExMTAvBgNVBAUTKEFGMkQ0NTNCRUJCRkRGNUYyOUI2M0FDMTY3NTRDNzhE MUIwRkNCODgwHhcNMjUxMjA2MTczOTUyWhcNMjUxMjEzMTczOTUyWjAYMRYwFAYD VQQDEw02OTM0NmE2OC0zYjUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8GluAiw8yidYFUQKQKf9HXLsgmC1xN1yodSw0Bqq2jJhNXQvZkklHBHkZIJy FpzY9EMtUVe7jaKKbt+sqBMIU/RXuZnaukNfQ3VBhYPACj6iRMJm4Fnu5mrNLUwf 6SUIQzp0e7KbGEkOT7hc5g5JOkgj3a6BaLFkj/9UCuENor5Z0GoH0pwyK0RZaSUn vzm3LLJ7DvF0gWppQ70bEaKFbn/rI89+OnPRYiiGa/vkm4ORuaephY/26Mtt50KP zaIuxNzslOohwAGUf/pC5bnzZFCyTO4gOZnC9LpMcmJrtJJaQ+0r86y9oq10pwQw KwhxGho06rF7PvNI5falz7yNQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDkSOdVO vjiBbzMLMsF/8iYO5Rz3MB8GA1UdIwQYMBaAFK8tRTvrv99fKbY6wWdUx40bD8uI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTdCQS82ODEyREY5MjA0 RUIxMUVBQTcyRkEzNjNDNEY5QUUwMi9yeTFGTy11XzMxOHB0anJCWjFUSGpSc1B5 NGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3J5MUZPLXVfMzE4cHRqckJaMVRIalJzUHk0Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NTdCQS82ODEyREY5MjA0RUIxMUVBQTcyRkEzNjNDNEY5QUUwMi9yeTFGTy11XzMx OHB0anJCWjFUSGpSc1B5NGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBkinLo0jSCQ1Slv6u0wDre20HLt+mVYM0qhCpSWyQP3G4VCYcFnC8K 1MKA+MiP7hh6TUi3e2LYHwvevV02imkNymUvdij5QQ0rN4b6c5RmH+UDrTsyHfIz QydfDCck+VmrDNXHi7TMWtvIWgmbqAZcBZgWmDrxhU0kGjRUytPOU2f6rj37njCb OgItdvTkIN4iVfl96BSV+5p9ROU1JIiEB7ReCuRfcFVfLHdbYeJ3OsIe4HFNWuHg HbvybhAAMOPK6WZTBXlVS6rYYp+PyKZM6zKDQgceNR2ia1R3vFGiCk1QWcZ+/M4b jKn+4Qv916SY+AXsNeeos/0QWTGECzsW -----END CERTIFICATE-----Generated at Sun Dec 7 03:23:50 2025 by rpki-client