This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9171235/DD61E22EC5DD11ECBEF42C77C4F9AE02/RByw2GqSzt--gIPe1peibWI-5lU.mft File: RByw2GqSzt--gIPe1peibWI-5lU.mft (raw, json) Hash identifier: HdP+ivrpTGYoSsiQAH285OoXtmetNonaDXckHxFZLtc= Subject key identifier: 11:BB:2B:F9:A7:A2:06:27:87:3B:CF:91:A0:CA:96:53:D9:24:10:C2 Authority key identifier: 44:1C:B0:D8:6A:92:CE:DF:BE:80:83:DE:D6:97:A2:6D:62:3E:E6:55 Certificate issuer: /CN=A9171235/serialNumber=441CB0D86A92CEDFBE8083DED697A26D623EE655 Certificate serial: 0398 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RByw2GqSzt--gIPe1peibWI-5lU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171235/DD61E22EC5DD11ECBEF42C77C4F9AE02/RByw2GqSzt--gIPe1peibWI-5lU.mft Manifest number: 038E Signing time: Thu 04 Dec 2025 23:12:03 +0000 Manifest this update: Thu 04 Dec 2025 23:12:03 +0000 Manifest next update: Thu 11 Dec 2025 23:12:03 +0000 Files and hashes: 1: RByw2GqSzt--gIPe1peibWI-5lU.crl (hash: BbT0GdANxrG9xKFx5YroyRZH5nmH27Zr3CB1EvoCY1s=) 2: 9C072F22C9E411EC956B0A3CC4F9AE02.roa (hash: /wLCOfPhuY3TbRlUp4zKmXpIpLo+qttM1HDHUEGC0Us=) 3: 9CD74392C9E411EC956B0A3CC4F9AE02.roa (hash: qvqgBUl0a4zKeWl1I3fwpsPKJV0El11IrKtIQQYLmrE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171235/DD61E22EC5DD11ECBEF42C77C4F9AE02/RByw2GqSzt--gIPe1peibWI-5lU.crl rsync://rpki.apnic.net/member_repository/A9171235/DD61E22EC5DD11ECBEF42C77C4F9AE02/RByw2GqSzt--gIPe1peibWI-5lU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RByw2GqSzt--gIPe1peibWI-5lU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 23:12:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 920 (0x398) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171235, serialNumber=441CB0D86A92CEDFBE8083DED697A26D623EE655 Validity Not Before: Dec 4 23:12:03 2025 GMT Not After : Dec 11 23:12:03 2025 GMT Subject: CN=69321543-b992 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:e8:4c:fd:04:9c:f8:38:6b:4b:29:30:55:96: 1a:2d:72:1e:79:96:a6:28:d8:aa:d1:3c:30:76:81: 38:ef:96:97:b1:16:c7:3d:86:5e:38:f3:4c:18:45: dc:23:5c:72:c5:8f:df:9d:67:5f:9a:dc:4d:2b:1e: dc:ab:76:26:e7:83:a7:15:0a:e4:09:f2:62:78:20: 2a:5e:dd:d0:16:6b:23:dc:21:a0:c5:dd:5d:3a:b4: d3:94:fc:a5:8f:70:4f:46:75:2f:a8:c5:33:7a:10: 52:de:00:7b:ae:75:f1:67:b3:b8:90:0a:38:54:62: 59:f5:d1:ab:1c:77:52:17:c0:3d:89:29:ab:8a:a9: cd:86:da:55:c3:13:40:dc:30:2c:97:24:2f:22:1d: b5:0b:d4:43:da:17:d6:30:de:b5:a8:3e:33:9e:fa: 5f:e8:96:b3:6a:d4:37:a8:8f:5b:56:02:55:15:bf: a5:82:cc:e0:f8:54:b5:5f:81:0d:ee:85:1c:f4:88: 4f:05:2b:1e:e3:60:4e:75:10:94:49:c7:cb:07:a7: 51:56:c2:3a:e9:1f:75:ab:31:96:74:99:c3:fc:e5: f0:20:16:bf:76:81:f8:3a:92:9a:e8:0c:66:4f:3c: 61:e2:a1:bd:34:32:0c:00:71:e5:98:d3:e9:f1:0d: 29:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:BB:2B:F9:A7:A2:06:27:87:3B:CF:91:A0:CA:96:53:D9:24:10:C2 X509v3 Authority Key Identifier: keyid:44:1C:B0:D8:6A:92:CE:DF:BE:80:83:DE:D6:97:A2:6D:62:3E:E6:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171235/DD61E22EC5DD11ECBEF42C77C4F9AE02/RByw2GqSzt--gIPe1peibWI-5lU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RByw2GqSzt--gIPe1peibWI-5lU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171235/DD61E22EC5DD11ECBEF42C77C4F9AE02/RByw2GqSzt--gIPe1peibWI-5lU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:34:51:a8:02:9e:2d:0a:12:69:20:6e:55:01:82:a9:40:e5: 6e:bf:a6:f1:fd:f2:1e:f8:94:15:3a:e2:fb:d4:95:5b:e5:8a: 10:6f:f6:9d:4f:9b:15:53:7f:af:31:4f:0a:ad:11:19:d4:9e: 41:69:27:1e:70:cd:53:0a:0c:09:73:67:68:7b:cb:c8:5d:50: fd:bf:a5:11:17:44:3e:a3:12:51:8d:50:db:17:ea:06:a3:b7: e7:7c:b6:f2:c9:e0:99:18:08:c9:d4:1f:55:cb:a3:59:7c:34: 34:fb:f1:12:a8:e9:fb:63:aa:ae:b5:e7:03:bc:01:11:20:87: c7:07:7e:0f:98:88:e0:6e:4d:c0:27:97:0e:63:b3:39:6f:a8: 56:6a:b0:0b:69:67:95:c8:85:a2:5d:e4:d3:73:90:82:e7:b5: 30:d6:dd:52:94:00:fb:18:2f:ff:3c:a3:6d:4a:46:b7:42:15: 05:90:cc:f5:c7:f8:51:14:23:44:c0:5a:15:67:49:b1:12:79: 69:9b:f0:d6:21:2f:bb:a1:02:0d:a1:73:45:af:c3:c2:6c:c3: eb:7b:05:52:5c:1a:71:d4:47:e6:ef:3e:86:43:ca:8b:54:bc: 84:a8:56:d0:d4:18:06:7f:a4:13:1c:c2:1f:ff:e4:88:ad:97: 31:d9:e1:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA5gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzEyMzUxMTAvBgNVBAUTKDQ0MUNCMEQ4NkE5MkNFREZCRTgwODNERUQ2OTdBMjZE NjIzRUU2NTUwHhcNMjUxMjA0MjMxMjAzWhcNMjUxMjExMjMxMjAzWjAYMRYwFAYD VQQDEw02OTMyMTU0My1iOTkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu+hM/QSc+DhrSykwVZYaLXIeeZamKNiq0TwwdoE475aXsRbHPYZeOPNMGEXc I1xyxY/fnWdfmtxNKx7cq3Ym54OnFQrkCfJieCAqXt3QFmsj3CGgxd1dOrTTlPyl j3BPRnUvqMUzehBS3gB7rnXxZ7O4kAo4VGJZ9dGrHHdSF8A9iSmriqnNhtpVwxNA 3DAslyQvIh21C9RD2hfWMN61qD4znvpf6JazatQ3qI9bVgJVFb+lgszg+FS1X4EN 7oUc9IhPBSse42BOdRCUScfLB6dRVsI66R91qzGWdJnD/OXwIBa/doH4OpKa6Axm Tzxh4qG9NDIMAHHlmNPp8Q0pEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBG7K/mn ogYnhzvPkaDKllPZJBDCMB8GA1UdIwQYMBaAFEQcsNhqks7fvoCD3taXom1iPuZV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTIzNS9ERDYxRTIyRUM1 REQxMUVDQkVGNDJDNzdDNEY5QUUwMi9SQnl3MkdxU3p0LS1nSVBlMXBlaWJXSS01 bFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JCeXcyR3FTenQtLWdJUGUxcGVpYldJLTVsVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTIzNS9ERDYxRTIyRUM1REQxMUVDQkVGNDJDNzdDNEY5QUUwMi9SQnl3MkdxU3p0 LS1nSVBlMXBlaWJXSS01bFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBsNFGoAp4tChJpIG5VAYKpQOVuv6bx/fIe+JQVOuL71JVb5YoQb/ad T5sVU3+vMU8KrREZ1J5BaScecM1TCgwJc2doe8vIXVD9v6URF0Q+oxJRjVDbF+oG o7fnfLbyyeCZGAjJ1B9Vy6NZfDQ0+/ESqOn7Y6qutecDvAERIIfHB34PmIjgbk3A J5cOY7M5b6hWarALaWeVyIWiXeTTc5CC57Uw1t1SlAD7GC//PKNtSka3QhUFkMz1 x/hRFCNEwFoVZ0mxEnlpm/DWIS+7oQINoXNFr8PCbMPrewVSXBpx1Efm7z6GQ8qL VLyEqFbQ1BgGf6QTHMIf/+SIrZcx2eGS -----END CERTIFICATE-----Generated at Sat Dec 6 22:29:29 2025 by rpki-client