This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9171669/B558BA060D9411EDA5D4E051C4F9AE02/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.mft File: gy_lYU4C01D4hnkN5L3Jn0JkVeQ.mft (raw, json) Hash identifier: +DT9tvDAV34QSpR26dZRmbdBZcmQlRjvaBw0TFiD/iQ= Subject key identifier: 00:33:7B:D3:61:57:4A:F2:39:A0:51:B7:65:35:8B:20:A2:3C:A3:C9 Authority key identifier: 83:2F:E5:61:4E:02:D3:50:F8:86:79:0D:E4:BD:C9:9F:42:64:55:E4 Certificate issuer: /CN=A9171669/serialNumber=832FE5614E02D350F886790DE4BDC99F426455E4 Certificate serial: 02DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171669/B558BA060D9411EDA5D4E051C4F9AE02/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.mft Manifest number: 02D8 Signing time: Sat 06 Dec 2025 23:54:04 +0000 Manifest this update: Sat 06 Dec 2025 23:54:03 +0000 Manifest next update: Sat 13 Dec 2025 23:54:03 +0000 Files and hashes: 1: gy_lYU4C01D4hnkN5L3Jn0JkVeQ.crl (hash: tpO5Q44das2q2+ZpGtta267aybLU2tzRhUhx7yjwQDU=) 2: 91BBC8880D9711ED8F09C27DC4F9AE02.roa (hash: KV+SoYHbA+Q51JP+NigJCe33FcHjWlimMC267ADRQGw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171669/B558BA060D9411EDA5D4E051C4F9AE02/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.crl rsync://rpki.apnic.net/member_repository/A9171669/B558BA060D9411EDA5D4E051C4F9AE02/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 23:54:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 732 (0x2dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171669, serialNumber=832FE5614E02D350F886790DE4BDC99F426455E4 Validity Not Before: Dec 6 23:54:03 2025 GMT Not After : Dec 13 23:54:03 2025 GMT Subject: CN=6934c21c-85ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:9c:44:59:d2:c8:5a:93:d7:3a:cf:d0:7f:e3: 86:c3:52:7a:1d:96:2f:38:53:40:8d:46:16:4c:11: 54:9a:a7:3f:29:b2:4e:69:e1:6f:c3:d8:a5:7f:c6: 42:be:1f:f9:04:7f:80:1b:c7:a2:c4:12:7a:27:df: ef:75:fd:57:b0:ef:38:8c:5a:1b:80:17:84:fc:b2: 83:5c:ec:fc:1f:8b:8d:33:79:de:e9:27:ee:bf:b2: 02:e0:b6:36:9a:b2:89:92:bb:a1:a4:02:89:3f:25: 75:ec:1e:ab:16:96:a6:09:33:78:57:fa:85:99:09: 85:aa:cc:11:8a:b0:11:ba:cc:2e:f1:e0:04:45:88: 66:90:ef:6e:63:0b:61:6d:fc:99:c7:9f:8e:67:9d: a2:0d:55:30:07:31:76:ca:11:6c:3a:d8:e5:22:d1: 42:22:65:de:1a:18:9a:84:e5:94:f3:ea:bc:f3:73: 59:da:ae:e0:cb:99:fd:bf:1e:36:cf:9c:a0:9e:0d: e5:1e:9a:48:75:28:d2:ed:88:01:f4:09:19:4f:fc: 27:91:86:cb:6b:0d:e8:c6:58:87:7e:c3:6d:09:8f: 42:91:36:f4:15:10:07:68:cb:e4:9d:95:7f:1c:af: b3:2b:1b:dc:62:a7:36:33:73:0c:32:d2:4f:3c:1a: 04:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:33:7B:D3:61:57:4A:F2:39:A0:51:B7:65:35:8B:20:A2:3C:A3:C9 X509v3 Authority Key Identifier: keyid:83:2F:E5:61:4E:02:D3:50:F8:86:79:0D:E4:BD:C9:9F:42:64:55:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171669/B558BA060D9411EDA5D4E051C4F9AE02/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171669/B558BA060D9411EDA5D4E051C4F9AE02/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:81:f2:1f:ef:38:ea:b2:c3:2e:49:50:97:4f:8f:15:22:17: 92:08:e0:08:36:af:bc:2a:4f:5a:4f:47:6e:8e:36:8d:f3:11: 88:d9:02:b7:25:8e:c2:db:02:f9:0a:b8:0b:b1:d6:f2:04:23: 17:38:ca:5e:b2:fa:64:87:bd:21:12:ae:9f:11:bb:3a:65:66: 6e:d8:d1:98:78:6c:c5:9c:9b:67:35:5f:f7:d6:69:f0:23:7d: dc:36:54:80:67:56:4b:d8:9d:81:e8:f4:8c:dc:6b:e2:66:4d: 2b:9b:ff:d8:90:92:6d:ff:ee:ee:dd:f7:83:56:22:59:f4:95: 2b:42:ef:08:f3:ab:d0:b9:22:79:32:7a:a3:85:e3:52:e7:95: 4f:9f:ba:ba:ec:87:f9:13:e1:12:33:b4:80:ae:9e:67:2c:82: ec:bc:df:74:66:bd:5c:1b:5f:c1:f0:7b:c3:f4:90:f0:dd:0a: 94:94:87:44:66:34:79:e7:ee:e1:c0:63:b0:74:34:c5:86:e5: 4a:0f:f6:24:ab:f1:9f:fa:9a:90:39:97:ba:ce:fc:ce:10:f7: a8:69:6c:39:31:e1:03:08:03:dc:f9:92:73:33:5a:58:cf:8f: 7f:ef:11:ce:e0:de:97:6c:32:50:fa:7c:85:d2:e7:87:fa:8d: 73:cb:8d:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAtwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE2NjkxMTAvBgNVBAUTKDgzMkZFNTYxNEUwMkQzNTBGODg2NzkwREU0QkRDOTlG NDI2NDU1RTQwHhcNMjUxMjA2MjM1NDAzWhcNMjUxMjEzMjM1NDAzWjAYMRYwFAYD VQQDEw02OTM0YzIxYy04NWJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7JxEWdLIWpPXOs/Qf+OGw1J6HZYvOFNAjUYWTBFUmqc/KbJOaeFvw9ilf8ZC vh/5BH+AG8eixBJ6J9/vdf1XsO84jFobgBeE/LKDXOz8H4uNM3ne6Sfuv7IC4LY2 mrKJkruhpAKJPyV17B6rFpamCTN4V/qFmQmFqswRirARuswu8eAERYhmkO9uYwth bfyZx5+OZ52iDVUwBzF2yhFsOtjlItFCImXeGhiahOWU8+q883NZ2q7gy5n9vx42 z5ygng3lHppIdSjS7YgB9AkZT/wnkYbLaw3oxliHfsNtCY9CkTb0FRAHaMvknZV/ HK+zKxvcYqc2M3MMMtJPPBoEoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAAze9Nh V0ryOaBRt2U1iyCiPKPJMB8GA1UdIwQYMBaAFIMv5WFOAtNQ+IZ5DeS9yZ9CZFXk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTY2OS9CNTU4QkEwNjBE OTQxMUVEQTVENEUwNTFDNEY5QUUwMi9neV9sWVU0QzAxRDRobmtONUwzSm4wSmtW ZVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2d5X2xZVTRDMDFENGhua041TDNKbjBKa1ZlUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTY2OS9CNTU4QkEwNjBEOTQxMUVEQTVENEUwNTFDNEY5QUUwMi9neV9sWVU0QzAx RDRobmtONUwzSm4wSmtWZVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBUgfIf7zjqssMuSVCXT48VIheSCOAINq+8Kk9aT0dujjaN8xGI2QK3 JY7C2wL5CrgLsdbyBCMXOMpesvpkh70hEq6fEbs6ZWZu2NGYeGzFnJtnNV/31mnw I33cNlSAZ1ZL2J2B6PSM3GviZk0rm//YkJJt/+7u3feDViJZ9JUrQu8I86vQuSJ5 MnqjheNS55VPn7q67If5E+ESM7SArp5nLILsvN90Zr1cG1/B8HvD9JDw3QqUlIdE ZjR55+7hwGOwdDTFhuVKD/Ykq/Gf+pqQOZe6zvzOEPeoaWw5MeEDCAPc+ZJzM1pY z49/7xHO4N6XbDJQ+nyF0ueH+o1zy41y -----END CERTIFICATE-----Generated at Sun Dec 7 06:32:39 2025 by rpki-client