This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9174C7A/44F14AFC404611F09BF0D84FC4F9AE02/pYrazvnSRVOlVka1puvM6rGfL7w.mft File: pYrazvnSRVOlVka1puvM6rGfL7w.mft (raw, json) Hash identifier: g4kbsE8lHMF0H5GJPNIhiFUWy1nKGU38TKxj0VY07e4= Subject key identifier: 3C:41:8E:10:24:D3:A9:C1:D9:D9:A7:54:3B:A6:65:59:63:27:07:DE Authority key identifier: A5:8A:DA:CE:F9:D2:45:53:A5:56:46:B5:A6:EB:CC:EA:B1:9F:2F:BC Certificate issuer: /CN=A9174C7A/serialNumber=A58ADACEF9D24553A55646B5A6EBCCEAB19F2FBC Certificate serial: 62 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pYrazvnSRVOlVka1puvM6rGfL7w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174C7A/44F14AFC404611F09BF0D84FC4F9AE02/pYrazvnSRVOlVka1puvM6rGfL7w.mft Manifest number: 60 Signing time: Fri 05 Dec 2025 04:57:48 +0000 Manifest this update: Fri 05 Dec 2025 04:57:48 +0000 Manifest next update: Fri 12 Dec 2025 04:57:48 +0000 Files and hashes: 1: pYrazvnSRVOlVka1puvM6rGfL7w.crl (hash: CUmkF9CcGCNidIhoecuTioNzbrHjrIGMojpcl/GdPcE=) 2: 5B118C12986011F0A5423187C4F9AE02.roa (hash: OXXb1y44b21RuXCm0yOOerFNyOFngqcHwK/xrGzNLmQ=) 3: 8D052914404911F0A4BD357BC4F9AE02.roa (hash: WkC734Z9YLqp46ED9zzrP9DX1ES2VdVVIimzvDKW6/8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174C7A/44F14AFC404611F09BF0D84FC4F9AE02/pYrazvnSRVOlVka1puvM6rGfL7w.crl rsync://rpki.apnic.net/member_repository/A9174C7A/44F14AFC404611F09BF0D84FC4F9AE02/pYrazvnSRVOlVka1puvM6rGfL7w.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pYrazvnSRVOlVka1puvM6rGfL7w.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:57:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 98 (0x62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174C7A, serialNumber=A58ADACEF9D24553A55646B5A6EBCCEAB19F2FBC Validity Not Before: Dec 5 04:57:48 2025 GMT Not After : Dec 12 04:57:48 2025 GMT Subject: CN=6932664c-b6ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:9d:c5:df:b8:68:20:9f:5e:f0:95:e5:d4:56: b2:e0:17:7e:fa:8b:e1:28:02:9d:2e:4b:3d:1c:bc: c8:0b:f5:9a:5a:2c:27:7a:f1:30:40:b6:dd:ce:a2: 84:2a:ed:a6:2d:f3:fc:ec:da:1c:c2:c9:c4:3c:4f: e8:e7:85:7d:55:69:a3:9f:f6:bb:e4:4c:93:48:a0: 1c:6c:9f:6b:01:aa:c5:1c:08:47:cb:10:19:e9:db: b3:6e:de:9b:a7:0a:ea:b8:b8:4c:5b:6c:61:26:c7: f5:d6:9a:c0:53:f2:66:a6:26:39:b5:d2:58:e2:7d: 3e:3d:4e:62:77:a2:9d:ed:ac:be:e9:ef:56:32:dd: e1:3a:29:57:af:bc:39:a0:be:43:dd:92:18:31:ed: 2e:50:c4:ce:dd:ec:b6:0c:75:80:9e:4f:a1:e7:0c: 37:31:16:8b:d9:91:14:2a:69:f2:78:e2:97:97:24: f3:80:37:79:38:4a:d4:65:40:8e:59:82:45:8f:60: eb:42:77:cc:86:c3:1f:55:5f:30:92:a5:b5:d0:2f: 9e:e3:b8:2b:11:6e:eb:22:f3:1c:8a:24:8b:9d:f3: 0f:4f:98:29:ee:d1:af:5a:0a:cb:a3:c9:c8:68:5b: fd:2d:4b:92:06:f0:50:f6:c7:7d:af:dc:cf:8c:b0: 67:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:41:8E:10:24:D3:A9:C1:D9:D9:A7:54:3B:A6:65:59:63:27:07:DE X509v3 Authority Key Identifier: keyid:A5:8A:DA:CE:F9:D2:45:53:A5:56:46:B5:A6:EB:CC:EA:B1:9F:2F:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174C7A/44F14AFC404611F09BF0D84FC4F9AE02/pYrazvnSRVOlVka1puvM6rGfL7w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pYrazvnSRVOlVka1puvM6rGfL7w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174C7A/44F14AFC404611F09BF0D84FC4F9AE02/pYrazvnSRVOlVka1puvM6rGfL7w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:b9:62:d1:9c:17:f0:46:8c:fc:4a:a2:e5:a0:bc:f4:4d:5a: 28:39:17:2c:ba:8f:0a:98:3a:04:76:96:4b:7a:50:45:2d:73: 30:29:2e:da:aa:63:a2:aa:98:9f:dd:da:2b:42:26:b6:00:00: a7:eb:fe:e6:ee:08:32:bc:cf:6d:f5:ca:ab:58:3a:e7:2c:82: ea:96:16:63:a9:6d:8d:ba:82:fe:be:8c:86:55:4c:63:3f:01: 7a:65:70:47:78:60:98:0e:bb:33:9f:de:db:9d:7d:94:d1:98: 7e:49:51:06:4e:98:75:2c:ca:2a:86:4a:e4:26:74:07:7f:54: 20:4c:27:65:27:59:d6:3b:f7:1c:c4:bc:e8:d6:39:01:e8:f0: 8d:91:a1:03:74:8d:05:30:0e:9a:91:9c:a9:cd:0d:70:a1:98: 63:af:ac:20:bc:8a:34:1a:a9:e1:7e:d9:fe:a5:b1:40:3d:72: 6f:7c:8b:a4:93:35:60:6a:85:a0:08:2d:4d:04:c2:09:43:3d: 3c:cc:4e:5d:25:5e:b7:82:89:26:f7:87:05:5d:b0:63:2f:7e: f5:54:ce:19:df:06:97:d3:7d:a8:19:33:7a:cd:f5:33:16:dd: a9:cd:20:63:33:0e:c2:87:97:1a:49:cf:54:47:11:e4:d1:75: 2c:0e:90:77 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NEM3QTExMC8GA1UEBRMoQTU4QURBQ0VGOUQyNDU1M0E1NTY0NkI1QTZFQkNDRUFC MTlGMkZCQzAeFw0yNTEyMDUwNDU3NDhaFw0yNTEyMTIwNDU3NDhaMBgxFjAUBgNV BAMTDTY5MzI2NjRjLWI2YWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDWncXfuGggn17wleXUVrLgF376i+EoAp0uSz0cvMgL9ZpaLCd68TBAtt3OooQq 7aYt8/zs2hzCycQ8T+jnhX1VaaOf9rvkTJNIoBxsn2sBqsUcCEfLEBnp27Nu3pun Cuq4uExbbGEmx/XWmsBT8mamJjm10ljifT49TmJ3op3trL7p71Yy3eE6KVevvDmg vkPdkhgx7S5QxM7d7LYMdYCeT6HnDDcxFovZkRQqafJ44peXJPOAN3k4StRlQI5Z gkWPYOtCd8yGwx9VXzCSpbXQL57juCsRbusi8xyKJIud8w9PmCnu0a9aCsujycho W/0tS5IG8FD2x32v3M+MsGcXAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUPEGOECTT qcHZ2adUO6ZlWWMnB94wHwYDVR0jBBgwFoAUpYrazvnSRVOlVka1puvM6rGfL7ww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc0QzdBLzQ0RjE0QUZDNDA0 NjExRjA5QkYwRDg0RkM0RjlBRTAyL3BZcmF6dm5TUlZPbFZrYTFwdXZNNnJHZkw3 dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvcFlyYXp2blNSVk9sVmthMXB1dk02ckdmTDd3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc0 QzdBLzQ0RjE0QUZDNDA0NjExRjA5QkYwRDg0RkM0RjlBRTAyL3BZcmF6dm5TUlZP bFZrYTFwdXZNNnJHZkw3dy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACm5YtGcF/BGjPxKouWgvPRNWig5Fyy6jwqYOgR2lkt6UEUtczApLtqq Y6KqmJ/d2itCJrYAAKfr/ubuCDK8z231yqtYOucsguqWFmOpbY26gv6+jIZVTGM/ AXplcEd4YJgOuzOf3tudfZTRmH5JUQZOmHUsyiqGSuQmdAd/VCBMJ2UnWdY79xzE vOjWOQHo8I2RoQN0jQUwDpqRnKnNDXChmGOvrCC8ijQaqeF+2f6lsUA9cm98i6ST NWBqhaAILU0EwglDPTzMTl0lXreCiSb3hwVdsGMvfvVUzhnfBpfTfagZM3rN9TMW 3anNIGMzDsKHlxpJz1RHEeTRdSwOkHc= -----END CERTIFICATE-----Generated at Sun Dec 7 02:57:59 2025 by rpki-client