This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91862F7/5EAC61448FA611EA9ACB7E7FC4F9AE02/BYQh3nB4BzBHPlzFRboK5dubTAo.mft File: BYQh3nB4BzBHPlzFRboK5dubTAo.mft (raw, json) Hash identifier: YK+t33OV16/SBgVmfa/8BFfRFauG3E5EiSAcqaDJGyg= Subject key identifier: 50:D5:08:C0:48:B2:5C:A8:99:0F:1E:49:1C:99:E2:C0:D4:4F:32:CA Authority key identifier: 05:84:21:DE:70:78:07:30:47:3E:5C:C5:45:BA:0A:E5:DB:9B:4C:0A Certificate issuer: /CN=A91862F7/serialNumber=058421DE70780730473E5CC545BA0AE5DB9B4C0A Certificate serial: 09FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BYQh3nB4BzBHPlzFRboK5dubTAo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91862F7/5EAC61448FA611EA9ACB7E7FC4F9AE02/BYQh3nB4BzBHPlzFRboK5dubTAo.mft Manifest number: 09EB Signing time: Sat 06 Dec 2025 16:47:10 +0000 Manifest this update: Sat 06 Dec 2025 16:47:10 +0000 Manifest next update: Sat 13 Dec 2025 16:47:10 +0000 Files and hashes: 1: BYQh3nB4BzBHPlzFRboK5dubTAo.crl (hash: jwc1uPVTeaxI02Ihq2w/wRiZYqePcLupFmWgDOr9Log=) 2: 7B01065ECB6611F0911E3B40C4F9AE02.roa (hash: YieuAHHzYJ5baEXX21PBR2QHH93xrdjTpm19CxOM3R0=) 3: 7C4C4384CB6611F09E0E3B40C4F9AE02.roa (hash: Nv1ifUptgw8zNsdDdYCTgbUrGtv2q0szka3ov6j5kt8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91862F7/5EAC61448FA611EA9ACB7E7FC4F9AE02/BYQh3nB4BzBHPlzFRboK5dubTAo.crl rsync://rpki.apnic.net/member_repository/A91862F7/5EAC61448FA611EA9ACB7E7FC4F9AE02/BYQh3nB4BzBHPlzFRboK5dubTAo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BYQh3nB4BzBHPlzFRboK5dubTAo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2554 (0x9fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862F7, serialNumber=058421DE70780730473E5CC545BA0AE5DB9B4C0A Validity Not Before: Dec 6 16:47:10 2025 GMT Not After : Dec 13 16:47:10 2025 GMT Subject: CN=69345e0e-c510 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:6f:7b:74:55:8d:86:f7:48:63:c5:4f:af:ba: 4f:22:11:0a:ee:4e:72:b5:a6:77:38:f4:66:13:15: fc:9c:78:1a:30:1e:8f:45:c5:a6:8a:44:9e:50:4d: a1:0f:69:f1:70:60:45:17:7b:f7:3c:27:44:32:7c: f5:85:cc:2b:a3:19:0c:8d:48:ec:12:e3:f2:eb:72: 4e:12:21:01:02:a3:20:90:2e:7f:08:fe:5a:68:2c: 49:2a:44:a4:13:5e:6e:e8:bb:56:22:47:e2:d2:cb: 8b:16:17:9d:82:02:64:c7:b2:87:82:2c:3a:c0:3f: fe:53:82:48:96:7e:6f:64:0b:34:0c:d8:3b:e8:e7: 0e:20:06:02:d4:58:86:23:3e:11:4e:73:cd:ec:e5: 1c:d8:63:f9:9e:c6:a1:20:20:38:3e:dd:fb:e5:3c: 7f:09:ff:25:98:0c:59:1f:fb:a0:4a:ac:b1:2d:29: 35:5b:15:6f:d3:aa:f9:94:4e:8c:3f:99:0f:16:4f: 6f:c1:83:63:0c:35:d1:cc:42:04:e0:b8:df:7e:3c: 4d:30:05:d9:38:85:49:74:f1:d9:08:8f:e5:1e:1a: 7b:37:7f:4e:50:e2:b4:a5:e7:c0:a9:4e:68:55:5c: 7d:f0:e5:94:d9:d4:f0:4a:a2:d8:7e:48:09:5c:ce: 50:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:D5:08:C0:48:B2:5C:A8:99:0F:1E:49:1C:99:E2:C0:D4:4F:32:CA X509v3 Authority Key Identifier: keyid:05:84:21:DE:70:78:07:30:47:3E:5C:C5:45:BA:0A:E5:DB:9B:4C:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91862F7/5EAC61448FA611EA9ACB7E7FC4F9AE02/BYQh3nB4BzBHPlzFRboK5dubTAo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BYQh3nB4BzBHPlzFRboK5dubTAo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91862F7/5EAC61448FA611EA9ACB7E7FC4F9AE02/BYQh3nB4BzBHPlzFRboK5dubTAo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:45:31:32:de:fc:2b:6d:75:02:50:b1:11:b8:a3:11:24:ab: 1f:4f:e5:b1:71:2d:5c:6f:93:c8:5f:7f:7a:f6:36:7a:ea:85: 16:bc:a3:e5:15:1a:04:aa:e0:16:36:ac:16:60:e1:21:1e:06: 00:26:9d:b7:e8:e1:70:e7:a3:80:1a:5f:41:83:25:50:68:94: 89:78:e4:c6:e2:1d:41:68:9a:33:55:78:8b:4f:56:3a:b8:ce: ac:c5:aa:a1:57:8c:83:7b:e3:76:30:26:f4:45:7c:d4:20:4a: a5:2d:49:10:88:fe:5b:4f:13:ce:b2:c0:6e:fc:b4:7e:ed:a5: 11:60:89:9b:1b:3f:33:11:e0:23:ea:82:88:b6:aa:b8:b1:ed: 75:59:82:05:ab:06:76:4d:ca:f2:74:9a:35:d5:fc:4a:f6:2c: 73:93:9a:8c:5b:ec:e6:32:9f:85:1b:cb:04:8e:91:6f:2e:f1: 1c:f3:81:06:14:f0:da:e3:b7:38:89:f2:37:39:1e:82:50:0d: 73:d5:15:72:e5:8d:f4:f7:77:6b:32:57:1b:e4:d7:91:6f:7d: 4e:69:28:60:d0:4a:4b:93:08:77:10:bc:87:5b:6a:61:e8:da: 45:da:4d:70:a5:45:66:7e:d0:b7:75:03:2a:29:da:04:98:f8: b7:ff:b1:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCfowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODYyRjcxMTAvBgNVBAUTKDA1ODQyMURFNzA3ODA3MzA0NzNFNUNDNTQ1QkEwQUU1 REI5QjRDMEEwHhcNMjUxMjA2MTY0NzEwWhcNMjUxMjEzMTY0NzEwWjAYMRYwFAYD VQQDEw02OTM0NWUwZS1jNTEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2m97dFWNhvdIY8VPr7pPIhEK7k5ytaZ3OPRmExX8nHgaMB6PRcWmikSeUE2h D2nxcGBFF3v3PCdEMnz1hcwroxkMjUjsEuPy63JOEiEBAqMgkC5/CP5aaCxJKkSk E15u6LtWIkfi0suLFhedggJkx7KHgiw6wD/+U4JIln5vZAs0DNg76OcOIAYC1FiG Iz4RTnPN7OUc2GP5nsahICA4Pt375Tx/Cf8lmAxZH/ugSqyxLSk1WxVv06r5lE6M P5kPFk9vwYNjDDXRzEIE4LjffjxNMAXZOIVJdPHZCI/lHhp7N39OUOK0pefAqU5o VVx98OWU2dTwSqLYfkgJXM5QtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFDVCMBI slyomQ8eSRyZ4sDUTzLKMB8GA1UdIwQYMBaAFAWEId5weAcwRz5cxUW6CuXbm0wK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjJGNy81RUFDNjE0NDhG QTYxMUVBOUFDQjdFN0ZDNEY5QUUwMi9CWVFoM25CNEJ6QkhQbHpGUmJvSzVkdWJU QW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JZUWgzbkI0QnpCSFBsekZSYm9LNWR1YlRBby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NjJGNy81RUFDNjE0NDhGQTYxMUVBOUFDQjdFN0ZDNEY5QUUwMi9CWVFoM25CNEJ6 QkhQbHpGUmJvSzVkdWJUQW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAURTEy3vwrbXUCULERuKMRJKsfT+WxcS1cb5PIX3969jZ66oUWvKPl FRoEquAWNqwWYOEhHgYAJp236OFw56OAGl9BgyVQaJSJeOTG4h1BaJozVXiLT1Y6 uM6sxaqhV4yDe+N2MCb0RXzUIEqlLUkQiP5bTxPOssBu/LR+7aURYImbGz8zEeAj 6oKItqq4se11WYIFqwZ2TcrydJo11fxK9ixzk5qMW+zmMp+FG8sEjpFvLvEc84EG FPDa47c4ifI3OR6CUA1z1RVy5Y3093drMlcb5NeRb31OaShg0EpLkwh3ELyHW2ph 6NpF2k1wpUVmftC3dQMqKdoEmPi3/7Gh -----END CERTIFICATE-----Generated at Sat Dec 6 19:28:43 2025 by rpki-client