This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.mft File: bycituUTNGUloqmUZBtOJ_BNU1Y.mft (raw, json) Hash identifier: iX0Do2vDabxfnDzDcIQmJPJ4aMO02X36pFSAsi6OHiA= Subject key identifier: 06:56:4D:BC:CB:07:EF:6F:28:1F:63:E7:D8:BC:14:69:36:69:1B:BF Authority key identifier: 6F:27:22:B6:E5:13:34:65:25:A2:A9:94:64:1B:4E:27:F0:4D:53:56 Certificate issuer: /CN=A91870B9/serialNumber=6F2722B6E513346525A2A994641B4E27F04D5356 Certificate serial: 02EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bycituUTNGUloqmUZBtOJ_BNU1Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.mft Manifest number: 02E8 Signing time: Sat 06 Dec 2025 23:49:32 +0000 Manifest this update: Sat 06 Dec 2025 23:49:32 +0000 Manifest next update: Sat 13 Dec 2025 23:49:32 +0000 Files and hashes: 1: bycituUTNGUloqmUZBtOJ_BNU1Y.crl (hash: bu8Z5D+L6ZGWXwpfcM8dmub5Q4cnQ1Dyz9Hn6aBdbJA=) 2: A48AD700072111ED91EABE39C4F9AE02.roa (hash: tggayaLto8CAWEhkFDTMAXvd1HSZb+GtdD7dZmQyKpM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.crl rsync://rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bycituUTNGUloqmUZBtOJ_BNU1Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 23:49:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 748 (0x2ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91870B9, serialNumber=6F2722B6E513346525A2A994641B4E27F04D5356 Validity Not Before: Dec 6 23:49:32 2025 GMT Not After : Dec 13 23:49:32 2025 GMT Subject: CN=6934c10c-f1cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:7d:0d:c0:74:1b:39:f8:9c:da:1f:99:0d:37: d5:b9:37:76:f1:fa:3f:af:05:b4:3b:1e:50:83:92: 93:71:c8:65:28:e9:27:aa:a7:3f:13:48:c3:df:41: 3a:96:72:46:d1:b4:d8:74:0b:05:51:a4:f9:b6:3a: 3f:00:d0:e7:66:88:bd:52:0d:13:44:4d:18:dc:41: 2c:61:2e:a0:04:74:07:2c:34:98:0f:3a:c0:f7:70: 1c:cb:9f:23:bf:61:11:46:89:31:10:ad:91:2e:b8: 64:84:59:a1:ea:a1:59:74:3d:16:04:25:06:48:fc: e5:65:b8:8a:49:65:e0:3c:49:ef:6a:62:d8:53:46: b8:06:ca:62:2a:5c:a3:91:14:fa:0a:f7:39:8b:f9: a6:f9:07:bc:02:5d:64:66:9f:6b:d8:bc:69:79:17: be:9f:86:6b:40:4e:f6:ff:46:ce:4a:1b:9f:b3:60: 52:6c:e7:23:cc:6d:47:19:02:73:bb:e5:5c:09:7e: 50:3b:45:8b:bd:69:48:48:75:8d:9a:87:e9:d5:8e: e2:3d:3a:ec:de:96:c4:17:c1:56:81:c9:39:39:c1: bf:9c:2a:92:3c:39:24:41:42:7b:69:b7:72:50:9b: de:5f:37:e8:22:38:6d:07:17:7b:4b:fc:b1:9e:50: cc:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:56:4D:BC:CB:07:EF:6F:28:1F:63:E7:D8:BC:14:69:36:69:1B:BF X509v3 Authority Key Identifier: keyid:6F:27:22:B6:E5:13:34:65:25:A2:A9:94:64:1B:4E:27:F0:4D:53:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bycituUTNGUloqmUZBtOJ_BNU1Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:4e:97:b8:3b:a4:5f:c3:d3:00:1d:7e:34:0c:7c:10:55:97: e8:03:44:05:d4:26:d1:f2:54:4a:01:4e:d1:84:fc:d3:54:02: 8a:6d:6e:fd:2c:88:fc:a8:eb:5b:a8:43:32:8f:84:39:0f:94: 40:2b:2b:fd:03:95:3f:5b:ec:13:b9:47:ab:8f:cd:86:c6:35: 3c:60:45:65:c7:6b:42:1a:93:19:5c:ec:ce:7e:b5:c8:10:40: aa:fd:fa:00:39:a3:52:f9:51:0a:07:c3:c9:e0:e8:4f:5d:10: 84:86:b0:8c:b6:09:24:e4:30:ab:bc:da:d5:ab:34:a0:22:a1: 5c:5a:26:45:51:53:bb:7f:1c:90:21:c4:89:93:bb:ea:6b:9d: b4:6c:88:04:fa:f6:93:f4:7d:3b:4a:09:74:23:cb:25:6e:69: 37:80:b0:4c:e3:b9:89:54:db:3e:39:f5:13:1f:97:80:61:33: 9e:79:cf:65:0b:57:28:88:f4:a4:e4:d4:48:48:32:2d:44:c6: 18:7f:c2:40:4b:a9:36:d3:e8:a2:cf:14:07:b5:24:7b:97:2d: a0:e0:0f:4b:5e:ca:2d:73:54:15:22:05:ec:8c:ec:6c:00:5b: 44:28:32:f2:94:0c:2d:d5:f3:a4:10:53:04:be:0e:1a:16:96: 05:75:fc:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAuwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODcwQjkxMTAvBgNVBAUTKDZGMjcyMkI2RTUxMzM0NjUyNUEyQTk5NDY0MUI0RTI3 RjA0RDUzNTYwHhcNMjUxMjA2MjM0OTMyWhcNMjUxMjEzMjM0OTMyWjAYMRYwFAYD VQQDEw02OTM0YzEwYy1mMWNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyn0NwHQbOfic2h+ZDTfVuTd28fo/rwW0Ox5Qg5KTcchlKOknqqc/E0jD30E6 lnJG0bTYdAsFUaT5tjo/ANDnZoi9Ug0TRE0Y3EEsYS6gBHQHLDSYDzrA93Acy58j v2ERRokxEK2RLrhkhFmh6qFZdD0WBCUGSPzlZbiKSWXgPEnvamLYU0a4BspiKlyj kRT6Cvc5i/mm+Qe8Al1kZp9r2LxpeRe+n4ZrQE72/0bOShufs2BSbOcjzG1HGQJz u+VcCX5QO0WLvWlISHWNmofp1Y7iPTrs3pbEF8FWgck5OcG/nCqSPDkkQUJ7abdy UJveXzfoIjhtBxd7S/yxnlDMswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAZWTbzL B+9vKB9j59i8FGk2aRu/MB8GA1UdIwQYMBaAFG8nIrblEzRlJaKplGQbTifwTVNW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzBCOS83QzhDODkwRTA3 MUUxMUVEQTJFM0YxMzJDNEY5QUUwMi9ieWNpdHVVVE5HVWxvcW1VWkJ0T0pfQk5V MVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J5Y2l0dVVUTkdVbG9xbVVaQnRPSl9CTlUxWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzBCOS83QzhDODkwRTA3MUUxMUVEQTJFM0YxMzJDNEY5QUUwMi9ieWNpdHVVVE5H VWxvcW1VWkJ0T0pfQk5VMVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGTpe4O6Rfw9MAHX40DHwQVZfoA0QF1CbR8lRKAU7RhPzTVAKKbW79 LIj8qOtbqEMyj4Q5D5RAKyv9A5U/W+wTuUerj82GxjU8YEVlx2tCGpMZXOzOfrXI EECq/foAOaNS+VEKB8PJ4OhPXRCEhrCMtgkk5DCrvNrVqzSgIqFcWiZFUVO7fxyQ IcSJk7vqa520bIgE+vaT9H07Sgl0I8slbmk3gLBM47mJVNs+OfUTH5eAYTOeec9l C1coiPSk5NRISDItRMYYf8JAS6k20+iizxQHtSR7ly2g4A9LXsotc1QVIgXsjOxs AFtEKDLylAwt1fOkEFMEvg4aFpYFdfzx -----END CERTIFICATE-----Generated at Sun Dec 7 04:46:29 2025 by rpki-client