This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.mft File: RyCit4x4I5km_e5zRKNoDaDYBx0.mft (raw, json) Hash identifier: AsKh94lP30CWlwIfd4YaxOyQ1LdC+4zO4RN7u3txOpY= Subject key identifier: C9:DB:29:61:3A:61:FD:8B:08:35:F9:DA:B8:87:31:40:39:F8:E4:D0 Authority key identifier: 47:20:A2:B7:8C:78:23:99:26:FD:EE:73:44:A3:68:0D:A0:D8:07:1D Certificate issuer: /CN=A91972DF/serialNumber=4720A2B78C78239926FDEE7344A3680DA0D8071D Certificate serial: E1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RyCit4x4I5km_e5zRKNoDaDYBx0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.mft Manifest number: D9 Signing time: Fri 05 Dec 2025 03:43:59 +0000 Manifest this update: Fri 05 Dec 2025 03:43:59 +0000 Manifest next update: Fri 12 Dec 2025 03:43:59 +0000 Files and hashes: 1: RyCit4x4I5km_e5zRKNoDaDYBx0.crl (hash: CrLFfPCyGNpK5eFA/6tGlk5G0ZnAs7bxJC8Cmh2Flpo=) 2: D2D7B762995611EFADA5D754C4F9AE02.roa (hash: DBuT5pVIx5+DapGoOy/MWoVxejvGW3jQONX5f21P15c=) 3: 003589503F8311F0AA4DF254C4F9AE02.roa (hash: mFg/4qdLeiQ8AjEap32HrO7ldoixpAZaZ3NegxVi38A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.crl rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RyCit4x4I5km_e5zRKNoDaDYBx0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 03:43:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 225 (0xe1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91972DF, serialNumber=4720A2B78C78239926FDEE7344A3680DA0D8071D Validity Not Before: Dec 5 03:43:59 2025 GMT Not After : Dec 12 03:43:59 2025 GMT Subject: CN=693254ff-1811 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:f8:9a:5b:48:d9:92:58:63:b6:a9:8b:82:0d: 98:6a:d1:f1:f6:71:59:c8:b6:d4:ec:6e:b8:e6:1a: ba:08:fd:35:c0:71:61:62:1e:8f:50:73:63:3e:7d: 0f:ba:6c:13:19:65:25:c2:92:3f:9c:1e:84:94:c3: 10:c4:26:ca:32:65:cf:dc:1c:0a:15:50:4b:15:be: 2d:29:d4:ea:f8:59:81:a4:09:87:1d:89:4b:31:f2: 25:30:51:18:d7:6e:46:a8:13:23:35:80:45:81:30: 60:67:53:99:7d:17:57:11:e5:81:72:03:c7:5d:45: 14:66:27:8c:59:55:fe:db:1f:31:31:a8:bf:9f:f2: bf:27:4a:28:7d:c4:25:2c:c9:93:11:2b:c1:8c:73: 7c:42:f9:d2:f7:4d:11:16:cd:bf:4c:d3:85:f2:f3: fa:94:a9:2e:13:6d:bc:13:d9:6b:0b:1d:23:27:31: f4:8c:2b:fe:4e:9e:58:a0:fa:95:17:84:ec:70:e0: 58:7e:9b:0c:35:50:33:bf:37:9a:65:8a:7f:a3:37: dc:cb:ca:fa:45:1a:55:a3:57:08:84:fb:58:8a:81: 34:49:ca:4f:d0:b3:bf:5e:62:23:c4:e5:90:1d:5a: 97:a8:ce:61:f9:81:39:ba:d2:cc:42:0b:9f:c5:46: be:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:DB:29:61:3A:61:FD:8B:08:35:F9:DA:B8:87:31:40:39:F8:E4:D0 X509v3 Authority Key Identifier: keyid:47:20:A2:B7:8C:78:23:99:26:FD:EE:73:44:A3:68:0D:A0:D8:07:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RyCit4x4I5km_e5zRKNoDaDYBx0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:ff:0d:47:6c:7a:94:69:f2:9b:a7:26:99:e3:72:ed:80:d6: b0:4f:33:ae:4e:1a:ed:2d:2e:59:b4:86:36:bc:c4:8e:5d:b9: 2d:ee:8b:2f:79:fd:0c:64:17:c9:b6:5b:91:ec:e2:e2:da:c6: 7b:cf:6f:88:e8:df:62:a2:26:45:58:a3:b8:de:42:e0:9d:4a: fa:ba:5d:33:90:86:dd:9e:04:5f:4a:92:8b:c7:79:7e:dc:c2: 74:ef:f7:79:fa:fe:ad:f4:29:d7:1a:22:bc:ef:ad:c1:a7:a1: 29:19:6e:08:1e:21:39:21:9a:8f:81:e8:b9:d0:6d:63:df:5d: 83:bb:15:9f:4c:27:53:4e:9e:1f:ac:55:08:c2:69:07:00:a5: eb:9d:42:1a:71:5e:bd:d9:b5:84:33:f9:4c:e7:ba:84:7b:a8: dd:dc:b5:f6:66:aa:3f:f6:e0:0c:cd:f6:82:07:d8:95:65:a1: 48:a3:d9:ab:52:ac:7c:b8:6a:c2:e7:1f:3c:75:71:41:11:df: eb:93:df:a0:c8:36:44:38:88:b5:a7:cd:33:d4:23:bd:2e:cb: 49:66:0b:f8:36:18:be:69:30:9e:6e:0f:59:58:1a:f1:b7:62: 64:97:d3:d5:f6:d0:92:e2:c0:31:25:6c:0a:e1:22:af:a4:5f: bb:69:0d:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcyREYxMTAvBgNVBAUTKDQ3MjBBMkI3OEM3ODIzOTkyNkZERUU3MzQ0QTM2ODBE QTBEODA3MUQwHhcNMjUxMjA1MDM0MzU5WhcNMjUxMjEyMDM0MzU5WjAYMRYwFAYD VQQDEw02OTMyNTRmZi0xODExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzPiaW0jZklhjtqmLgg2YatHx9nFZyLbU7G645hq6CP01wHFhYh6PUHNjPn0P umwTGWUlwpI/nB6ElMMQxCbKMmXP3BwKFVBLFb4tKdTq+FmBpAmHHYlLMfIlMFEY 125GqBMjNYBFgTBgZ1OZfRdXEeWBcgPHXUUUZieMWVX+2x8xMai/n/K/J0oofcQl LMmTESvBjHN8QvnS900RFs2/TNOF8vP6lKkuE228E9lrCx0jJzH0jCv+Tp5YoPqV F4TscOBYfpsMNVAzvzeaZYp/ozfcy8r6RRpVo1cIhPtYioE0ScpP0LO/XmIjxOWQ HVqXqM5h+YE5utLMQgufxUa+rwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMnbKWE6 Yf2LCDX52riHMUA5+OTQMB8GA1UdIwQYMBaAFEcgoreMeCOZJv3uc0SjaA2g2Acd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzJERi8yN0UzRURBNDk4 MzMxMUVGODMxODlBNTdDNEY5QUUwMi9SeUNpdDR4NEk1a21fZTV6UktOb0RhRFlC eDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1J5Q2l0NHg0STVrbV9lNXpSS05vRGFEWUJ4MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzJERi8yN0UzRURBNDk4MzMxMUVGODMxODlBNTdDNEY5QUUwMi9SeUNpdDR4NEk1 a21fZTV6UktOb0RhRFlCeDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZ/w1HbHqUafKbpyaZ43LtgNawTzOuThrtLS5ZtIY2vMSOXbkt7osv ef0MZBfJtluR7OLi2sZ7z2+I6N9ioiZFWKO43kLgnUr6ul0zkIbdngRfSpKLx3l+ 3MJ07/d5+v6t9CnXGiK8763Bp6EpGW4IHiE5IZqPgei50G1j312DuxWfTCdTTp4f rFUIwmkHAKXrnUIacV692bWEM/lM57qEe6jd3LX2Zqo/9uAMzfaCB9iVZaFIo9mr Uqx8uGrC5x88dXFBEd/rk9+gyDZEOIi1p80z1CO9LstJZgv4Nhi+aTCebg9ZWBrx t2Jkl9PV9tCS4sAxJWwK4SKvpF+7aQ0h -----END CERTIFICATE-----Generated at Sat Dec 6 14:50:40 2025 by rpki-client