This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.mft File: DYtx2GteICkzvLAqW210CSpSoXw.mft (raw, json) Hash identifier: si/uGt+UulrDBts1PH9XSZfI2K0v5wukUPGh2mOLeGE= Subject key identifier: 99:7E:09:E5:A1:4A:38:BC:C5:9E:BF:76:52:1B:86:3C:EB:19:B9:0E Authority key identifier: 0D:8B:71:D8:6B:5E:20:29:33:BC:B0:2A:5B:6D:74:09:2A:52:A1:7C Certificate issuer: /CN=A91A395C/serialNumber=0D8B71D86B5E202933BCB02A5B6D74092A52A17C Certificate serial: 3537 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DYtx2GteICkzvLAqW210CSpSoXw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.mft Manifest number: 3509 Signing time: Sat 06 Dec 2025 14:45:03 +0000 Manifest this update: Sat 06 Dec 2025 14:45:02 +0000 Manifest next update: Sat 13 Dec 2025 14:45:02 +0000 Files and hashes: 1: DYtx2GteICkzvLAqW210CSpSoXw.crl (hash: dnzKad57o/oyWMuHFGdcajp5sK5tRL/PR2/aHX1pTAA=) 2: 991EB004BE8511EE960E5082C4F9AE02.roa (hash: IR/fxoozFicSxIrUXHGZXGMAUroK6RP4wvdk7z4PV7A=) 3: 9B71FEB0593F11EA9F9FA238C4F9AE02.roa (hash: XQCwNi2PZQw3HwB0S22xbUukUjh1gRPdN0DptoUSl6Q=) 4: D56D9FD87E8711EC9A928B6AC4F9AE02.roa (hash: MzFm0njK9GauK3PVGzL0I/Klqbd6ft5wJ9/podujw/8=) 5: 9A2B0DE4593F11EA9F9FA238C4F9AE02.roa (hash: jv97nGJvaH0WKHe7n31vkT3MMMbNqFjpDhhexD6X6+Q=) 6: 65552C3AE8D411ED8D0FAD45C4F9AE02.roa (hash: ifJGYL5q49BedEWwURROMxMLmQuzo6sd4i9VU7gjPWk=) 7: 3DBC186C5AD611EF85A4557BC4F9AE02.roa (hash: crg/ljxSxvSurizJ6VoDNQFMCKyOAKHsQIWFOorvrvI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.crl rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DYtx2GteICkzvLAqW210CSpSoXw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 14:45:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13623 (0x3537) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A395C, serialNumber=0D8B71D86B5E202933BCB02A5B6D74092A52A17C Validity Not Before: Dec 6 14:45:02 2025 GMT Not After : Dec 13 14:45:02 2025 GMT Subject: CN=6934416f-5d1b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:6c:40:1a:41:a4:f5:18:9c:67:d5:d8:b0:04: 7d:be:20:8c:f6:16:4a:b8:a8:f4:14:7b:aa:c1:f8: 72:8a:3a:fb:d7:f4:53:21:6a:50:db:2a:a2:e9:00: 1e:e2:cb:db:0e:c8:23:1c:32:ac:58:67:2d:51:14: 86:a9:8b:41:0f:96:c5:d6:29:00:9a:f3:f9:56:79: 8b:ca:14:79:d9:e3:aa:6c:30:66:2a:1f:d9:80:cd: 68:1a:96:b7:f8:f5:b7:d0:e4:40:3b:9a:04:61:43: 78:be:13:ec:a0:77:9a:be:09:f6:6a:4a:90:af:4d: 67:0c:66:1c:97:a8:52:f5:d7:4a:41:c7:a8:cc:bf: 30:70:c4:8f:a7:31:fe:11:64:de:29:0f:45:05:f9: 1d:3f:9a:5c:29:88:ef:b5:d3:d6:7c:ec:66:18:0d: 01:13:6b:2d:c0:69:64:ed:a9:81:1d:59:70:ce:7e: 62:cc:d8:b9:5f:5a:50:3c:ce:62:7e:b2:66:d2:d7: 5c:5a:45:47:1b:63:c8:73:9d:e1:86:c5:41:2a:e9: 0c:f6:9e:12:3f:58:eb:6d:e7:77:f4:fc:91:ae:29: 1a:39:99:cc:16:f2:9b:54:c2:88:c6:a5:7b:a9:7c: 97:81:bb:2c:46:d1:90:28:7e:0f:9b:85:03:dc:56: 89:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:7E:09:E5:A1:4A:38:BC:C5:9E:BF:76:52:1B:86:3C:EB:19:B9:0E X509v3 Authority Key Identifier: keyid:0D:8B:71:D8:6B:5E:20:29:33:BC:B0:2A:5B:6D:74:09:2A:52:A1:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DYtx2GteICkzvLAqW210CSpSoXw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:f3:e5:8a:e6:d4:c1:68:97:37:4c:5d:03:e7:f3:b0:c3:60: 45:0e:47:28:b1:ca:16:5f:93:fb:e8:b3:47:07:ba:4a:4b:0f: b9:11:69:ec:e4:ab:57:f3:cf:55:69:ef:b6:7a:62:fa:40:b6: 8b:ed:77:f3:88:ad:0b:91:d6:8e:6b:4b:72:f6:ed:dc:9a:6a: 50:0e:97:fa:3a:b5:35:75:21:e5:cd:a1:80:76:30:01:7d:2d: 26:70:af:77:8d:a3:5e:c0:9a:25:5f:c2:70:aa:16:93:99:99: 99:68:78:24:2c:cc:0e:54:05:17:65:13:0c:82:04:f4:4d:3d: 45:47:fb:8f:43:60:69:23:42:75:ab:8a:04:36:cd:bb:8a:62: 9b:9b:f9:36:09:a4:2e:02:d6:d5:6f:7b:c9:fe:a6:32:a9:60: af:5e:49:6f:ae:f8:73:f4:f4:ce:8e:1b:c1:eb:4a:f6:bb:ad: db:1a:2b:ae:8e:08:5c:eb:fc:59:8f:4b:1f:23:44:52:77:26: ff:04:8c:ea:75:33:34:cd:e4:fd:95:83:7e:92:c5:fb:2d:30: 43:36:ca:47:18:64:80:5e:54:0d:f9:05:cb:e5:eb:ba:6a:df: 83:68:e1:c6:58:c1:1e:5a:64:70:d9:e0:f9:00:c7:1b:09:13: d9:9b:e5:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNTcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTM5NUMxMTAvBgNVBAUTKDBEOEI3MUQ4NkI1RTIwMjkzM0JDQjAyQTVCNkQ3NDA5 MkE1MkExN0MwHhcNMjUxMjA2MTQ0NTAyWhcNMjUxMjEzMTQ0NTAyWjAYMRYwFAYD VQQDEw02OTM0NDE2Zi01ZDFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1GxAGkGk9RicZ9XYsAR9viCM9hZKuKj0FHuqwfhyijr71/RTIWpQ2yqi6QAe 4svbDsgjHDKsWGctURSGqYtBD5bF1ikAmvP5VnmLyhR52eOqbDBmKh/ZgM1oGpa3 +PW30ORAO5oEYUN4vhPsoHeavgn2akqQr01nDGYcl6hS9ddKQceozL8wcMSPpzH+ EWTeKQ9FBfkdP5pcKYjvtdPWfOxmGA0BE2stwGlk7amBHVlwzn5izNi5X1pQPM5i frJm0tdcWkVHG2PIc53hhsVBKukM9p4SP1jrbed39PyRrikaOZnMFvKbVMKIxqV7 qXyXgbssRtGQKH4Pm4UD3FaJ7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJl+CeWh Sji8xZ6/dlIbhjzrGbkOMB8GA1UdIwQYMBaAFA2LcdhrXiApM7ywKlttdAkqUqF8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzk1Qy9CQjM0MTdDMDFE OTYxMUUyQjhCQjgyN0YwOEIwMkNEMi9EWXR4Mkd0ZUlDa3p2TEFxVzIxMENTcFNv WHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RZdHgyR3RlSUNrenZMQXFXMjEwQ1NwU29Ydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Mzk1Qy9CQjM0MTdDMDFEOTYxMUUyQjhCQjgyN0YwOEIwMkNEMi9EWXR4Mkd0ZUlD a3p2TEFxVzIxMENTcFNvWHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCi8+WK5tTBaJc3TF0D5/Oww2BFDkcoscoWX5P76LNHB7pKSw+5EWns 5KtX889Vae+2emL6QLaL7XfziK0LkdaOa0ty9u3cmmpQDpf6OrU1dSHlzaGAdjAB fS0mcK93jaNewJolX8JwqhaTmZmZaHgkLMwOVAUXZRMMggT0TT1FR/uPQ2BpI0J1 q4oENs27imKbm/k2CaQuAtbVb3vJ/qYyqWCvXklvrvhz9PTOjhvB60r2u63bGiuu jghc6/xZj0sfI0RSdyb/BIzqdTM0zeT9lYN+ksX7LTBDNspHGGSAXlQN+QXL5eu6 at+DaOHGWMEeWmRw2eD5AMcbCRPZm+W2 -----END CERTIFICATE-----Generated at Sat Dec 6 19:30:26 2025 by rpki-client