This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.mft File: DYtx2GteICkzvLAqW210CSpSoXw.mft (raw, json) Hash identifier: RZVUAjMYO9y1ET+rWy8RgHFUtiuZyVY0cmZJDwVGxfk= Subject key identifier: E5:81:34:77:0A:87:92:DA:5D:53:C1:70:42:D9:C4:1B:15:B3:20:11 Authority key identifier: 0D:8B:71:D8:6B:5E:20:29:33:BC:B0:2A:5B:6D:74:09:2A:52:A1:7C Certificate issuer: /CN=A91A395C/serialNumber=0D8B71D86B5E202933BCB02A5B6D74092A52A17C Certificate serial: 3536 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DYtx2GteICkzvLAqW210CSpSoXw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.mft Manifest number: 3508 Signing time: Thu 04 Dec 2025 14:44:42 +0000 Manifest this update: Thu 04 Dec 2025 14:44:42 +0000 Manifest next update: Thu 11 Dec 2025 14:44:42 +0000 Files and hashes: 1: DYtx2GteICkzvLAqW210CSpSoXw.crl (hash: yjNkNETxU8WmDTf5Wrdd5Qt16EnODqnI3c1CNjT+dmM=) 2: 991EB004BE8511EE960E5082C4F9AE02.roa (hash: IR/fxoozFicSxIrUXHGZXGMAUroK6RP4wvdk7z4PV7A=) 3: 9B71FEB0593F11EA9F9FA238C4F9AE02.roa (hash: XQCwNi2PZQw3HwB0S22xbUukUjh1gRPdN0DptoUSl6Q=) 4: D56D9FD87E8711EC9A928B6AC4F9AE02.roa (hash: MzFm0njK9GauK3PVGzL0I/Klqbd6ft5wJ9/podujw/8=) 5: 9A2B0DE4593F11EA9F9FA238C4F9AE02.roa (hash: jv97nGJvaH0WKHe7n31vkT3MMMbNqFjpDhhexD6X6+Q=) 6: 65552C3AE8D411ED8D0FAD45C4F9AE02.roa (hash: ifJGYL5q49BedEWwURROMxMLmQuzo6sd4i9VU7gjPWk=) 7: 3DBC186C5AD611EF85A4557BC4F9AE02.roa (hash: crg/ljxSxvSurizJ6VoDNQFMCKyOAKHsQIWFOorvrvI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.crl rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DYtx2GteICkzvLAqW210CSpSoXw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 14:44:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13622 (0x3536) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A395C, serialNumber=0D8B71D86B5E202933BCB02A5B6D74092A52A17C Validity Not Before: Dec 4 14:44:42 2025 GMT Not After : Dec 11 14:44:42 2025 GMT Subject: CN=69319e5a-b83b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:79:cb:b4:b7:4d:b7:84:5f:f4:01:c0:79:b0: ba:51:79:47:90:a7:54:2a:d2:b5:35:93:7b:dc:f4: fa:57:ae:b9:58:1a:27:80:da:26:84:f3:31:a7:0b: 6d:7a:b0:90:db:63:81:bc:70:55:d6:c9:31:65:71: 05:cd:1e:a4:33:ea:f5:97:fa:dc:e7:b0:8d:e1:a8: e2:79:be:1a:91:0c:6e:44:29:e6:87:81:cc:11:94: b5:73:3b:df:99:28:e9:4d:32:39:85:2d:cf:0a:9f: 51:76:2a:9f:d5:87:a0:91:05:bb:9a:26:88:c9:46: 7e:e0:e8:97:20:14:47:23:50:62:cf:31:04:f0:08: ca:ac:1d:50:5d:01:af:82:69:97:2f:b3:e7:89:02: ef:9f:8c:14:4f:dc:c6:10:1f:5f:e8:04:47:a2:ac: c6:9a:aa:80:c5:bc:1d:e5:16:68:1c:99:f0:82:e9: 95:98:8c:a6:80:41:38:55:d3:30:a7:2b:64:bd:f0: 99:ae:7b:39:da:55:12:01:9c:3b:da:7b:ce:e4:8d: 7e:55:14:9a:71:32:3c:17:b0:21:0c:d8:1e:bd:74: bb:13:6b:27:68:8c:9e:07:f6:62:2a:4c:d4:71:65: 65:cb:d6:be:47:d2:32:ce:d1:c5:58:1c:80:4a:c9: 36:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:81:34:77:0A:87:92:DA:5D:53:C1:70:42:D9:C4:1B:15:B3:20:11 X509v3 Authority Key Identifier: keyid:0D:8B:71:D8:6B:5E:20:29:33:BC:B0:2A:5B:6D:74:09:2A:52:A1:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DYtx2GteICkzvLAqW210CSpSoXw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:ee:dd:f2:e1:2a:36:82:0c:01:e2:e4:3e:db:de:40:61:62: 53:fb:85:28:a9:f6:3e:eb:a0:25:51:12:8d:25:5c:79:e2:89: 40:92:4c:e5:eb:d5:8d:89:ff:1a:fb:25:56:b2:62:b2:d6:ee: 5a:f7:11:a4:8f:f1:a4:6f:65:f2:30:62:07:7c:8b:2f:9c:53: a1:9c:0a:dc:97:e7:41:a3:13:b7:62:92:13:b0:3f:0f:6c:b1: 03:07:f9:54:34:26:4b:51:b4:5e:54:44:e1:10:f9:e0:4b:bd: d7:a6:de:18:0a:0f:bd:85:60:95:06:e5:8d:c3:53:df:d5:e4: 9b:99:37:71:4d:aa:cb:e6:53:ad:69:49:e1:42:a3:dc:fd:88: bf:3b:fd:62:bd:d7:c7:fe:0d:58:5c:74:16:b0:03:dd:8a:64: f7:f9:5a:18:23:b1:ba:cd:21:f2:08:25:5e:fd:5a:f6:b3:7f: 38:c1:c9:6d:fb:80:cf:05:5c:ff:16:76:6a:75:71:0b:9d:8f: e2:44:a9:a2:dd:24:20:96:e3:4c:e5:b7:cb:6d:9c:f9:18:47: 8f:8c:15:6b:51:fd:f9:66:d6:94:07:2d:c4:d7:4a:0a:41:bf: 05:a4:16:db:5b:c8:09:7a:2b:64:6a:1e:74:99:ae:b8:20:6d: bf:81:68:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNTYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTM5NUMxMTAvBgNVBAUTKDBEOEI3MUQ4NkI1RTIwMjkzM0JDQjAyQTVCNkQ3NDA5 MkE1MkExN0MwHhcNMjUxMjA0MTQ0NDQyWhcNMjUxMjExMTQ0NDQyWjAYMRYwFAYD VQQDEw02OTMxOWU1YS1iODNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxnnLtLdNt4Rf9AHAebC6UXlHkKdUKtK1NZN73PT6V665WBongNomhPMxpwtt erCQ22OBvHBV1skxZXEFzR6kM+r1l/rc57CN4ajieb4akQxuRCnmh4HMEZS1czvf mSjpTTI5hS3PCp9Rdiqf1YegkQW7miaIyUZ+4OiXIBRHI1BizzEE8AjKrB1QXQGv gmmXL7PniQLvn4wUT9zGEB9f6ARHoqzGmqqAxbwd5RZoHJnwgumVmIymgEE4VdMw pytkvfCZrns52lUSAZw72nvO5I1+VRSacTI8F7AhDNgevXS7E2snaIyeB/ZiKkzU cWVly9a+R9IyztHFWByASsk2QwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOWBNHcK h5LaXVPBcELZxBsVsyARMB8GA1UdIwQYMBaAFA2LcdhrXiApM7ywKlttdAkqUqF8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzk1Qy9CQjM0MTdDMDFE OTYxMUUyQjhCQjgyN0YwOEIwMkNEMi9EWXR4Mkd0ZUlDa3p2TEFxVzIxMENTcFNv WHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RZdHgyR3RlSUNrenZMQXFXMjEwQ1NwU29Ydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Mzk1Qy9CQjM0MTdDMDFEOTYxMUUyQjhCQjgyN0YwOEIwMkNEMi9EWXR4Mkd0ZUlD a3p2TEFxVzIxMENTcFNvWHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC+7t3y4So2ggwB4uQ+295AYWJT+4UoqfY+66AlURKNJVx54olAkkzl 69WNif8a+yVWsmKy1u5a9xGkj/Gkb2XyMGIHfIsvnFOhnArcl+dBoxO3YpITsD8P bLEDB/lUNCZLUbReVEThEPngS73Xpt4YCg+9hWCVBuWNw1Pf1eSbmTdxTarL5lOt aUnhQqPc/Yi/O/1ivdfH/g1YXHQWsAPdimT3+VoYI7G6zSHyCCVe/Vr2s384wclt +4DPBVz/FnZqdXELnY/iRKmi3SQgluNM5bfLbZz5GEePjBVrUf35ZtaUBy3E10oK Qb8FpBbbW8gJeitkah50ma64IG2/gWhq -----END CERTIFICATE-----Generated at Sat Dec 6 15:59:41 2025 by rpki-client