This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft File: Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft (raw, json) Hash identifier: GDqFuyt2E4B9yCerzdsXEYThg6MIflv3eR7UYt+yf7A= Subject key identifier: FF:F1:75:F4:74:F6:02:4F:AC:53:2E:E7:35:E5:38:1E:3A:4B:BC:A0 Authority key identifier: 63:49:73:59:04:E1:BC:0D:65:BD:59:4A:07:76:2B:B5:29:9C:03:8A Certificate issuer: /CN=A91AFB4C/serialNumber=6349735904E1BC0D65BD594A07762BB5299C038A Certificate serial: 0213 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y0lzWQThvA1lvVlKB3YrtSmcA4o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft Manifest number: 020E Signing time: Fri 05 Dec 2025 00:37:42 +0000 Manifest this update: Fri 05 Dec 2025 00:37:41 +0000 Manifest next update: Fri 12 Dec 2025 00:37:41 +0000 Files and hashes: 1: Y0lzWQThvA1lvVlKB3YrtSmcA4o.crl (hash: 41vMCKsNvQpk281t77EEpVoGSPFQIOuN3N3AVmFnaZc=) 2: AD286018B29C11EDB216812EC4F9AE02.roa (hash: ck7frHwbdvA8vLLhGdgsJbIt8cpEwUyRbFKBDEFTB8E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.crl rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y0lzWQThvA1lvVlKB3YrtSmcA4o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 00:37:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 531 (0x213) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AFB4C, serialNumber=6349735904E1BC0D65BD594A07762BB5299C038A Validity Not Before: Dec 5 00:37:41 2025 GMT Not After : Dec 12 00:37:41 2025 GMT Subject: CN=69322956-07c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:f8:19:4a:7d:db:cd:cc:70:90:42:df:24:4e: 2f:82:b0:c3:a6:f2:6e:3b:5c:33:a4:63:2f:17:1c: b3:cb:9c:b9:29:6e:7f:9e:6c:ef:5b:a9:cc:23:15: e5:2a:70:42:a1:a4:7e:73:2e:45:9d:60:b9:b6:bd: 2d:32:44:01:9e:44:22:86:c8:19:91:45:3a:d1:20: 39:46:9c:db:15:13:05:3a:4c:66:77:8e:2c:95:1a: db:62:e7:b7:c6:b2:46:06:51:ae:62:f1:a3:f7:ec: ad:69:ee:22:6c:ad:81:78:a0:6e:8e:06:9e:3d:c5: ec:8c:76:0e:f5:eb:ce:6b:1c:39:0f:9d:cf:22:b0: 3d:e4:db:c2:6f:8f:5b:82:7e:aa:c8:13:e7:f5:d5: 6e:0b:8f:72:d7:ae:0f:bc:8d:4e:bc:5b:c8:2c:35: 80:99:eb:d4:6c:7a:45:e5:63:73:6a:04:c9:5a:42: 1a:e2:ad:dd:da:f3:84:f9:04:34:d4:98:ed:63:7f: 4e:1f:e6:45:e5:11:f3:a0:79:55:41:c3:09:61:36: c6:e1:4b:74:9c:67:98:ab:ec:cc:4b:96:a4:89:22: 46:88:86:b3:ba:a6:fe:24:a7:f0:1b:a4:0a:66:b8: 11:a7:dd:fd:3c:25:0d:28:c6:4f:59:d8:1f:e5:03: ef:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:F1:75:F4:74:F6:02:4F:AC:53:2E:E7:35:E5:38:1E:3A:4B:BC:A0 X509v3 Authority Key Identifier: keyid:63:49:73:59:04:E1:BC:0D:65:BD:59:4A:07:76:2B:B5:29:9C:03:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y0lzWQThvA1lvVlKB3YrtSmcA4o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:84:fd:95:e8:ec:44:a5:d9:5b:9e:92:d1:91:5b:3d:d2:be: 7b:db:af:0e:a8:f9:20:5c:82:33:80:cb:81:3c:44:0d:83:e1: 09:bd:66:a7:23:85:50:03:27:f4:ca:74:71:55:a5:81:05:f2: 3a:8a:65:b6:73:e3:3b:c2:45:47:f4:c3:28:57:df:1e:f4:b9: f0:d0:d4:84:de:34:1c:ba:bf:3d:1c:5e:8f:19:89:22:11:5e: e3:3f:e6:d0:8b:e4:34:b9:2c:32:23:13:06:d0:7e:ef:24:ca: 71:1c:61:85:d3:c3:ca:70:9c:9f:d2:5f:c8:f9:ce:9d:c4:7e: 55:26:fa:84:93:8c:d3:b2:82:66:89:f4:01:e8:f9:d7:ac:b6: b8:70:35:30:b1:5b:45:ae:39:39:2e:f5:6d:b1:a5:6f:18:74: 7f:b1:ec:fc:ab:c4:4f:4f:39:71:0e:b5:0e:64:7f:ea:79:8b: c9:ec:d1:76:1d:2c:b5:dd:61:04:a2:2d:77:a4:ef:2b:a2:ef: de:6a:4b:db:14:3f:a0:50:61:1a:f3:9d:a3:42:18:01:84:12: 3d:bd:35:13:04:5c:71:9b:3a:3c:ba:c1:67:7c:c9:2b:93:65: de:da:a7:9b:e6:2c:c2:e2:6b:64:22:7a:b2:01:83:30:77:ec: ef:d3:82:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUZCNEMxMTAvBgNVBAUTKDYzNDk3MzU5MDRFMUJDMEQ2NUJENTk0QTA3NzYyQkI1 Mjk5QzAzOEEwHhcNMjUxMjA1MDAzNzQxWhcNMjUxMjEyMDAzNzQxWjAYMRYwFAYD VQQDEw02OTMyMjk1Ni0wN2MwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwvgZSn3bzcxwkELfJE4vgrDDpvJuO1wzpGMvFxyzy5y5KW5/nmzvW6nMIxXl KnBCoaR+cy5FnWC5tr0tMkQBnkQihsgZkUU60SA5RpzbFRMFOkxmd44slRrbYue3 xrJGBlGuYvGj9+ytae4ibK2BeKBujgaePcXsjHYO9evOaxw5D53PIrA95NvCb49b gn6qyBPn9dVuC49y164PvI1OvFvILDWAmevUbHpF5WNzagTJWkIa4q3d2vOE+QQ0 1JjtY39OH+ZF5RHzoHlVQcMJYTbG4Ut0nGeYq+zMS5akiSJGiIazuqb+JKfwG6QK ZrgRp939PCUNKMZPWdgf5QPvLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP/xdfR0 9gJPrFMu5zXlOB46S7ygMB8GA1UdIwQYMBaAFGNJc1kE4bwNZb1ZSgd2K7UpnAOK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRkI0Qy9DNDcwQjIyQUIy OTcxMUVEOTRFRjA5MjZDNEY5QUUwMi9ZMGx6V1FUaHZBMWx2VmxLQjNZcnRTbWNB NG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1kwbHpXUVRodkExbHZWbEtCM1lydFNtY0E0by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RkI0Qy9DNDcwQjIyQUIyOTcxMUVEOTRFRjA5MjZDNEY5QUUwMi9ZMGx6V1FUaHZB MWx2VmxLQjNZcnRTbWNBNG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFhP2V6OxEpdlbnpLRkVs90r57268OqPkgXIIzgMuBPEQNg+EJvWan I4VQAyf0ynRxVaWBBfI6imW2c+M7wkVH9MMoV98e9Lnw0NSE3jQcur89HF6PGYki EV7jP+bQi+Q0uSwyIxMG0H7vJMpxHGGF08PKcJyf0l/I+c6dxH5VJvqEk4zTsoJm ifQB6PnXrLa4cDUwsVtFrjk5LvVtsaVvGHR/sez8q8RPTzlxDrUOZH/qeYvJ7NF2 HSy13WEEoi13pO8rou/eakvbFD+gUGEa852jQhgBhBI9vTUTBFxxmzo8usFnfMkr k2Xe2qeb5izC4mtkInqyAYMwd+zv04Jz -----END CERTIFICATE-----Generated at Sat Dec 6 15:40:25 2025 by rpki-client