This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft File: tY0p97gQfxWFtf_nDFAsbI9dMwI.mft (raw, json) Hash identifier: 0aGLfVetrpa1A/1Q0JPNVcTXqX2koRaqmRK3ptcxvJQ= Subject key identifier: 62:00:8C:63:D0:CC:9A:4F:33:33:C9:D0:3C:0B:7B:80:3B:1B:56:CF Authority key identifier: B5:8D:29:F7:B8:10:7F:15:85:B5:FF:E7:0C:50:2C:6C:8F:5D:33:02 Certificate issuer: /CN=A91B3CA4/serialNumber=B58D29F7B8107F1585B5FFE70C502C6C8F5D3302 Certificate serial: 08BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft Manifest number: 08A4 Signing time: Thu 04 Dec 2025 19:40:47 +0000 Manifest this update: Thu 04 Dec 2025 19:40:47 +0000 Manifest next update: Thu 11 Dec 2025 19:40:46 +0000 Files and hashes: 1: tY0p97gQfxWFtf_nDFAsbI9dMwI.crl (hash: 8ramITPqnqZSOrWtMUSYtmmzoBlVDn8RbyjRXrzYrOY=) 2: C33EB0EC7C4211EB933D233EC4F9AE02.roa (hash: V3s4r52s3OPKDLcYcdmKSn/0GHVPcogcj1iQaYzRFaU=) 3: F6F5BCCE53E711F084348F87C4F9AE02.roa (hash: eEq3ZG4qI8pUpOyGlAwoIW1Iq8bp1Jor6FtXouhYCXM=) 4: 3C3F21BAD6F011EE9B38B67DC4F9AE02.roa (hash: w/43LlQIYPABEvYlfxDIIPmu3emguiTlymMjfBLzQJU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.crl rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 19:40:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2238 (0x8be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3CA4, serialNumber=B58D29F7B8107F1585B5FFE70C502C6C8F5D3302 Validity Not Before: Dec 4 19:40:47 2025 GMT Not After : Dec 11 19:40:46 2025 GMT Subject: CN=6931e3bf-5ebe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:dc:72:b1:c5:d9:74:f0:04:22:f8:4f:ca:26: 6d:c5:38:d4:e1:f3:f4:6b:05:ab:2f:fc:e8:9c:85: 3a:cc:67:d1:2e:25:01:7f:3b:74:4c:a8:c3:3d:23: a2:be:7e:31:07:ea:74:66:54:79:8d:47:2f:6a:d4: a4:25:5f:5f:c2:6b:59:2e:4a:6b:3a:e7:6a:93:5c: b7:f3:6f:d6:7f:36:9f:d4:df:b1:7d:20:f3:56:7d: f4:05:36:3c:62:6e:c9:11:05:1a:35:05:b0:ab:5a: f9:64:a7:f0:8e:fe:95:82:2c:c7:d9:81:9a:e6:d2: 76:bc:13:55:b9:6c:9d:61:60:c5:ab:f4:33:8b:a4: bb:2f:f2:42:32:d5:7b:10:3e:a3:c4:dc:a2:10:79: 2d:4a:56:6b:08:54:17:53:bd:a3:5d:da:e6:8d:1e: a9:9b:82:6d:9a:1d:c0:6b:c2:57:48:bc:4b:3b:90: 60:dc:b5:bb:72:18:2d:7d:4e:6d:9b:82:7b:04:67: d7:b4:ad:92:9e:8b:53:b5:44:e0:7b:b3:b9:24:b7: b0:ed:2e:f7:a3:7d:75:2f:10:7c:85:32:c7:9b:9e: b5:ff:7a:ae:74:4a:8f:0f:f6:8d:24:00:13:23:5c: 23:d0:d4:56:47:39:66:79:f0:16:f6:f6:7d:76:1f: 91:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:00:8C:63:D0:CC:9A:4F:33:33:C9:D0:3C:0B:7B:80:3B:1B:56:CF X509v3 Authority Key Identifier: keyid:B5:8D:29:F7:B8:10:7F:15:85:B5:FF:E7:0C:50:2C:6C:8F:5D:33:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:4a:1b:1d:66:90:4e:d7:0d:3d:c7:6c:f3:fc:91:2f:10:a2: a3:10:9b:1f:ae:4f:8e:cc:67:58:71:db:91:07:d8:d3:47:a2: 17:a9:90:27:18:39:15:ac:b0:3a:21:e0:d0:08:de:1d:20:9e: 43:0e:a9:4c:58:5b:b6:e8:d9:29:96:05:ef:30:8d:5e:f1:97: b1:8f:a9:8a:4a:bc:11:1c:82:ed:08:ad:03:5d:2f:97:43:af: 04:5a:af:a5:08:a9:36:68:56:55:08:94:93:55:93:91:0b:09: 01:cc:62:b5:f7:7a:3e:42:f7:6f:db:f0:18:67:e0:72:4b:c5: 74:63:0a:08:d9:c3:00:87:e0:0b:6e:49:0a:dc:54:91:a0:08: 8f:3b:0d:46:f2:6a:9e:3d:f2:cb:d3:a9:54:70:7a:a6:6f:d4: e9:fe:f9:35:8b:26:69:14:22:ba:95:2e:f3:72:11:a7:38:14: bb:e2:39:3c:08:e9:97:29:c6:2a:40:b4:9f:33:00:66:78:d0: 6b:3a:bb:1e:f5:4a:26:1c:25:4b:dc:21:7a:3e:94:d4:3a:55: f6:4e:e8:96:1f:b1:4e:dd:d2:9d:5b:97:e4:2a:26:da:e4:d0: bb:da:bf:ff:ec:bb:3d:56:6f:50:6e:1e:ab:af:3d:53:c1:d4: 3f:6b:71:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCL4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjNDQTQxMTAvBgNVBAUTKEI1OEQyOUY3QjgxMDdGMTU4NUI1RkZFNzBDNTAyQzZD OEY1RDMzMDIwHhcNMjUxMjA0MTk0MDQ3WhcNMjUxMjExMTk0MDQ2WjAYMRYwFAYD VQQDEw02OTMxZTNiZi01ZWJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz9xyscXZdPAEIvhPyiZtxTjU4fP0awWrL/zonIU6zGfRLiUBfzt0TKjDPSOi vn4xB+p0ZlR5jUcvatSkJV9fwmtZLkprOudqk1y382/Wfzaf1N+xfSDzVn30BTY8 Ym7JEQUaNQWwq1r5ZKfwjv6VgizH2YGa5tJ2vBNVuWydYWDFq/Qzi6S7L/JCMtV7 ED6jxNyiEHktSlZrCFQXU72jXdrmjR6pm4Jtmh3Aa8JXSLxLO5Bg3LW7chgtfU5t m4J7BGfXtK2SnotTtUTge7O5JLew7S73o311LxB8hTLHm561/3qudEqPD/aNJAAT I1wj0NRWRzlmefAW9vZ9dh+RWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGIAjGPQ zJpPMzPJ0DwLe4A7G1bPMB8GA1UdIwQYMBaAFLWNKfe4EH8VhbX/5wxQLGyPXTMC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCM0NBNC8xNUY2OEI1Q0NG MTkxMUVBQUVGNjBCMUVDNEY5QUUwMi90WTBwOTdnUWZ4V0Z0Zl9uREZBc2JJOWRN d0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RZMHA5N2dRZnhXRnRmX25ERkFzYkk5ZE13SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC M0NBNC8xNUY2OEI1Q0NGMTkxMUVBQUVGNjBCMUVDNEY5QUUwMi90WTBwOTdnUWZ4 V0Z0Zl9uREZBc2JJOWRNd0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLShsdZpBO1w09x2zz/JEvEKKjEJsfrk+OzGdYcduRB9jTR6IXqZAn GDkVrLA6IeDQCN4dIJ5DDqlMWFu26NkplgXvMI1e8Zexj6mKSrwRHILtCK0DXS+X Q68EWq+lCKk2aFZVCJSTVZORCwkBzGK193o+Qvdv2/AYZ+ByS8V0YwoI2cMAh+AL bkkK3FSRoAiPOw1G8mqePfLL06lUcHqmb9Tp/vk1iyZpFCK6lS7zchGnOBS74jk8 COmXKcYqQLSfMwBmeNBrOrse9UomHCVL3CF6PpTUOlX2TuiWH7FO3dKdW5fkKiba 5NC72r//7Ls9Vm9Qbh6rrz1TwdQ/a3HM -----END CERTIFICATE-----Generated at Sat Dec 6 19:15:14 2025 by rpki-client