This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4053/3EDB83FC50E111F091C4BB74C4F9AE02/1ybobzALJko1PClnPgdxb1RUteI.mft File: 1ybobzALJko1PClnPgdxb1RUteI.mft (raw, json) Hash identifier: 6mTLHIodkhFV6kYsAHlZ43XHVd4DuwuYCa+fwG4jfY4= Subject key identifier: C1:E6:12:FB:94:1A:EF:92:1C:95:E2:78:9D:58:90:67:1E:9C:72:D2 Authority key identifier: D7:26:E8:6F:30:0B:26:4A:35:3C:29:67:3E:07:71:6F:54:54:B5:E2 Certificate issuer: /CN=A91B4053/serialNumber=D726E86F300B264A353C29673E07716F5454B5E2 Certificate serial: 58 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ybobzALJko1PClnPgdxb1RUteI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4053/3EDB83FC50E111F091C4BB74C4F9AE02/1ybobzALJko1PClnPgdxb1RUteI.mft Manifest number: 57 Signing time: Fri 05 Dec 2025 05:03:58 +0000 Manifest this update: Fri 05 Dec 2025 05:03:57 +0000 Manifest next update: Fri 12 Dec 2025 05:03:57 +0000 Files and hashes: 1: 1ybobzALJko1PClnPgdxb1RUteI.crl (hash: L33GnyAvZvOocxBb+i9wpBBQ9y0aJmqSU8XRsKARGlA=) 2: D28B7DD450E411F081600061C4F9AE02.roa (hash: l4xDR8XfunCSdDdqhrbj6MNAoikH4sPGdjRT4Op4rI8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4053/3EDB83FC50E111F091C4BB74C4F9AE02/1ybobzALJko1PClnPgdxb1RUteI.crl rsync://rpki.apnic.net/member_repository/A91B4053/3EDB83FC50E111F091C4BB74C4F9AE02/1ybobzALJko1PClnPgdxb1RUteI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ybobzALJko1PClnPgdxb1RUteI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 05:03:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 88 (0x58) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4053, serialNumber=D726E86F300B264A353C29673E07716F5454B5E2 Validity Not Before: Dec 5 05:03:57 2025 GMT Not After : Dec 12 05:03:57 2025 GMT Subject: CN=693267bd-6c65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:85:69:9e:4c:24:2d:0b:b2:46:95:77:c4:ec: 0f:3f:f3:bf:cc:ec:60:80:3c:33:a1:40:58:8c:e5: bf:5b:09:2c:32:ff:03:09:ec:f5:7d:76:d0:cc:9c: 7d:d0:78:36:33:5e:44:6b:d4:6f:87:2e:9c:5b:7a: d1:86:7d:13:b1:53:f2:d8:fa:27:71:b4:a2:bd:6f: 6b:5e:7c:ef:cd:14:6a:4d:a9:0d:1c:77:50:e2:ee: aa:98:81:86:37:78:a7:ea:3c:38:0a:98:8b:18:6f: 51:62:64:79:7b:2b:aa:1c:6e:f1:61:24:6d:ef:fd: 8b:a4:9e:ec:cf:04:7b:3a:ac:1c:5e:a0:5c:01:65: c2:4b:0c:be:b8:b6:4b:ff:6d:12:60:d8:8e:52:33: 45:ad:6b:84:5e:8d:76:27:d2:b3:d4:d8:19:1e:c1: 28:6c:71:cf:7c:7e:72:68:15:ce:77:7b:ac:ad:3a: 99:71:60:a3:c8:94:5d:19:ba:e8:24:0d:7e:79:8d: 9d:4a:09:86:67:40:17:ac:4b:af:30:43:e1:76:43: e4:b2:c4:79:87:c5:18:f9:bb:8a:b7:c1:7f:a3:41: 51:ad:b1:67:31:92:2a:95:fa:e9:4d:dc:3d:d4:84: ab:57:c4:14:a5:26:6b:c3:58:67:0a:84:7a:21:d2: 4f:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:E6:12:FB:94:1A:EF:92:1C:95:E2:78:9D:58:90:67:1E:9C:72:D2 X509v3 Authority Key Identifier: keyid:D7:26:E8:6F:30:0B:26:4A:35:3C:29:67:3E:07:71:6F:54:54:B5:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4053/3EDB83FC50E111F091C4BB74C4F9AE02/1ybobzALJko1PClnPgdxb1RUteI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ybobzALJko1PClnPgdxb1RUteI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4053/3EDB83FC50E111F091C4BB74C4F9AE02/1ybobzALJko1PClnPgdxb1RUteI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:e5:54:8c:5a:16:b0:af:62:00:89:ff:51:aa:77:ca:9f:08: 9a:aa:7b:1f:84:e9:a5:e8:f4:d1:0c:78:d4:3a:90:85:d1:01: 0c:c2:68:52:f8:8a:20:d6:59:10:10:39:95:af:e8:26:12:f8: 5f:98:5f:95:02:ef:4f:ec:d7:cd:24:56:08:be:3f:15:9c:61: af:21:21:21:5f:f9:ea:67:20:52:f8:d1:d0:b1:eb:6e:3b:43: a9:9f:1a:14:e8:83:62:79:8f:f1:3d:ff:49:72:70:c7:18:ce: ef:d6:e5:8b:73:39:9d:d8:8e:49:87:39:69:e0:79:13:35:08: 04:88:b3:a7:b6:b9:5c:cb:f9:bc:8d:28:1e:e5:8a:40:69:a0: cc:3b:66:99:20:76:d5:9a:41:4f:42:0b:88:df:3d:af:4b:35: f9:da:34:65:3b:ee:94:07:03:46:66:ba:be:a5:78:3d:b6:ad: 55:06:6e:b7:df:34:2c:95:fc:f3:02:fb:b3:6e:d5:80:45:7e: 59:4c:0e:38:1f:99:bf:4e:9b:01:2c:04:fd:2c:1e:2a:63:c4: ae:29:45:39:d0:1d:18:66:6e:51:dc:e3:7c:72:8f:c3:7b:ad: f0:a7:fb:cc:6d:16:82:c9:4a:76:8c:78:b8:2c:79:c2:38:68: be:3b:64:6b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NDA1MzExMC8GA1UEBRMoRDcyNkU4NkYzMDBCMjY0QTM1M0MyOTY3M0UwNzcxNkY1 NDU0QjVFMjAeFw0yNTEyMDUwNTAzNTdaFw0yNTEyMTIwNTAzNTdaMBgxFjAUBgNV BAMTDTY5MzI2N2JkLTZjNjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC9hWmeTCQtC7JGlXfE7A8/87/M7GCAPDOhQFiM5b9bCSwy/wMJ7PV9dtDMnH3Q eDYzXkRr1G+HLpxbetGGfROxU/LY+idxtKK9b2tefO/NFGpNqQ0cd1Di7qqYgYY3 eKfqPDgKmIsYb1FiZHl7K6ocbvFhJG3v/YuknuzPBHs6rBxeoFwBZcJLDL64tkv/ bRJg2I5SM0Wta4RejXYn0rPU2BkewShscc98fnJoFc53e6ytOplxYKPIlF0Zuugk DX55jZ1KCYZnQBesS68wQ+F2Q+SyxHmHxRj5u4q3wX+jQVGtsWcxkiqV+ulN3D3U hKtXxBSlJmvDWGcKhHoh0k8hAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUweYS+5Qa 75IcleJ4nViQZx6cctIwHwYDVR0jBBgwFoAU1ybobzALJko1PClnPgdxb1RUteIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI0MDUzLzNFREI4M0ZDNTBF MTExRjA5MUM0QkI3NEM0RjlBRTAyLzF5Ym9iekFMSmtvMVBDbG5QZ2R4YjFSVXRl SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMXlib2J6QUxKa28xUENsblBnZHhiMVJVdGVJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI0 MDUzLzNFREI4M0ZDNTBFMTExRjA5MUM0QkI3NEM0RjlBRTAyLzF5Ym9iekFMSmtv MVBDbG5QZ2R4YjFSVXRlSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAE7lVIxaFrCvYgCJ/1Gqd8qfCJqqex+E6aXo9NEMeNQ6kIXRAQzCaFL4 iiDWWRAQOZWv6CYS+F+YX5UC70/s180kVgi+PxWcYa8hISFf+epnIFL40dCx6247 Q6mfGhTog2J5j/E9/0lycMcYzu/W5YtzOZ3YjkmHOWngeRM1CASIs6e2uVzL+byN KB7likBpoMw7ZpkgdtWaQU9CC4jfPa9LNfnaNGU77pQHA0Zmur6leD22rVUGbrff NCyV/PMC+7Nu1YBFfllMDjgfmb9OmwEsBP0sHipjxK4pRTnQHRhmblHc43xyj8N7 rfCn+8xtFoLJSnaMeLgsecI4aL47ZGs= -----END CERTIFICATE-----Generated at Sun Dec 7 03:39:36 2025 by rpki-client