This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4750/90D5EC5ADABD11EA8FC62387C4F9AE02/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.mft File: aHY-kqLBeFMWdXZlEQP4H1ms3Bo.mft (raw, json) Hash identifier: pr1/FRBN6okJheeyFkud15DRL7xc0lqtPhy3Z1Ik8AQ= Subject key identifier: 4A:B7:5A:89:EB:33:6A:A2:67:33:B1:B4:98:B2:53:1E:B5:CB:50:D8 Authority key identifier: 68:76:3E:92:A2:C1:78:53:16:75:76:65:11:03:F8:1F:59:AC:DC:1A Certificate issuer: /CN=A91C4750/serialNumber=68763E92A2C17853167576651103F81F59ACDC1A Certificate serial: 0879 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4750/90D5EC5ADABD11EA8FC62387C4F9AE02/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.mft Manifest number: 0871 Signing time: Sat 06 Dec 2025 19:43:43 +0000 Manifest this update: Sat 06 Dec 2025 19:43:43 +0000 Manifest next update: Sat 13 Dec 2025 19:43:43 +0000 Files and hashes: 1: aHY-kqLBeFMWdXZlEQP4H1ms3Bo.crl (hash: 8bgE1POV/UwwAVCM0BNgWhL2w+wQfQdocSGFkyXPprE=) 2: DA1A98C4DABE11EAB12A5209C4F9AE02.roa (hash: xnTcG0VVgFarV7NphsJDgbhRV6XedAyDHFeL5PTrEnM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4750/90D5EC5ADABD11EA8FC62387C4F9AE02/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.crl rsync://rpki.apnic.net/member_repository/A91C4750/90D5EC5ADABD11EA8FC62387C4F9AE02/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 19:43:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2169 (0x879) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4750, serialNumber=68763E92A2C17853167576651103F81F59ACDC1A Validity Not Before: Dec 6 19:43:43 2025 GMT Not After : Dec 13 19:43:43 2025 GMT Subject: CN=6934876f-68b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:99:2e:5a:5b:2e:a1:bb:ae:f6:cf:77:c5:07: 3c:83:8a:f1:3b:58:bc:39:55:5e:3e:7a:7a:f3:3a: 90:de:8e:5f:29:52:c7:26:87:2d:04:84:40:00:1f: 39:be:6a:87:d8:84:58:1b:15:ab:73:c3:de:70:ba: f3:d0:a9:93:f7:c3:c0:a4:91:17:77:a6:ba:ea:c2: 5c:a3:84:2b:d7:d3:85:51:c0:a2:7a:97:56:c3:01: ab:dc:29:57:a6:59:81:8a:6a:83:b3:06:45:a1:86: da:85:ab:2b:a9:b9:50:b2:74:05:29:f6:e6:0f:92: 05:5f:3c:18:4c:2c:13:0f:0e:ba:98:1c:9d:6e:44: 5e:a0:18:81:4a:62:09:2a:18:6d:82:9b:f3:27:b9: a9:01:85:b1:86:25:34:30:72:79:b5:b7:8b:fd:7e: 96:e5:10:51:9f:6f:45:85:8c:08:95:5b:5a:27:7c: 8c:97:55:5a:ef:1f:f2:5f:11:7a:6c:df:6f:a3:b6: c8:ef:80:09:fd:ad:1d:ca:c2:f4:8a:dd:f6:7a:c6: 40:3a:a1:50:50:37:62:f6:01:ac:87:54:36:ac:a3: 86:1a:cb:9e:4e:f9:dc:46:4e:60:d6:d2:8f:37:7c: 54:16:fc:68:c6:8d:9f:65:d0:58:ac:a9:93:e6:be: 9d:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:B7:5A:89:EB:33:6A:A2:67:33:B1:B4:98:B2:53:1E:B5:CB:50:D8 X509v3 Authority Key Identifier: keyid:68:76:3E:92:A2:C1:78:53:16:75:76:65:11:03:F8:1F:59:AC:DC:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4750/90D5EC5ADABD11EA8FC62387C4F9AE02/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4750/90D5EC5ADABD11EA8FC62387C4F9AE02/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:2d:df:9a:c9:26:f9:57:67:1c:25:1d:8f:be:1f:52:bb:a8: 4d:ca:b4:04:bc:cc:3c:09:37:b6:7f:43:07:9c:ea:69:79:9d: ac:71:af:c9:7b:1e:c2:c5:c5:e5:45:4b:8a:cd:3f:97:9b:3d: 7e:82:00:5e:7f:36:e3:5a:ca:a9:1b:f8:be:a6:84:c2:75:bd: ff:95:2e:b5:dc:3b:72:74:ae:39:b8:02:dc:08:94:ee:0f:85: 33:31:36:e5:f1:e7:b0:92:b9:2d:3d:26:2e:d1:29:58:f0:95: 75:72:6e:1c:86:8a:61:b4:6c:91:ea:4b:83:15:af:79:a3:7b: b8:4d:5b:58:59:e3:24:a2:a5:7d:7e:26:c0:bd:70:1f:da:ba: 6e:fa:62:7e:c5:2d:56:d9:72:7b:66:76:2e:fb:29:61:6e:1e: c4:c9:c5:4e:5d:3d:54:2d:6f:8a:c8:65:fa:66:8e:e6:a7:8e: 91:44:b2:a6:60:e3:2f:c4:0a:11:9f:d3:72:b5:fd:c7:a7:4b: 86:30:07:5d:26:40:6c:25:9d:e5:3b:46:b7:79:9c:3a:19:5b: 5f:ec:93:c0:00:bd:da:7a:c3:82:b6:f7:58:0a:89:be:d9:ce: 2f:5a:0a:b8:5d:36:a5:5f:5e:d7:3a:fd:af:81:2e:a0:b7:f1: 97:98:99:0f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCHkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzQ3NTAxMTAvBgNVBAUTKDY4NzYzRTkyQTJDMTc4NTMxNjc1NzY2NTExMDNGODFG NTlBQ0RDMUEwHhcNMjUxMjA2MTk0MzQzWhcNMjUxMjEzMTk0MzQzWjAYMRYwFAYD VQQDEw02OTM0ODc2Zi02OGI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArpkuWlsuobuu9s93xQc8g4rxO1i8OVVePnp68zqQ3o5fKVLHJoctBIRAAB85 vmqH2IRYGxWrc8PecLrz0KmT98PApJEXd6a66sJco4Qr19OFUcCiepdWwwGr3ClX plmBimqDswZFoYbahasrqblQsnQFKfbmD5IFXzwYTCwTDw66mBydbkReoBiBSmIJ KhhtgpvzJ7mpAYWxhiU0MHJ5tbeL/X6W5RBRn29FhYwIlVtaJ3yMl1Va7x/yXxF6 bN9vo7bI74AJ/a0dysL0it32esZAOqFQUDdi9gGsh1Q2rKOGGsueTvncRk5g1tKP N3xUFvxoxo2fZdBYrKmT5r6dtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEq3Wonr M2qiZzOxtJiyUx61y1DYMB8GA1UdIwQYMBaAFGh2PpKiwXhTFnV2ZRED+B9ZrNwa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNDc1MC85MEQ1RUM1QURB QkQxMUVBOEZDNjIzODdDNEY5QUUwMi9hSFkta3FMQmVGTVdkWFpsRVFQNEgxbXMz Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FIWS1rcUxCZUZNV2RYWmxFUVA0SDFtczNCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NDc1MC85MEQ1RUM1QURBQkQxMUVBOEZDNjIzODdDNEY5QUUwMi9hSFkta3FMQmVG TVdkWFpsRVFQNEgxbXMzQm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKLd+aySb5V2ccJR2Pvh9Su6hNyrQEvMw8CTe2f0MHnOppeZ2sca/J ex7CxcXlRUuKzT+Xmz1+ggBefzbjWsqpG/i+poTCdb3/lS613DtydK45uALcCJTu D4UzMTbl8eewkrktPSYu0SlY8JV1cm4chophtGyR6kuDFa95o3u4TVtYWeMkoqV9 fibAvXAf2rpu+mJ+xS1W2XJ7ZnYu+ylhbh7EycVOXT1ULW+KyGX6Zo7mp46RRLKm YOMvxAoRn9Nytf3Hp0uGMAddJkBsJZ3lO0a3eZw6GVtf7JPAAL3aesOCtvdYCom+ 2c4vWgq4XTalX17XOv2vgS6gt/GXmJkP -----END CERTIFICATE-----Generated at Sun Dec 7 02:02:26 2025 by rpki-client