This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.mft File: 2YRcGequkJIocqDK_QUfFmFPhK8.mft (raw, json) Hash identifier: W33HZacaphVNcT5Xf9MWUJS5v2mahITgmjVldCcUXRA= Subject key identifier: 4E:17:B7:05:50:0D:24:93:31:EB:1E:B4:BE:EC:4D:E1:37:D3:4A:DE Authority key identifier: D9:84:5C:19:EA:AE:90:92:28:72:A0:CA:FD:05:1F:16:61:4F:84:AF Certificate issuer: /CN=A91C6BF0/serialNumber=D9845C19EAAE90922872A0CAFD051F16614F84AF Certificate serial: 0E78 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YRcGequkJIocqDK_QUfFmFPhK8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.mft Manifest number: 105F Signing time: Sat 06 Dec 2025 17:12:43 +0000 Manifest this update: Sat 06 Dec 2025 17:12:43 +0000 Manifest next update: Sat 13 Dec 2025 17:12:43 +0000 Files and hashes: 1: 2YRcGequkJIocqDK_QUfFmFPhK8.crl (hash: 1pJci+roI5/z+9LV0gI5k4Na147PyrmKVBOqAKGOI10=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.crl rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YRcGequkJIocqDK_QUfFmFPhK8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 17:12:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3704 (0xe78) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6BF0, serialNumber=D9845C19EAAE90922872A0CAFD051F16614F84AF Validity Not Before: Dec 6 17:12:43 2025 GMT Not After : Dec 13 17:12:43 2025 GMT Subject: CN=6934640b-bdd1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:01:7f:66:84:f1:a4:10:0f:69:6a:7b:9a:ed: bf:73:db:07:97:e6:ce:a6:a4:77:d3:26:50:d7:80: 33:74:0f:65:3a:08:22:f3:54:74:03:b0:52:07:f4: f7:5d:44:93:1d:2d:9e:a6:6b:81:58:f7:d7:b1:bf: ce:20:29:15:a5:bd:38:b1:46:2f:e7:57:b9:d8:91: 44:33:3b:2c:28:13:39:7e:1c:eb:88:0e:5f:00:ba: 98:75:a3:aa:d9:d8:93:01:02:d2:01:cc:fe:05:06: 75:fe:b0:a6:e4:fb:a4:dc:ef:09:df:18:1c:f7:59: 54:86:63:e7:ea:c8:b8:d1:45:df:10:9e:9c:86:25: dd:70:fb:e6:a3:29:16:0e:04:99:30:63:4e:6b:3a: 58:68:96:ab:18:29:00:3a:7e:ee:13:ea:2d:4b:12: 3d:df:1c:6f:0f:bd:64:e7:2e:29:19:a4:25:91:4f: a1:3b:18:f8:a6:c3:ec:be:e0:d1:0b:a9:68:30:f3: d4:af:70:05:e5:7b:d5:3a:25:5d:86:7d:c4:df:35: e4:d0:ea:70:63:a2:26:75:8f:fb:11:61:69:b4:5a: a3:c8:af:17:4e:75:e2:7a:1f:ee:86:c8:46:51:57: 02:04:36:e0:6e:36:92:32:5a:a9:73:88:2f:c3:24: 35:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:17:B7:05:50:0D:24:93:31:EB:1E:B4:BE:EC:4D:E1:37:D3:4A:DE X509v3 Authority Key Identifier: keyid:D9:84:5C:19:EA:AE:90:92:28:72:A0:CA:FD:05:1F:16:61:4F:84:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YRcGequkJIocqDK_QUfFmFPhK8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:99:3b:4b:f8:2d:b4:eb:19:3f:75:fd:5f:db:3e:bb:5a:e8: b7:98:1f:41:3e:00:60:74:1c:33:7a:42:b9:f9:d8:7b:ae:ca: 2f:b4:94:0c:52:15:56:1b:56:94:d6:64:c6:93:51:b8:f7:4e: 35:75:c0:e2:88:c6:aa:a5:60:da:85:7d:7f:dc:bb:15:4b:32: 83:27:ad:72:a4:6d:b8:b2:18:08:68:c6:c0:10:81:56:c1:6d: 15:32:96:4f:1d:12:d5:6b:03:41:5b:b2:53:12:3d:d3:d8:34: a3:62:3d:8c:1c:b5:a4:a9:1d:87:77:0f:1a:b3:c3:4d:5e:dc: 5f:ce:4f:2c:28:d9:10:64:1f:b5:c1:7b:d6:63:3d:a8:06:b0: 69:aa:f0:90:cb:a9:c3:89:ac:e4:59:ec:fb:de:2d:4a:84:db: cf:2f:6c:ed:85:f7:5d:31:b7:c3:10:84:b0:c2:14:f3:94:e8: 17:12:24:ad:bd:e8:8f:85:92:21:23:21:59:63:2a:b3:05:6b: 4a:43:56:ba:58:bb:4a:fd:b4:10:7b:e0:28:43:f8:ec:63:b4: dc:87:61:90:8d:1e:5f:eb:cb:76:7e:e8:e8:64:af:49:ee:b7: 29:c6:73:5c:00:b6:ca:9f:ac:87:03:6a:65:59:d7:26:96:27: 01:d6:6b:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDngwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzZCRjAxMTAvBgNVBAUTKEQ5ODQ1QzE5RUFBRTkwOTIyODcyQTBDQUZEMDUxRjE2 NjE0Rjg0QUYwHhcNMjUxMjA2MTcxMjQzWhcNMjUxMjEzMTcxMjQzWjAYMRYwFAYD VQQDEw02OTM0NjQwYi1iZGQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlwF/ZoTxpBAPaWp7mu2/c9sHl+bOpqR30yZQ14AzdA9lOggi81R0A7BSB/T3 XUSTHS2epmuBWPfXsb/OICkVpb04sUYv51e52JFEMzssKBM5fhzriA5fALqYdaOq 2diTAQLSAcz+BQZ1/rCm5Puk3O8J3xgc91lUhmPn6si40UXfEJ6chiXdcPvmoykW DgSZMGNOazpYaJarGCkAOn7uE+otSxI93xxvD71k5y4pGaQlkU+hOxj4psPsvuDR C6loMPPUr3AF5XvVOiVdhn3E3zXk0OpwY6ImdY/7EWFptFqjyK8XTnXieh/uhshG UVcCBDbgbjaSMlqpc4gvwyQ15wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE4XtwVQ DSSTMesetL7sTeE300reMB8GA1UdIwQYMBaAFNmEXBnqrpCSKHKgyv0FHxZhT4Sv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNkJGMC8xNDkxOTc0QUFF QkIxMUU5OEEzOTBCNTlDNEY5QUUwMi8yWVJjR2VxdWtKSW9jcURLX1FVZkZtRlBo SzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJZUmNHZXF1a0pJb2NxREtfUVVmRm1GUGhLOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NkJGMC8xNDkxOTc0QUFFQkIxMUU5OEEzOTBCNTlDNEY5QUUwMi8yWVJjR2VxdWtK SW9jcURLX1FVZkZtRlBoSzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkmTtL+C206xk/df1f2z67Wui3mB9BPgBgdBwzekK5+dh7rsovtJQM UhVWG1aU1mTGk1G49041dcDiiMaqpWDahX1/3LsVSzKDJ61ypG24shgIaMbAEIFW wW0VMpZPHRLVawNBW7JTEj3T2DSjYj2MHLWkqR2Hdw8as8NNXtxfzk8sKNkQZB+1 wXvWYz2oBrBpqvCQy6nDiazkWez73i1KhNvPL2zthfddMbfDEISwwhTzlOgXEiSt veiPhZIhIyFZYyqzBWtKQ1a6WLtK/bQQe+AoQ/jsY7Tch2GQjR5f68t2fujoZK9J 7rcpxnNcALbKn6yHA2plWdcmlicB1mt3 -----END CERTIFICATE-----Generated at Sun Dec 7 00:02:52 2025 by rpki-client