This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFFCB/F5DB7A16420511F0BF7A8711C4F9AE02/y1McHsaSJfDcrkTOyl41mAzpwPI.mft File: y1McHsaSJfDcrkTOyl41mAzpwPI.mft (raw, json) Hash identifier: /jacFrHPMEUTkj4xZyyLkkYV5pAKx9N/h4SNOUefZKA= Subject key identifier: 9F:84:CD:99:84:DA:1B:28:3A:33:7A:4A:0C:30:98:E8:50:D6:2A:E7 Authority key identifier: CB:53:1C:1E:C6:92:25:F0:DC:AE:44:CE:CA:5E:35:98:0C:E9:C0:F2 Certificate issuer: /CN=A91CFFCB/serialNumber=CB531C1EC69225F0DCAE44CECA5E35980CE9C0F2 Certificate serial: 60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1McHsaSJfDcrkTOyl41mAzpwPI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFFCB/F5DB7A16420511F0BF7A8711C4F9AE02/y1McHsaSJfDcrkTOyl41mAzpwPI.mft Manifest number: 5F Signing time: Fri 05 Dec 2025 04:58:40 +0000 Manifest this update: Fri 05 Dec 2025 04:58:40 +0000 Manifest next update: Fri 12 Dec 2025 04:58:40 +0000 Files and hashes: 1: y1McHsaSJfDcrkTOyl41mAzpwPI.crl (hash: 92SHnQ4CvKO7KXN8ohqwvaAWr5jtKOvPXwTbFO49nv0=) 2: BB8F3118497B11F096DCA14EC4F9AE02.roa (hash: n0pGyYXueEy9F7Jw89IAbICySxf38MqDCZugETeFEBQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFFCB/F5DB7A16420511F0BF7A8711C4F9AE02/y1McHsaSJfDcrkTOyl41mAzpwPI.crl rsync://rpki.apnic.net/member_repository/A91CFFCB/F5DB7A16420511F0BF7A8711C4F9AE02/y1McHsaSJfDcrkTOyl41mAzpwPI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1McHsaSJfDcrkTOyl41mAzpwPI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:58:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 96 (0x60) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFFCB, serialNumber=CB531C1EC69225F0DCAE44CECA5E35980CE9C0F2 Validity Not Before: Dec 5 04:58:40 2025 GMT Not After : Dec 12 04:58:40 2025 GMT Subject: CN=69326680-cf93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:6b:28:b3:88:70:62:e4:41:38:9b:d5:9a:c9: 80:33:ca:11:24:27:9a:69:ea:5f:e0:43:c5:a9:e2: d4:57:02:47:7b:45:05:b8:49:a9:a2:7a:2a:4b:bb: 5d:2c:ed:06:65:c5:bf:3a:0d:2d:2b:06:32:cb:c2: 24:59:f5:cb:bd:30:2c:be:1d:5d:31:8e:83:68:3d: 51:74:e1:e6:26:e7:07:da:99:3c:b7:3e:09:94:58: 8a:96:af:5f:43:f3:11:d4:5a:64:e7:0b:d8:09:6e: a3:0e:10:5e:01:ac:a1:b9:fa:65:b2:d4:fb:fe:5e: dd:4c:a3:49:37:7d:65:00:91:9b:70:0e:c5:f2:7e: 3a:ac:17:b5:1a:ea:4f:46:5b:5e:b2:ff:7b:1d:f0: 8f:c5:5c:c7:84:67:6c:d9:3c:35:8d:ab:b2:98:e8: f4:91:80:75:4d:bf:76:02:36:5e:1a:fe:a7:a3:b4: 3a:30:67:a6:dc:f7:7f:84:70:7e:1c:5d:7c:1b:a1: 1f:60:ba:3a:54:1a:60:04:5e:8e:d9:e4:1d:ae:ed: 20:5b:8a:e9:d2:6a:13:96:c1:0f:58:d3:f7:2f:41: 7f:13:47:0e:a3:fe:4e:96:91:ed:72:da:a9:9f:52: f9:b8:c1:9a:2d:1f:55:ff:a3:05:d7:12:c4:0c:d6: f6:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:84:CD:99:84:DA:1B:28:3A:33:7A:4A:0C:30:98:E8:50:D6:2A:E7 X509v3 Authority Key Identifier: keyid:CB:53:1C:1E:C6:92:25:F0:DC:AE:44:CE:CA:5E:35:98:0C:E9:C0:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFFCB/F5DB7A16420511F0BF7A8711C4F9AE02/y1McHsaSJfDcrkTOyl41mAzpwPI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1McHsaSJfDcrkTOyl41mAzpwPI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFFCB/F5DB7A16420511F0BF7A8711C4F9AE02/y1McHsaSJfDcrkTOyl41mAzpwPI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:ff:6a:ff:56:ff:7d:01:92:97:22:29:e2:90:da:7d:18:51: df:92:c9:be:73:02:bb:6e:56:98:9f:0a:bf:3c:9d:44:0e:aa: 7e:bb:05:2f:cd:16:0b:43:e2:c3:26:82:7c:dc:e3:bd:9c:ed: af:ae:6e:84:9e:84:6b:1a:e2:35:73:5a:18:41:09:a5:e5:bf: 29:c4:69:85:cd:5f:c6:74:11:29:ab:64:b5:10:9b:40:f2:e3: ff:9a:46:79:e2:87:9a:1a:e9:7f:14:b3:6f:77:f6:e6:19:cb: e3:31:c5:4f:2b:bd:dd:39:dc:85:43:5d:bd:83:f8:bf:36:b3: 4d:c8:7a:7f:1f:32:17:f0:e2:72:f3:d9:7f:05:24:85:05:4e: a0:66:c9:bf:12:73:e0:35:57:44:50:23:7b:a5:96:18:d9:ce: d1:68:20:93:39:59:80:5e:dc:9b:05:bc:30:fd:69:c6:81:d6: 3d:57:f5:db:55:00:7b:8e:70:c7:f5:63:88:9e:2a:9e:4e:f1: fe:40:bf:05:af:d3:f2:54:78:34:58:66:a7:aa:31:d0:5d:68: 00:90:52:6f:85:8f:88:27:11:f0:6f:80:81:cc:71:bf:35:e9: 0a:79:68:e7:01:20:92:96:2a:4d:16:98:b1:d4:e9:d8:a5:ea: f3:d8:86:1c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD RkZDQjExMC8GA1UEBRMoQ0I1MzFDMUVDNjkyMjVGMERDQUU0NENFQ0E1RTM1OTgw Q0U5QzBGMjAeFw0yNTEyMDUwNDU4NDBaFw0yNTEyMTIwNDU4NDBaMBgxFjAUBgNV BAMTDTY5MzI2NjgwLWNmOTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDwayiziHBi5EE4m9WayYAzyhEkJ5pp6l/gQ8Wp4tRXAkd7RQW4SamieipLu10s 7QZlxb86DS0rBjLLwiRZ9cu9MCy+HV0xjoNoPVF04eYm5wfamTy3PgmUWIqWr19D 8xHUWmTnC9gJbqMOEF4BrKG5+mWy1Pv+Xt1Mo0k3fWUAkZtwDsXyfjqsF7Ua6k9G W16y/3sd8I/FXMeEZ2zZPDWNq7KY6PSRgHVNv3YCNl4a/qejtDowZ6bc93+EcH4c XXwboR9gujpUGmAEXo7Z5B2u7SBbiunSahOWwQ9Y0/cvQX8TRw6j/k6Wke1y2qmf Uvm4wZotH1X/owXXEsQM1vapAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUn4TNmYTa Gyg6M3pKDDCY6FDWKucwHwYDVR0jBBgwFoAUy1McHsaSJfDcrkTOyl41mAzpwPIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNGRkNCL0Y1REI3QTE2NDIw NTExRjBCRjdBODcxMUM0RjlBRTAyL3kxTWNIc2FTSmZEY3JrVE95bDQxbUF6cHdQ SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveTFNY0hzYVNKZkRjcmtUT3lsNDFtQXpwd1BJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNG RkNCL0Y1REI3QTE2NDIwNTExRjBCRjdBODcxMUM0RjlBRTAyL3kxTWNIc2FTSmZE Y3JrVE95bDQxbUF6cHdQSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAID/av9W/30BkpciKeKQ2n0YUd+Syb5zArtuVpifCr88nUQOqn67BS/N FgtD4sMmgnzc472c7a+uboSehGsa4jVzWhhBCaXlvynEaYXNX8Z0ESmrZLUQm0Dy 4/+aRnnih5oa6X8Us2939uYZy+MxxU8rvd053IVDXb2D+L82s03Ien8fMhfw4nLz 2X8FJIUFTqBmyb8Sc+A1V0RQI3ullhjZztFoIJM5WYBe3JsFvDD9acaB1j1X9dtV AHuOcMf1Y4ieKp5O8f5AvwWv0/JUeDRYZqeqMdBdaACQUm+Fj4gnEfBvgIHMcb81 6Qp5aOcBIJKWKk0WmLHU6dil6vPYhhw= -----END CERTIFICATE-----Generated at Sat Dec 6 17:55:13 2025 by rpki-client