This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5A49/F9131DA658A611EDA2BB2060C4F9AE02/utY-wFoDGPl_MVby4gWcYZPOOAo.mft File: utY-wFoDGPl_MVby4gWcYZPOOAo.mft (raw, json) Hash identifier: 4y0Kg94JR0rUR9jjjYejlB21IaWCw23TjhXzlmD0ltA= Subject key identifier: 8D:C5:13:55:B9:21:32:D1:24:D3:0C:F1:D8:0C:D6:2D:BC:FF:00:B5 Authority key identifier: BA:D6:3E:C0:5A:03:18:F9:7F:31:56:F2:E2:05:9C:61:93:CE:38:0A Certificate issuer: /CN=A91D5A49/serialNumber=BAD63EC05A0318F97F3156F2E2059C6193CE380A Certificate serial: 0240 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/utY-wFoDGPl_MVby4gWcYZPOOAo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5A49/F9131DA658A611EDA2BB2060C4F9AE02/utY-wFoDGPl_MVby4gWcYZPOOAo.mft Manifest number: 0240 Signing time: Fri 05 Dec 2025 00:08:41 +0000 Manifest this update: Fri 05 Dec 2025 00:08:40 +0000 Manifest next update: Fri 12 Dec 2025 00:08:40 +0000 Files and hashes: 1: utY-wFoDGPl_MVby4gWcYZPOOAo.crl (hash: PWQ769gpNxH67rYkExzB/Bu76JJ0SgH1LtEhSdoRZG0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5A49/F9131DA658A611EDA2BB2060C4F9AE02/utY-wFoDGPl_MVby4gWcYZPOOAo.crl rsync://rpki.apnic.net/member_repository/A91D5A49/F9131DA658A611EDA2BB2060C4F9AE02/utY-wFoDGPl_MVby4gWcYZPOOAo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/utY-wFoDGPl_MVby4gWcYZPOOAo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 00:08:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 576 (0x240) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5A49, serialNumber=BAD63EC05A0318F97F3156F2E2059C6193CE380A Validity Not Before: Dec 5 00:08:40 2025 GMT Not After : Dec 12 00:08:40 2025 GMT Subject: CN=69322289-a030 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:1f:f9:2b:f7:24:1c:b4:da:e2:5c:b4:cd:26: 89:05:b7:91:ee:14:4d:59:2e:26:ce:cb:89:07:75: 42:5f:e9:e2:30:e1:65:f2:d1:72:57:75:f2:33:b4: 09:09:96:de:7a:df:a5:65:75:11:ea:fe:f9:6c:26: c3:cc:4b:19:7c:57:be:7e:96:f6:37:e8:15:d4:66: 8a:17:51:cf:db:96:d5:ff:72:eb:10:14:53:ef:9b: a0:c7:a8:42:dc:4a:ba:87:c5:f5:6d:4d:48:d7:5b: c1:74:56:75:3c:47:37:f3:8d:5c:87:8c:7b:0f:08: 27:a9:67:c0:b9:58:8d:5c:df:27:a6:fb:9a:be:e8: a0:ad:a7:d3:9a:cb:d7:3b:45:c8:ca:5f:56:96:b4: ee:90:4e:d8:41:6a:52:c4:53:3f:64:a6:98:17:f6: bd:57:28:bf:59:38:74:c2:39:63:4c:2e:c3:b0:59: 5d:7b:1d:1d:7b:dc:2a:07:67:90:ea:07:00:a6:aa: 28:a8:cd:6f:f7:37:63:b2:0e:96:58:66:8f:33:0e: 6f:29:0c:d3:58:97:5c:d3:b9:b7:a5:19:60:ed:94: b1:85:b6:e3:f5:ba:d2:32:49:41:c1:77:ee:a2:00: cc:47:23:20:6a:53:6c:f2:a5:bc:43:52:3c:af:5a: 08:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:C5:13:55:B9:21:32:D1:24:D3:0C:F1:D8:0C:D6:2D:BC:FF:00:B5 X509v3 Authority Key Identifier: keyid:BA:D6:3E:C0:5A:03:18:F9:7F:31:56:F2:E2:05:9C:61:93:CE:38:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5A49/F9131DA658A611EDA2BB2060C4F9AE02/utY-wFoDGPl_MVby4gWcYZPOOAo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/utY-wFoDGPl_MVby4gWcYZPOOAo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5A49/F9131DA658A611EDA2BB2060C4F9AE02/utY-wFoDGPl_MVby4gWcYZPOOAo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:6b:db:64:bb:a5:e3:6f:0f:a5:e3:03:77:40:49:d1:d6:e0: c7:4c:88:a8:e8:91:67:f5:20:ce:75:bd:96:59:67:e7:a8:74: 2e:fd:41:e4:c9:63:69:2c:53:19:76:4d:d8:a8:cc:92:06:73: 35:14:66:93:ea:dd:f5:c3:30:12:3e:81:e3:93:50:cc:6f:bb: fc:87:ea:3f:5e:4f:7d:85:18:d1:59:20:7d:25:dc:ec:43:7a: 9a:9b:70:c3:17:bd:76:35:0b:3f:cf:45:76:bd:9e:c0:d2:3d: bf:12:36:9e:b2:77:70:45:cd:91:ac:da:42:1d:bd:07:3c:52: dc:7c:6c:3c:21:2e:bb:3a:43:84:92:38:c6:e7:74:42:5d:ca: 53:b2:cd:86:aa:96:44:e0:7c:1f:86:7b:dd:7c:10:21:38:03: a2:72:ee:9a:60:2f:4e:4c:9b:d4:4e:62:9d:bb:8c:83:12:bd: a2:3e:ab:6d:42:a2:35:be:20:2f:2b:ad:5c:4c:f3:16:af:f6: 76:25:66:65:33:6a:9d:24:2a:1d:5d:1b:ad:77:b6:69:15:b4: 0d:f0:1a:0d:36:69:4f:81:00:24:97:b9:11:cc:07:b2:70:92: 32:6c:7b:da:ec:1f:d9:20:1d:41:a3:34:0c:c8:9b:ed:29:76: a2:f1:1b:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDVBNDkxMTAvBgNVBAUTKEJBRDYzRUMwNUEwMzE4Rjk3RjMxNTZGMkUyMDU5QzYx OTNDRTM4MEEwHhcNMjUxMjA1MDAwODQwWhcNMjUxMjEyMDAwODQwWjAYMRYwFAYD VQQDEw02OTMyMjI4OS1hMDMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyh/5K/ckHLTa4ly0zSaJBbeR7hRNWS4mzsuJB3VCX+niMOFl8tFyV3XyM7QJ CZbeet+lZXUR6v75bCbDzEsZfFe+fpb2N+gV1GaKF1HP25bV/3LrEBRT75ugx6hC 3Eq6h8X1bU1I11vBdFZ1PEc3841ch4x7DwgnqWfAuViNXN8npvuavuigrafTmsvX O0XIyl9WlrTukE7YQWpSxFM/ZKaYF/a9Vyi/WTh0wjljTC7DsFldex0de9wqB2eQ 6gcApqooqM1v9zdjsg6WWGaPMw5vKQzTWJdc07m3pRlg7ZSxhbbj9brSMklBwXfu ogDMRyMgalNs8qW8Q1I8r1oIDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI3FE1W5 ITLRJNMM8dgM1i28/wC1MB8GA1UdIwQYMBaAFLrWPsBaAxj5fzFW8uIFnGGTzjgK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENUE0OS9GOTEzMURBNjU4 QTYxMUVEQTJCQjIwNjBDNEY5QUUwMi91dFktd0ZvREdQbF9NVmJ5NGdXY1laUE9P QW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3V0WS13Rm9ER1BsX01WYnk0Z1djWVpQT09Bby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NUE0OS9GOTEzMURBNjU4QTYxMUVEQTJCQjIwNjBDNEY5QUUwMi91dFktd0ZvREdQ bF9NVmJ5NGdXY1laUE9PQW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4a9tku6Xjbw+l4wN3QEnR1uDHTIio6JFn9SDOdb2WWWfnqHQu/UHk yWNpLFMZdk3YqMySBnM1FGaT6t31wzASPoHjk1DMb7v8h+o/Xk99hRjRWSB9Jdzs Q3qam3DDF712NQs/z0V2vZ7A0j2/EjaesndwRc2RrNpCHb0HPFLcfGw8IS67OkOE kjjG53RCXcpTss2GqpZE4HwfhnvdfBAhOAOicu6aYC9OTJvUTmKdu4yDEr2iPqtt QqI1viAvK61cTPMWr/Z2JWZlM2qdJCodXRutd7ZpFbQN8BoNNmlPgQAkl7kRzAey cJIybHva7B/ZIB1BozQMyJvtKXai8RtJ -----END CERTIFICATE-----Generated at Sat Dec 6 17:28:17 2025 by rpki-client