This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.mft File: y_Kp2oisCPjVEG3svXLW-gnIGOk.mft (raw, json) Hash identifier: Mu3kFCzIonuhVxI7h+nWTNe1Qj+osqxQgMHsWR6i+SQ= Subject key identifier: 80:FE:7E:0C:8A:6A:B5:4C:8A:04:23:EA:8A:B4:57:F9:AA:B6:E2:46 Authority key identifier: CB:F2:A9:DA:88:AC:08:F8:D5:10:6D:EC:BD:72:D6:FA:09:C8:18:E9 Certificate issuer: /CN=A91D5C25/serialNumber=CBF2A9DA88AC08F8D5106DECBD72D6FA09C818E9 Certificate serial: 0F83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y_Kp2oisCPjVEG3svXLW-gnIGOk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.mft Manifest number: 0F7A Signing time: Sat 06 Dec 2025 17:01:45 +0000 Manifest this update: Sat 06 Dec 2025 17:01:44 +0000 Manifest next update: Sat 13 Dec 2025 17:01:44 +0000 Files and hashes: 1: y_Kp2oisCPjVEG3svXLW-gnIGOk.crl (hash: MuUdJQLX4jTEdSuvZsr8dP2vdk5rTDXf0i0+Luia9dI=) 2: 4ECF0A4C765C11E9A01A6E34C4F9AE02.roa (hash: pLwEgd+VwWLgIg3V6a+yYMrZGmHsHcB345LFbQql9+8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.crl rsync://rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y_Kp2oisCPjVEG3svXLW-gnIGOk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 17:01:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3971 (0xf83) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5C25, serialNumber=CBF2A9DA88AC08F8D5106DECBD72D6FA09C818E9 Validity Not Before: Dec 6 17:01:44 2025 GMT Not After : Dec 13 17:01:44 2025 GMT Subject: CN=69346179-79d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:8b:b7:51:da:76:21:45:85:b4:e5:eb:3e:30: 97:5c:af:52:8b:97:59:d3:5e:57:a6:b4:93:43:ca: 7c:3a:ab:81:fb:a5:d0:ed:10:08:26:81:de:02:7d: 68:75:5a:ac:57:cb:b0:de:6f:90:66:4a:9c:f1:a2: 44:1e:a4:fa:92:d7:45:8f:30:43:b1:36:a7:51:51: 23:95:4a:3f:c1:d3:19:40:16:2a:31:44:47:36:16: fc:50:87:9f:75:cc:c8:a8:7c:53:ec:81:f0:21:2f: d7:67:1e:ed:9d:01:87:44:92:54:9d:d2:ff:ef:a8: 22:c7:e4:77:ef:38:00:b9:12:97:ca:17:3f:b6:43: dd:2d:03:d9:b8:68:0f:c8:49:90:ba:b0:23:31:11: 4e:58:7f:d4:50:3c:16:ba:88:73:84:67:df:ce:1c: 89:0e:a8:01:6b:bf:c4:03:db:14:de:84:47:ae:f4: 2f:27:98:2d:f4:d2:d1:17:0a:5a:82:46:37:ab:8e: fe:f0:2e:2d:8f:d3:3b:5c:db:0a:a4:1d:47:06:f7: c5:33:ca:95:ef:ce:bc:3a:85:0b:47:ef:f0:cc:5a: 24:55:1c:d2:27:14:bf:c9:19:7c:8e:b7:c1:4b:d8: 9e:13:c0:57:60:4b:2f:bf:26:43:61:65:5d:3d:a4: 58:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:FE:7E:0C:8A:6A:B5:4C:8A:04:23:EA:8A:B4:57:F9:AA:B6:E2:46 X509v3 Authority Key Identifier: keyid:CB:F2:A9:DA:88:AC:08:F8:D5:10:6D:EC:BD:72:D6:FA:09:C8:18:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y_Kp2oisCPjVEG3svXLW-gnIGOk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:b9:d0:cb:bb:53:b7:0d:7c:d7:6e:fb:18:03:a5:9d:37:05: c2:7e:13:3c:bc:16:78:38:79:19:36:e4:d8:e6:d9:06:e5:ac: 3b:ae:74:83:dd:f9:9c:c4:20:55:55:b3:a2:70:ae:6d:fc:d4: ff:e7:b6:83:d6:3b:5b:1e:35:8f:f1:fb:82:25:62:21:30:ef: dd:4a:09:63:c8:3b:12:30:e7:ad:1b:e7:ae:60:b1:4f:79:eb: 6c:04:39:f7:1d:f1:bd:a5:3d:65:20:0c:c8:e4:33:c6:fb:73: 7b:6e:ee:a5:86:93:5e:9d:30:6e:d7:91:88:1d:86:da:d6:4d: 43:6e:9d:c3:b5:fa:1b:8a:47:c8:e9:61:83:b2:e8:8d:9d:e1: 54:29:b1:58:a3:d1:2e:a5:8d:d0:8a:c5:1a:10:9e:76:e9:db: b1:52:4d:70:4f:c7:aa:fa:d7:ad:3a:de:ba:8b:99:f1:ed:2e: f9:3e:b9:a2:60:e5:08:0a:ef:f9:7e:43:3d:c4:6a:db:8c:6e: 2f:4a:1d:94:7a:8d:38:ca:9c:78:c5:17:2d:fa:3a:80:e7:11: 60:9e:a3:75:d3:0c:52:eb:8b:ba:ce:cc:2e:b8:b3:e6:58:fb: fa:34:a0:a1:93:fe:9f:ad:bd:32:d0:0b:e5:bb:76:aa:10:e3: df:c6:54:68 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD4MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDVDMjUxMTAvBgNVBAUTKENCRjJBOURBODhBQzA4RjhENTEwNkRFQ0JENzJENkZB MDlDODE4RTkwHhcNMjUxMjA2MTcwMTQ0WhcNMjUxMjEzMTcwMTQ0WjAYMRYwFAYD VQQDEw02OTM0NjE3OS03OWQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9ou3Udp2IUWFtOXrPjCXXK9Si5dZ015XprSTQ8p8OquB+6XQ7RAIJoHeAn1o dVqsV8uw3m+QZkqc8aJEHqT6ktdFjzBDsTanUVEjlUo/wdMZQBYqMURHNhb8UIef dczIqHxT7IHwIS/XZx7tnQGHRJJUndL/76gix+R37zgAuRKXyhc/tkPdLQPZuGgP yEmQurAjMRFOWH/UUDwWuohzhGffzhyJDqgBa7/EA9sU3oRHrvQvJ5gt9NLRFwpa gkY3q47+8C4tj9M7XNsKpB1HBvfFM8qV7868OoULR+/wzFokVRzSJxS/yRl8jrfB S9ieE8BXYEsvvyZDYWVdPaRYmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFID+fgyK arVMigQj6oq0V/mqtuJGMB8GA1UdIwQYMBaAFMvyqdqIrAj41RBt7L1y1voJyBjp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENUMyNS82ODdBMTBBNjc2 NUExMUU5OUQwMUU0MkVDNEY5QUUwMi95X0twMm9pc0NQalZFRzNzdlhMVy1nbklH T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lfS3Ayb2lzQ1BqVkVHM3N2WExXLWduSUdPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NUMyNS82ODdBMTBBNjc2NUExMUU5OUQwMUU0MkVDNEY5QUUwMi95X0twMm9pc0NQ alZFRzNzdlhMVy1nbklHT2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6udDLu1O3DXzXbvsYA6WdNwXCfhM8vBZ4OHkZNuTY5tkG5aw7rnSD 3fmcxCBVVbOicK5t/NT/57aD1jtbHjWP8fuCJWIhMO/dSgljyDsSMOetG+euYLFP eetsBDn3HfG9pT1lIAzI5DPG+3N7bu6lhpNenTBu15GIHYba1k1Dbp3DtfobikfI 6WGDsuiNneFUKbFYo9EupY3QisUaEJ526duxUk1wT8eq+tetOt66i5nx7S75Prmi YOUICu/5fkM9xGrbjG4vSh2Ueo04ypx4xRct+jqA5xFgnqN10wxS64u6zswuuLPm WPv6NKChk/6frb0y0Avlu3aqEOPfxlRo -----END CERTIFICATE-----Generated at Sun Dec 7 02:57:14 2025 by rpki-client