This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.mft File: y8ZgM3D76EzM4GToT08m7b7CZ7E.mft (raw, json) Hash identifier: L0a33DNG7pD7w1nNkut5todjzoliwUdETHuRUxHnKuc= Subject key identifier: 78:07:90:53:A4:BB:54:43:3B:97:C2:C1:8C:69:38:33:BC:AC:86:86 Authority key identifier: CB:C6:60:33:70:FB:E8:4C:CC:E0:64:E8:4F:4F:26:ED:BE:C2:67:B1 Certificate issuer: /CN=A91D9CA8/serialNumber=CBC6603370FBE84CCCE064E84F4F26EDBEC267B1 Certificate serial: B2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y8ZgM3D76EzM4GToT08m7b7CZ7E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.mft Manifest number: A7 Signing time: Fri 05 Dec 2025 04:20:43 +0000 Manifest this update: Fri 05 Dec 2025 04:20:42 +0000 Manifest next update: Fri 12 Dec 2025 04:20:42 +0000 Files and hashes: 1: y8ZgM3D76EzM4GToT08m7b7CZ7E.crl (hash: GQT+wRsGfl/7jaCTSvAHtAYy+GO2cZTl0FdGdffONXs=) 2: 459A40A0399111F0B589186BC4F9AE02.roa (hash: m6LxhqSKzKitfbLvhayOz3v+ioNxwddzbxWryqPlX6o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.crl rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y8ZgM3D76EzM4GToT08m7b7CZ7E.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:20:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 178 (0xb2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9CA8, serialNumber=CBC6603370FBE84CCCE064E84F4F26EDBEC267B1 Validity Not Before: Dec 5 04:20:42 2025 GMT Not After : Dec 12 04:20:42 2025 GMT Subject: CN=69325d9a-f65e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:f8:e2:29:00:fc:60:9f:79:53:2f:11:15:6d: a5:06:c4:70:f1:70:41:64:25:fd:c0:4b:ae:d1:fc: 16:5d:a9:17:27:61:c6:8b:8a:09:72:ec:23:7c:5e: 1b:6a:c9:e2:5e:02:66:92:24:8a:c0:e0:9b:9f:90: be:32:80:06:6d:1a:4a:c4:ec:2c:91:37:fb:50:15: 8f:d1:a9:f8:f6:bf:38:e7:37:28:62:b6:de:5a:7f: d3:99:29:cd:81:ac:63:98:f9:31:15:67:78:e6:42: 28:c6:33:ca:d2:75:dc:db:9a:fe:85:a8:3e:6e:0f: fa:90:24:74:0b:f5:39:77:3a:08:d6:17:95:0f:f3: fe:47:d7:ff:8a:eb:05:1c:c7:7c:51:4a:d1:a9:5c: dd:9a:51:02:98:81:65:ed:1f:3d:a4:94:ce:6d:40: 35:cd:36:63:e5:49:0c:69:64:e7:60:8e:5f:cd:68: f6:10:ad:b1:e4:5e:d3:e6:e8:49:39:8c:28:67:9f: 64:ae:59:46:21:64:04:ba:20:25:65:f0:1a:f1:a5: cc:0d:42:22:50:4e:ec:fe:21:82:1e:bf:25:ed:fa: 74:2b:b0:93:a1:46:d4:13:f0:a3:fe:8d:64:78:58: df:1a:37:d6:b2:bf:f0:36:01:54:1e:d2:c3:59:4a: 93:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:07:90:53:A4:BB:54:43:3B:97:C2:C1:8C:69:38:33:BC:AC:86:86 X509v3 Authority Key Identifier: keyid:CB:C6:60:33:70:FB:E8:4C:CC:E0:64:E8:4F:4F:26:ED:BE:C2:67:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y8ZgM3D76EzM4GToT08m7b7CZ7E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:a7:cd:b1:0c:76:ad:5e:bc:a4:70:1c:8e:20:01:95:25:50: 50:43:ea:ae:cc:2e:02:d5:54:88:95:b2:8d:a6:a4:fb:17:f2: 4b:da:9a:3c:d2:24:bb:b2:37:8f:2d:51:5b:28:42:78:69:bc: 1d:ac:2c:e5:55:c5:69:d4:ef:03:87:09:65:cd:a1:5e:f3:42: 74:86:8d:af:ee:ba:79:94:95:65:31:db:59:0d:bb:27:01:a7: 7a:2b:53:fe:da:4d:b4:ab:b6:b7:57:9d:53:cd:2b:5b:00:0b: 32:09:e2:78:8c:f4:ed:7d:f5:62:5e:e6:17:36:82:a7:c7:aa: 66:c1:54:a9:07:9f:9b:b4:24:c1:f0:f5:5c:a2:c9:aa:da:88: d7:ec:99:22:3a:98:6f:17:64:b6:72:c9:35:d4:2a:a1:fb:52: 89:f4:73:25:64:92:78:36:56:a3:4f:34:fe:a0:2c:34:fa:e4: b5:c9:1f:0c:de:91:fe:57:0c:c1:17:cd:a3:06:ab:c7:4c:85: 43:5e:87:d2:ef:b6:d0:4b:4a:4f:b2:aa:9c:53:66:a4:0d:a7: d0:98:9c:5d:d3:ec:78:6a:91:fd:1b:b6:bc:b9:61:2b:96:8c: ca:4e:25:5f:5c:a8:2c:e6:90:ea:38:e6:82:98:10:eb:d1:db: ab:a2:9c:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDlDQTgxMTAvBgNVBAUTKENCQzY2MDMzNzBGQkU4NENDQ0UwNjRFODRGNEYyNkVE QkVDMjY3QjEwHhcNMjUxMjA1MDQyMDQyWhcNMjUxMjEyMDQyMDQyWjAYMRYwFAYD VQQDEw02OTMyNWQ5YS1mNjVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArvjiKQD8YJ95Uy8RFW2lBsRw8XBBZCX9wEuu0fwWXakXJ2HGi4oJcuwjfF4b asniXgJmkiSKwOCbn5C+MoAGbRpKxOwskTf7UBWP0an49r845zcoYrbeWn/TmSnN gaxjmPkxFWd45kIoxjPK0nXc25r+hag+bg/6kCR0C/U5dzoI1heVD/P+R9f/iusF HMd8UUrRqVzdmlECmIFl7R89pJTObUA1zTZj5UkMaWTnYI5fzWj2EK2x5F7T5uhJ OYwoZ59krllGIWQEuiAlZfAa8aXMDUIiUE7s/iGCHr8l7fp0K7CToUbUE/Cj/o1k eFjfGjfWsr/wNgFUHtLDWUqTlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHgHkFOk u1RDO5fCwYxpODO8rIaGMB8GA1UdIwQYMBaAFMvGYDNw++hMzOBk6E9PJu2+wmex MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOUNBOC8yMERBMjc0NkU0 RkQxMUVGQUMxQ0U2N0ZDNEY5QUUwMi95OFpnTTNENzZFek00R1RvVDA4bTdiN0Na N0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3k4WmdNM0Q3NkV6TTRHVG9UMDhtN2I3Q1o3RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OUNBOC8yMERBMjc0NkU0RkQxMUVGQUMxQ0U2N0ZDNEY5QUUwMi95OFpnTTNENzZF ek00R1RvVDA4bTdiN0NaN0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRp82xDHatXrykcByOIAGVJVBQQ+quzC4C1VSIlbKNpqT7F/JL2po8 0iS7sjePLVFbKEJ4abwdrCzlVcVp1O8DhwllzaFe80J0ho2v7rp5lJVlMdtZDbsn Aad6K1P+2k20q7a3V51TzStbAAsyCeJ4jPTtffViXuYXNoKnx6pmwVSpB5+btCTB 8PVcosmq2ojX7JkiOphvF2S2csk11Cqh+1KJ9HMlZJJ4NlajTzT+oCw0+uS1yR8M 3pH+VwzBF82jBqvHTIVDXofS77bQS0pPsqqcU2akDafQmJxd0+x4apH9G7a8uWEr lozKTiVfXKgs5pDqOOaCmBDr0duropwN -----END CERTIFICATE-----Generated at Sat Dec 6 12:19:55 2025 by rpki-client