This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB7E9/E0C461306E2E11EE85D92D32C4F9AE02/y4244fF7x3I0bdn_uyByz6j9plI.mft File: y4244fF7x3I0bdn_uyByz6j9plI.mft (raw, json) Hash identifier: tAtG7GhqIyRMfkuklhpfCq0TKRAZEzKEfTkXC88eoaw= Subject key identifier: 41:A6:42:B8:00:3A:0D:CA:4F:68:37:36:CF:8E:AD:57:33:8C:CD:82 Authority key identifier: CB:8D:B8:E1:F1:7B:C7:72:34:6D:D9:FF:BB:20:72:CF:A8:FD:A6:52 Certificate issuer: /CN=A91DB7E9/serialNumber=CB8DB8E1F17BC772346DD9FFBB2072CFA8FDA652 Certificate serial: 0191 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y4244fF7x3I0bdn_uyByz6j9plI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB7E9/E0C461306E2E11EE85D92D32C4F9AE02/y4244fF7x3I0bdn_uyByz6j9plI.mft Manifest number: 0191 Signing time: Fri 05 Dec 2025 01:43:50 +0000 Manifest this update: Fri 05 Dec 2025 01:43:49 +0000 Manifest next update: Fri 12 Dec 2025 01:43:49 +0000 Files and hashes: 1: y4244fF7x3I0bdn_uyByz6j9plI.crl (hash: 9/CeuSltrK1tZSw/NxelWqb5VhGiUdZXPUnDIp43g5Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB7E9/E0C461306E2E11EE85D92D32C4F9AE02/y4244fF7x3I0bdn_uyByz6j9plI.crl rsync://rpki.apnic.net/member_repository/A91DB7E9/E0C461306E2E11EE85D92D32C4F9AE02/y4244fF7x3I0bdn_uyByz6j9plI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y4244fF7x3I0bdn_uyByz6j9plI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 01:43:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 401 (0x191) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB7E9, serialNumber=CB8DB8E1F17BC772346DD9FFBB2072CFA8FDA652 Validity Not Before: Dec 5 01:43:49 2025 GMT Not After : Dec 12 01:43:49 2025 GMT Subject: CN=693238d6-83e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:19:21:34:42:d3:ff:ef:ee:c7:d6:16:9c:af: 59:3d:29:34:f5:ba:8b:77:f4:91:39:09:b7:ce:63: 3f:da:82:38:34:6f:d9:bb:c1:f5:c3:71:f7:08:06: 03:23:71:08:59:df:53:03:66:44:31:7d:6d:94:3c: 90:8f:46:5b:6e:bd:ed:a6:cf:65:b5:ad:74:1d:0a: cc:c3:b5:71:57:a0:30:d7:e8:82:c7:7a:0c:09:35: 1b:0a:9e:36:7f:c5:83:e2:03:06:8e:6e:a7:d8:5c: be:7d:e8:52:11:05:f3:1e:ec:d1:f6:7c:24:07:95: f7:96:24:cd:3f:6d:99:cb:8b:29:0f:85:6f:21:e7: 22:99:cc:36:ea:81:bf:96:d7:6f:72:47:d5:e9:25: b9:13:cb:95:6d:49:fa:b1:73:54:e5:a4:0c:5b:e2: 8a:d6:d7:96:cd:15:95:ee:2c:48:f7:99:94:e6:09: 94:7c:50:c9:87:19:ce:09:d3:f9:50:50:45:14:61: 4e:ef:79:b8:88:e6:c3:55:81:d6:19:80:f7:08:84: 4f:b3:9f:62:29:cb:44:65:89:17:93:ee:be:ea:a7: 15:07:4d:ae:e5:f2:64:26:29:51:de:97:be:99:53: 2f:48:8e:df:1b:0b:ec:01:38:3c:e3:d9:7d:2a:9c: 1d:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:A6:42:B8:00:3A:0D:CA:4F:68:37:36:CF:8E:AD:57:33:8C:CD:82 X509v3 Authority Key Identifier: keyid:CB:8D:B8:E1:F1:7B:C7:72:34:6D:D9:FF:BB:20:72:CF:A8:FD:A6:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB7E9/E0C461306E2E11EE85D92D32C4F9AE02/y4244fF7x3I0bdn_uyByz6j9plI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y4244fF7x3I0bdn_uyByz6j9plI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB7E9/E0C461306E2E11EE85D92D32C4F9AE02/y4244fF7x3I0bdn_uyByz6j9plI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:4c:14:fa:96:1f:66:0a:e8:84:e7:82:3c:ae:2b:ff:6d:90: 17:21:64:ed:43:44:6e:ab:fd:02:27:e0:62:21:b5:a3:72:2a: 56:ae:0b:60:f4:f6:25:1e:72:6c:82:05:f8:3e:ec:54:1d:4e: 3b:20:f2:42:2b:5d:2b:17:27:f0:20:97:69:12:17:ef:b1:f3: fb:c7:6c:f2:04:ac:91:12:30:90:0c:93:e2:33:3e:aa:6e:87: fd:a1:94:33:ff:73:d5:74:92:64:97:e4:45:8f:10:e2:dd:ed: 6d:d7:39:2c:29:f9:a1:12:15:66:f2:19:ac:8d:cf:02:53:71: 53:ac:f4:b1:f0:a6:28:e6:b9:3f:33:bc:d9:eb:19:36:70:b8: 1c:e4:41:4a:33:d7:d7:37:83:ae:6b:85:64:9e:19:a6:1d:12: 25:80:33:59:2d:7f:0a:d2:6b:38:88:7b:27:88:83:c3:28:a2: 64:51:30:b9:d0:01:45:eb:43:aa:28:5a:31:04:65:c1:25:c2: ef:d4:e5:0b:3b:86:95:3e:69:e3:2a:83:d8:d7:22:5e:d2:19: 37:6f:43:da:a2:60:a0:e9:5d:c2:a9:d8:89:63:70:a2:d4:10: d3:76:ce:e5:8e:f7:e8:1d:ac:a2:f9:2d:4d:72:ec:d7:ef:94: 5c:f2:99:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REI3RTkxMTAvBgNVBAUTKENCOERCOEUxRjE3QkM3NzIzNDZERDlGRkJCMjA3MkNG QThGREE2NTIwHhcNMjUxMjA1MDE0MzQ5WhcNMjUxMjEyMDE0MzQ5WjAYMRYwFAYD VQQDEw02OTMyMzhkNi04M2UxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuRkhNELT/+/ux9YWnK9ZPSk09bqLd/SROQm3zmM/2oI4NG/Zu8H1w3H3CAYD I3EIWd9TA2ZEMX1tlDyQj0Zbbr3tps9lta10HQrMw7VxV6Aw1+iCx3oMCTUbCp42 f8WD4gMGjm6n2Fy+fehSEQXzHuzR9nwkB5X3liTNP22Zy4spD4VvIecimcw26oG/ ltdvckfV6SW5E8uVbUn6sXNU5aQMW+KK1teWzRWV7ixI95mU5gmUfFDJhxnOCdP5 UFBFFGFO73m4iObDVYHWGYD3CIRPs59iKctEZYkXk+6+6qcVB02u5fJkJilR3pe+ mVMvSI7fGwvsATg849l9KpwdqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEGmQrgA Og3KT2g3Ns+OrVczjM2CMB8GA1UdIwQYMBaAFMuNuOHxe8dyNG3Z/7sgcs+o/aZS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjdFOS9FMEM0NjEzMDZF MkUxMUVFODVEOTJEMzJDNEY5QUUwMi95NDI0NGZGN3gzSTBiZG5fdXlCeXo2ajlw bEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3k0MjQ0ZkY3eDNJMGJkbl91eUJ5ejZqOXBsSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QjdFOS9FMEM0NjEzMDZFMkUxMUVFODVEOTJEMzJDNEY5QUUwMi95NDI0NGZGN3gz STBiZG5fdXlCeXo2ajlwbEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWTBT6lh9mCuiE54I8riv/bZAXIWTtQ0Ruq/0CJ+BiIbWjcipWrgtg 9PYlHnJsggX4PuxUHU47IPJCK10rFyfwIJdpEhfvsfP7x2zyBKyREjCQDJPiMz6q bof9oZQz/3PVdJJkl+RFjxDi3e1t1zksKfmhEhVm8hmsjc8CU3FTrPSx8KYo5rk/ M7zZ6xk2cLgc5EFKM9fXN4Oua4VknhmmHRIlgDNZLX8K0ms4iHsniIPDKKJkUTC5 0AFF60OqKFoxBGXBJcLv1OULO4aVPmnjKoPY1yJe0hk3b0PaomCg6V3CqdiJY3Ci 1BDTds7ljvfoHayi+S1NcuzX75Rc8pkB -----END CERTIFICATE-----Generated at Sun Dec 7 01:54:59 2025 by rpki-client