This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DBB66/0C0D80DE2FAC11F08CEA0A71C4F9AE02/4Y0K0YMT4gIg3qG4cW37310JzPg.mft File: 4Y0K0YMT4gIg3qG4cW37310JzPg.mft (raw, json) Hash identifier: E5ntBxEUVB6Y+oXORnkb0i6AxBNTXD+ZP68fPwF16Xg= Subject key identifier: A2:64:D1:73:A7:F4:69:42:2E:4F:70:05:27:89:46:4F:F2:4E:DF:AE Authority key identifier: E1:8D:0A:D1:83:13:E2:02:20:DE:A1:B8:71:6D:FB:DF:5D:09:CC:F8 Certificate issuer: /CN=A91DBB66/serialNumber=E18D0AD18313E20220DEA1B8716DFBDF5D09CCF8 Certificate serial: 6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Y0K0YMT4gIg3qG4cW37310JzPg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DBB66/0C0D80DE2FAC11F08CEA0A71C4F9AE02/4Y0K0YMT4gIg3qG4cW37310JzPg.mft Manifest number: 6B Signing time: Fri 05 Dec 2025 04:50:25 +0000 Manifest this update: Fri 05 Dec 2025 04:50:24 +0000 Manifest next update: Fri 12 Dec 2025 04:50:24 +0000 Files and hashes: 1: 4Y0K0YMT4gIg3qG4cW37310JzPg.crl (hash: VBmHgIj+r0j7+hKP7zRuXr6kGQR1A9nhbmWK1NrXkVI=) 2: 099A56FE2FB311F09E3A9373C4F9AE02.roa (hash: c58CHJdQfloT8cjooayoSNCaLkxE9yxaVBgoB9VE0Hs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DBB66/0C0D80DE2FAC11F08CEA0A71C4F9AE02/4Y0K0YMT4gIg3qG4cW37310JzPg.crl rsync://rpki.apnic.net/member_repository/A91DBB66/0C0D80DE2FAC11F08CEA0A71C4F9AE02/4Y0K0YMT4gIg3qG4cW37310JzPg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Y0K0YMT4gIg3qG4cW37310JzPg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:50:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 109 (0x6d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DBB66, serialNumber=E18D0AD18313E20220DEA1B8716DFBDF5D09CCF8 Validity Not Before: Dec 5 04:50:24 2025 GMT Not After : Dec 12 04:50:24 2025 GMT Subject: CN=69326491-813e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:4b:1b:03:ec:81:39:e8:0f:b4:5c:5d:19:ed: 50:44:c4:12:1d:e4:c5:03:0e:81:4f:ed:29:08:49: 86:6a:55:ec:a0:e4:a8:a0:5b:25:6b:a6:e8:64:25: 0a:e8:de:47:9e:0e:b4:c6:a6:6c:71:01:7a:37:cf: da:35:52:f9:a0:7b:fc:71:8e:2b:3a:be:fc:e2:80: c0:ea:35:19:9e:8a:20:6c:79:8b:67:3a:d1:b3:57: fe:ab:f2:16:5c:46:c8:28:14:1f:60:bb:c2:ff:a6: 0c:86:90:2f:65:1a:39:01:8e:b5:74:53:bd:d7:e8: d2:d1:2b:80:59:36:7d:79:bc:b6:11:81:b3:90:37: 84:eb:13:e9:83:a2:7a:b5:f2:32:87:59:a9:82:af: 26:8d:bc:c3:6c:a1:13:60:2d:ec:eb:c9:4d:aa:40: 4a:e6:fb:25:3f:69:e4:80:81:86:7d:32:77:2c:a1: 08:74:54:83:cc:7d:64:c0:78:13:d0:41:63:78:34: 0c:5b:28:57:e2:62:9a:23:9e:be:27:e7:22:b4:87: 1b:cb:65:5a:4f:b7:8a:b4:57:06:32:3a:58:2b:a4: 5d:64:ae:ba:68:1f:a9:40:be:9f:3a:77:13:cb:79: cc:6d:58:8f:be:60:00:10:68:ef:1b:51:87:84:15: 70:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:64:D1:73:A7:F4:69:42:2E:4F:70:05:27:89:46:4F:F2:4E:DF:AE X509v3 Authority Key Identifier: keyid:E1:8D:0A:D1:83:13:E2:02:20:DE:A1:B8:71:6D:FB:DF:5D:09:CC:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DBB66/0C0D80DE2FAC11F08CEA0A71C4F9AE02/4Y0K0YMT4gIg3qG4cW37310JzPg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Y0K0YMT4gIg3qG4cW37310JzPg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DBB66/0C0D80DE2FAC11F08CEA0A71C4F9AE02/4Y0K0YMT4gIg3qG4cW37310JzPg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:70:86:11:5f:d5:0c:23:2c:58:46:96:e8:1a:a0:ab:5e:ac: 77:57:2a:76:12:4c:2b:81:18:f5:c9:b3:1a:44:83:27:30:61: ff:8b:5e:fa:d0:11:52:55:09:d8:e7:81:77:54:0d:3d:50:9a: 4f:73:7c:58:3d:ce:36:4d:87:3f:eb:e7:b9:5c:f2:bb:fa:56: 8d:4f:b2:6e:e7:af:a7:78:b3:31:0c:9b:b0:b2:81:f0:59:6e: 29:b6:e4:02:5f:40:d0:40:bc:74:a1:ce:4f:94:38:b3:dc:e2: e3:db:ec:23:f8:aa:59:d6:72:6a:b7:0a:d9:bf:57:3a:80:4b: 37:98:53:73:ee:57:cd:5d:5e:b4:f9:0e:68:e6:c0:a7:11:aa: 08:d2:a4:84:df:fb:a3:95:56:79:3a:7d:74:49:dc:6d:e1:43: a3:04:17:ee:c5:d2:68:cb:54:d6:28:ed:d6:58:89:9a:f5:3d: f1:48:e5:b7:02:12:29:58:57:7d:f8:04:45:15:a2:6f:2f:14: af:f5:5d:32:ea:06:6d:55:05:1b:1a:21:84:71:db:18:10:90: 1d:77:1f:60:3d:fd:37:9f:ab:17:d7:97:60:83:4b:05:be:de: fa:ca:58:d6:be:06:22:14:ee:8b:b6:b5:6b:63:aa:35:a4:7e: 30:32:87:63 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE QkI2NjExMC8GA1UEBRMoRTE4RDBBRDE4MzEzRTIwMjIwREVBMUI4NzE2REZCREY1 RDA5Q0NGODAeFw0yNTEyMDUwNDUwMjRaFw0yNTEyMTIwNDUwMjRaMBgxFjAUBgNV BAMTDTY5MzI2NDkxLTgxM2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCpSxsD7IE56A+0XF0Z7VBExBId5MUDDoFP7SkISYZqVeyg5KigWyVrpuhkJQro 3keeDrTGpmxxAXo3z9o1Uvmge/xxjis6vvzigMDqNRmeiiBseYtnOtGzV/6r8hZc RsgoFB9gu8L/pgyGkC9lGjkBjrV0U73X6NLRK4BZNn15vLYRgbOQN4TrE+mDonq1 8jKHWamCryaNvMNsoRNgLezryU2qQErm+yU/aeSAgYZ9MncsoQh0VIPMfWTAeBPQ QWN4NAxbKFfiYpojnr4n5yK0hxvLZVpPt4q0VwYyOlgrpF1krrpoH6lAvp86dxPL ecxtWI++YAAQaO8bUYeEFXCbAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUomTRc6f0 aUIuT3AFJ4lGT/JO364wHwYDVR0jBBgwFoAU4Y0K0YMT4gIg3qG4cW37310JzPgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURCQjY2LzBDMEQ4MERFMkZB QzExRjA4Q0VBMEE3MUM0RjlBRTAyLzRZMEswWU1UNGdJZzNxRzRjVzM3MzEwSnpQ Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNFkwSzBZTVQ0Z0lnM3FHNGNXMzczMTBKelBnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURC QjY2LzBDMEQ4MERFMkZBQzExRjA4Q0VBMEE3MUM0RjlBRTAyLzRZMEswWU1UNGdJ ZzNxRzRjVzM3MzEwSnpQZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFJwhhFf1QwjLFhGlugaoKterHdXKnYSTCuBGPXJsxpEgycwYf+LXvrQ EVJVCdjngXdUDT1Qmk9zfFg9zjZNhz/r57lc8rv6Vo1Psm7nr6d4szEMm7CygfBZ bim25AJfQNBAvHShzk+UOLPc4uPb7CP4qlnWcmq3Ctm/VzqASzeYU3PuV81dXrT5 DmjmwKcRqgjSpITf+6OVVnk6fXRJ3G3hQ6MEF+7F0mjLVNYo7dZYiZr1PfFI5bcC EilYV334BEUVom8vFK/1XTLqBm1VBRsaIYRx2xgQkB13H2A9/TefqxfXl2CDSwW+ 3vrKWNa+BiIU7ou2tWtjqjWkfjAyh2M= -----END CERTIFICATE-----Generated at Sat Dec 6 19:16:53 2025 by rpki-client