This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E28D8/6B24BCC21ABF11EDB5B4CC4CC4F9AE02/lY1wluouaxa8JKHQRXGdLsUUSX4.mft File: lY1wluouaxa8JKHQRXGdLsUUSX4.mft (raw, json) Hash identifier: VnJbfoQsM5YxJtTsnaGBXsm6fv2Uk+MFYd/j3lE8Vgw= Subject key identifier: 41:2B:7B:7E:A6:1D:4C:A8:38:05:94:6B:08:2F:09:95:07:42:8F:07 Authority key identifier: 95:8D:70:96:EA:2E:6B:16:BC:24:A1:D0:45:71:9D:2E:C5:14:49:7E Certificate issuer: /CN=A91E28D8/serialNumber=958D7096EA2E6B16BC24A1D045719D2EC514497E Certificate serial: 02B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lY1wluouaxa8JKHQRXGdLsUUSX4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E28D8/6B24BCC21ABF11EDB5B4CC4CC4F9AE02/lY1wluouaxa8JKHQRXGdLsUUSX4.mft Manifest number: 02B5 Signing time: Thu 04 Dec 2025 23:49:39 +0000 Manifest this update: Thu 04 Dec 2025 23:49:38 +0000 Manifest next update: Thu 11 Dec 2025 23:49:38 +0000 Files and hashes: 1: lY1wluouaxa8JKHQRXGdLsUUSX4.crl (hash: h9aW7gJTqjS/MLQNx81BjW9WdHEDWufla/aB4gsV6vs=) 2: 01109D481B9011EDBC68484CC4F9AE02.roa (hash: SSzVNdfhJc5xjlACETmueaivBNOUX59PK+NBqYEOe30=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E28D8/6B24BCC21ABF11EDB5B4CC4CC4F9AE02/lY1wluouaxa8JKHQRXGdLsUUSX4.crl rsync://rpki.apnic.net/member_repository/A91E28D8/6B24BCC21ABF11EDB5B4CC4CC4F9AE02/lY1wluouaxa8JKHQRXGdLsUUSX4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lY1wluouaxa8JKHQRXGdLsUUSX4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 23:49:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 697 (0x2b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E28D8, serialNumber=958D7096EA2E6B16BC24A1D045719D2EC514497E Validity Not Before: Dec 4 23:49:38 2025 GMT Not After : Dec 11 23:49:38 2025 GMT Subject: CN=69321e13-6813 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:d8:03:a2:fa:1c:75:ba:a0:9e:e8:61:f7:ca: 1a:50:c6:92:28:78:88:59:42:72:d8:bd:cd:68:1b: de:1c:ed:20:84:f6:53:aa:77:54:f4:db:d7:00:90: f4:d6:e3:11:2e:dd:96:23:55:1c:98:9d:6a:e7:b4: 1c:6c:94:ed:40:8a:8d:cd:bb:cc:a6:5b:2c:7d:83: 66:ba:56:09:99:50:b2:18:27:d6:8d:b8:6d:80:16: 71:0b:6e:ba:cb:32:b9:34:ea:b1:97:cc:6b:f2:f7: 2e:19:6c:d1:6b:0a:b9:4e:cd:14:c5:47:6b:64:65: 1f:a6:27:34:b2:8f:b0:b4:5d:d7:ac:2d:0b:95:9b: 43:ab:9b:f2:b3:d8:09:a2:d8:57:28:ee:28:38:d9: f9:d9:88:f2:55:96:81:8f:c0:3d:de:23:12:e5:67: 6a:82:4c:f5:21:f8:8a:55:fd:e4:67:e3:20:a7:cc: c4:f7:3c:28:4a:02:d4:66:82:f2:a7:81:19:92:85: 92:e6:a6:a8:9f:12:b5:81:2c:84:5b:4c:4f:7f:5e: ec:3b:3a:7f:e8:5a:74:a9:d0:d3:6e:b0:6d:e6:fb: 68:45:5a:60:6c:68:d3:95:b6:f0:94:cc:d8:b8:49: 88:76:5f:9a:0f:09:c9:ad:34:2b:6d:c2:09:14:78: 84:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:2B:7B:7E:A6:1D:4C:A8:38:05:94:6B:08:2F:09:95:07:42:8F:07 X509v3 Authority Key Identifier: keyid:95:8D:70:96:EA:2E:6B:16:BC:24:A1:D0:45:71:9D:2E:C5:14:49:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E28D8/6B24BCC21ABF11EDB5B4CC4CC4F9AE02/lY1wluouaxa8JKHQRXGdLsUUSX4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lY1wluouaxa8JKHQRXGdLsUUSX4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E28D8/6B24BCC21ABF11EDB5B4CC4CC4F9AE02/lY1wluouaxa8JKHQRXGdLsUUSX4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:c9:b9:98:9e:a9:67:3d:b4:40:4c:55:d7:d9:30:b4:1f:66: c4:ac:89:e9:73:5a:3c:d4:72:3f:9d:9e:71:f5:76:7d:96:7d: b1:ba:33:b8:f9:2f:b1:70:5e:d9:ff:96:57:40:9a:95:cd:02: f5:dd:a7:08:87:59:42:1f:ff:21:c3:a7:12:13:a7:eb:b0:6e: 72:8d:67:05:32:f5:2e:bb:05:43:09:82:35:3d:bc:c1:d7:c3: e8:9a:97:28:6e:cc:e5:a0:d0:8d:d3:f4:b9:45:c4:64:69:78: d4:18:b1:e7:0c:08:74:8d:7c:f1:c1:9e:67:be:c6:3e:b2:9b: c1:31:ed:09:b7:73:0c:84:7b:d7:ee:c3:57:7d:80:e0:15:d4: 44:53:33:00:dd:9d:cb:6e:bb:ba:fc:05:c7:3f:5c:16:91:fb: e3:7c:3e:c0:4c:bd:13:f2:54:d6:44:58:ed:0e:ea:5a:32:4f: e4:78:74:23:ca:ad:f1:8c:f1:4a:e8:7a:8b:4a:0d:5d:41:64: 7e:9a:d4:3c:25:6e:00:31:f5:5b:d7:59:32:69:a4:af:be:d6: 7a:e4:11:5a:71:db:ec:90:fd:55:a6:cf:48:d1:78:bc:c3:48: ab:10:d9:36:7b:8a:e5:f4:d2:a9:24:44:b7:b8:f0:34:04:ed: 82:0b:ce:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICArkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI4RDgxMTAvBgNVBAUTKDk1OEQ3MDk2RUEyRTZCMTZCQzI0QTFEMDQ1NzE5RDJF QzUxNDQ5N0UwHhcNMjUxMjA0MjM0OTM4WhcNMjUxMjExMjM0OTM4WjAYMRYwFAYD VQQDEw02OTMyMWUxMy02ODEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0NgDovocdbqgnuhh98oaUMaSKHiIWUJy2L3NaBveHO0ghPZTqndU9NvXAJD0 1uMRLt2WI1UcmJ1q57QcbJTtQIqNzbvMplssfYNmulYJmVCyGCfWjbhtgBZxC266 yzK5NOqxl8xr8vcuGWzRawq5Ts0UxUdrZGUfpic0so+wtF3XrC0LlZtDq5vys9gJ othXKO4oONn52YjyVZaBj8A93iMS5Wdqgkz1IfiKVf3kZ+Mgp8zE9zwoSgLUZoLy p4EZkoWS5qaonxK1gSyEW0xPf17sOzp/6Fp0qdDTbrBt5vtoRVpgbGjTlbbwlMzY uEmIdl+aDwnJrTQrbcIJFHiE2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEEre36m HUyoOAWUawgvCZUHQo8HMB8GA1UdIwQYMBaAFJWNcJbqLmsWvCSh0EVxnS7FFEl+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjhEOC82QjI0QkNDMjFB QkYxMUVEQjVCNENDNENDNEY5QUUwMi9sWTF3bHVvdWF4YThKS0hRUlhHZExzVVVT WDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xZMXdsdW91YXhhOEpLSFFSWEdkTHNVVVNYNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjhEOC82QjI0QkNDMjFBQkYxMUVEQjVCNENDNENDNEY5QUUwMi9sWTF3bHVvdWF4 YThKS0hRUlhHZExzVVVTWDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCdybmYnqlnPbRATFXX2TC0H2bErInpc1o81HI/nZ5x9XZ9ln2xujO4 +S+xcF7Z/5ZXQJqVzQL13acIh1lCH/8hw6cSE6frsG5yjWcFMvUuuwVDCYI1PbzB 18PompcobszloNCN0/S5RcRkaXjUGLHnDAh0jXzxwZ5nvsY+spvBMe0Jt3MMhHvX 7sNXfYDgFdREUzMA3Z3Lbru6/AXHP1wWkfvjfD7ATL0T8lTWRFjtDupaMk/keHQj yq3xjPFK6HqLSg1dQWR+mtQ8JW4AMfVb11kyaaSvvtZ65BFacdvskP1Vps9I0Xi8 w0irENk2e4rl9NKpJES3uPA0BO2CC87I -----END CERTIFICATE-----Generated at Sat Dec 6 22:28:52 2025 by rpki-client