This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF8B6/40E7FABA3AA611EAAC8F1875C4F9AE02/rYT0vL6zyTZfKCcVO6ac7SqZEuI.mft File: rYT0vL6zyTZfKCcVO6ac7SqZEuI.mft (raw, json) Hash identifier: /p4taIVh2/Rw9M3S7/K7rFLIGsBK1+tN3IVuV4SZd+s= Subject key identifier: 53:95:97:49:75:BD:34:F5:21:52:5D:3B:10:FB:F8:FA:24:43:0F:F2 Authority key identifier: AD:84:F4:BC:BE:B3:C9:36:5F:28:27:15:3B:A6:9C:ED:2A:99:12:E2 Certificate issuer: /CN=A91EF8B6/serialNumber=AD84F4BCBEB3C9365F2827153BA69CED2A9912E2 Certificate serial: 0BA5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rYT0vL6zyTZfKCcVO6ac7SqZEuI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF8B6/40E7FABA3AA611EAAC8F1875C4F9AE02/rYT0vL6zyTZfKCcVO6ac7SqZEuI.mft Manifest number: 0B99 Signing time: Sat 06 Dec 2025 18:18:31 +0000 Manifest this update: Sat 06 Dec 2025 18:18:30 +0000 Manifest next update: Sat 13 Dec 2025 18:18:30 +0000 Files and hashes: 1: rYT0vL6zyTZfKCcVO6ac7SqZEuI.crl (hash: ziebjO3w1pkN71ZcXNNlHVtq6jCtuAPGIBZxwsmA8f4=) 2: FB6D5292263C11EEB9F5DB43C4F9AE02.roa (hash: G0XDicBivTci9J26AZ/2/duDqrP/HgCJvt3Hf4+FoMs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF8B6/40E7FABA3AA611EAAC8F1875C4F9AE02/rYT0vL6zyTZfKCcVO6ac7SqZEuI.crl rsync://rpki.apnic.net/member_repository/A91EF8B6/40E7FABA3AA611EAAC8F1875C4F9AE02/rYT0vL6zyTZfKCcVO6ac7SqZEuI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rYT0vL6zyTZfKCcVO6ac7SqZEuI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2981 (0xba5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF8B6, serialNumber=AD84F4BCBEB3C9365F2827153BA69CED2A9912E2 Validity Not Before: Dec 6 18:18:30 2025 GMT Not After : Dec 13 18:18:30 2025 GMT Subject: CN=69347377-c96b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:b6:f4:02:60:ab:ec:45:bb:fe:3c:1b:2e:fd: 5f:9d:2d:07:c0:7f:ad:3d:32:2f:56:c0:7c:1b:70: 0a:5a:a3:46:19:20:32:11:54:6b:a8:da:4e:c3:d0: 73:63:d8:60:65:5b:29:c1:ad:ab:78:16:ec:6b:9a: ca:27:5a:d5:4f:2f:f8:03:76:e7:99:e8:1c:13:5a: 00:43:ac:95:94:2b:05:ce:24:0a:f0:11:5e:e4:f4: 2b:9a:cd:d8:e3:d5:b5:4a:81:35:c3:c9:f7:e0:f8: b1:b3:74:e7:42:76:e4:5f:d0:23:95:c7:e3:c6:80: 61:4f:b5:f4:90:48:ca:66:32:4d:0a:49:ca:14:6a: f7:ba:d3:9c:03:a9:dd:44:71:9c:be:38:86:01:95: 48:b7:ef:60:8a:8c:5d:b9:00:19:7a:44:1b:c1:98: 4c:0f:c8:8d:cb:00:69:8e:6a:ab:0a:39:b0:e5:1c: 0e:c9:cc:8b:2e:53:41:7f:7e:36:dd:75:e0:77:8c: 0a:1b:e4:44:92:c9:2c:20:d0:a7:9d:f3:79:bc:d7: 45:72:2b:f4:7d:38:c5:30:77:3e:fa:06:9d:50:a2: bd:97:7c:11:a9:45:1e:d3:70:0f:fe:2f:68:a4:b1: b2:6d:84:cc:d3:83:2c:85:70:07:4d:ee:c6:1b:e9: 10:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:95:97:49:75:BD:34:F5:21:52:5D:3B:10:FB:F8:FA:24:43:0F:F2 X509v3 Authority Key Identifier: keyid:AD:84:F4:BC:BE:B3:C9:36:5F:28:27:15:3B:A6:9C:ED:2A:99:12:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF8B6/40E7FABA3AA611EAAC8F1875C4F9AE02/rYT0vL6zyTZfKCcVO6ac7SqZEuI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rYT0vL6zyTZfKCcVO6ac7SqZEuI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF8B6/40E7FABA3AA611EAAC8F1875C4F9AE02/rYT0vL6zyTZfKCcVO6ac7SqZEuI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:24:50:2f:e7:19:61:1c:b6:2f:f0:0b:b7:37:e7:a2:9f:6a: 78:e0:93:ce:80:b3:e4:1d:1a:d3:2b:b6:06:2c:6f:7f:d3:80: 33:9e:1e:70:bd:f2:b3:ab:7d:20:99:87:37:61:c9:75:bb:f7: 8e:84:73:35:ad:2a:74:3b:ce:58:36:fb:e9:57:d5:3c:2d:27: f6:13:7c:59:c1:b9:94:55:de:21:31:22:1a:00:24:6e:c2:30: cd:e3:ef:e3:bc:f7:e7:20:03:8a:f7:fa:f5:8d:65:56:3c:e1: be:0c:f6:2a:da:fd:56:6b:ae:c0:61:ea:74:5e:8c:a4:c1:b1: 0e:22:7d:c4:47:f2:01:9c:a0:b9:80:c9:49:9f:4d:50:15:3f: 4e:6a:1d:7d:ad:38:a3:04:20:cd:be:ca:86:62:18:cd:e8:ef: 1d:92:b9:fb:91:bc:e3:83:7f:d5:04:4f:89:ee:ce:77:0d:54: 5b:19:34:4c:a1:de:b9:2f:22:c2:7e:de:b5:1e:9a:06:32:ee: 28:42:32:a3:a6:66:54:6c:f9:df:c3:15:eb:b7:b2:f4:f8:7a: 9f:a8:b5:8a:2e:08:b2:eb:1a:88:73:b5:2d:2d:14:a1:b3:ff: b3:26:37:8f:35:4d:0c:a9:38:3b:43:5f:d4:41:fd:17:79:6e: 62:48:00:b8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC6UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUY4QjYxMTAvBgNVBAUTKEFEODRGNEJDQkVCM0M5MzY1RjI4MjcxNTNCQTY5Q0VE MkE5OTEyRTIwHhcNMjUxMjA2MTgxODMwWhcNMjUxMjEzMTgxODMwWjAYMRYwFAYD VQQDEw02OTM0NzM3Ny1jOTZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5bb0AmCr7EW7/jwbLv1fnS0HwH+tPTIvVsB8G3AKWqNGGSAyEVRrqNpOw9Bz Y9hgZVspwa2reBbsa5rKJ1rVTy/4A3bnmegcE1oAQ6yVlCsFziQK8BFe5PQrms3Y 49W1SoE1w8n34Pixs3TnQnbkX9AjlcfjxoBhT7X0kEjKZjJNCknKFGr3utOcA6nd RHGcvjiGAZVIt+9gioxduQAZekQbwZhMD8iNywBpjmqrCjmw5RwOycyLLlNBf342 3XXgd4wKG+REksksINCnnfN5vNdFciv0fTjFMHc++gadUKK9l3wRqUUe03AP/i9o pLGybYTM04MshXAHTe7GG+kQdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFOVl0l1 vTT1IVJdOxD7+PokQw/yMB8GA1UdIwQYMBaAFK2E9Ly+s8k2XygnFTumnO0qmRLi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjhCNi80MEU3RkFCQTNB QTYxMUVBQUM4RjE4NzVDNEY5QUUwMi9yWVQwdkw2enlUWmZLQ2NWTzZhYzdTcVpF dUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JZVDB2TDZ6eVRaZktDY1ZPNmFjN1NxWkV1SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RjhCNi80MEU3RkFCQTNBQTYxMUVBQUM4RjE4NzVDNEY5QUUwMi9yWVQwdkw2enlU WmZLQ2NWTzZhYzdTcVpFdUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOJFAv5xlhHLYv8Au3N+ein2p44JPOgLPkHRrTK7YGLG9/04Aznh5w vfKzq30gmYc3Ycl1u/eOhHM1rSp0O85YNvvpV9U8LSf2E3xZwbmUVd4hMSIaACRu wjDN4+/jvPfnIAOK9/r1jWVWPOG+DPYq2v1Wa67AYep0XoykwbEOIn3ER/IBnKC5 gMlJn01QFT9Oah19rTijBCDNvsqGYhjN6O8dkrn7kbzjg3/VBE+J7s53DVRbGTRM od65LyLCft61HpoGMu4oQjKjpmZUbPnfwxXrt7L0+HqfqLWKLgiy6xqIc7UtLRSh s/+zJjePNU0MqTg7Q1/UQf0XeW5iSAC4 -----END CERTIFICATE-----Generated at Sat Dec 6 21:04:43 2025 by rpki-client