This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.mft File: ySTN5BVFl0tvV4MubGA7zIlm2eA.mft (raw, json) Hash identifier: JM1Wc32SY5ah6FogQswJiRw11TjLTHs7uCUz2ky8X3g= Subject key identifier: 17:16:6B:97:83:21:43:93:E0:F1:9A:43:8E:00:BC:9C:2D:A4:83:01 Authority key identifier: C9:24:CD:E4:15:45:97:4B:6F:57:83:2E:6C:60:3B:CC:89:66:D9:E0 Certificate issuer: /CN=A91F2DDD/serialNumber=C924CDE41545974B6F57832E6C603BCC8966D9E0 Certificate serial: 0372 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ySTN5BVFl0tvV4MubGA7zIlm2eA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.mft Manifest number: 121B Signing time: Sat 06 Dec 2025 17:07:42 +0000 Manifest this update: Sat 06 Dec 2025 17:07:42 +0000 Manifest next update: Sat 13 Dec 2025 17:07:42 +0000 Files and hashes: 1: ySTN5BVFl0tvV4MubGA7zIlm2eA.crl (hash: vIxuzzzPTvAonvzE7Zq8NXYwOmfo9ODQzPL6FqBqWKM=) 2: 2FBEB0B0D5B011EC90A8A031C4F9AE02.roa (hash: dTotqn1MA4iFciet41gKXuxTQQQVUzcSiuTmgAsBCPA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.crl rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ySTN5BVFl0tvV4MubGA7zIlm2eA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 882 (0x372) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2DDD, serialNumber=C924CDE41545974B6F57832E6C603BCC8966D9E0 Validity Not Before: Dec 6 17:07:42 2025 GMT Not After : Dec 13 17:07:42 2025 GMT Subject: CN=693462de-663b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:52:4f:78:1d:f2:f6:62:14:05:85:14:62:f5: d0:14:43:79:5e:81:3b:09:1d:5a:dd:30:18:60:5f: 08:a8:5b:88:54:15:af:9e:28:ac:a9:f8:47:01:9e: 29:8d:4d:79:f5:c1:9a:81:1c:d8:03:9b:0c:7e:17: d1:7c:1e:57:ae:f4:1c:9c:19:3c:be:49:25:4e:f0: c7:ee:aa:3f:10:6f:8b:ec:31:74:8b:83:0e:54:1b: e6:99:54:b9:b2:34:14:c6:6d:53:44:a3:c6:7b:ed: 2f:6a:2e:f5:73:0d:77:62:a6:fc:4d:ef:32:79:33: 26:c1:a6:4a:a0:62:14:ae:c7:9b:1c:19:36:04:0c: 09:e4:61:ce:78:b3:17:5c:0e:f6:04:60:15:6c:00: ff:b8:02:98:ef:29:26:e0:8e:2f:0b:41:88:2c:4c: 33:5e:3a:54:eb:63:62:b6:78:86:0d:a5:1a:b4:f6: ff:61:7f:9a:e4:fd:1f:d1:71:32:43:0a:3e:16:8e: e5:04:b3:8c:12:0b:9b:81:d6:fc:75:da:96:4c:c2: 05:2f:fd:1c:a9:c7:6b:53:6a:e0:e2:36:a2:4a:53: 23:12:2e:57:29:9e:6a:0f:57:12:40:03:92:03:21: 2e:72:ca:c9:63:b6:60:a7:8f:e6:1a:f6:87:ad:d6: ff:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:16:6B:97:83:21:43:93:E0:F1:9A:43:8E:00:BC:9C:2D:A4:83:01 X509v3 Authority Key Identifier: keyid:C9:24:CD:E4:15:45:97:4B:6F:57:83:2E:6C:60:3B:CC:89:66:D9:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ySTN5BVFl0tvV4MubGA7zIlm2eA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:b4:7e:a0:3e:1c:09:34:bc:c9:27:0e:a0:30:71:71:ee:9c: e8:3f:b0:a5:bd:81:91:a4:9d:97:6d:76:d4:de:92:a1:53:e3: a9:fa:b3:fa:67:07:67:65:d6:e5:bc:35:c9:67:d2:52:39:02: 7c:2c:bc:17:6e:3b:65:d4:07:10:e5:48:ff:82:ff:a6:5c:a6: 8c:0e:19:17:55:79:ac:bb:72:72:26:00:79:08:ca:36:d9:74: a1:b3:a0:d7:d8:f7:cb:9f:be:cc:6f:8f:15:c5:43:da:b8:d3: 0a:01:4a:d9:43:36:29:07:8a:02:19:d9:d5:bb:cd:b5:b5:00: 34:9c:d3:3e:77:cd:52:d2:2a:3f:aa:d1:f1:05:4e:aa:6b:7d: 27:77:36:2e:cf:38:12:0b:b4:4c:6a:fe:95:d9:96:c5:e9:3e: 6b:56:c7:45:a4:58:5a:e7:01:a4:ef:ad:13:65:e0:48:30:eb: de:55:23:12:e6:0a:e6:2b:fc:f7:dd:57:dd:df:b1:43:97:4a: 61:9d:88:0c:24:e4:a7:ad:59:f2:84:1e:8d:e7:f3:df:b3:c0: e9:06:74:45:e4:52:8d:1e:29:6e:f5:b9:24:ea:5b:7d:3e:9a: 22:90:59:39:d4:54:9b:43:69:c5:25:be:53:af:9e:5b:d0:58: 23:a8:27:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA3IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjJEREQxMTAvBgNVBAUTKEM5MjRDREU0MTU0NTk3NEI2RjU3ODMyRTZDNjAzQkND ODk2NkQ5RTAwHhcNMjUxMjA2MTcwNzQyWhcNMjUxMjEzMTcwNzQyWjAYMRYwFAYD VQQDEw02OTM0NjJkZS02NjNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn1JPeB3y9mIUBYUUYvXQFEN5XoE7CR1a3TAYYF8IqFuIVBWvniisqfhHAZ4p jU159cGagRzYA5sMfhfRfB5XrvQcnBk8vkklTvDH7qo/EG+L7DF0i4MOVBvmmVS5 sjQUxm1TRKPGe+0vai71cw13Yqb8Te8yeTMmwaZKoGIUrsebHBk2BAwJ5GHOeLMX XA72BGAVbAD/uAKY7ykm4I4vC0GILEwzXjpU62NitniGDaUatPb/YX+a5P0f0XEy Qwo+Fo7lBLOMEgubgdb8ddqWTMIFL/0cqcdrU2rg4jaiSlMjEi5XKZ5qD1cSQAOS AyEucsrJY7Zgp4/mGvaHrdb/fwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBcWa5eD IUOT4PGaQ44AvJwtpIMBMB8GA1UdIwQYMBaAFMkkzeQVRZdLb1eDLmxgO8yJZtng MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMkRERC9CNEEyODM2MjlF MUIxMUU5OEUxRTRFNUVDNEY5QUUwMi95U1RONUJWRmwwdHZWNE11YkdBN3pJbG0y ZUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lTVE41QlZGbDB0dlY0TXViR0E3eklsbTJlQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MkRERC9CNEEyODM2MjlFMUIxMUU5OEUxRTRFNUVDNEY5QUUwMi95U1RONUJWRmww dHZWNE11YkdBN3pJbG0yZUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBktH6gPhwJNLzJJw6gMHFx7pzoP7ClvYGRpJ2XbXbU3pKhU+Op+rP6 ZwdnZdblvDXJZ9JSOQJ8LLwXbjtl1AcQ5Uj/gv+mXKaMDhkXVXmsu3JyJgB5CMo2 2XShs6DX2PfLn77Mb48VxUPauNMKAUrZQzYpB4oCGdnVu821tQA0nNM+d81S0io/ qtHxBU6qa30ndzYuzzgSC7RMav6V2ZbF6T5rVsdFpFha5wGk760TZeBIMOveVSMS 5grmK/z33Vfd37FDl0phnYgMJOSnrVnyhB6N5/Pfs8DpBnRF5FKNHilu9bkk6lt9 PpoikFk51FSbQ2nFJb5Tr55b0FgjqCdc -----END CERTIFICATE-----Generated at Sat Dec 6 22:04:26 2025 by rpki-client