This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FECFD/37A04264AF7711EA8118311BC4F9AE02/Y35CcZzKBnZlOgprNKBujlSsBe8.mft File: Y35CcZzKBnZlOgprNKBujlSsBe8.mft (raw, json) Hash identifier: 8zDezntQY0kN8vs3AwieGMuQFc9UAasvwClgT4JLEEw= Subject key identifier: 83:DA:54:DD:5F:2A:6F:03:76:33:DA:AD:6B:27:BC:6F:EA:D3:A2:C4 Authority key identifier: 63:7E:42:71:9C:CA:06:76:65:3A:0A:6B:34:A0:6E:8E:54:AC:05:EF Certificate issuer: /CN=A91FECFD/serialNumber=637E42719CCA0676653A0A6B34A06E8E54AC05EF Certificate serial: 0940 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y35CcZzKBnZlOgprNKBujlSsBe8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FECFD/37A04264AF7711EA8118311BC4F9AE02/Y35CcZzKBnZlOgprNKBujlSsBe8.mft Manifest number: 093A Signing time: Sat 06 Dec 2025 19:22:44 +0000 Manifest this update: Sat 06 Dec 2025 19:22:43 +0000 Manifest next update: Sat 13 Dec 2025 19:22:43 +0000 Files and hashes: 1: Y35CcZzKBnZlOgprNKBujlSsBe8.crl (hash: 7AnSSRhKuefTdsIuuHfbCcqNKPTJhW0cpEHSrsOvf2w=) 2: 995F3DCEAF7811EABCA9AC1DC4F9AE02.roa (hash: ZNkH5Sj7XHBs6ufHKPHidPlMntGP72EIG2BMLfQDnC4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FECFD/37A04264AF7711EA8118311BC4F9AE02/Y35CcZzKBnZlOgprNKBujlSsBe8.crl rsync://rpki.apnic.net/member_repository/A91FECFD/37A04264AF7711EA8118311BC4F9AE02/Y35CcZzKBnZlOgprNKBujlSsBe8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y35CcZzKBnZlOgprNKBujlSsBe8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 19:22:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2368 (0x940) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FECFD, serialNumber=637E42719CCA0676653A0A6B34A06E8E54AC05EF Validity Not Before: Dec 6 19:22:43 2025 GMT Not After : Dec 13 19:22:43 2025 GMT Subject: CN=69348284-6f61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:54:4b:3a:d6:ce:17:4a:9d:8b:ff:29:cc:30: eb:e2:9b:3f:c5:7c:a4:7f:33:cc:ca:75:df:d3:52: 4c:8c:fe:2a:d0:aa:e6:e9:fa:51:27:f5:c2:7f:78: 2e:14:a6:52:35:be:41:e0:03:22:35:55:20:ea:8e: 19:bf:17:ee:9a:e0:8f:4d:e6:9f:dd:bc:e0:c8:df: 41:a4:57:f3:cb:fb:99:01:49:6a:e5:e6:38:2e:7f: 8a:54:79:88:19:dd:84:2c:93:5f:59:88:db:f2:86: 77:09:d1:af:21:b5:e6:0a:1d:89:a5:bf:f2:dd:e2: 8f:3e:19:98:d1:d6:6e:54:8a:76:2f:90:c9:f2:74: 8f:36:6a:3b:f2:bb:07:df:fa:3c:40:9a:d8:be:23: 74:71:d5:99:bb:a1:fc:9a:52:46:c7:1a:34:d3:ed: 99:93:27:f1:c3:f9:ce:89:30:c6:51:93:0e:b5:73: eb:2d:8a:02:69:71:10:e6:cb:20:9e:58:04:6e:ca: 51:12:64:3d:bf:e5:f5:85:52:77:d9:8e:fd:35:51: 39:4d:04:8e:9d:a9:48:86:0e:ac:6b:a9:24:2a:aa: bf:ed:2c:8b:6d:e8:b6:10:0d:01:ca:00:67:ea:a5: de:b6:38:43:ca:1a:97:41:c8:7e:99:c4:36:0e:5b: 42:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:DA:54:DD:5F:2A:6F:03:76:33:DA:AD:6B:27:BC:6F:EA:D3:A2:C4 X509v3 Authority Key Identifier: keyid:63:7E:42:71:9C:CA:06:76:65:3A:0A:6B:34:A0:6E:8E:54:AC:05:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FECFD/37A04264AF7711EA8118311BC4F9AE02/Y35CcZzKBnZlOgprNKBujlSsBe8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y35CcZzKBnZlOgprNKBujlSsBe8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FECFD/37A04264AF7711EA8118311BC4F9AE02/Y35CcZzKBnZlOgprNKBujlSsBe8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d5:68:d1:89:8e:34:b7:a6:3e:d0:95:a5:29:8f:51:a3:55:99: 50:fa:3c:e5:d1:7c:95:21:de:56:25:da:2b:83:64:f4:75:1f: 24:69:14:95:94:2a:8c:92:de:78:a4:d7:86:95:36:d2:24:86: 9e:ba:e6:02:a6:44:92:a7:90:59:2e:91:99:9f:61:e8:3f:2b: 5d:e9:15:07:74:f1:07:1d:a4:99:46:0b:e9:b0:30:23:da:a4: 32:e8:3e:1d:46:65:40:ed:18:0d:9b:71:49:e7:06:02:82:08: 89:7f:1b:02:9a:29:17:1a:7a:08:16:0a:84:e3:c6:05:88:8a: 54:5e:51:6f:28:36:9f:a2:26:0e:61:ea:e2:5f:44:fd:a9:8d: 9f:69:87:1b:d8:4f:8e:80:59:d6:ff:a1:b8:1a:44:39:21:f1: 3c:9e:a9:54:f6:ea:0c:8d:c9:91:1b:c3:e0:10:d5:45:28:00: f0:f6:de:ec:dd:e5:ed:0b:27:81:0d:88:09:0c:a7:29:86:32: a1:49:ff:bc:89:fc:b9:89:f2:74:0a:23:05:49:81:82:8a:31: f8:9c:39:e5:3e:9a:dc:45:fe:95:14:87:02:74:3b:ec:9d:e6: a5:41:09:0d:71:9b:6c:bd:d3:42:18:0c:26:b4:b0:b2:90:a8: 5a:01:67:a5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCUAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkVDRkQxMTAvBgNVBAUTKDYzN0U0MjcxOUNDQTA2NzY2NTNBMEE2QjM0QTA2RThF NTRBQzA1RUYwHhcNMjUxMjA2MTkyMjQzWhcNMjUxMjEzMTkyMjQzWjAYMRYwFAYD VQQDEw02OTM0ODI4NC02ZjYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoFRLOtbOF0qdi/8pzDDr4ps/xXykfzPMynXf01JMjP4q0Krm6fpRJ/XCf3gu FKZSNb5B4AMiNVUg6o4ZvxfumuCPTeaf3bzgyN9BpFfzy/uZAUlq5eY4Ln+KVHmI Gd2ELJNfWYjb8oZ3CdGvIbXmCh2Jpb/y3eKPPhmY0dZuVIp2L5DJ8nSPNmo78rsH 3/o8QJrYviN0cdWZu6H8mlJGxxo00+2Zkyfxw/nOiTDGUZMOtXPrLYoCaXEQ5ssg nlgEbspREmQ9v+X1hVJ32Y79NVE5TQSOnalIhg6sa6kkKqq/7SyLbei2EA0BygBn 6qXetjhDyhqXQch+mcQ2DltCyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIPaVN1f Km8DdjParWsnvG/q06LEMB8GA1UdIwQYMBaAFGN+QnGcygZ2ZToKazSgbo5UrAXv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRUNGRC8zN0EwNDI2NEFG NzcxMUVBODExODMxMUJDNEY5QUUwMi9ZMzVDY1p6S0JuWmxPZ3ByTktCdWpsU3NC ZTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1kzNUNjWnpLQm5abE9ncHJOS0J1amxTc0JlOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RUNGRC8zN0EwNDI2NEFGNzcxMUVBODExODMxMUJDNEY5QUUwMi9ZMzVDY1p6S0Ju WmxPZ3ByTktCdWpsU3NCZTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDVaNGJjjS3pj7QlaUpj1GjVZlQ+jzl0XyVId5WJdorg2T0dR8kaRSV lCqMkt54pNeGlTbSJIaeuuYCpkSSp5BZLpGZn2HoPytd6RUHdPEHHaSZRgvpsDAj 2qQy6D4dRmVA7RgNm3FJ5wYCggiJfxsCmikXGnoIFgqE48YFiIpUXlFvKDafoiYO YeriX0T9qY2faYcb2E+OgFnW/6G4GkQ5IfE8nqlU9uoMjcmRG8PgENVFKADw9t7s 3eXtCyeBDYgJDKcphjKhSf+8ify5ifJ0CiMFSYGCijH4nDnlPprcRf6VFIcCdDvs nealQQkNcZtsvdNCGAwmtLCykKhaAWel -----END CERTIFICATE-----Generated at Mon Dec 8 09:15:17 2025 by rpki-client