This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.mft File: RyCit4x4I5km_e5zRKNoDaDYBx0.mft (raw, json) Hash identifier: Kn2JwOVRDYRJX0MH0ezFwKsknCojx8q3bVukFxwbeOs= Subject key identifier: 0C:CD:E8:CC:97:BB:85:61:A5:52:7E:1F:55:E0:F7:EE:2B:B9:1A:C9 Authority key identifier: 47:20:A2:B7:8C:78:23:99:26:FD:EE:73:44:A3:68:0D:A0:D8:07:1D Certificate issuer: /CN=A91972DF/serialNumber=4720A2B78C78239926FDEE7344A3680DA0D8071D Certificate serial: E8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RyCit4x4I5km_e5zRKNoDaDYBx0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.mft Manifest number: E0 Signing time: Fri 19 Dec 2025 04:32:51 +0000 Manifest this update: Fri 19 Dec 2025 04:32:50 +0000 Manifest next update: Fri 26 Dec 2025 04:32:50 +0000 Files and hashes: 1: RyCit4x4I5km_e5zRKNoDaDYBx0.crl (hash: SZEJlasYi/0DectGmW/0xhm1n67XVS8Qg4jkfvStmRQ=) 2: 003589503F8311F0AA4DF254C4F9AE02.roa (hash: mFg/4qdLeiQ8AjEap32HrO7ldoixpAZaZ3NegxVi38A=) 3: D2D7B762995611EFADA5D754C4F9AE02.roa (hash: DBuT5pVIx5+DapGoOy/MWoVxejvGW3jQONX5f21P15c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.crl rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RyCit4x4I5km_e5zRKNoDaDYBx0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 04:32:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 232 (0xe8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91972DF, serialNumber=4720A2B78C78239926FDEE7344A3680DA0D8071D Validity Not Before: Dec 19 04:32:50 2025 GMT Not After : Dec 26 04:32:50 2025 GMT Subject: CN=6944d572-50e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:40:18:9a:1c:ce:75:6f:25:97:f4:02:a9:fa: b9:94:c3:f8:b9:57:5e:76:2c:9b:3c:6a:12:48:36: 51:45:d4:91:e7:63:d1:b2:6e:fd:e6:2b:84:bd:4f: 89:22:5d:39:58:05:63:ad:4a:cd:9d:e0:d4:b9:e7: 1e:2c:f9:50:ab:36:ca:ab:0c:b9:3f:cb:82:78:96: 4e:5d:5f:8f:92:da:94:ee:27:f9:29:a6:80:17:81: fa:e2:bc:a7:d6:6b:28:f1:55:c0:92:b5:b2:08:9d: 7d:d8:20:30:b2:1d:5c:ed:5c:69:a8:d1:3c:6e:95: 27:62:53:f6:96:19:f4:ac:94:d9:8e:37:ba:0a:fa: ac:73:08:4e:05:f1:12:fc:1e:cb:1a:91:68:1b:87: 25:23:2c:3e:00:6a:d8:19:27:52:a1:83:0d:3b:d7: 50:fb:61:64:49:2a:63:3d:99:2c:95:f7:f4:f5:3c: fc:65:ff:31:c5:fc:bc:b1:ac:b5:f6:4c:8f:8a:d8: 6b:3c:03:32:bd:07:b5:7b:be:18:ec:9a:bf:71:9a: ef:d1:8a:f5:80:64:e3:07:1c:1f:b3:35:28:aa:b4: ed:67:fb:94:c9:e8:2b:71:9e:ed:1e:d7:09:6d:80: 1b:b7:17:08:43:74:17:10:b2:35:a7:dc:4d:90:bd: 30:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:CD:E8:CC:97:BB:85:61:A5:52:7E:1F:55:E0:F7:EE:2B:B9:1A:C9 X509v3 Authority Key Identifier: keyid:47:20:A2:B7:8C:78:23:99:26:FD:EE:73:44:A3:68:0D:A0:D8:07:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RyCit4x4I5km_e5zRKNoDaDYBx0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:0b:42:40:de:8a:3d:7c:c7:af:30:72:6d:80:b7:ce:dc:41: ab:e9:3a:2c:c4:c6:19:ba:e8:1a:05:46:d4:73:2b:2c:71:d3: a8:bd:ef:31:b7:17:bf:a3:23:fb:ee:4a:0d:e3:2a:bd:f8:c1: a3:f3:a4:3c:9a:e3:2f:db:cc:cd:a4:89:42:8a:68:f0:2f:7d: c4:98:ce:9c:61:dd:f5:20:41:29:2d:8a:16:9d:21:f6:78:e7: 42:24:f7:d0:36:e4:05:51:d9:af:a7:ed:24:46:eb:ed:37:54: b1:c6:50:e9:ba:ab:6a:6e:01:a8:f9:85:2b:01:33:24:9b:19: 48:27:b0:96:33:cb:ed:bb:a2:74:dd:8e:47:95:5d:ce:f2:fd: d7:2a:0c:27:44:e5:3e:65:10:8c:27:66:99:26:28:68:a1:ce: 6d:b7:76:ef:38:13:e8:83:c2:1b:04:d3:dd:b1:84:e9:2e:c7: c7:4f:1c:54:79:68:0c:a5:d1:4a:fb:2a:51:e5:0c:da:be:b5: 13:84:c7:8b:f9:d9:95:f9:e3:5a:37:6b:24:7d:82:93:20:c2: 46:a6:82:40:f2:e7:0b:e8:b5:f2:85:2d:16:4c:9f:fb:e8:27: 06:bd:1d:5e:1a:4d:1c:db:e7:b9:00:81:5c:89:93:87:17:88: 33:5e:da:97 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcyREYxMTAvBgNVBAUTKDQ3MjBBMkI3OEM3ODIzOTkyNkZERUU3MzQ0QTM2ODBE QTBEODA3MUQwHhcNMjUxMjE5MDQzMjUwWhcNMjUxMjI2MDQzMjUwWjAYMRYwFAYD VQQDDA02OTQ0ZDU3Mi01MGU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+UAYmhzOdW8ll/QCqfq5lMP4uVdediybPGoSSDZRRdSR52PRsm795iuEvU+J Il05WAVjrUrNneDUueceLPlQqzbKqwy5P8uCeJZOXV+PktqU7if5KaaAF4H64ryn 1mso8VXAkrWyCJ192CAwsh1c7VxpqNE8bpUnYlP2lhn0rJTZjje6CvqscwhOBfES /B7LGpFoG4clIyw+AGrYGSdSoYMNO9dQ+2FkSSpjPZkslff09Tz8Zf8xxfy8say1 9kyPithrPAMyvQe1e74Y7Jq/cZrv0Yr1gGTjBxwfszUoqrTtZ/uUyegrcZ7tHtcJ bYAbtxcIQ3QXELI1p9xNkL0wNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAzN6MyX u4VhpVJ+H1Xg9+4ruRrJMB8GA1UdIwQYMBaAFEcgoreMeCOZJv3uc0SjaA2g2Acd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzJERi8yN0UzRURBNDk4 MzMxMUVGODMxODlBNTdDNEY5QUUwMi9SeUNpdDR4NEk1a21fZTV6UktOb0RhRFlC eDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1J5Q2l0NHg0STVrbV9lNXpSS05vRGFEWUJ4MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzJERi8yN0UzRURBNDk4MzMxMUVGODMxODlBNTdDNEY5QUUwMi9SeUNpdDR4NEk1 a21fZTV6UktOb0RhRFlCeDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZC0JA3oo9fMevMHJtgLfO3EGr6TosxMYZuugaBUbUcysscdOove8x txe/oyP77koN4yq9+MGj86Q8muMv28zNpIlCimjwL33EmM6cYd31IEEpLYoWnSH2 eOdCJPfQNuQFUdmvp+0kRuvtN1SxxlDpuqtqbgGo+YUrATMkmxlIJ7CWM8vtu6J0 3Y5HlV3O8v3XKgwnROU+ZRCMJ2aZJihooc5tt3bvOBPog8IbBNPdsYTpLsfHTxxU eWgMpdFK+ypR5QzavrUThMeL+dmV+eNaN2skfYKTIMJGpoJA8ucL6LXyhS0WTJ/7 6CcGvR1eGk0c2+e5AIFciZOHF4gzXtqX -----END CERTIFICATE-----Generated at Sun Dec 21 01:21:13 2025 by rpki-client