This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91479A7/8BA963D443F511EE9A8E4E16C4F9AE02/LyR3675WsNegrUTCcX21_ggNyug.mft File: LyR3675WsNegrUTCcX21_ggNyug.mft (raw, json) Hash identifier: jR19anILt2AMLdSyJWVa+gaMAkTYGGG8RGeNCGDQu7U= Subject key identifier: AD:85:C4:2B:55:46:65:A1:BA:09:6D:62:68:96:77:90:FA:3E:D0:D7 Authority key identifier: 2F:24:77:EB:BE:56:B0:D7:A0:AD:44:C2:71:7D:B5:FE:08:0D:CA:E8 Certificate issuer: /CN=A91479A7/serialNumber=2F2477EBBE56B0D7A0AD44C2717DB5FE080DCAE8 Certificate serial: 01E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LyR3675WsNegrUTCcX21_ggNyug.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91479A7/8BA963D443F511EE9A8E4E16C4F9AE02/LyR3675WsNegrUTCcX21_ggNyug.mft Manifest number: 01D0 Signing time: Sun 07 Dec 2025 01:39:28 +0000 Manifest this update: Sun 07 Dec 2025 01:39:27 +0000 Manifest next update: Sun 14 Dec 2025 01:39:27 +0000 Files and hashes: 1: LyR3675WsNegrUTCcX21_ggNyug.crl (hash: 8S8X9lfDBTrc82JpTjNcOpEbSwFc4Z9/QusUKH7k5kU=) 2: 7EF0B0AC4D9B11EEB019A31FC4F9AE02.roa (hash: uvZ2Q94gPhmYQwiI4YLVYozC9g+L2KL5OS58nY+uLv0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91479A7/8BA963D443F511EE9A8E4E16C4F9AE02/LyR3675WsNegrUTCcX21_ggNyug.crl rsync://rpki.apnic.net/member_repository/A91479A7/8BA963D443F511EE9A8E4E16C4F9AE02/LyR3675WsNegrUTCcX21_ggNyug.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LyR3675WsNegrUTCcX21_ggNyug.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 01:39:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 489 (0x1e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91479A7, serialNumber=2F2477EBBE56B0D7A0AD44C2717DB5FE080DCAE8 Validity Not Before: Dec 7 01:39:27 2025 GMT Not After : Dec 14 01:39:27 2025 GMT Subject: CN=6934dacf-fa71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:09:6d:ce:99:7a:46:cd:00:87:65:65:d7:f4: b4:2d:b1:6b:13:83:a0:eb:05:bb:61:a2:0d:00:9a: 71:26:0f:4e:42:59:83:e5:d2:c4:d3:77:0c:ac:86: b0:08:a1:ae:f2:6f:70:2f:68:f5:92:04:74:b1:00: 02:99:58:30:5b:2a:c4:0c:a6:7f:24:6d:6e:5e:a6: 24:c3:5c:4b:ce:f2:bc:bf:0a:38:cf:43:05:f6:78: e6:9b:15:5f:07:63:2d:e4:62:14:7e:8a:f8:41:21: c7:8b:69:9e:62:15:29:d3:7f:54:f1:db:d0:89:b1: b5:36:85:e8:5d:47:61:2e:f8:fa:0b:2a:9c:cc:ea: f6:5a:a2:03:f2:09:f4:2f:0c:5b:0b:89:cd:26:8b: 44:eb:ad:a3:df:56:0b:4c:f7:1e:5c:34:cc:35:97: b0:f1:77:aa:80:3a:d2:62:43:49:2b:9a:d3:5b:6e: 7b:4d:0d:a2:98:6d:4d:00:90:28:7e:cf:24:c1:0f: 6d:ae:ce:81:a8:b6:65:31:a1:39:1c:ed:cf:70:f0: aa:2e:9b:44:27:3f:a0:97:79:6a:8b:c1:ce:a2:fb: 32:45:a8:ff:2e:49:e9:9a:1b:c6:ab:dc:0a:2a:3b: 42:45:30:16:08:71:04:d8:0e:79:29:88:9b:14:9f: a9:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:85:C4:2B:55:46:65:A1:BA:09:6D:62:68:96:77:90:FA:3E:D0:D7 X509v3 Authority Key Identifier: keyid:2F:24:77:EB:BE:56:B0:D7:A0:AD:44:C2:71:7D:B5:FE:08:0D:CA:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91479A7/8BA963D443F511EE9A8E4E16C4F9AE02/LyR3675WsNegrUTCcX21_ggNyug.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LyR3675WsNegrUTCcX21_ggNyug.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91479A7/8BA963D443F511EE9A8E4E16C4F9AE02/LyR3675WsNegrUTCcX21_ggNyug.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:ea:ee:2f:45:35:59:7c:f8:90:e7:73:08:ce:01:8e:b2:6c: 69:ac:8a:93:6f:5b:de:b1:56:6e:4c:81:c8:de:38:5d:4c:bc: b5:d4:8f:c7:83:bc:3d:d4:9d:d5:b3:02:c3:4b:1e:2a:50:52: 40:e3:b3:58:c8:1b:81:b6:76:62:7d:bf:17:80:0c:f4:79:9d: 32:23:86:83:5a:f7:ef:bb:37:e4:40:ce:c2:fb:8f:0b:a2:9f: da:3a:38:12:30:21:00:f5:41:f4:83:f8:5b:d9:5a:fc:a2:6b: 40:5e:04:36:3a:91:9b:83:72:e8:08:c9:5c:38:dc:7b:0d:ad: 10:8c:78:1c:14:c8:44:ea:f8:8c:04:cf:07:07:5f:ab:7d:bc: b4:47:55:6e:5b:17:d8:95:88:49:bb:05:63:e8:74:47:30:f6: 9a:4c:5c:c0:68:67:09:52:dc:a4:98:b8:4e:46:1d:0e:07:05: 5f:81:42:a3:65:e9:18:a1:ed:d4:21:a1:10:48:eb:85:d1:75: 86:bb:22:3b:c2:7f:a8:c0:77:05:e3:ec:33:91:8e:a0:f8:9c: f1:9c:31:a8:d4:71:d9:45:06:05:fc:0b:40:6f:7d:67:db:ed: e6:79:90:88:25:08:f5:e9:c0:b4:74:94:74:e4:f1:45:ef:5d: df:fc:85:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAekwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDc5QTcxMTAvBgNVBAUTKDJGMjQ3N0VCQkU1NkIwRDdBMEFENDRDMjcxN0RCNUZF MDgwRENBRTgwHhcNMjUxMjA3MDEzOTI3WhcNMjUxMjE0MDEzOTI3WjAYMRYwFAYD VQQDEw02OTM0ZGFjZi1mYTcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxAltzpl6Rs0Ah2Vl1/S0LbFrE4Og6wW7YaINAJpxJg9OQlmD5dLE03cMrIaw CKGu8m9wL2j1kgR0sQACmVgwWyrEDKZ/JG1uXqYkw1xLzvK8vwo4z0MF9njmmxVf B2Mt5GIUfor4QSHHi2meYhUp039U8dvQibG1NoXoXUdhLvj6CyqczOr2WqID8gn0 LwxbC4nNJotE662j31YLTPceXDTMNZew8XeqgDrSYkNJK5rTW257TQ2imG1NAJAo fs8kwQ9trs6BqLZlMaE5HO3PcPCqLptEJz+gl3lqi8HOovsyRaj/LknpmhvGq9wK KjtCRTAWCHEE2A55KYibFJ+pvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK2FxCtV RmWhugltYmiWd5D6PtDXMB8GA1UdIwQYMBaAFC8kd+u+VrDXoK1EwnF9tf4IDcro MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzlBNy84QkE5NjNENDQz RjUxMUVFOUE4RTRFMTZDNEY5QUUwMi9MeVIzNjc1V3NOZWdyVVRDY1gyMV9nZ055 dWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0x5UjM2NzVXc05lZ3JVVENjWDIxX2dnTnl1Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NzlBNy84QkE5NjNENDQzRjUxMUVFOUE4RTRFMTZDNEY5QUUwMi9MeVIzNjc1V3NO ZWdyVVRDY1gyMV9nZ055dWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBR6u4vRTVZfPiQ53MIzgGOsmxprIqTb1vesVZuTIHI3jhdTLy11I/H g7w91J3VswLDSx4qUFJA47NYyBuBtnZifb8XgAz0eZ0yI4aDWvfvuzfkQM7C+48L op/aOjgSMCEA9UH0g/hb2Vr8omtAXgQ2OpGbg3LoCMlcONx7Da0QjHgcFMhE6viM BM8HB1+rfby0R1VuWxfYlYhJuwVj6HRHMPaaTFzAaGcJUtykmLhORh0OBwVfgUKj ZekYoe3UIaEQSOuF0XWGuyI7wn+owHcF4+wzkY6g+JzxnDGo1HHZRQYF/AtAb31n 2+3meZCIJQj16cC0dJR05PFF713f/IWO -----END CERTIFICATE-----Generated at Sun Dec 7 16:40:38 2025 by rpki-client