This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917877E/389A62D25D5D11F0B49A7847C4F9AE02/bYq2_eUh3BBvlIKStQL9Wgc0g3w.mft File: bYq2_eUh3BBvlIKStQL9Wgc0g3w.mft (raw, json) Hash identifier: DpcLa5Dy2hWTa6zYtBFdB38oHZH5/vxgfr4ngNTAXZk= Subject key identifier: 34:00:58:BC:F1:F7:38:25:20:D5:28:08:2A:86:74:CC:61:BE:DE:41 Authority key identifier: 6D:8A:B6:FD:E5:21:DC:10:6F:94:82:92:B5:02:FD:5A:07:34:83:7C Certificate issuer: /CN=A917877E/serialNumber=6D8AB6FDE521DC106F948292B502FD5A0734837C Certificate serial: 4E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bYq2_eUh3BBvlIKStQL9Wgc0g3w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917877E/389A62D25D5D11F0B49A7847C4F9AE02/bYq2_eUh3BBvlIKStQL9Wgc0g3w.mft Manifest number: 4D Signing time: Wed 03 Dec 2025 05:29:44 +0000 Manifest this update: Wed 03 Dec 2025 05:29:43 +0000 Manifest next update: Wed 10 Dec 2025 05:29:43 +0000 Files and hashes: 1: bYq2_eUh3BBvlIKStQL9Wgc0g3w.crl (hash: AulRoPjIpo7+BYwqi6K+TU+fth71qekUDcRNyv4o61o=) 2: 9EA96DF25D5D11F08A574048C4F9AE02.roa (hash: q6ZblRMV0uyhkappWvL+RGy5XexsiemwGej/lfgL9RI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917877E/389A62D25D5D11F0B49A7847C4F9AE02/bYq2_eUh3BBvlIKStQL9Wgc0g3w.crl rsync://rpki.apnic.net/member_repository/A917877E/389A62D25D5D11F0B49A7847C4F9AE02/bYq2_eUh3BBvlIKStQL9Wgc0g3w.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bYq2_eUh3BBvlIKStQL9Wgc0g3w.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 05:29:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78 (0x4e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917877E, serialNumber=6D8AB6FDE521DC106F948292B502FD5A0734837C Validity Not Before: Dec 3 05:29:43 2025 GMT Not After : Dec 10 05:29:43 2025 GMT Subject: CN=692fcac8-a3cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:fa:2b:4f:c9:c6:35:8b:93:77:d1:c7:69:1e: 93:ac:c2:d9:ed:1d:56:9e:31:8e:13:67:d0:8d:00: a5:ba:8a:bc:c2:b8:42:b3:1d:78:11:34:a1:02:54: e0:f1:89:71:50:0b:fc:1d:d4:99:6a:b0:dc:41:65: c5:f8:e0:77:61:ac:80:6b:97:e2:14:41:b8:c7:ee: a0:f2:32:59:7a:fb:b6:5e:f9:e5:c1:70:eb:c4:91: b1:96:73:01:14:37:2e:9a:3a:46:0b:f8:06:74:1d: 8f:05:62:5f:fa:18:68:8d:b0:4a:ec:fb:fe:9a:dc: cb:3f:2b:f7:dc:aa:14:2a:54:df:06:91:e8:98:8f: 22:a9:cf:6b:ac:ec:64:7c:73:3f:0f:a2:4e:0b:6b: 8a:77:1e:bc:6f:55:93:8d:7f:8d:61:84:cf:3a:3d: a8:7e:41:44:b9:80:79:d1:1f:b8:18:88:8b:6a:31: 9e:51:2b:cd:e3:95:c6:02:1e:8f:d3:92:b3:f9:77: 25:94:dc:1b:dc:89:00:fe:18:36:71:58:6b:ad:dd: d5:8a:c1:9f:ad:a1:46:43:eb:03:a7:7e:88:1e:43: b1:5e:2e:bd:88:f4:4c:e0:db:21:50:00:e5:86:1b: c1:bb:2a:65:0e:70:58:cc:cc:34:b9:db:15:fe:b3: fc:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:00:58:BC:F1:F7:38:25:20:D5:28:08:2A:86:74:CC:61:BE:DE:41 X509v3 Authority Key Identifier: keyid:6D:8A:B6:FD:E5:21:DC:10:6F:94:82:92:B5:02:FD:5A:07:34:83:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917877E/389A62D25D5D11F0B49A7847C4F9AE02/bYq2_eUh3BBvlIKStQL9Wgc0g3w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bYq2_eUh3BBvlIKStQL9Wgc0g3w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917877E/389A62D25D5D11F0B49A7847C4F9AE02/bYq2_eUh3BBvlIKStQL9Wgc0g3w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:c8:90:10:72:9d:30:5c:c3:52:de:87:3b:2c:66:a6:90:84: e1:ce:ab:76:05:6a:e0:e3:dc:a9:1f:05:ac:66:d7:92:9f:b8: 72:1c:ee:24:0d:4b:42:c0:5a:8a:59:06:cb:ef:7a:e5:be:20: 56:68:61:1b:21:cc:f7:f5:1b:af:28:02:2a:f4:00:7d:b0:fc: 9c:1b:6b:9d:af:97:fe:27:cf:cd:51:2f:a4:93:c5:ac:e1:9d: 5f:64:30:11:50:cb:59:f2:ca:74:d5:33:b3:fb:a1:dc:39:33: 08:1b:ad:6e:c8:93:94:d2:cf:da:45:cb:cc:14:b9:3a:4c:1e: 7e:19:f0:ee:0f:61:7e:a1:81:af:9e:a7:90:24:04:3d:d2:3d: 83:6e:9e:b5:d9:b7:05:a4:59:29:35:c3:3e:4d:ac:68:d4:50: 50:42:d2:f9:32:f3:80:e2:3e:c9:b5:7d:73:3b:84:2f:7c:97: ee:f6:21:78:4c:66:91:eb:30:1f:bf:86:ba:30:55:77:ea:f9: aa:b8:21:54:5b:ba:20:63:f1:86:9a:8f:c4:d6:14:25:28:6c: 51:16:ce:7e:f8:90:73:6b:40:4b:7e:0d:a4:c2:0b:05:07:10: ee:34:5f:16:cf:42:ec:44:93:8b:a7:79:8e:f0:dc:06:c7:2a: 01:67:3d:30 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 ODc3RTExMC8GA1UEBRMoNkQ4QUI2RkRFNTIxREMxMDZGOTQ4MjkyQjUwMkZENUEw NzM0ODM3QzAeFw0yNTEyMDMwNTI5NDNaFw0yNTEyMTAwNTI5NDNaMBgxFjAUBgNV BAMTDTY5MmZjYWM4LWEzY2YwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDL+itPycY1i5N30cdpHpOswtntHVaeMY4TZ9CNAKW6irzCuEKzHXgRNKECVODx iXFQC/wd1JlqsNxBZcX44HdhrIBrl+IUQbjH7qDyMll6+7Ze+eXBcOvEkbGWcwEU Ny6aOkYL+AZ0HY8FYl/6GGiNsErs+/6a3Ms/K/fcqhQqVN8GkeiYjyKpz2us7GR8 cz8Pok4La4p3HrxvVZONf41hhM86Pah+QUS5gHnRH7gYiItqMZ5RK83jlcYCHo/T krP5dyWU3BvciQD+GDZxWGut3dWKwZ+toUZD6wOnfogeQ7FeLr2I9Ezg2yFQAOWG G8G7KmUOcFjMzDS52xX+s/xrAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUNABYvPH3 OCUg1SgIKoZ0zGG+3kEwHwYDVR0jBBgwFoAUbYq2/eUh3BBvlIKStQL9Wgc0g3ww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc4NzdFLzM4OUE2MkQyNUQ1 RDExRjBCNDlBNzg0N0M0RjlBRTAyL2JZcTJfZVVoM0JCdmxJS1N0UUw5V2djMGcz dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvYllxMl9lVWgzQkJ2bElLU3RRTDlXZ2MwZzN3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc4 NzdFLzM4OUE2MkQyNUQ1RDExRjBCNDlBNzg0N0M0RjlBRTAyL2JZcTJfZVVoM0JC dmxJS1N0UUw5V2djMGczdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGjIkBBynTBcw1LehzssZqaQhOHOq3YFauDj3KkfBaxm15KfuHIc7iQN S0LAWopZBsvveuW+IFZoYRshzPf1G68oAir0AH2w/Jwba52vl/4nz81RL6STxazh nV9kMBFQy1nyynTVM7P7odw5MwgbrW7Ik5TSz9pFy8wUuTpMHn4Z8O4PYX6hga+e p5AkBD3SPYNunrXZtwWkWSk1wz5NrGjUUFBC0vky84DiPsm1fXM7hC98l+72IXhM ZpHrMB+/hrowVXfq+aq4IVRbuiBj8Yaaj8TWFCUobFEWzn74kHNrQEt+DaTCCwUH EO40XxbPQuxEk4uneY7w3AbHKgFnPTA= -----END CERTIFICATE-----Generated at Wed Dec 3 16:22:45 2025 by rpki-client