This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.mft File: C-AoY1W14laYjORU35P8D8p_YEA.mft (raw, json) Hash identifier: rBjdpIM4d8Xub17iRsGd2plWQ98u2APV/ba9GHtZiqA= Subject key identifier: 5D:A7:90:E2:98:0D:6A:FC:39:66:3D:6A:86:82:2A:73:D6:5A:89:0A Authority key identifier: 0B:E0:28:63:55:B5:E2:56:98:8C:E4:54:DF:93:FC:0F:CA:7F:60:40 Certificate issuer: /CN=A91A1D43/serialNumber=0BE0286355B5E256988CE454DF93FC0FCA7F6040 Certificate serial: 01EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C-AoY1W14laYjORU35P8D8p_YEA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.mft Manifest number: 01E5 Signing time: Sun 07 Dec 2025 01:08:12 +0000 Manifest this update: Sun 07 Dec 2025 01:08:11 +0000 Manifest next update: Sun 14 Dec 2025 01:08:11 +0000 Files and hashes: 1: C-AoY1W14laYjORU35P8D8p_YEA.crl (hash: Vjl4q8DE5NGYDqdkyTBLuTObBzQXQs3atT7cotgP0FE=) 2: 8BCB2CFAEA3911EDB91E190BC4F9AE02.roa (hash: Gn3bl+JlcAfK7NlSkgTYoj+Bsl8m7KISn3HM2ix+w34=) 3: 8B1BDC14EA3911EDB91E190BC4F9AE02.roa (hash: +iPaNHR0I7CGA19//oU6de8PSF7FBlMHBTXC8ZhTdUo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.crl rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C-AoY1W14laYjORU35P8D8p_YEA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 01:08:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 491 (0x1eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1D43, serialNumber=0BE0286355B5E256988CE454DF93FC0FCA7F6040 Validity Not Before: Dec 7 01:08:11 2025 GMT Not After : Dec 14 01:08:11 2025 GMT Subject: CN=6934d37c-4268 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:e7:cc:f9:a0:a9:c7:e8:29:9f:f5:4a:a6:3b: 67:7e:7a:ee:8d:00:c2:70:6f:cd:06:e1:57:4f:65: ba:42:1a:c2:de:c7:d3:ee:08:63:e0:7d:b8:fb:30: 7e:6c:03:62:cf:5c:ee:e1:bd:2c:fb:73:54:01:6c: d9:ad:b9:a6:ff:d9:8e:d1:22:08:56:03:9a:c3:62: 82:fa:a9:5b:fc:8d:bd:63:e9:08:50:e6:45:49:39: a9:a8:94:70:f9:4a:2e:a7:e1:e9:eb:ed:16:49:e2: 15:0d:0d:10:79:93:02:de:9c:1f:43:0b:c0:fb:0d: 16:16:92:7a:a6:18:ed:6f:cf:2a:f0:a8:20:66:55: 10:65:91:54:7c:00:21:24:83:e3:3f:e5:90:73:22: d5:6d:7d:15:23:2a:cb:43:96:fa:ce:47:b5:9f:c9: c9:ed:6b:19:8b:20:31:e8:c0:19:8f:ee:1a:32:2d: d0:a0:09:a3:6b:2e:cd:c3:c6:45:75:cf:83:51:98: fe:79:fa:4b:4d:28:18:9b:31:00:7a:13:cd:4e:13: db:2a:3f:ef:53:1b:b9:21:fd:89:eb:f6:3d:df:93: d4:23:74:71:7d:45:6f:e6:c5:19:fa:5b:fc:40:d3: 6f:d9:bf:43:7a:75:f3:8b:20:bd:6b:12:82:61:b7: 79:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:A7:90:E2:98:0D:6A:FC:39:66:3D:6A:86:82:2A:73:D6:5A:89:0A X509v3 Authority Key Identifier: keyid:0B:E0:28:63:55:B5:E2:56:98:8C:E4:54:DF:93:FC:0F:CA:7F:60:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C-AoY1W14laYjORU35P8D8p_YEA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:58:93:27:ee:ff:87:0d:a1:74:12:81:4f:fb:42:38:c5:71: 4b:0c:8a:39:4c:3c:5b:e3:87:6a:b1:11:70:10:2c:d3:8e:c7: db:1e:88:f8:24:bb:ad:e1:a0:29:89:62:7b:37:30:fe:b3:13: db:bb:18:bc:62:13:ba:0d:f6:bb:9a:6b:b7:a4:8d:75:7f:f4: a4:42:ac:bd:12:f9:e9:f9:66:ea:4e:d9:4a:6b:b4:29:fd:2d: b6:24:c2:3d:42:4a:5a:33:53:01:d4:73:eb:57:6e:15:13:e5: b8:a5:45:e4:08:f6:09:fa:4c:16:62:78:57:07:8d:63:3b:b6: 92:16:7f:f0:b9:4f:7b:ea:b8:93:a7:eb:5e:fd:0c:55:ae:7a: dc:e4:fc:a2:d0:4b:4a:5d:31:54:b9:0c:43:e1:07:96:fe:77: ab:29:1b:a0:3d:a4:2b:34:32:cc:a8:ef:2f:78:b6:77:0e:62: 05:fe:a3:19:a1:84:00:5e:82:7d:4f:cc:a3:80:52:af:80:18: e1:46:40:b3:59:ff:9c:76:32:0e:36:ac:10:63:b2:f7:6a:f8: 0f:cc:d7:00:2d:cf:cd:4c:2e:e6:c5:6d:9c:28:76:8d:52:62: 22:2c:cc:b4:24:ca:b4:e6:57:9c:89:2d:9c:ed:84:35:58:fc: 3b:f0:c3:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTFENDMxMTAvBgNVBAUTKDBCRTAyODYzNTVCNUUyNTY5ODhDRTQ1NERGOTNGQzBG Q0E3RjYwNDAwHhcNMjUxMjA3MDEwODExWhcNMjUxMjE0MDEwODExWjAYMRYwFAYD VQQDEw02OTM0ZDM3Yy00MjY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs+fM+aCpx+gpn/VKpjtnfnrujQDCcG/NBuFXT2W6QhrC3sfT7ghj4H24+zB+ bANiz1zu4b0s+3NUAWzZrbmm/9mO0SIIVgOaw2KC+qlb/I29Y+kIUOZFSTmpqJRw +Uoup+Hp6+0WSeIVDQ0QeZMC3pwfQwvA+w0WFpJ6phjtb88q8KggZlUQZZFUfAAh JIPjP+WQcyLVbX0VIyrLQ5b6zke1n8nJ7WsZiyAx6MAZj+4aMi3QoAmjay7Nw8ZF dc+DUZj+efpLTSgYmzEAehPNThPbKj/vUxu5If2J6/Y935PUI3RxfUVv5sUZ+lv8 QNNv2b9DenXziyC9axKCYbd5fwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF2nkOKY DWr8OWY9aoaCKnPWWokKMB8GA1UdIwQYMBaAFAvgKGNVteJWmIzkVN+T/A/Kf2BA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMUQ0My84OTI5REZERUVB MjgxMUVEQjdERDAxMThDNEY5QUUwMi9DLUFvWTFXMTRsYVlqT1JVMzVQOEQ4cF9Z RUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0MtQW9ZMVcxNGxhWWpPUlUzNVA4RDhwX1lFQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MUQ0My84OTI5REZERUVBMjgxMUVEQjdERDAxMThDNEY5QUUwMi9DLUFvWTFXMTRs YVlqT1JVMzVQOEQ4cF9ZRUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAoWJMn7v+HDaF0EoFP+0I4xXFLDIo5TDxb44dqsRFwECzTjsfbHoj4 JLut4aApiWJ7NzD+sxPbuxi8YhO6Dfa7mmu3pI11f/SkQqy9Evnp+WbqTtlKa7Qp /S22JMI9QkpaM1MB1HPrV24VE+W4pUXkCPYJ+kwWYnhXB41jO7aSFn/wuU976riT p+te/QxVrnrc5Pyi0EtKXTFUuQxD4QeW/nerKRugPaQrNDLMqO8veLZ3DmIF/qMZ oYQAXoJ9T8yjgFKvgBjhRkCzWf+cdjIONqwQY7L3avgPzNcALc/NTC7mxW2cKHaN UmIiLMy0JMq05leciS2c7YQ1WPw78MOj -----END CERTIFICATE-----Generated at Mon Dec 8 06:02:55 2025 by rpki-client