This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.mft File: DYtx2GteICkzvLAqW210CSpSoXw.mft (raw, json) Hash identifier: bwfUR5bcwtTEw3h3CodwS4s+JzUGeIH4fGzid8pE+pM= Subject key identifier: 78:CB:E9:EB:80:66:B4:0F:F8:82:84:D4:D9:39:0E:43:EF:38:1A:46 Authority key identifier: 0D:8B:71:D8:6B:5E:20:29:33:BC:B0:2A:5B:6D:74:09:2A:52:A1:7C Certificate issuer: /CN=A91A395C/serialNumber=0D8B71D86B5E202933BCB02A5B6D74092A52A17C Certificate serial: 3538 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DYtx2GteICkzvLAqW210CSpSoXw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.mft Manifest number: 350A Signing time: Mon 08 Dec 2025 14:45:12 +0000 Manifest this update: Mon 08 Dec 2025 14:45:11 +0000 Manifest next update: Mon 15 Dec 2025 14:45:11 +0000 Files and hashes: 1: DYtx2GteICkzvLAqW210CSpSoXw.crl (hash: ARQNja/pZ3XfILbQWF7mUgZpYO92ytRm/l6nG6Tczlk=) 2: 991EB004BE8511EE960E5082C4F9AE02.roa (hash: IR/fxoozFicSxIrUXHGZXGMAUroK6RP4wvdk7z4PV7A=) 3: 9B71FEB0593F11EA9F9FA238C4F9AE02.roa (hash: XQCwNi2PZQw3HwB0S22xbUukUjh1gRPdN0DptoUSl6Q=) 4: D56D9FD87E8711EC9A928B6AC4F9AE02.roa (hash: MzFm0njK9GauK3PVGzL0I/Klqbd6ft5wJ9/podujw/8=) 5: 9A2B0DE4593F11EA9F9FA238C4F9AE02.roa (hash: jv97nGJvaH0WKHe7n31vkT3MMMbNqFjpDhhexD6X6+Q=) 6: 65552C3AE8D411ED8D0FAD45C4F9AE02.roa (hash: ifJGYL5q49BedEWwURROMxMLmQuzo6sd4i9VU7gjPWk=) 7: 3DBC186C5AD611EF85A4557BC4F9AE02.roa (hash: crg/ljxSxvSurizJ6VoDNQFMCKyOAKHsQIWFOorvrvI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.crl rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DYtx2GteICkzvLAqW210CSpSoXw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Dec 2025 14:45:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13624 (0x3538) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A395C, serialNumber=0D8B71D86B5E202933BCB02A5B6D74092A52A17C Validity Not Before: Dec 8 14:45:11 2025 GMT Not After : Dec 15 14:45:11 2025 GMT Subject: CN=6936e477-5717 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:7a:00:1d:c5:13:47:f4:0e:bb:e8:a6:99:f7: f7:b7:e5:e9:75:e9:39:15:5b:2a:22:b8:48:93:96: f2:92:b4:d1:f1:7b:c1:39:a5:44:65:7d:6a:fe:ca: b5:37:31:54:ab:bb:b0:0e:73:2a:47:c2:33:f3:66: d1:fc:43:e3:ec:85:f9:ba:6f:65:28:69:6a:25:79: 55:99:dc:74:f9:91:cd:8d:46:a3:19:88:f9:dd:3a: 63:58:03:e1:b3:42:c8:12:64:09:c8:73:2c:04:0f: c4:26:15:a4:ce:e7:6e:0f:de:ab:d7:bc:92:52:a0: 14:e3:1b:ff:ec:27:f8:9f:41:cd:ec:00:42:19:19: 13:fb:e1:28:d0:08:1d:c5:1d:83:4e:89:98:04:5b: 23:c5:11:8a:04:01:a7:b9:26:73:e5:a4:c9:ca:a6: 05:c4:f9:5a:b3:95:7e:e1:c3:a2:bc:56:6e:ca:62: bd:0f:c3:c0:e2:47:af:df:3f:68:73:c3:72:b8:2d: 28:7b:8d:8b:2f:be:ff:ee:f6:b2:74:34:8c:fc:76: 8d:45:7b:ab:44:af:a7:82:a2:9d:24:37:f1:6b:ca: 30:4a:fd:a8:b6:c0:b6:37:8d:ae:8a:e5:17:80:f7: 00:65:2b:1f:59:32:13:a7:5c:39:99:78:80:28:a4: b4:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:CB:E9:EB:80:66:B4:0F:F8:82:84:D4:D9:39:0E:43:EF:38:1A:46 X509v3 Authority Key Identifier: keyid:0D:8B:71:D8:6B:5E:20:29:33:BC:B0:2A:5B:6D:74:09:2A:52:A1:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DYtx2GteICkzvLAqW210CSpSoXw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:4e:6b:64:70:54:47:7e:ab:32:e2:a6:4f:2d:20:3e:93:14: 04:60:ca:1c:6b:c0:01:c1:81:65:39:57:97:03:24:9d:87:dd: d0:a3:4a:ad:fe:e1:8c:f8:3c:b2:f2:a4:28:7c:93:8b:49:0b: f3:f9:d7:cd:aa:6d:9c:0e:b1:6c:24:f0:c5:b4:17:c5:24:02: e5:42:a3:6d:f7:45:78:66:27:ce:76:94:09:cc:98:de:b0:4c: 78:9f:73:88:b9:05:51:82:14:2a:62:56:a5:4b:e7:0c:02:18: dc:bd:f3:7c:89:98:5d:fb:00:48:91:68:59:2c:4a:cd:fc:9f: f2:35:86:7b:83:02:ea:6c:e0:f4:7c:b7:9f:54:d1:e5:2d:74: af:a1:79:57:53:75:6b:9c:7d:5b:6a:35:43:90:71:fa:a0:22: 4e:d2:a3:ea:ec:3c:af:db:8b:37:15:1a:93:50:69:95:31:1c: 20:88:8d:c8:38:c1:c2:64:02:f2:af:75:3a:af:84:9f:71:4c: b3:1b:27:0e:64:1d:78:a7:dd:8f:a1:be:41:52:60:dc:2f:07: af:03:84:ef:9e:c3:cc:78:72:ac:63:12:d3:40:b5:0d:99:02: 22:18:10:d7:2c:90:ea:31:c9:09:be:6b:9f:72:e3:d6:89:a8: 2c:4c:1c:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNTgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTM5NUMxMTAvBgNVBAUTKDBEOEI3MUQ4NkI1RTIwMjkzM0JDQjAyQTVCNkQ3NDA5 MkE1MkExN0MwHhcNMjUxMjA4MTQ0NTExWhcNMjUxMjE1MTQ0NTExWjAYMRYwFAYD VQQDEw02OTM2ZTQ3Ny01NzE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw3oAHcUTR/QOu+immff3t+Xpdek5FVsqIrhIk5bykrTR8XvBOaVEZX1q/sq1 NzFUq7uwDnMqR8Iz82bR/EPj7IX5um9lKGlqJXlVmdx0+ZHNjUajGYj53TpjWAPh s0LIEmQJyHMsBA/EJhWkzuduD96r17ySUqAU4xv/7Cf4n0HN7ABCGRkT++Eo0Agd xR2DTomYBFsjxRGKBAGnuSZz5aTJyqYFxPlas5V+4cOivFZuymK9D8PA4kev3z9o c8NyuC0oe42LL77/7vaydDSM/HaNRXurRK+ngqKdJDfxa8owSv2otsC2N42uiuUX gPcAZSsfWTITp1w5mXiAKKS0aQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHjL6euA ZrQP+IKE1Nk5DkPvOBpGMB8GA1UdIwQYMBaAFA2LcdhrXiApM7ywKlttdAkqUqF8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzk1Qy9CQjM0MTdDMDFE OTYxMUUyQjhCQjgyN0YwOEIwMkNEMi9EWXR4Mkd0ZUlDa3p2TEFxVzIxMENTcFNv WHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RZdHgyR3RlSUNrenZMQXFXMjEwQ1NwU29Ydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Mzk1Qy9CQjM0MTdDMDFEOTYxMUUyQjhCQjgyN0YwOEIwMkNEMi9EWXR4Mkd0ZUlD a3p2TEFxVzIxMENTcFNvWHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUTmtkcFRHfqsy4qZPLSA+kxQEYMoca8ABwYFlOVeXAySdh93Qo0qt /uGM+Dyy8qQofJOLSQvz+dfNqm2cDrFsJPDFtBfFJALlQqNt90V4ZifOdpQJzJje sEx4n3OIuQVRghQqYlalS+cMAhjcvfN8iZhd+wBIkWhZLErN/J/yNYZ7gwLqbOD0 fLefVNHlLXSvoXlXU3VrnH1bajVDkHH6oCJO0qPq7Dyv24s3FRqTUGmVMRwgiI3I OMHCZALyr3U6r4SfcUyzGycOZB14p92Pob5BUmDcLwevA4TvnsPMeHKsYxLTQLUN mQIiGBDXLJDqMckJvmufcuPWiagsTBz8 -----END CERTIFICATE-----Generated at Wed Dec 10 10:03:52 2025 by rpki-client