This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A822F/5842D304F7F011EE98C8C92BC4F9AE02/2YcsGT4Y3BUf4--eKa_oMSGyTRA.mft File: 2YcsGT4Y3BUf4--eKa_oMSGyTRA.mft (raw, json) Hash identifier: qYej6nG4DwmDNwgKWTrHoq+qHNsBhAHD5yMSSlcLDqY= Subject key identifier: 39:78:A2:71:B6:58:39:94:16:D5:DA:38:DE:98:6D:74:1C:38:5E:A6 Authority key identifier: D9:87:2C:19:3E:18:DC:15:1F:E3:EF:9E:29:AF:E8:31:21:B2:4D:10 Certificate issuer: /CN=A91A822F/serialNumber=D9872C193E18DC151FE3EF9E29AFE83121B24D10 Certificate serial: 013E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YcsGT4Y3BUf4--eKa_oMSGyTRA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A822F/5842D304F7F011EE98C8C92BC4F9AE02/2YcsGT4Y3BUf4--eKa_oMSGyTRA.mft Manifest number: 0135 Signing time: Tue 25 Nov 2025 02:44:12 +0000 Manifest this update: Tue 25 Nov 2025 02:44:11 +0000 Manifest next update: Tue 02 Dec 2025 02:44:11 +0000 Files and hashes: 1: 2YcsGT4Y3BUf4--eKa_oMSGyTRA.crl (hash: 4ySu2uunqbJ1Q9SAjjsFXbMDmZfKcEHkIo6NJkk8hZ8=) 2: B04338609E8811F09A69050AC4F9AE02.roa (hash: 0XVtpLEu6mzH4OrnlrOYyiblJIwpUeCvabkFn8jxbN4=) 3: E46DBE449E8811F0A343880AC4F9AE02.roa (hash: 09qMEc1nAzT4e4OGyHGlymxMMsFzVDFV6geJgZgwtG4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A822F/5842D304F7F011EE98C8C92BC4F9AE02/2YcsGT4Y3BUf4--eKa_oMSGyTRA.crl rsync://rpki.apnic.net/member_repository/A91A822F/5842D304F7F011EE98C8C92BC4F9AE02/2YcsGT4Y3BUf4--eKa_oMSGyTRA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YcsGT4Y3BUf4--eKa_oMSGyTRA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 02 Dec 2025 02:44:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 318 (0x13e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A822F, serialNumber=D9872C193E18DC151FE3EF9E29AFE83121B24D10 Validity Not Before: Nov 25 02:44:11 2025 GMT Not After : Dec 2 02:44:11 2025 GMT Subject: CN=692517fb-be5f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:84:3d:4e:8c:de:70:fb:1d:1e:95:3f:d0:d0: 8d:f6:ba:66:25:8c:a9:3d:eb:dc:fd:73:74:d8:a0: 34:85:65:b0:7f:03:0b:26:04:75:5b:6b:2e:41:7b: 0e:26:fb:b7:e9:1b:0b:d3:de:92:01:56:ef:c1:2a: 9e:5f:74:a3:44:b3:ab:a7:5d:16:95:e6:16:d6:0a: 17:cc:d6:09:11:50:d8:90:f8:f2:df:0e:7f:46:11: 80:22:bc:0a:05:2f:27:3d:71:71:69:89:ee:e2:4c: ef:1c:15:06:0c:b8:4d:1b:9f:1c:1d:14:72:c6:b1: ef:ab:83:ff:b0:bd:f3:b3:0b:76:dc:46:15:c1:17: c4:81:b0:c7:7b:4b:1a:c0:0a:72:03:9c:eb:c0:eb: 72:aa:ad:e0:47:c8:94:1a:d8:c9:d8:31:a5:db:8a: f1:f7:60:67:32:d3:11:08:6c:94:86:62:ff:3f:7b: bd:59:7b:45:1f:af:0c:ea:54:b4:e3:f7:bd:ac:c1: 6f:7c:0f:40:96:1a:5a:51:52:54:74:76:ca:ed:3a: 7c:e3:72:ab:07:52:33:1e:9e:dd:a9:d8:d6:51:c8: 45:76:d5:53:c5:0e:5f:ae:80:38:39:65:c0:ae:44: 53:cb:b1:6b:d8:69:a2:30:5a:97:4c:da:eb:a9:e3: 9f:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:78:A2:71:B6:58:39:94:16:D5:DA:38:DE:98:6D:74:1C:38:5E:A6 X509v3 Authority Key Identifier: keyid:D9:87:2C:19:3E:18:DC:15:1F:E3:EF:9E:29:AF:E8:31:21:B2:4D:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A822F/5842D304F7F011EE98C8C92BC4F9AE02/2YcsGT4Y3BUf4--eKa_oMSGyTRA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YcsGT4Y3BUf4--eKa_oMSGyTRA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A822F/5842D304F7F011EE98C8C92BC4F9AE02/2YcsGT4Y3BUf4--eKa_oMSGyTRA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:16:ae:06:e3:77:ae:c7:f1:91:88:c9:d3:aa:c1:3b:2f:3a: b0:03:dc:8e:a4:bf:71:5e:d5:73:83:70:15:df:54:ab:6b:a9: d0:e3:0d:21:25:6b:41:ef:c0:a7:9c:c0:66:84:fa:64:c3:89: e0:f9:56:bc:28:a8:ca:ba:83:3a:32:1d:fc:d2:aa:1d:06:6e: 90:e7:73:9b:02:11:3b:e8:2d:79:d1:4c:5b:42:cf:1f:51:31: 33:e1:cd:ce:60:a2:b8:5b:d1:b0:ec:04:2a:42:94:24:88:72: ce:17:99:82:a8:ed:57:d1:fa:6c:a6:e4:8c:c7:77:6e:70:82: ee:c7:89:41:50:eb:b0:c5:a3:1b:d3:9e:eb:2e:3b:5d:6f:bc: 51:e7:c6:99:ae:4a:40:68:19:93:7a:de:49:31:50:ce:0f:77: 7e:b6:2a:57:df:ee:b1:5d:60:e0:17:09:58:e9:fa:30:68:b2: 15:a5:be:74:d9:c8:c0:28:b5:6c:25:7b:60:85:79:df:eb:20: 5c:5b:83:9c:0f:cd:dd:32:5a:2b:e8:1b:d9:6f:c2:80:20:15: f1:52:03:25:6c:f8:90:0c:e1:3e:9b:78:33:55:bc:5a:75:d1: 7c:65:5f:a5:6c:e9:35:23:f0:cb:f1:b1:17:1a:58:f3:e2:86: 0f:b3:dd:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAT4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTgyMkYxMTAvBgNVBAUTKEQ5ODcyQzE5M0UxOERDMTUxRkUzRUY5RTI5QUZFODMx MjFCMjREMTAwHhcNMjUxMTI1MDI0NDExWhcNMjUxMjAyMDI0NDExWjAYMRYwFAYD VQQDEw02OTI1MTdmYi1iZTVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyIQ9TozecPsdHpU/0NCN9rpmJYypPevc/XN02KA0hWWwfwMLJgR1W2suQXsO Jvu36RsL096SAVbvwSqeX3SjRLOrp10WleYW1goXzNYJEVDYkPjy3w5/RhGAIrwK BS8nPXFxaYnu4kzvHBUGDLhNG58cHRRyxrHvq4P/sL3zswt23EYVwRfEgbDHe0sa wApyA5zrwOtyqq3gR8iUGtjJ2DGl24rx92BnMtMRCGyUhmL/P3u9WXtFH68M6lS0 4/e9rMFvfA9AlhpaUVJUdHbK7Tp843KrB1IzHp7dqdjWUchFdtVTxQ5froA4OWXA rkRTy7Fr2GmiMFqXTNrrqeOfAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDl4onG2 WDmUFtXaON6YbXQcOF6mMB8GA1UdIwQYMBaAFNmHLBk+GNwVH+Pvnimv6DEhsk0Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODIyRi81ODQyRDMwNEY3 RjAxMUVFOThDOEM5MkJDNEY5QUUwMi8yWWNzR1Q0WTNCVWY0LS1lS2Ffb01TR3lU UkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJZY3NHVDRZM0JVZjQtLWVLYV9vTVNHeVRSQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODIyRi81ODQyRDMwNEY3RjAxMUVFOThDOEM5MkJDNEY5QUUwMi8yWWNzR1Q0WTNC VWY0LS1lS2Ffb01TR3lUUkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7Fq4G43eux/GRiMnTqsE7LzqwA9yOpL9xXtVzg3AV31Sra6nQ4w0h JWtB78CnnMBmhPpkw4ng+Va8KKjKuoM6Mh380qodBm6Q53ObAhE76C150UxbQs8f UTEz4c3OYKK4W9Gw7AQqQpQkiHLOF5mCqO1X0fpspuSMx3ducILux4lBUOuwxaMb 057rLjtdb7xR58aZrkpAaBmTet5JMVDOD3d+tipX3+6xXWDgFwlY6fowaLIVpb50 2cjAKLVsJXtghXnf6yBcW4OcD83dMlor6BvZb8KAIBXxUgMlbPiQDOE+m3gzVbxa ddF8ZV+lbOk1I/DL8bEXGljz4oYPs93X -----END CERTIFICATE-----Generated at Tue Nov 25 19:52:07 2025 by rpki-client