This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7700/CCDBF4F0AE5711ECB4A1DA64C4F9AE02/y78mA3JNeFZrHBLDLVxIH10w8fI.mft File: y78mA3JNeFZrHBLDLVxIH10w8fI.mft (raw, json) Hash identifier: R6jn1BRkAVsZZf2lnlFtWAKUNbAjussoq1pcFBTlcXc= Subject key identifier: EE:4A:C2:DA:D8:01:3C:8D:30:34:DE:05:BA:72:31:28:E5:94:FB:A3 Authority key identifier: CB:BF:26:03:72:4D:78:56:6B:1C:12:C3:2D:5C:48:1F:5D:30:F1:F2 Certificate issuer: /CN=A91B7700/serialNumber=CBBF2603724D78566B1C12C32D5C481F5D30F1F2 Certificate serial: 03D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y78mA3JNeFZrHBLDLVxIH10w8fI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7700/CCDBF4F0AE5711ECB4A1DA64C4F9AE02/y78mA3JNeFZrHBLDLVxIH10w8fI.mft Manifest number: 03D1 Signing time: Wed 17 Dec 2025 00:00:56 +0000 Manifest this update: Wed 17 Dec 2025 00:00:55 +0000 Manifest next update: Wed 24 Dec 2025 00:00:55 +0000 Files and hashes: 1: y78mA3JNeFZrHBLDLVxIH10w8fI.crl (hash: iLgXahn+f9JLaOAZ129OxkmIpbFEo0nD/2xW8PY9jo4=) 2: 93D60566AE5B11ECB19C1569C4F9AE02.roa (hash: ypeDdRgdlFu3mSiTJZgTSrGrzIisGsgwbRQwhsD5B0I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7700/CCDBF4F0AE5711ECB4A1DA64C4F9AE02/y78mA3JNeFZrHBLDLVxIH10w8fI.crl rsync://rpki.apnic.net/member_repository/A91B7700/CCDBF4F0AE5711ECB4A1DA64C4F9AE02/y78mA3JNeFZrHBLDLVxIH10w8fI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y78mA3JNeFZrHBLDLVxIH10w8fI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Dec 2025 00:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 982 (0x3d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7700, serialNumber=CBBF2603724D78566B1C12C32D5C481F5D30F1F2 Validity Not Before: Dec 17 00:00:55 2025 GMT Not After : Dec 24 00:00:55 2025 GMT Subject: CN=6941f2b8-692a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:35:e7:db:95:70:2b:43:76:9c:4a:d9:be:5e: db:6f:78:50:7b:85:5d:36:29:c0:f9:ee:05:4e:10: 5d:b1:c7:8a:56:2d:a3:44:1d:80:ef:f8:a2:01:a4: ec:e5:7b:c0:66:c7:a4:5c:1e:0e:c1:f8:6b:52:f8: 85:00:c5:e0:dd:25:8d:ea:79:70:b5:ef:e9:29:1a: 5e:90:d9:05:5c:23:96:c6:2f:54:20:63:42:2b:5d: af:db:92:8b:c8:c3:5c:c9:79:4f:55:e7:10:3e:e4: a0:3f:26:3c:33:ba:25:f5:b6:2f:85:bb:58:4a:fa: b1:e1:5f:9a:78:be:68:7c:60:78:d1:02:ac:ec:30: 27:7f:5c:7b:f4:dd:d4:67:f0:c0:f0:7d:bb:75:05: 65:28:61:5e:83:59:78:35:98:96:b9:0c:1c:5a:82: 5b:85:20:c6:21:64:da:15:c7:f0:db:8d:0d:e9:60: 08:89:1a:7d:b7:cb:31:aa:29:5d:2f:e0:29:cb:6a: b5:20:13:91:16:7f:48:4a:c5:5d:92:7c:dd:36:06: 94:99:78:0d:4e:bf:e2:73:31:7d:f2:6b:2a:1b:06: 5e:49:dd:c8:c0:71:84:bb:39:8d:7b:57:8d:8e:20: d8:15:12:08:e6:89:e4:be:84:19:31:dd:69:d1:49: 2e:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:4A:C2:DA:D8:01:3C:8D:30:34:DE:05:BA:72:31:28:E5:94:FB:A3 X509v3 Authority Key Identifier: keyid:CB:BF:26:03:72:4D:78:56:6B:1C:12:C3:2D:5C:48:1F:5D:30:F1:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7700/CCDBF4F0AE5711ECB4A1DA64C4F9AE02/y78mA3JNeFZrHBLDLVxIH10w8fI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y78mA3JNeFZrHBLDLVxIH10w8fI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7700/CCDBF4F0AE5711ECB4A1DA64C4F9AE02/y78mA3JNeFZrHBLDLVxIH10w8fI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:0a:79:a1:86:69:96:c2:89:a5:3a:d2:f6:50:2b:f1:3c:22: f8:54:3f:c5:a9:8a:88:ce:c2:91:ed:29:49:7b:80:09:98:b2: b3:06:f8:6f:2d:ae:08:1e:55:b4:4a:12:36:17:14:1c:cb:81: 65:f4:62:01:61:42:94:5f:71:2c:49:d5:01:55:7d:66:9a:70: 20:47:ab:e4:e8:df:dc:47:62:9d:60:d8:3b:bb:34:ae:f0:6a: 8b:38:e8:ab:b6:cf:03:fe:96:bd:24:7d:7e:fa:08:84:d2:e2: 91:39:66:48:6c:1e:fd:1e:3d:b5:8b:c4:cc:7c:0c:f0:0d:68: 1a:86:0c:81:2a:c9:78:1f:e7:c1:44:e0:66:2d:f1:c1:5f:c5: 20:2b:0d:d1:df:7b:e6:98:01:bc:65:82:97:09:93:d1:85:54: 64:5a:07:a1:2f:26:fb:70:8e:ff:e5:92:95:60:03:fc:2e:42: ee:59:c7:11:52:66:f0:90:44:e6:dc:e4:c1:93:2e:bd:51:e7: 0e:56:37:36:60:eb:af:f3:4c:18:a4:49:43:f0:6e:6e:a3:d2: 66:0a:e6:11:9a:9a:c6:68:c8:dc:7b:17:d7:60:66:4a:51:30: 70:b8:62:4f:aa:51:65:48:f8:c5:a3:93:b3:df:8f:fd:c2:bf: 98:72:7f:81 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA9YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjc3MDAxMTAvBgNVBAUTKENCQkYyNjAzNzI0RDc4NTY2QjFDMTJDMzJENUM0ODFG NUQzMEYxRjIwHhcNMjUxMjE3MDAwMDU1WhcNMjUxMjI0MDAwMDU1WjAYMRYwFAYD VQQDDA02OTQxZjJiOC02OTJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzjXn25VwK0N2nErZvl7bb3hQe4VdNinA+e4FThBdsceKVi2jRB2A7/iiAaTs 5XvAZsekXB4OwfhrUviFAMXg3SWN6nlwte/pKRpekNkFXCOWxi9UIGNCK12v25KL yMNcyXlPVecQPuSgPyY8M7ol9bYvhbtYSvqx4V+aeL5ofGB40QKs7DAnf1x79N3U Z/DA8H27dQVlKGFeg1l4NZiWuQwcWoJbhSDGIWTaFcfw240N6WAIiRp9t8sxqild L+Apy2q1IBORFn9ISsVdknzdNgaUmXgNTr/iczF98msqGwZeSd3IwHGEuzmNe1eN jiDYFRII5onkvoQZMd1p0UkuiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO5KwtrY ATyNMDTeBbpyMSjllPujMB8GA1UdIwQYMBaAFMu/JgNyTXhWaxwSwy1cSB9dMPHy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzcwMC9DQ0RCRjRGMEFF NTcxMUVDQjRBMURBNjRDNEY5QUUwMi95NzhtQTNKTmVGWnJIQkxETFZ4SUgxMHc4 ZkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3k3OG1BM0pOZUZackhCTERMVnhJSDEwdzhmSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NzcwMC9DQ0RCRjRGMEFFNTcxMUVDQjRBMURBNjRDNEY5QUUwMi95NzhtQTNKTmVG WnJIQkxETFZ4SUgxMHc4ZkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBECnmhhmmWwomlOtL2UCvxPCL4VD/FqYqIzsKR7SlJe4AJmLKzBvhv La4IHlW0ShI2FxQcy4Fl9GIBYUKUX3EsSdUBVX1mmnAgR6vk6N/cR2KdYNg7uzSu 8GqLOOirts8D/pa9JH1++giE0uKROWZIbB79Hj21i8TMfAzwDWgahgyBKsl4H+fB ROBmLfHBX8UgKw3R33vmmAG8ZYKXCZPRhVRkWgehLyb7cI7/5ZKVYAP8LkLuWccR UmbwkETm3OTBky69UecOVjc2YOuv80wYpElD8G5uo9JmCuYRmprGaMjcexfXYGZK UTBwuGJPqlFlSPjFo5Oz34/9wr+Ycn+B -----END CERTIFICATE-----Generated at Wed Dec 17 10:42:37 2025 by rpki-client