This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7B61/BE68D302CAAA11EBB8C02B5CC4F9AE02/cYQNfZjFz5vWvrRIatRnQGXxR0E.mft File: cYQNfZjFz5vWvrRIatRnQGXxR0E.mft (raw, json) Hash identifier: ZqPXCBHDSgwZtI1u2Z8UXdMqP1VczYUzYv5UFAgXcX8= Subject key identifier: 14:2E:B4:A4:3B:31:6F:56:C7:68:4F:6A:DC:A1:49:F1:FF:E6:0A:50 Authority key identifier: 71:84:0D:7D:98:C5:CF:9B:D6:BE:B4:48:6A:D4:67:40:65:F1:47:41 Certificate issuer: /CN=A91B7B61/serialNumber=71840D7D98C5CF9BD6BEB4486AD4674065F14741 Certificate serial: 0610 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cYQNfZjFz5vWvrRIatRnQGXxR0E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7B61/BE68D302CAAA11EBB8C02B5CC4F9AE02/cYQNfZjFz5vWvrRIatRnQGXxR0E.mft Manifest number: 060B Signing time: Sat 06 Dec 2025 21:43:51 +0000 Manifest this update: Sat 06 Dec 2025 21:43:51 +0000 Manifest next update: Sat 13 Dec 2025 21:43:51 +0000 Files and hashes: 1: cYQNfZjFz5vWvrRIatRnQGXxR0E.crl (hash: aAmVW37t71MSdpmRDiu8uGsdX7+yVSWu5qG5OJ8ojJE=) 2: C2EFC706CAAE11EBA95C5E64C4F9AE02.roa (hash: dMeJp28zx6FUq76ao4qK+ptEjKQRepLswYRFFIdTn7o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7B61/BE68D302CAAA11EBB8C02B5CC4F9AE02/cYQNfZjFz5vWvrRIatRnQGXxR0E.crl rsync://rpki.apnic.net/member_repository/A91B7B61/BE68D302CAAA11EBB8C02B5CC4F9AE02/cYQNfZjFz5vWvrRIatRnQGXxR0E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cYQNfZjFz5vWvrRIatRnQGXxR0E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 21:43:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1552 (0x610) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7B61, serialNumber=71840D7D98C5CF9BD6BEB4486AD4674065F14741 Validity Not Before: Dec 6 21:43:51 2025 GMT Not After : Dec 13 21:43:51 2025 GMT Subject: CN=6934a397-ac04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:3d:2c:a2:70:df:87:9d:d9:52:90:97:92:cf: 87:15:97:18:f0:1b:e6:ec:85:b1:c4:ab:c0:9f:9e: 78:9d:e1:fb:be:1f:6c:8f:32:60:b5:f4:1d:23:b2: 81:d8:ff:f6:ba:7f:c6:a6:6f:7f:cc:6a:7a:f2:ea: 93:fd:f7:ca:1d:cc:4a:d1:8f:ad:16:66:98:cf:2c: ce:9a:4d:0f:74:44:9c:fd:e4:8b:0b:61:9c:74:bb: 00:55:a6:f7:c1:6f:14:8a:39:fe:e5:ae:c2:c7:6f: 4d:e9:47:07:af:06:6a:04:a0:6c:a0:4f:f1:47:9b: 30:f0:13:e3:de:89:a1:64:cc:6f:c1:51:f9:6f:0e: 90:87:02:4b:6b:3f:d6:bd:22:e0:90:da:97:5e:45: 48:15:f8:4b:73:82:3a:d0:d0:b3:ed:e2:53:b0:12: c8:3a:df:3f:9a:11:74:b6:ba:30:88:74:8d:0e:7b: f3:b4:31:0b:bb:ca:e9:58:8a:5d:07:fb:63:2e:c1: 08:aa:5d:55:09:17:24:d3:e5:d3:4a:9b:92:5f:20: 05:11:ab:1c:69:4d:56:8e:83:ae:db:75:76:b6:c4: 9a:fd:39:5a:f3:3d:bf:2e:85:e7:25:7a:1f:73:c9: b7:27:77:d5:81:bc:4a:ac:07:39:e8:b6:21:49:db: 01:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:2E:B4:A4:3B:31:6F:56:C7:68:4F:6A:DC:A1:49:F1:FF:E6:0A:50 X509v3 Authority Key Identifier: keyid:71:84:0D:7D:98:C5:CF:9B:D6:BE:B4:48:6A:D4:67:40:65:F1:47:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7B61/BE68D302CAAA11EBB8C02B5CC4F9AE02/cYQNfZjFz5vWvrRIatRnQGXxR0E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cYQNfZjFz5vWvrRIatRnQGXxR0E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7B61/BE68D302CAAA11EBB8C02B5CC4F9AE02/cYQNfZjFz5vWvrRIatRnQGXxR0E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:03:3f:7b:81:75:12:c8:1d:d2:64:f4:b2:8a:a5:8b:11:d8: 43:fb:d4:0e:35:63:21:69:e8:6e:a5:e0:26:4b:fb:5d:08:77: e2:b4:18:1c:1f:75:42:29:ca:63:57:4a:01:dd:20:3b:b1:f3: 95:2a:a6:c5:bf:18:30:a8:a6:ff:9f:17:d8:de:d6:09:bb:cd: 19:77:19:29:a3:73:d1:0c:e1:3f:3c:a4:5d:2a:37:3e:e5:36: 6c:6a:fc:4f:ce:f3:7c:19:10:6f:41:fb:33:ff:6e:f9:99:75: de:63:bb:10:cf:3b:8c:68:b6:b4:58:99:f4:85:55:95:8a:53: 60:ae:ee:fa:7c:a1:ac:d0:a0:5a:8f:9a:96:98:0a:95:82:9f: d2:42:58:84:b3:9b:07:a5:f7:3b:47:78:f6:a4:cf:b4:24:df: aa:64:c2:ad:a1:f1:05:fc:44:82:32:4f:79:2a:86:0c:11:cd: cb:6c:f2:8f:92:1c:75:9d:8d:6e:6d:16:ed:2a:29:1d:f9:c2: c2:21:00:c0:24:8f:b4:19:32:73:99:c3:e7:cf:ec:83:66:22: 20:49:a2:e1:dc:b8:90:ad:fb:fc:bc:f7:ee:81:c6:20:c1:b2: e1:32:a1:82:d3:d6:e5:cc:6d:78:7e:16:34:83:2f:97:0a:62: 3c:cf:ea:2c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBhAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjdCNjExMTAvBgNVBAUTKDcxODQwRDdEOThDNUNGOUJENkJFQjQ0ODZBRDQ2NzQw NjVGMTQ3NDEwHhcNMjUxMjA2MjE0MzUxWhcNMjUxMjEzMjE0MzUxWjAYMRYwFAYD VQQDEw02OTM0YTM5Ny1hYzA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxT0sonDfh53ZUpCXks+HFZcY8Bvm7IWxxKvAn554neH7vh9sjzJgtfQdI7KB 2P/2un/Gpm9/zGp68uqT/ffKHcxK0Y+tFmaYzyzOmk0PdESc/eSLC2GcdLsAVab3 wW8Uijn+5a7Cx29N6UcHrwZqBKBsoE/xR5sw8BPj3omhZMxvwVH5bw6QhwJLaz/W vSLgkNqXXkVIFfhLc4I60NCz7eJTsBLIOt8/mhF0trowiHSNDnvztDELu8rpWIpd B/tjLsEIql1VCRck0+XTSpuSXyAFEascaU1WjoOu23V2tsSa/Tla8z2/LoXnJXof c8m3J3fVgbxKrAc56LYhSdsBbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBQutKQ7 MW9Wx2hPatyhSfH/5gpQMB8GA1UdIwQYMBaAFHGEDX2Yxc+b1r60SGrUZ0Bl8UdB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCN0I2MS9CRTY4RDMwMkNB QUExMUVCQjhDMDJCNUNDNEY5QUUwMi9jWVFOZlpqRno1dld2clJJYXRSblFHWHhS MEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NZUU5mWmpGejV2V3ZyUklhdFJuUUdYeFIwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC N0I2MS9CRTY4RDMwMkNBQUExMUVCQjhDMDJCNUNDNEY5QUUwMi9jWVFOZlpqRno1 dld2clJJYXRSblFHWHhSMEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBdAz97gXUSyB3SZPSyiqWLEdhD+9QONWMhaehupeAmS/tdCHfitBgc H3VCKcpjV0oB3SA7sfOVKqbFvxgwqKb/nxfY3tYJu80Zdxkpo3PRDOE/PKRdKjc+ 5TZsavxPzvN8GRBvQfsz/275mXXeY7sQzzuMaLa0WJn0hVWVilNgru76fKGs0KBa j5qWmAqVgp/SQliEs5sHpfc7R3j2pM+0JN+qZMKtofEF/ESCMk95KoYMEc3LbPKP khx1nY1ubRbtKikd+cLCIQDAJI+0GTJzmcPnz+yDZiIgSaLh3LiQrfv8vPfugcYg wbLhMqGC09blzG14fhY0gy+XCmI8z+os -----END CERTIFICATE-----Generated at Mon Dec 8 06:12:01 2025 by rpki-client