This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC039/BB5323E825C211ECB499D158C4F9AE02/y2yF51LVad_PHekEycvnHkg-9fI.mft File: y2yF51LVad_PHekEycvnHkg-9fI.mft (raw, json) Hash identifier: fW4ywILOfk7u9GTj8PNACIwcl19xO/ltKBcNDww41w4= Subject key identifier: 24:7D:E1:E5:68:86:E8:AD:CF:68:9A:3B:AF:AC:2A:A3:DE:BC:5D:F3 Authority key identifier: CB:6C:85:E7:52:D5:69:DF:CF:1D:E9:04:C9:CB:E7:1E:48:3E:F5:F2 Certificate issuer: /CN=A91BC039/serialNumber=CB6C85E752D569DFCF1DE904C9CBE71E483EF5F2 Certificate serial: 0541 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y2yF51LVad_PHekEycvnHkg-9fI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC039/BB5323E825C211ECB499D158C4F9AE02/y2yF51LVad_PHekEycvnHkg-9fI.mft Manifest number: 0539 Signing time: Mon 22 Dec 2025 22:36:51 +0000 Manifest this update: Mon 22 Dec 2025 22:36:50 +0000 Manifest next update: Mon 29 Dec 2025 22:36:50 +0000 Files and hashes: 1: y2yF51LVad_PHekEycvnHkg-9fI.crl (hash: scwfDj3jD5/wG2agJyrcL3Ay+f2r/CUMPdNnvor0zUM=) 2: 004A745EDBB011F0904A453A4D641951.roa (hash: AdhWoboxvB3fE2Iwxcb6ADucdBfCgNo/P3RvBt247qE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC039/BB5323E825C211ECB499D158C4F9AE02/y2yF51LVad_PHekEycvnHkg-9fI.crl rsync://rpki.apnic.net/member_repository/A91BC039/BB5323E825C211ECB499D158C4F9AE02/y2yF51LVad_PHekEycvnHkg-9fI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y2yF51LVad_PHekEycvnHkg-9fI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 22:36:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1345 (0x541) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC039, serialNumber=CB6C85E752D569DFCF1DE904C9CBE71E483EF5F2 Validity Not Before: Dec 22 22:36:50 2025 GMT Not After : Dec 29 22:36:50 2025 GMT Subject: CN=6949c802-0193 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:34:b4:4c:1c:ce:60:3d:56:b2:01:eb:96:ba: bd:1d:29:1b:46:1a:d6:fe:ad:f0:3e:0f:34:48:03: d6:fd:e0:00:12:46:64:51:9d:25:55:95:c2:17:fc: d4:e1:23:89:93:f0:f8:b9:1a:a0:37:c7:fd:43:3b: 8a:2e:24:0a:a7:7f:70:cd:74:89:bd:3c:5c:fc:5d: 0a:a3:8d:bf:07:05:49:78:95:82:10:50:8e:51:1d: bd:4c:f3:35:ff:ae:d5:76:d3:58:fc:4e:2d:d3:0a: f3:a8:36:30:e7:63:93:e5:1f:ee:ef:e1:3c:8c:41: 38:ba:ca:68:07:6a:06:76:df:81:45:92:01:0e:7a: 55:9d:44:6d:43:76:72:2e:43:74:57:97:15:ec:6d: c7:f3:74:9a:8b:4f:de:25:aa:a2:18:91:b9:72:91: 65:37:41:63:f4:9f:7d:70:eb:c9:c8:66:b8:16:50: bf:5c:41:0a:db:be:43:8f:6e:69:e4:56:c8:36:1b: 99:f0:45:e8:79:69:b8:f9:d0:ed:28:2f:b6:d5:86: 4e:80:87:1f:86:e4:19:e2:58:08:50:72:1f:e3:e0: a4:8b:13:6b:f9:38:09:ff:72:db:95:e8:29:8a:8c: 64:21:51:a0:c3:80:7a:16:13:2a:0c:14:ca:ae:01: b4:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:7D:E1:E5:68:86:E8:AD:CF:68:9A:3B:AF:AC:2A:A3:DE:BC:5D:F3 X509v3 Authority Key Identifier: keyid:CB:6C:85:E7:52:D5:69:DF:CF:1D:E9:04:C9:CB:E7:1E:48:3E:F5:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC039/BB5323E825C211ECB499D158C4F9AE02/y2yF51LVad_PHekEycvnHkg-9fI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y2yF51LVad_PHekEycvnHkg-9fI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC039/BB5323E825C211ECB499D158C4F9AE02/y2yF51LVad_PHekEycvnHkg-9fI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:38:9b:e0:5b:62:78:be:fb:ec:d3:75:cf:ec:2d:66:0c:36: ff:cd:36:4e:60:4c:ce:84:8c:10:38:8d:b3:56:46:c9:cd:73: 31:f0:7b:13:f4:22:7f:0e:4a:4b:c7:b4:1e:36:b0:d4:90:bb: 11:a4:b1:86:03:16:6e:f8:36:fa:63:b9:10:8c:49:6c:e2:80: bc:b3:f0:aa:f7:1b:ca:14:35:4a:98:68:76:60:c6:0b:fb:b3: 22:64:c0:77:cd:2c:96:4f:30:47:e7:d0:fc:bc:7d:db:20:c8: 99:07:2c:32:d0:2e:4a:ee:c9:45:be:f5:9b:f0:75:c3:6f:56: 51:8f:af:7d:c6:53:b1:13:f7:d0:fd:bf:4f:2e:2d:f2:ae:fa: 7c:68:fa:9b:ea:e5:8a:08:98:20:e1:a4:8e:fc:38:1b:cd:07: 5c:54:d3:bf:48:73:c2:38:95:d5:50:0c:37:37:b1:91:0b:33: 11:d2:eb:57:c4:fd:85:45:1a:5e:3b:e2:3c:36:2a:ad:42:00: 2f:e9:fc:e7:c7:1e:21:dc:67:a1:eb:c3:1e:80:01:fc:ad:6f: 3d:5b:9e:77:25:90:81:1d:d1:b3:6a:85:54:09:2a:41:d9:da: a0:f2:eb:08:46:40:ba:37:95:8b:55:57:f7:5b:32:e3:cc:70: ae:43:93:d4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBUEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkMwMzkxMTAvBgNVBAUTKENCNkM4NUU3NTJENTY5REZDRjFERTkwNEM5Q0JFNzFF NDgzRUY1RjIwHhcNMjUxMjIyMjIzNjUwWhcNMjUxMjI5MjIzNjUwWjAYMRYwFAYD VQQDDA02OTQ5YzgwMi0wMTkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjjS0TBzOYD1WsgHrlrq9HSkbRhrW/q3wPg80SAPW/eAAEkZkUZ0lVZXCF/zU 4SOJk/D4uRqgN8f9QzuKLiQKp39wzXSJvTxc/F0Ko42/BwVJeJWCEFCOUR29TPM1 /67VdtNY/E4t0wrzqDYw52OT5R/u7+E8jEE4uspoB2oGdt+BRZIBDnpVnURtQ3Zy LkN0V5cV7G3H83Sai0/eJaqiGJG5cpFlN0Fj9J99cOvJyGa4FlC/XEEK275Dj25p 5FbINhuZ8EXoeWm4+dDtKC+21YZOgIcfhuQZ4lgIUHIf4+CkixNr+TgJ/3Lblegp ioxkIVGgw4B6FhMqDBTKrgG0iQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCR94eVo huitz2iaO6+sKqPevF3zMB8GA1UdIwQYMBaAFMtshedS1Wnfzx3pBMnL5x5IPvXy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzAzOS9CQjUzMjNFODI1 QzIxMUVDQjQ5OUQxNThDNEY5QUUwMi95MnlGNTFMVmFkX1BIZWtFeWN2bkhrZy05 ZkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3kyeUY1MUxWYWRfUEhla0V5Y3ZuSGtnLTlmSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QzAzOS9CQjUzMjNFODI1QzIxMUVDQjQ5OUQxNThDNEY5QUUwMi95MnlGNTFMVmFk X1BIZWtFeWN2bkhrZy05ZkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/OJvgW2J4vvvs03XP7C1mDDb/zTZOYEzOhIwQOI2zVkbJzXMx8HsT 9CJ/DkpLx7QeNrDUkLsRpLGGAxZu+Db6Y7kQjEls4oC8s/Cq9xvKFDVKmGh2YMYL +7MiZMB3zSyWTzBH59D8vH3bIMiZBywy0C5K7slFvvWb8HXDb1ZRj699xlOxE/fQ /b9PLi3yrvp8aPqb6uWKCJgg4aSO/DgbzQdcVNO/SHPCOJXVUAw3N7GRCzMR0utX xP2FRRpeO+I8NiqtQgAv6fznxx4h3Geh68MegAH8rW89W553JZCBHdGzaoVUCSpB 2dqg8usIRkC6N5WLVVf3WzLjzHCuQ5PU -----END CERTIFICATE-----Generated at Wed Dec 24 21:24:01 2025 by rpki-client