This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEE85/FC66F5AE45AD11EFB435EB6FC4F9AE02/ByRKmUzcS5OAdHEcQkjUn51Q2Cc.mft File: ByRKmUzcS5OAdHEcQkjUn51Q2Cc.mft (raw, json) Hash identifier: 6aRsxixOruL15kIckBMTZDL5rFKTF72fuiq1sYm2Hns= Subject key identifier: 12:F5:9A:B6:FA:D0:44:16:F5:26:F9:17:0B:B8:FE:91:83:EA:01:45 Authority key identifier: 07:24:4A:99:4C:DC:4B:93:80:74:71:1C:42:48:D4:9F:9D:50:D8:27 Certificate issuer: /CN=A91CEE85/serialNumber=07244A994CDC4B938074711C4248D49F9D50D827 Certificate serial: 010E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ByRKmUzcS5OAdHEcQkjUn51Q2Cc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEE85/FC66F5AE45AD11EFB435EB6FC4F9AE02/ByRKmUzcS5OAdHEcQkjUn51Q2Cc.mft Manifest number: 010C Signing time: Tue 23 Dec 2025 03:57:40 +0000 Manifest this update: Tue 23 Dec 2025 03:57:39 +0000 Manifest next update: Tue 30 Dec 2025 03:57:39 +0000 Files and hashes: 1: ByRKmUzcS5OAdHEcQkjUn51Q2Cc.crl (hash: DWenbM56U/8zapqOoSPiemJBcpVEQmyUz0cQq5lyClI=) 2: C2838C8245B011EFAE60CC76C4F9AE02.roa (hash: dwidYpMLAJTM9jddkunL1qdnHKOnW/Pf1EZaeXyq6Fk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEE85/FC66F5AE45AD11EFB435EB6FC4F9AE02/ByRKmUzcS5OAdHEcQkjUn51Q2Cc.crl rsync://rpki.apnic.net/member_repository/A91CEE85/FC66F5AE45AD11EFB435EB6FC4F9AE02/ByRKmUzcS5OAdHEcQkjUn51Q2Cc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ByRKmUzcS5OAdHEcQkjUn51Q2Cc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 270 (0x10e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEE85, serialNumber=07244A994CDC4B938074711C4248D49F9D50D827 Validity Not Before: Dec 23 03:57:39 2025 GMT Not After : Dec 30 03:57:39 2025 GMT Subject: CN=694a1334-73a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:29:d6:f1:76:4f:e5:c4:cb:c4:2f:5f:59:f2: fb:4a:20:ab:9a:ec:4e:40:02:14:48:7b:44:9b:e5: 34:d9:ce:86:c2:d9:45:d5:f5:1c:d6:f7:17:4e:37: 04:cf:46:f0:b0:4f:a8:a5:d2:a5:c9:d6:c3:41:6a: 41:83:2b:d6:e8:f1:d1:04:40:77:72:1b:e8:60:31: 37:b2:88:93:65:e6:31:71:a8:25:70:db:e2:24:f4: 0e:51:27:5c:41:3a:11:d1:59:1e:f9:ff:70:46:81: 8b:31:67:14:67:27:26:07:a5:bb:29:d9:aa:fa:23: 6d:2a:fe:d3:e8:8d:f7:32:7a:3c:a9:e3:30:9f:53: d7:52:a8:6e:c1:9e:2f:de:61:a3:8f:cc:07:17:9f: a4:d9:aa:15:dc:01:24:0e:21:1a:1b:a8:33:31:73: 03:3f:59:9a:ef:90:b4:b0:68:df:31:72:d1:7a:bc: 5c:27:e4:8c:47:bc:40:4e:be:d0:db:48:14:fc:df: 97:4c:fc:42:82:88:cf:84:2d:09:ab:48:c8:bd:bf: 73:44:c5:c1:df:25:7c:9d:ce:7c:10:ac:e3:74:3c: 12:bd:aa:d8:57:db:43:d6:29:8c:c7:f4:95:a8:94: bc:2a:c9:a9:f8:ce:90:21:87:ac:50:23:8d:d3:c6: fb:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:F5:9A:B6:FA:D0:44:16:F5:26:F9:17:0B:B8:FE:91:83:EA:01:45 X509v3 Authority Key Identifier: keyid:07:24:4A:99:4C:DC:4B:93:80:74:71:1C:42:48:D4:9F:9D:50:D8:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEE85/FC66F5AE45AD11EFB435EB6FC4F9AE02/ByRKmUzcS5OAdHEcQkjUn51Q2Cc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ByRKmUzcS5OAdHEcQkjUn51Q2Cc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEE85/FC66F5AE45AD11EFB435EB6FC4F9AE02/ByRKmUzcS5OAdHEcQkjUn51Q2Cc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:6c:85:3d:a3:ed:f0:77:2c:f0:8e:bf:b1:51:2e:ea:d7:45: d6:e3:a6:24:5a:cb:c8:57:94:df:79:de:02:e0:8c:7c:b5:f0: 4a:33:69:60:7a:86:06:a3:5d:2a:76:00:5b:48:b3:c4:22:20: 1f:7e:ea:cb:24:bc:3c:c3:fc:1c:a1:97:6b:a4:07:33:fa:8f: d1:87:9b:64:f6:7f:29:71:cd:e6:1c:bb:3d:90:65:2a:1b:01: 79:55:28:f0:c9:7f:53:04:38:17:1e:87:0e:2d:f3:e3:23:cf: de:09:61:af:6e:90:ee:7c:f3:02:61:15:e4:83:e9:09:1c:d2: 28:f1:f3:ec:c5:e7:46:8a:4b:83:12:02:41:e7:63:a7:42:f4: ce:0c:47:ad:f6:15:ba:a6:a6:ef:06:73:68:0e:db:e8:f2:92: 68:5e:7c:6a:8f:87:0f:de:7b:fc:27:e6:16:cb:54:19:fd:bd: c4:9d:12:94:68:79:7b:8d:63:c3:87:fa:21:1b:45:6e:4a:2b: 1c:d3:c6:39:44:8b:94:6f:f1:1e:64:58:99:c1:e3:65:ba:da: 75:28:42:03:cd:3f:b3:90:69:ea:f3:ac:27:63:77:a8:7a:92: 06:4e:a4:b2:2a:9b:c3:80:2f:e6:0e:2d:d7:ca:c2:28:16:11: d0:41:cf:66 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VFODUxMTAvBgNVBAUTKDA3MjQ0QTk5NENEQzRCOTM4MDc0NzExQzQyNDhENDlG OUQ1MEQ4MjcwHhcNMjUxMjIzMDM1NzM5WhcNMjUxMjMwMDM1NzM5WjAYMRYwFAYD VQQDDA02OTRhMTMzNC03M2E2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApSnW8XZP5cTLxC9fWfL7SiCrmuxOQAIUSHtEm+U02c6GwtlF1fUc1vcXTjcE z0bwsE+opdKlydbDQWpBgyvW6PHRBEB3chvoYDE3soiTZeYxcaglcNviJPQOUSdc QToR0Vke+f9wRoGLMWcUZycmB6W7Kdmq+iNtKv7T6I33Mno8qeMwn1PXUqhuwZ4v 3mGjj8wHF5+k2aoV3AEkDiEaG6gzMXMDP1ma75C0sGjfMXLRerxcJ+SMR7xATr7Q 20gU/N+XTPxCgojPhC0Jq0jIvb9zRMXB3yV8nc58EKzjdDwSvarYV9tD1imMx/SV qJS8Ksmp+M6QIYesUCON08b7+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBL1mrb6 0EQW9Sb5Fwu4/pGD6gFFMB8GA1UdIwQYMBaAFAckSplM3EuTgHRxHEJI1J+dUNgn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUU4NS9GQzY2RjVBRTQ1 QUQxMUVGQjQzNUVCNkZDNEY5QUUwMi9CeVJLbVV6Y1M1T0FkSEVjUWtqVW41MVEy Q2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0J5UkttVXpjUzVPQWRIRWNRa2pVbjUxUTJDYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RUU4NS9GQzY2RjVBRTQ1QUQxMUVGQjQzNUVCNkZDNEY5QUUwMi9CeVJLbVV6Y1M1 T0FkSEVjUWtqVW41MVEyQ2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCSbIU9o+3wdyzwjr+xUS7q10XW46YkWsvIV5Tfed4C4Ix8tfBKM2lg eoYGo10qdgBbSLPEIiAffurLJLw8w/wcoZdrpAcz+o/Rh5tk9n8pcc3mHLs9kGUq GwF5VSjwyX9TBDgXHocOLfPjI8/eCWGvbpDufPMCYRXkg+kJHNIo8fPsxedGikuD EgJB52OnQvTODEet9hW6pqbvBnNoDtvo8pJoXnxqj4cP3nv8J+YWy1QZ/b3EnRKU aHl7jWPDh/ohG0VuSisc08Y5RIuUb/EeZFiZweNlutp1KEIDzT+zkGnq86wnY3eo epIGTqSyKpvDgC/mDi3XysIoFhHQQc9m -----END CERTIFICATE-----Generated at Tue Dec 23 07:03:54 2025 by rpki-client