This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/ky7C5uUrWvbHsDxBUCDt4nKqoUU.mft File: ky7C5uUrWvbHsDxBUCDt4nKqoUU.mft (raw, json) Hash identifier: +DfpstBd+jVoCpsP3czZW4U5ddnu0W/TvxB7pAbseqI= Subject key identifier: 8C:78:27:C5:AB:18:31:CC:B1:D1:F9:60:2F:C8:3A:1A:E0:BA:28:18 Authority key identifier: 93:2E:C2:E6:E5:2B:5A:F6:C7:B0:3C:41:50:20:ED:E2:72:AA:A1:45 Certificate issuer: /CN=A91CEF3E/serialNumber=932EC2E6E52B5AF6C7B03C415020EDE272AAA145 Certificate serial: 0EEE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ky7C5uUrWvbHsDxBUCDt4nKqoUU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/ky7C5uUrWvbHsDxBUCDt4nKqoUU.mft Manifest number: 0EDD Signing time: Thu 18 Dec 2025 17:26:57 +0000 Manifest this update: Thu 18 Dec 2025 17:26:57 +0000 Manifest next update: Thu 25 Dec 2025 17:26:57 +0000 Files and hashes: 1: ky7C5uUrWvbHsDxBUCDt4nKqoUU.crl (hash: 0Ik2kMp6KNuCDzvB2icjyQEpHJc94QInhZTXpdD9wfY=) 2: 5C154406988911E991B10838C4F9AE02.roa (hash: rlBKToBwc/S7CrTJwY8L3fa6c6H9ms0SKbG322SWU2g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/ky7C5uUrWvbHsDxBUCDt4nKqoUU.crl rsync://rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/ky7C5uUrWvbHsDxBUCDt4nKqoUU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ky7C5uUrWvbHsDxBUCDt4nKqoUU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 17:26:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3822 (0xeee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEF3E, serialNumber=932EC2E6E52B5AF6C7B03C415020EDE272AAA145 Validity Not Before: Dec 18 17:26:57 2025 GMT Not After : Dec 25 17:26:57 2025 GMT Subject: CN=69443961-82b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:b3:01:4b:91:f7:e3:09:41:e1:4d:4a:eb:7f: e2:d7:29:8f:c8:61:27:0c:b8:f7:59:da:0f:d5:9b: 94:27:28:93:b3:19:ea:93:f1:82:9a:be:55:cc:05: d0:10:a8:8c:95:05:cb:13:be:2e:bf:78:c8:c4:52: a6:3a:95:6d:4c:46:25:70:42:66:81:2e:f4:31:60: 15:30:e3:00:6a:99:ee:ba:b7:01:85:cb:ab:60:33: db:b3:de:08:09:fd:80:0e:3d:7d:e6:5c:2d:f3:5a: cc:e4:5a:f4:70:71:ba:4d:8d:bc:3c:ef:4f:ed:f0: 2e:ad:bd:41:b8:16:e1:84:14:d9:1f:c2:04:b3:f5: b9:f8:80:43:17:f9:e9:f4:82:c8:20:3c:0c:cb:f8: c8:ee:54:f3:18:02:b2:f7:9a:b6:ee:0c:84:29:86: 3a:88:12:07:56:08:29:b7:51:96:60:10:99:4c:2e: dc:64:30:1d:fd:e2:d9:bb:40:8a:aa:56:84:61:6e: 45:73:43:30:81:0d:24:67:0b:e8:fe:3f:cb:2f:d5: 89:1c:d9:a0:bc:3a:48:91:ab:87:c7:aa:c3:03:55: 53:c0:ba:2e:71:62:94:e9:42:d0:08:a2:f2:0a:49: 72:18:79:7c:6a:94:2d:7f:0b:58:56:82:34:74:23: e3:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:78:27:C5:AB:18:31:CC:B1:D1:F9:60:2F:C8:3A:1A:E0:BA:28:18 X509v3 Authority Key Identifier: keyid:93:2E:C2:E6:E5:2B:5A:F6:C7:B0:3C:41:50:20:ED:E2:72:AA:A1:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/ky7C5uUrWvbHsDxBUCDt4nKqoUU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ky7C5uUrWvbHsDxBUCDt4nKqoUU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/ky7C5uUrWvbHsDxBUCDt4nKqoUU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:f8:24:0a:43:52:ff:dd:bc:c2:79:67:61:a5:13:bd:b7:08: c8:7b:c2:ea:11:41:f1:6b:77:3a:df:d9:81:01:5a:6d:52:19: ac:79:5e:9a:d0:59:9c:33:5a:2a:9c:ae:19:7f:49:23:13:87: e9:ba:8d:bb:f4:ea:dc:ce:a3:43:9c:9c:59:14:a3:eb:d3:fc: fc:3c:fd:7a:40:1b:6d:7c:ec:f4:d2:08:a3:a0:c7:37:9c:01: ce:a8:73:63:1b:b8:07:44:2f:e7:c1:9a:5c:47:96:dc:57:fb: 14:5e:70:12:d6:72:c1:67:31:ea:70:e5:4d:ec:2a:bc:04:30: 7e:f9:a1:09:49:7b:36:19:f7:0a:64:29:9c:7d:12:ef:f5:d1: 43:8d:c0:fa:9c:a0:32:1e:86:ab:1b:3e:c2:97:84:5c:be:86: b4:2c:3e:81:9a:79:95:82:b4:0b:cd:71:54:7a:32:2e:69:67: 2e:de:ee:b2:ad:7a:6b:76:e2:e2:c1:24:55:09:7e:3e:0e:3b: 20:fe:95:d8:64:11:27:df:b2:68:a8:57:96:35:25:d2:f9:0f: 98:8d:f4:ac:ad:3c:94:46:18:d5:91:5f:d1:95:0e:56:4e:d1: 0c:45:2d:00:3a:d6:02:ba:09:82:99:a1:a1:99:88:83:6a:a4: 1b:bf:a8:a5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDu4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VGM0UxMTAvBgNVBAUTKDkzMkVDMkU2RTUyQjVBRjZDN0IwM0M0MTUwMjBFREUy NzJBQUExNDUwHhcNMjUxMjE4MTcyNjU3WhcNMjUxMjI1MTcyNjU3WjAYMRYwFAYD VQQDDA02OTQ0Mzk2MS04MmIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArbMBS5H34wlB4U1K63/i1ymPyGEnDLj3WdoP1ZuUJyiTsxnqk/GCmr5VzAXQ EKiMlQXLE74uv3jIxFKmOpVtTEYlcEJmgS70MWAVMOMAapnuurcBhcurYDPbs94I Cf2ADj195lwt81rM5Fr0cHG6TY28PO9P7fAurb1BuBbhhBTZH8IEs/W5+IBDF/np 9ILIIDwMy/jI7lTzGAKy95q27gyEKYY6iBIHVggpt1GWYBCZTC7cZDAd/eLZu0CK qlaEYW5Fc0MwgQ0kZwvo/j/LL9WJHNmgvDpIkauHx6rDA1VTwLoucWKU6ULQCKLy CklyGHl8apQtfwtYVoI0dCPjSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIx4J8Wr GDHMsdH5YC/IOhrguigYMB8GA1UdIwQYMBaAFJMuwublK1r2x7A8QVAg7eJyqqFF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUYzRS9DQjc0Q0Y2RTk4 N0IxMUU5ODNFQ0NGMTNDNEY5QUUwMi9reTdDNXVVcld2YkhzRHhCVUNEdDRuS3Fv VVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2t5N0M1dVVyV3ZiSHNEeEJVQ0R0NG5LcW9VVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RUYzRS9DQjc0Q0Y2RTk4N0IxMUU5ODNFQ0NGMTNDNEY5QUUwMi9reTdDNXVVcld2 YkhzRHhCVUNEdDRuS3FvVVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBn+CQKQ1L/3bzCeWdhpRO9twjIe8LqEUHxa3c639mBAVptUhmseV6a 0FmcM1oqnK4Zf0kjE4fpuo279OrczqNDnJxZFKPr0/z8PP16QBttfOz00gijoMc3 nAHOqHNjG7gHRC/nwZpcR5bcV/sUXnAS1nLBZzHqcOVN7Cq8BDB++aEJSXs2GfcK ZCmcfRLv9dFDjcD6nKAyHoarGz7Cl4Rcvoa0LD6BmnmVgrQLzXFUejIuaWcu3u6y rXprduLiwSRVCX4+Djsg/pXYZBEn37JoqFeWNSXS+Q+YjfSsrTyURhjVkV/RlQ5W TtEMRS0AOtYCugmCmaGhmYiDaqQbv6il -----END CERTIFICATE-----Generated at Sat Dec 20 08:22:10 2025 by rpki-client