This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFFCB/F5DB7A16420511F0BF7A8711C4F9AE02/y1McHsaSJfDcrkTOyl41mAzpwPI.mft File: y1McHsaSJfDcrkTOyl41mAzpwPI.mft (raw, json) Hash identifier: STuWxe7F9KAatYmj7OU63zMxPRyP2Wtj4CjsrETXTDU= Subject key identifier: D8:AA:28:AD:28:65:CB:21:BF:4A:7D:FA:D8:92:3F:5F:39:CA:42:2E Authority key identifier: CB:53:1C:1E:C6:92:25:F0:DC:AE:44:CE:CA:5E:35:98:0C:E9:C0:F2 Certificate issuer: /CN=A91CFFCB/serialNumber=CB531C1EC69225F0DCAE44CECA5E35980CE9C0F2 Certificate serial: 61 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1McHsaSJfDcrkTOyl41mAzpwPI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFFCB/F5DB7A16420511F0BF7A8711C4F9AE02/y1McHsaSJfDcrkTOyl41mAzpwPI.mft Manifest number: 60 Signing time: Sun 07 Dec 2025 05:09:21 +0000 Manifest this update: Sun 07 Dec 2025 05:09:21 +0000 Manifest next update: Sun 14 Dec 2025 05:09:21 +0000 Files and hashes: 1: y1McHsaSJfDcrkTOyl41mAzpwPI.crl (hash: gnIEyEI8nT/OnVlCbqRrDlAA/rRpJtbemCtRlx7KQM4=) 2: BB8F3118497B11F096DCA14EC4F9AE02.roa (hash: n0pGyYXueEy9F7Jw89IAbICySxf38MqDCZugETeFEBQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFFCB/F5DB7A16420511F0BF7A8711C4F9AE02/y1McHsaSJfDcrkTOyl41mAzpwPI.crl rsync://rpki.apnic.net/member_repository/A91CFFCB/F5DB7A16420511F0BF7A8711C4F9AE02/y1McHsaSJfDcrkTOyl41mAzpwPI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1McHsaSJfDcrkTOyl41mAzpwPI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 05:09:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 97 (0x61) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFFCB, serialNumber=CB531C1EC69225F0DCAE44CECA5E35980CE9C0F2 Validity Not Before: Dec 7 05:09:21 2025 GMT Not After : Dec 14 05:09:21 2025 GMT Subject: CN=69350c01-84b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:40:c2:0e:be:1f:92:43:fc:fd:8d:5b:22:c1: 52:7e:69:19:9e:23:0a:a7:8f:39:6d:9d:ee:ea:80: 26:bb:3d:37:73:55:fb:cb:03:3b:40:13:ef:f4:18: c3:f1:e1:67:59:9f:2d:3f:c8:b9:21:19:b7:41:4e: 09:df:d8:a7:c5:73:69:fb:fa:f0:b6:a4:05:c3:37: 55:b5:c7:88:fb:cd:a8:7d:3b:8b:6f:cb:44:5c:c1: 90:ae:37:89:d9:0a:88:9a:67:3f:12:bd:bd:66:9e: 19:38:91:31:50:2e:55:1d:d8:ec:e5:30:75:2d:b1: 81:e6:45:5e:5e:44:d9:a4:a2:4c:a0:74:cc:6d:c4: b5:31:5a:d6:f8:bc:37:b2:fe:c5:37:21:50:4c:10: 6f:73:72:51:62:0b:eb:23:14:83:2e:dc:e8:8d:a1: 2a:09:83:2d:f3:df:2e:09:3f:97:43:b1:c2:3d:09: 77:8b:35:af:f9:e8:48:7b:2c:4f:ee:a1:36:a4:fe: ae:19:6e:5f:05:b2:17:ab:24:d1:db:ba:a5:85:4a: 7d:fc:fa:ed:18:8e:44:28:82:d9:70:1a:af:34:0b: 51:03:07:ae:97:fb:17:2a:54:9d:b2:29:b4:fc:4b: 4a:e3:bd:c6:42:74:d6:f6:3e:0b:96:1a:64:44:65: 6a:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:AA:28:AD:28:65:CB:21:BF:4A:7D:FA:D8:92:3F:5F:39:CA:42:2E X509v3 Authority Key Identifier: keyid:CB:53:1C:1E:C6:92:25:F0:DC:AE:44:CE:CA:5E:35:98:0C:E9:C0:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFFCB/F5DB7A16420511F0BF7A8711C4F9AE02/y1McHsaSJfDcrkTOyl41mAzpwPI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1McHsaSJfDcrkTOyl41mAzpwPI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFFCB/F5DB7A16420511F0BF7A8711C4F9AE02/y1McHsaSJfDcrkTOyl41mAzpwPI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:ee:0f:b0:db:a7:fc:43:40:46:6b:7a:5f:79:df:6a:8e:7e: c6:83:12:18:12:7c:98:bf:a1:ef:bd:19:0a:a9:ac:d5:b5:01: bc:b5:e7:01:9e:69:76:59:1c:d0:eb:9a:7e:53:22:48:85:da: 6e:db:ab:12:e2:04:db:80:03:3e:70:cc:95:e7:b1:04:a9:14: 31:40:9b:56:51:7a:ca:10:d1:cd:19:f4:8f:9d:05:29:54:50: c4:8a:a9:3b:ab:9d:90:40:68:29:42:a5:ab:ee:68:68:3f:91: d7:c5:be:29:8b:44:3e:f5:5e:97:d5:94:98:04:82:d4:47:8c: 9d:5c:b1:76:5f:77:b6:ce:6c:1c:d7:13:67:a2:d7:db:bc:50: 16:ce:31:22:34:24:1a:53:15:c7:67:fd:68:7a:1c:c3:49:a2: 71:5e:d6:2c:28:c3:f6:e2:d1:fe:68:b6:1f:2b:69:27:9d:cc: c7:ec:5c:6e:cf:e8:f0:5c:be:bc:7e:75:4e:1d:e6:00:79:45: 4b:17:ff:16:6a:bd:45:ae:e4:0f:b6:22:51:69:e0:39:7e:6e: ca:cd:c9:10:a3:1e:7f:a0:0f:8b:15:d3:47:45:84:db:75:92: 06:86:43:06:6d:36:ff:52:1d:74:7f:e9:f0:9b:dd:da:03:a7: 39:0d:81:06 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD RkZDQjExMC8GA1UEBRMoQ0I1MzFDMUVDNjkyMjVGMERDQUU0NENFQ0E1RTM1OTgw Q0U5QzBGMjAeFw0yNTEyMDcwNTA5MjFaFw0yNTEyMTQwNTA5MjFaMBgxFjAUBgNV BAMTDTY5MzUwYzAxLTg0YjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCVQMIOvh+SQ/z9jVsiwVJ+aRmeIwqnjzltne7qgCa7PTdzVfvLAztAE+/0GMPx 4WdZny0/yLkhGbdBTgnf2KfFc2n7+vC2pAXDN1W1x4j7zah9O4tvy0RcwZCuN4nZ CoiaZz8Svb1mnhk4kTFQLlUd2OzlMHUtsYHmRV5eRNmkokygdMxtxLUxWtb4vDey /sU3IVBMEG9zclFiC+sjFIMu3OiNoSoJgy3z3y4JP5dDscI9CXeLNa/56Eh7LE/u oTak/q4Zbl8FsherJNHbuqWFSn38+u0YjkQogtlwGq80C1EDB66X+xcqVJ2yKbT8 S0rjvcZCdNb2PguWGmREZWrhAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU2KoorShl yyG/Sn362JI/XznKQi4wHwYDVR0jBBgwFoAUy1McHsaSJfDcrkTOyl41mAzpwPIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNGRkNCL0Y1REI3QTE2NDIw NTExRjBCRjdBODcxMUM0RjlBRTAyL3kxTWNIc2FTSmZEY3JrVE95bDQxbUF6cHdQ SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveTFNY0hzYVNKZkRjcmtUT3lsNDFtQXpwd1BJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNG RkNCL0Y1REI3QTE2NDIwNTExRjBCRjdBODcxMUM0RjlBRTAyL3kxTWNIc2FTSmZE Y3JrVE95bDQxbUF6cHdQSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAETuD7Dbp/xDQEZrel9532qOfsaDEhgSfJi/oe+9GQqprNW1Aby15wGe aXZZHNDrmn5TIkiF2m7bqxLiBNuAAz5wzJXnsQSpFDFAm1ZResoQ0c0Z9I+dBSlU UMSKqTurnZBAaClCpavuaGg/kdfFvimLRD71XpfVlJgEgtRHjJ1csXZfd7bObBzX E2ei19u8UBbOMSI0JBpTFcdn/Wh6HMNJonFe1iwow/bi0f5oth8raSedzMfsXG7P 6PBcvrx+dU4d5gB5RUsX/xZqvUWu5A+2IlFp4Dl+bsrNyRCjHn+gD4sV00dFhNt1 kgaGQwZtNv9SHXR/6fCb3doDpzkNgQY= -----END CERTIFICATE-----Generated at Mon Dec 8 05:58:06 2025 by rpki-client