This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F65C7/ED0FB686C3E411EE9613F583C4F9AE02/hYtkVOIiRseB5RNSswVkEJhoV34.mft File: hYtkVOIiRseB5RNSswVkEJhoV34.mft (raw, json) Hash identifier: a3BpfdOu/Ngf50T9KCT5fLoYJWMqDvae1XEqjOTarhE= Subject key identifier: DA:B0:90:9E:FF:00:C4:0D:2E:49:1A:96:06:77:9C:BC:7B:A7:6F:6E Authority key identifier: 85:8B:64:54:E2:22:46:C7:81:E5:13:52:B3:05:64:10:98:68:57:7E Certificate issuer: /CN=A91F65C7/serialNumber=858B6454E22246C781E51352B30564109868577E Certificate serial: 015B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hYtkVOIiRseB5RNSswVkEJhoV34.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F65C7/ED0FB686C3E411EE9613F583C4F9AE02/hYtkVOIiRseB5RNSswVkEJhoV34.mft Manifest number: 015B Signing time: Fri 19 Dec 2025 03:14:05 +0000 Manifest this update: Fri 19 Dec 2025 03:14:05 +0000 Manifest next update: Fri 26 Dec 2025 03:14:05 +0000 Files and hashes: 1: hYtkVOIiRseB5RNSswVkEJhoV34.crl (hash: /r0BJehIKVhIQMdeG217svCpvyYd2afxqShi94oxxmk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F65C7/ED0FB686C3E411EE9613F583C4F9AE02/hYtkVOIiRseB5RNSswVkEJhoV34.crl rsync://rpki.apnic.net/member_repository/A91F65C7/ED0FB686C3E411EE9613F583C4F9AE02/hYtkVOIiRseB5RNSswVkEJhoV34.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hYtkVOIiRseB5RNSswVkEJhoV34.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 03:14:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 347 (0x15b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F65C7, serialNumber=858B6454E22246C781E51352B30564109868577E Validity Not Before: Dec 19 03:14:05 2025 GMT Not After : Dec 26 03:14:05 2025 GMT Subject: CN=6944c2fd-6ba7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:5f:d8:f7:a8:8e:3d:0a:e5:3b:d3:10:9f:73: b9:46:be:a2:ed:5e:e8:53:a7:b7:80:53:af:a7:f0: f6:43:99:5b:e0:ba:c0:32:0b:7d:9c:bd:91:1f:ed: 26:00:eb:4c:7b:30:d2:07:19:b4:b0:7f:5b:5b:cc: 9a:dd:5c:2b:eb:27:eb:7e:a1:a8:4b:f5:f4:86:47: ee:26:e9:33:1d:c5:0a:eb:bc:91:c8:72:29:ce:fb: 04:fe:b9:3f:86:b7:aa:bc:64:2f:c5:4b:cd:2a:14: dc:54:de:1f:da:93:c1:90:1c:aa:2a:7f:98:db:77: 42:9c:eb:41:44:17:85:fa:94:a4:a1:f2:e5:15:df: 49:f8:5a:2d:61:7a:27:5e:12:7c:a7:45:34:49:1c: 2a:99:b6:96:f1:04:86:4b:85:80:5e:66:ed:ec:ea: 38:ed:92:d2:a6:8e:43:76:0a:43:c8:34:af:9a:e6: c6:af:09:f0:bf:4c:d8:10:7e:dc:aa:bd:03:d1:d8: fe:a6:a0:5b:6d:48:b4:8b:7e:d4:96:a4:7f:db:10: 0a:2b:2d:83:ee:26:63:55:81:62:c5:45:b5:20:23: 89:03:23:90:1e:a9:b3:3e:57:bf:69:98:80:6d:80: 2d:11:4d:d2:11:7b:16:86:1b:47:93:3b:c1:a9:8b: 19:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:B0:90:9E:FF:00:C4:0D:2E:49:1A:96:06:77:9C:BC:7B:A7:6F:6E X509v3 Authority Key Identifier: keyid:85:8B:64:54:E2:22:46:C7:81:E5:13:52:B3:05:64:10:98:68:57:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F65C7/ED0FB686C3E411EE9613F583C4F9AE02/hYtkVOIiRseB5RNSswVkEJhoV34.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hYtkVOIiRseB5RNSswVkEJhoV34.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F65C7/ED0FB686C3E411EE9613F583C4F9AE02/hYtkVOIiRseB5RNSswVkEJhoV34.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:43:a2:08:68:49:af:fd:83:7e:93:a3:d3:9a:25:17:f6:11: b4:e6:5d:75:ec:b4:c7:0b:0a:37:bc:00:c4:7b:08:25:a5:64: ba:ab:b5:71:dc:80:ec:53:24:ed:09:65:18:8e:55:ae:15:a5: 3f:58:5b:96:24:97:1b:02:90:f8:ae:af:dd:a7:f3:cc:fc:4a: 69:63:70:6a:48:2b:57:1c:24:b8:9c:df:91:f0:1b:3d:c1:6c: f2:87:d6:3a:25:31:8e:d2:58:11:42:53:da:14:52:64:30:f4: f1:d8:eb:4a:5b:bb:03:b5:c7:cf:de:9a:d1:e1:0d:18:bb:60: 29:eb:2f:5a:06:fd:78:ff:cc:e3:59:06:5d:d8:77:ea:08:14: d9:2b:2c:4b:7d:76:3f:b6:4c:ff:bb:1e:b8:e2:10:5f:96:55: 07:f7:e8:3e:57:d0:41:fd:64:a3:c9:58:ac:83:e2:52:3d:d1: e3:5a:45:0d:cb:eb:70:3d:62:fa:1d:a4:9b:68:5a:ef:23:73: 34:72:44:b8:a4:dc:b3:8d:9b:81:0d:95:9f:74:30:92:a3:f6: 89:d4:67:c2:8d:58:29:72:e0:98:1c:23:15:8a:62:83:ba:22: cb:7a:aa:26:7b:1d:94:56:f3:0a:21:10:8a:4c:6e:e9:05:a0: 89:c2:ac:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjY1QzcxMTAvBgNVBAUTKDg1OEI2NDU0RTIyMjQ2Qzc4MUU1MTM1MkIzMDU2NDEw OTg2ODU3N0UwHhcNMjUxMjE5MDMxNDA1WhcNMjUxMjI2MDMxNDA1WjAYMRYwFAYD VQQDDA02OTQ0YzJmZC02YmE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwF/Y96iOPQrlO9MQn3O5Rr6i7V7oU6e3gFOvp/D2Q5lb4LrAMgt9nL2RH+0m AOtMezDSBxm0sH9bW8ya3Vwr6yfrfqGoS/X0hkfuJukzHcUK67yRyHIpzvsE/rk/ hreqvGQvxUvNKhTcVN4f2pPBkByqKn+Y23dCnOtBRBeF+pSkofLlFd9J+FotYXon XhJ8p0U0SRwqmbaW8QSGS4WAXmbt7Oo47ZLSpo5DdgpDyDSvmubGrwnwv0zYEH7c qr0D0dj+pqBbbUi0i37UlqR/2xAKKy2D7iZjVYFixUW1ICOJAyOQHqmzPle/aZiA bYAtEU3SEXsWhhtHkzvBqYsZGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNqwkJ7/ AMQNLkkalgZ3nLx7p29uMB8GA1UdIwQYMBaAFIWLZFTiIkbHgeUTUrMFZBCYaFd+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjVDNy9FRDBGQjY4NkMz RTQxMUVFOTYxM0Y1ODNDNEY5QUUwMi9oWXRrVk9JaVJzZUI1Uk5Tc3dWa0VKaG9W MzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hZdGtWT0lpUnNlQjVSTlNzd1ZrRUpob1YzNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjVDNy9FRDBGQjY4NkMzRTQxMUVFOTYxM0Y1ODNDNEY5QUUwMi9oWXRrVk9JaVJz ZUI1Uk5Tc3dWa0VKaG9WMzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCIQ6IIaEmv/YN+k6PTmiUX9hG05l117LTHCwo3vADEewglpWS6q7Vx 3IDsUyTtCWUYjlWuFaU/WFuWJJcbApD4rq/dp/PM/EppY3BqSCtXHCS4nN+R8Bs9 wWzyh9Y6JTGO0lgRQlPaFFJkMPTx2OtKW7sDtcfP3prR4Q0Yu2Ap6y9aBv14/8zj WQZd2HfqCBTZKyxLfXY/tkz/ux644hBfllUH9+g+V9BB/WSjyVisg+JSPdHjWkUN y+twPWL6HaSbaFrvI3M0ckS4pNyzjZuBDZWfdDCSo/aJ1GfCjVgpcuCYHCMVimKD uiLLeqomex2UVvMKIRCKTG7pBaCJwqyK -----END CERTIFICATE-----Generated at Sat Dec 20 10:33:46 2025 by rpki-client