This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91557BA/6812DF9204EB11EAA72FA363C4F9AE02/ry1FO-u_318ptjrBZ1THjRsPy4g.mft File: ry1FO-u_318ptjrBZ1THjRsPy4g.mft (raw, json) Hash identifier: Ikp96h5myS3xczD/pfiARI88RHojEsxJpsuXFUgQzMo= Subject key identifier: 00:EE:1E:E6:29:6A:15:46:98:D2:26:A6:A7:1E:BA:D7:15:37:5A:FF Authority key identifier: AF:2D:45:3B:EB:BF:DF:5F:29:B6:3A:C1:67:54:C7:8D:1B:0F:CB:88 Certificate issuer: /CN=A91557BA/serialNumber=AF2D453BEBBFDF5F29B63AC16754C78D1B0FCB88 Certificate serial: 0CC0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ry1FO-u_318ptjrBZ1THjRsPy4g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91557BA/6812DF9204EB11EAA72FA363C4F9AE02/ry1FO-u_318ptjrBZ1THjRsPy4g.mft Manifest number: 0CB6 Signing time: Wed 31 Dec 2025 17:59:57 +0000 Manifest this update: Wed 31 Dec 2025 17:59:57 +0000 Manifest next update: Wed 07 Jan 2026 17:59:57 +0000 Files and hashes: 1: ry1FO-u_318ptjrBZ1THjRsPy4g.crl (hash: WApfl19O4puZgmUL/kzT2AJbNTupSo7l3PIR7URnQTY=) 2: 157A1BFC59EE11EBA398AA0AC4F9AE02.roa (hash: QXDdzYa6iyzovy5Z9ik5QXaJEcfXc3NGsSzn/V3Ryt4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91557BA/6812DF9204EB11EAA72FA363C4F9AE02/ry1FO-u_318ptjrBZ1THjRsPy4g.crl rsync://rpki.apnic.net/member_repository/A91557BA/6812DF9204EB11EAA72FA363C4F9AE02/ry1FO-u_318ptjrBZ1THjRsPy4g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ry1FO-u_318ptjrBZ1THjRsPy4g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 07 Jan 2026 16:22:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3264 (0xcc0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91557BA, serialNumber=AF2D453BEBBFDF5F29B63AC16754C78D1B0FCB88 Validity Not Before: Dec 31 17:59:57 2025 GMT Not After : Jan 7 17:59:57 2026 GMT Subject: CN=6955649d-9563 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:42:8a:c5:58:36:ed:0c:96:9d:b6:f7:6e:99: ef:a1:0a:97:c0:a8:e8:c7:e2:2b:52:c0:3c:b4:43: 72:cc:73:24:16:2b:18:16:5c:78:fe:94:73:f7:b5: b1:2d:aa:c8:8f:6d:6b:94:83:99:37:27:f1:e3:ea: f1:fd:a9:4f:9a:68:6d:a9:7b:9d:3e:2b:41:4d:7e: b2:06:99:0c:4b:ab:9e:7b:f2:6e:e7:2d:aa:0b:79: a3:d8:61:55:e5:c1:05:6b:0e:22:da:26:8c:3e:af: 35:26:38:06:64:bd:2f:3e:ae:0b:07:cb:62:04:91: 70:ae:eb:09:db:9a:82:f0:98:6f:a4:d5:08:59:9a: e3:ad:8a:cf:10:3b:a5:03:c0:47:96:ca:01:13:8a: 59:77:5a:b1:3d:e6:ba:37:10:b8:b4:c6:99:9d:90: 53:a1:03:ed:1f:ae:2b:f1:84:bc:8d:2d:d1:92:6a: 50:e8:29:ce:58:63:47:7b:e8:50:3e:75:c0:c2:6b: ea:94:e0:17:5e:3f:bf:eb:95:66:a1:47:72:f2:16: 9b:ad:cb:ea:76:c7:d5:2c:fb:e8:53:fb:78:37:50: 51:e1:de:6f:30:50:03:03:f1:7f:75:5a:65:a6:0c: 15:99:85:c5:20:69:3d:f0:f5:f4:6e:17:db:9e:11: fd:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:EE:1E:E6:29:6A:15:46:98:D2:26:A6:A7:1E:BA:D7:15:37:5A:FF X509v3 Authority Key Identifier: keyid:AF:2D:45:3B:EB:BF:DF:5F:29:B6:3A:C1:67:54:C7:8D:1B:0F:CB:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91557BA/6812DF9204EB11EAA72FA363C4F9AE02/ry1FO-u_318ptjrBZ1THjRsPy4g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ry1FO-u_318ptjrBZ1THjRsPy4g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91557BA/6812DF9204EB11EAA72FA363C4F9AE02/ry1FO-u_318ptjrBZ1THjRsPy4g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c6:8b:60:11:90:8d:f6:1c:0e:5d:db:95:d3:4f:64:82:f8:7c: 08:45:d4:66:15:1d:b3:40:42:8e:b8:07:06:4b:b4:08:97:dd: 2a:1c:00:a3:15:ed:9d:4f:0a:b8:48:b9:ae:b5:8c:0a:82:8a: 6c:d7:67:0b:35:8e:0a:14:48:a9:28:48:09:4a:2b:6f:8d:a2: 99:5d:36:ee:da:0d:c7:9b:28:de:4c:56:15:c3:31:0b:b4:fe: ce:e0:5b:49:b8:e6:f5:b2:02:31:9d:2f:bf:eb:f0:ff:6c:f7: 16:49:ae:7d:0e:8b:7f:2a:6e:8a:76:63:eb:54:a7:f4:aa:57: d3:53:08:08:05:fe:46:08:7a:d6:72:57:1b:9b:9c:40:a7:11: da:1a:2e:c9:ef:35:36:b3:d6:91:74:28:81:14:20:40:f9:54: 69:51:6d:4f:c6:06:83:a9:9c:8e:f9:81:3a:2d:b0:cd:bc:ed: 8b:92:4e:43:e9:0c:1f:05:00:78:92:3b:c8:c2:2f:55:00:ed: ca:21:4e:c3:9d:5c:40:4d:bf:40:1b:c8:ae:8f:ee:3d:42:2a: c1:35:32:21:c2:1a:b9:7b:18:06:f5:c1:d5:28:c2:0f:04:18: fd:1e:e8:6c:9a:27:f0:29:4b:38:c5:5e:8d:0f:5e:dc:97:eb: 96:21:c7:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDMAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTU3QkExMTAvBgNVBAUTKEFGMkQ0NTNCRUJCRkRGNUYyOUI2M0FDMTY3NTRDNzhE MUIwRkNCODgwHhcNMjUxMjMxMTc1OTU3WhcNMjYwMTA3MTc1OTU3WjAYMRYwFAYD VQQDDA02OTU1NjQ5ZC05NTYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw0KKxVg27QyWnbb3bpnvoQqXwKjox+IrUsA8tENyzHMkFisYFlx4/pRz97Wx LarIj21rlIOZNyfx4+rx/alPmmhtqXudPitBTX6yBpkMS6uee/Ju5y2qC3mj2GFV 5cEFaw4i2iaMPq81JjgGZL0vPq4LB8tiBJFwrusJ25qC8JhvpNUIWZrjrYrPEDul A8BHlsoBE4pZd1qxPea6NxC4tMaZnZBToQPtH64r8YS8jS3RkmpQ6CnOWGNHe+hQ PnXAwmvqlOAXXj+/65VmoUdy8habrcvqdsfVLPvoU/t4N1BR4d5vMFADA/F/dVpl pgwVmYXFIGk98PX0bhfbnhH9vQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFADuHuYp ahVGmNImpqceutcVN1r/MB8GA1UdIwQYMBaAFK8tRTvrv99fKbY6wWdUx40bD8uI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTdCQS82ODEyREY5MjA0 RUIxMUVBQTcyRkEzNjNDNEY5QUUwMi9yeTFGTy11XzMxOHB0anJCWjFUSGpSc1B5 NGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3J5MUZPLXVfMzE4cHRqckJaMVRIalJzUHk0Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NTdCQS82ODEyREY5MjA0RUIxMUVBQTcyRkEzNjNDNEY5QUUwMi9yeTFGTy11XzMx OHB0anJCWjFUSGpSc1B5NGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDGi2ARkI32HA5d25XTT2SC+HwIRdRmFR2zQEKOuAcGS7QIl90qHACj Fe2dTwq4SLmutYwKgops12cLNY4KFEipKEgJSitvjaKZXTbu2g3HmyjeTFYVwzEL tP7O4FtJuOb1sgIxnS+/6/D/bPcWSa59Dot/Km6KdmPrVKf0qlfTUwgIBf5GCHrW clcbm5xApxHaGi7J7zU2s9aRdCiBFCBA+VRpUW1PxgaDqZyO+YE6LbDNvO2Lkk5D 6QwfBQB4kjvIwi9VAO3KIU7DnVxATb9AG8iuj+49QirBNTIhwhq5exgG9cHVKMIP BBj9HuhsmifwKUs4xV6ND17cl+uWIcdK -----END CERTIFICATE-----Generated at Wed Dec 31 21:05:14 2025 by rpki-client