This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.mft File: RyCit4x4I5km_e5zRKNoDaDYBx0.mft (raw, json) Hash identifier: oLubwAPBezZB+cMhsGS1WyZt88M08nsSiUb/AWKBClo= Subject key identifier: 38:4A:32:C9:74:15:80:83:9D:40:9E:B0:1A:E3:39:40:8B:D5:1A:C6 Authority key identifier: 47:20:A2:B7:8C:78:23:99:26:FD:EE:73:44:A3:68:0D:A0:D8:07:1D Certificate issuer: /CN=A91972DF/serialNumber=4720A2B78C78239926FDEE7344A3680DA0D8071D Certificate serial: E9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RyCit4x4I5km_e5zRKNoDaDYBx0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.mft Manifest number: E1 Signing time: Sun 21 Dec 2025 04:33:59 +0000 Manifest this update: Sun 21 Dec 2025 04:33:59 +0000 Manifest next update: Sun 28 Dec 2025 04:33:59 +0000 Files and hashes: 1: RyCit4x4I5km_e5zRKNoDaDYBx0.crl (hash: MeP060xdYkYWffKV0SNV+2osRzRmqRPVf24oR/1G2C0=) 2: D2D7B762995611EFADA5D754C4F9AE02.roa (hash: DBuT5pVIx5+DapGoOy/MWoVxejvGW3jQONX5f21P15c=) 3: 003589503F8311F0AA4DF254C4F9AE02.roa (hash: mFg/4qdLeiQ8AjEap32HrO7ldoixpAZaZ3NegxVi38A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.crl rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RyCit4x4I5km_e5zRKNoDaDYBx0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 04:33:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 233 (0xe9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91972DF, serialNumber=4720A2B78C78239926FDEE7344A3680DA0D8071D Validity Not Before: Dec 21 04:33:59 2025 GMT Not After : Dec 28 04:33:59 2025 GMT Subject: CN=694778b7-20e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:a2:63:c2:fc:b3:f7:4f:71:31:58:26:bc:83: e6:a8:48:ed:32:a9:b4:98:9d:8a:37:02:3d:1f:4e: c7:0c:f4:5b:b1:68:3a:b7:fb:d3:f4:26:18:66:cc: 1f:c5:0e:0c:d2:f5:23:8f:34:97:42:80:ce:fd:5e: 3f:ea:94:54:e7:1d:55:cf:7c:25:35:92:e1:e8:9d: ff:1e:25:d4:23:8f:e4:99:6e:a4:76:83:28:1e:db: c1:10:95:ed:c0:a4:19:45:2e:41:92:d7:db:88:c7: 8b:97:6b:96:36:0e:85:29:9d:eb:46:ca:de:46:6f: 57:ad:d6:f3:ca:b5:5d:4c:7c:a5:6a:33:91:60:46: 6a:60:cf:c6:b4:43:8b:8c:49:7b:dd:de:5c:29:5a: 09:08:cd:95:15:c7:fe:c0:f7:42:94:2d:bc:54:a5: 0b:79:5e:95:1b:0e:ea:29:9b:0f:b4:ad:26:d4:0c: f0:67:ff:f9:8c:f2:e3:ba:fa:04:5d:26:12:3d:33: 20:df:22:3c:a9:b1:34:ff:c1:db:09:77:ef:a5:d8: 49:93:10:6c:08:31:5f:63:fb:46:4e:96:5f:b3:40: f1:bc:30:dd:c7:c3:07:44:b3:f3:21:e4:b9:26:ce: bc:b0:47:78:12:16:2f:af:d4:9a:b6:ed:8e:dd:bd: e6:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:4A:32:C9:74:15:80:83:9D:40:9E:B0:1A:E3:39:40:8B:D5:1A:C6 X509v3 Authority Key Identifier: keyid:47:20:A2:B7:8C:78:23:99:26:FD:EE:73:44:A3:68:0D:A0:D8:07:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RyCit4x4I5km_e5zRKNoDaDYBx0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:5c:4d:63:8d:9b:f9:89:32:8d:fc:07:06:c0:87:db:a4:cc: c5:56:04:db:51:b2:22:c7:c5:06:14:40:4a:ec:43:3e:bd:88: b8:f3:ac:c1:2c:2a:a7:ad:d0:83:0f:7e:4e:b4:ac:d6:7d:71: fb:de:54:9a:79:9d:28:42:0e:a1:bd:e4:ff:0f:4b:68:14:e0: 7f:f0:85:49:c6:a6:89:05:ea:b8:97:65:7e:8b:27:f2:83:dc: b9:bd:5d:f7:01:a5:a6:b0:6c:20:cd:38:bf:ba:a6:46:a4:3c: e8:c0:ec:a2:34:e5:b9:c7:30:c9:b5:f7:47:a1:62:63:fb:01: c4:2a:45:65:0a:75:4e:36:af:9e:d1:7c:87:3e:30:5a:3e:a8: eb:e8:19:55:84:19:f7:59:fd:e4:0c:7f:b7:5c:96:f9:3e:3d: 02:d9:a8:12:38:a4:5d:34:57:4c:e9:77:88:2f:85:28:f5:85: af:79:04:0d:89:b7:b7:fa:3e:99:65:fc:fd:f0:c0:56:4b:27: 75:a8:86:69:b5:47:69:ec:05:91:f3:7c:b3:30:63:16:b0:d2: eb:f1:c0:20:c2:b9:d7:c5:2c:ec:bc:2c:f2:9b:2b:5a:0b:7f: 35:8b:19:07:d7:d0:79:f8:73:b4:ba:6f:a9:81:cf:40:5a:66: 47:8f:b1:ca -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcyREYxMTAvBgNVBAUTKDQ3MjBBMkI3OEM3ODIzOTkyNkZERUU3MzQ0QTM2ODBE QTBEODA3MUQwHhcNMjUxMjIxMDQzMzU5WhcNMjUxMjI4MDQzMzU5WjAYMRYwFAYD VQQDDA02OTQ3NzhiNy0yMGU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzKJjwvyz909xMVgmvIPmqEjtMqm0mJ2KNwI9H07HDPRbsWg6t/vT9CYYZswf xQ4M0vUjjzSXQoDO/V4/6pRU5x1Vz3wlNZLh6J3/HiXUI4/kmW6kdoMoHtvBEJXt wKQZRS5BktfbiMeLl2uWNg6FKZ3rRsreRm9XrdbzyrVdTHylajORYEZqYM/GtEOL jEl73d5cKVoJCM2VFcf+wPdClC28VKULeV6VGw7qKZsPtK0m1AzwZ//5jPLjuvoE XSYSPTMg3yI8qbE0/8HbCXfvpdhJkxBsCDFfY/tGTpZfs0DxvDDdx8MHRLPzIeS5 Js68sEd4EhYvr9Satu2O3b3mWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDhKMsl0 FYCDnUCesBrjOUCL1RrGMB8GA1UdIwQYMBaAFEcgoreMeCOZJv3uc0SjaA2g2Acd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzJERi8yN0UzRURBNDk4 MzMxMUVGODMxODlBNTdDNEY5QUUwMi9SeUNpdDR4NEk1a21fZTV6UktOb0RhRFlC eDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1J5Q2l0NHg0STVrbV9lNXpSS05vRGFEWUJ4MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzJERi8yN0UzRURBNDk4MzMxMUVGODMxODlBNTdDNEY5QUUwMi9SeUNpdDR4NEk1 a21fZTV6UktOb0RhRFlCeDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAXE1jjZv5iTKN/AcGwIfbpMzFVgTbUbIix8UGFEBK7EM+vYi486zB LCqnrdCDD35OtKzWfXH73lSaeZ0oQg6hveT/D0toFOB/8IVJxqaJBeq4l2V+iyfy g9y5vV33AaWmsGwgzTi/uqZGpDzowOyiNOW5xzDJtfdHoWJj+wHEKkVlCnVONq+e 0XyHPjBaPqjr6BlVhBn3Wf3kDH+3XJb5Pj0C2agSOKRdNFdM6XeIL4Uo9YWveQQN ibe3+j6ZZfz98MBWSyd1qIZptUdp7AWR83yzMGMWsNLr8cAgwrnXxSzsvCzymyta C381ixkH19B5+HO0um+pgc9AWmZHj7HK -----END CERTIFICATE-----Generated at Sun Dec 21 16:01:23 2025 by rpki-client