This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.mft File: C-AoY1W14laYjORU35P8D8p_YEA.mft (raw, json) Hash identifier: 6jory+QTTASABvOQdS+zaEhVt/rqzrTmC1AwXSZ6ES4= Subject key identifier: D4:30:EA:E7:21:19:4D:22:42:30:06:13:41:CB:4F:5B:EF:9B:99:CA Authority key identifier: 0B:E0:28:63:55:B5:E2:56:98:8C:E4:54:DF:93:FC:0F:CA:7F:60:40 Certificate issuer: /CN=A91A1D43/serialNumber=0BE0286355B5E256988CE454DF93FC0FCA7F6040 Certificate serial: 01F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C-AoY1W14laYjORU35P8D8p_YEA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.mft Manifest number: 01EC Signing time: Sun 21 Dec 2025 01:49:20 +0000 Manifest this update: Sun 21 Dec 2025 01:49:20 +0000 Manifest next update: Sun 28 Dec 2025 01:49:20 +0000 Files and hashes: 1: C-AoY1W14laYjORU35P8D8p_YEA.crl (hash: qA6LvBufY2YIbhL1tiLtCED9L88+iJbu6nDaK/vHl4U=) 2: 8BCB2CFAEA3911EDB91E190BC4F9AE02.roa (hash: Gn3bl+JlcAfK7NlSkgTYoj+Bsl8m7KISn3HM2ix+w34=) 3: 8B1BDC14EA3911EDB91E190BC4F9AE02.roa (hash: +iPaNHR0I7CGA19//oU6de8PSF7FBlMHBTXC8ZhTdUo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.crl rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C-AoY1W14laYjORU35P8D8p_YEA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 01:49:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 498 (0x1f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1D43, serialNumber=0BE0286355B5E256988CE454DF93FC0FCA7F6040 Validity Not Before: Dec 21 01:49:20 2025 GMT Not After : Dec 28 01:49:20 2025 GMT Subject: CN=69475220-043d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:7c:84:05:68:6b:b2:76:bb:8d:38:98:56:08: da:b3:a6:b3:82:4c:73:2e:99:6e:25:2f:80:17:94: fc:0c:3b:db:5e:05:7c:fd:c0:ab:33:90:64:40:52: f9:56:ab:d5:2e:9e:27:e9:d8:d8:43:27:fc:1d:37: 08:83:4e:02:23:ca:80:f3:00:5b:c9:61:85:81:5c: 73:ff:04:d3:e8:f5:40:14:44:80:03:27:26:5a:65: 29:2c:13:3e:cd:25:fd:d5:68:36:c1:a4:ae:bd:c4: 1d:a8:32:31:13:d3:5b:d5:ba:f7:7d:f8:c5:bd:69: 00:82:e3:e7:89:48:27:29:1d:22:ca:19:54:fb:0e: 22:fc:15:96:f5:a3:01:54:12:d5:d8:35:d8:30:6c: 1e:69:74:37:4b:cd:d5:48:92:c0:c3:c9:63:49:71: ed:98:7d:21:4e:fc:2a:0b:e6:c2:3a:2f:5b:01:b2: bd:f1:d8:6b:a8:ed:fd:25:73:d3:ab:b9:c6:d7:94: 3b:09:fc:9b:04:80:23:ef:51:18:fc:b3:a5:a7:14: fc:07:e4:50:43:0d:4a:96:05:37:87:16:89:e2:54: a2:fe:5a:cf:46:84:fd:75:a5:6a:1c:08:2c:4c:e3: a9:f6:ee:e2:e7:c6:53:56:62:d1:8b:d2:90:4b:b6: 82:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:30:EA:E7:21:19:4D:22:42:30:06:13:41:CB:4F:5B:EF:9B:99:CA X509v3 Authority Key Identifier: keyid:0B:E0:28:63:55:B5:E2:56:98:8C:E4:54:DF:93:FC:0F:CA:7F:60:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C-AoY1W14laYjORU35P8D8p_YEA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:30:ef:3c:93:f2:a6:af:7f:64:a4:80:61:90:df:7e:8f:21: 5c:67:78:50:cb:c2:ec:3e:04:d3:b8:85:21:d1:38:2f:50:04: cd:90:b2:01:9f:e5:ce:53:31:95:c8:3e:c9:a5:05:97:ef:59: d8:b9:ef:a0:34:e2:68:d5:58:fa:5e:46:4e:7e:d0:79:7d:5a: 77:f2:fb:0e:9b:1a:a8:70:df:b0:61:35:84:44:c2:8f:bd:21: 46:e4:9f:34:d6:6e:08:3d:61:41:aa:05:03:86:bb:78:58:37: 0c:6f:98:96:94:2b:08:bb:df:71:a4:3b:6f:47:c2:30:23:35: f1:dc:ef:03:4b:58:e1:00:d2:d5:92:24:5c:0f:e0:91:65:17: ef:80:2f:23:03:3b:88:3c:e5:c5:f7:6e:2b:e8:0c:3c:45:a0: b7:c9:2b:57:f3:69:34:86:f5:23:de:bb:94:b7:a5:8e:70:c8: ed:f6:80:8b:2b:96:e9:f6:d4:bd:90:9a:c6:35:22:04:4c:02: 0b:3f:a2:8f:f7:82:88:61:43:ae:79:c5:ef:14:d3:37:6a:4e: 3c:32:39:8c:6b:fa:44:8d:5a:73:a5:ec:c5:c5:9f:fa:db:44: 0b:aa:36:ff:fd:69:22:d6:d6:17:4e:82:5b:4b:13:c5:70:c2: 00:62:92:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTFENDMxMTAvBgNVBAUTKDBCRTAyODYzNTVCNUUyNTY5ODhDRTQ1NERGOTNGQzBG Q0E3RjYwNDAwHhcNMjUxMjIxMDE0OTIwWhcNMjUxMjI4MDE0OTIwWjAYMRYwFAYD VQQDDA02OTQ3NTIyMC0wNDNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyXyEBWhrsna7jTiYVgjas6azgkxzLpluJS+AF5T8DDvbXgV8/cCrM5BkQFL5 VqvVLp4n6djYQyf8HTcIg04CI8qA8wBbyWGFgVxz/wTT6PVAFESAAycmWmUpLBM+ zSX91Wg2waSuvcQdqDIxE9Nb1br3ffjFvWkAguPniUgnKR0iyhlU+w4i/BWW9aMB VBLV2DXYMGweaXQ3S83VSJLAw8ljSXHtmH0hTvwqC+bCOi9bAbK98dhrqO39JXPT q7nG15Q7CfybBIAj71EY/LOlpxT8B+RQQw1KlgU3hxaJ4lSi/lrPRoT9daVqHAgs TOOp9u7i58ZTVmLRi9KQS7aCkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNQw6uch GU0iQjAGE0HLT1vvm5nKMB8GA1UdIwQYMBaAFAvgKGNVteJWmIzkVN+T/A/Kf2BA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMUQ0My84OTI5REZERUVB MjgxMUVEQjdERDAxMThDNEY5QUUwMi9DLUFvWTFXMTRsYVlqT1JVMzVQOEQ4cF9Z RUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0MtQW9ZMVcxNGxhWWpPUlUzNVA4RDhwX1lFQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MUQ0My84OTI5REZERUVBMjgxMUVEQjdERDAxMThDNEY5QUUwMi9DLUFvWTFXMTRs YVlqT1JVMzVQOEQ4cF9ZRUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAnMO88k/Kmr39kpIBhkN9+jyFcZ3hQy8LsPgTTuIUh0TgvUATNkLIB n+XOUzGVyD7JpQWX71nYue+gNOJo1Vj6XkZOftB5fVp38vsOmxqocN+wYTWERMKP vSFG5J801m4IPWFBqgUDhrt4WDcMb5iWlCsIu99xpDtvR8IwIzXx3O8DS1jhANLV kiRcD+CRZRfvgC8jAzuIPOXF924r6Aw8RaC3yStX82k0hvUj3ruUt6WOcMjt9oCL K5bp9tS9kJrGNSIETAILP6KP94KIYUOuecXvFNM3ak48MjmMa/pEjVpzpezFxZ/6 20QLqjb//Wki1tYXToJbSxPFcMIAYpI4 -----END CERTIFICATE-----Generated at Sun Dec 21 08:43:47 2025 by rpki-client