This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.mft File: C-AoY1W14laYjORU35P8D8p_YEA.mft (raw, json) Hash identifier: j9bbY4BUPMVVjBTKKx6BID0RpssYvkeO0LXlZ5XcSEs= Subject key identifier: 9A:93:49:D2:7D:AB:86:29:34:BA:F9:B1:5C:B8:43:37:C4:49:0F:38 Authority key identifier: 0B:E0:28:63:55:B5:E2:56:98:8C:E4:54:DF:93:FC:0F:CA:7F:60:40 Certificate issuer: /CN=A91A1D43/serialNumber=0BE0286355B5E256988CE454DF93FC0FCA7F6040 Certificate serial: 01F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C-AoY1W14laYjORU35P8D8p_YEA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.mft Manifest number: 01ED Signing time: Tue 23 Dec 2025 01:35:24 +0000 Manifest this update: Tue 23 Dec 2025 01:35:24 +0000 Manifest next update: Tue 30 Dec 2025 01:35:24 +0000 Files and hashes: 1: C-AoY1W14laYjORU35P8D8p_YEA.crl (hash: AaJtKFvBmUbrdSBZU1ycoI03v/raAcW3OybJlfdVweo=) 2: 8BCB2CFAEA3911EDB91E190BC4F9AE02.roa (hash: Gn3bl+JlcAfK7NlSkgTYoj+Bsl8m7KISn3HM2ix+w34=) 3: 8B1BDC14EA3911EDB91E190BC4F9AE02.roa (hash: +iPaNHR0I7CGA19//oU6de8PSF7FBlMHBTXC8ZhTdUo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.crl rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C-AoY1W14laYjORU35P8D8p_YEA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 01:35:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 499 (0x1f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1D43, serialNumber=0BE0286355B5E256988CE454DF93FC0FCA7F6040 Validity Not Before: Dec 23 01:35:24 2025 GMT Not After : Dec 30 01:35:24 2025 GMT Subject: CN=6949f1dc-6f2a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:07:fa:a1:46:62:50:29:61:ef:e8:38:81:39: c3:4b:b0:f2:36:b4:83:36:f4:5a:f5:93:f8:35:ee: 64:b2:b8:99:88:04:6d:12:c3:73:ec:6d:1f:e1:d3: fd:f9:2f:7d:b0:2f:49:ec:62:64:58:1d:e5:11:02: 2e:e5:f8:36:05:f9:78:aa:89:b8:1c:e4:69:22:84: 9a:d6:0a:20:c8:0d:e2:26:43:3a:91:9a:92:58:31: 55:61:83:2a:aa:e6:57:bc:df:13:3e:ae:a9:3b:39: b1:39:2b:39:d7:41:99:16:4a:3d:a8:db:8f:04:05: 7b:3f:01:33:a9:54:87:67:14:3d:56:29:8c:f1:c3: 56:29:21:d3:56:bf:27:72:7f:ea:d6:94:9a:11:71: 52:8b:a9:ba:52:4f:c0:ab:6d:b4:f9:60:8f:64:e0: bc:91:5b:34:4e:9e:5c:34:e8:e1:d6:1d:b8:e1:ce: ba:b5:9e:0a:f8:f4:d8:90:df:e0:95:61:09:c7:00: 7a:48:85:ad:e4:8f:ee:28:2a:b9:46:57:a5:d0:ff: 7e:e8:1f:56:6e:11:8e:c2:2a:f9:a7:c9:39:c1:4d: 07:04:38:90:60:33:8d:78:eb:cb:dc:af:75:00:de: d6:bc:91:16:62:6f:6e:24:ba:a9:72:0c:52:94:46: 4c:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:93:49:D2:7D:AB:86:29:34:BA:F9:B1:5C:B8:43:37:C4:49:0F:38 X509v3 Authority Key Identifier: keyid:0B:E0:28:63:55:B5:E2:56:98:8C:E4:54:DF:93:FC:0F:CA:7F:60:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C-AoY1W14laYjORU35P8D8p_YEA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:00:d4:36:85:1d:ab:40:9d:89:86:34:f3:69:e6:ec:ce:72: 97:e2:70:78:5b:c1:7b:ab:47:d1:32:b2:13:13:93:2e:ee:75: e7:ef:45:56:ac:9c:fa:e1:db:b8:89:f3:9c:b6:be:76:4e:b5: b3:aa:4d:8f:28:00:99:af:dd:4c:4a:ea:f4:74:9c:64:40:3e: 13:1f:8a:5c:58:1f:95:6a:98:0b:63:4e:ca:e0:b8:37:1f:f9: 1b:91:62:d1:9f:9a:d7:c8:9f:15:60:82:3a:6f:b1:b9:be:77: ce:09:b0:6a:93:d9:f9:74:94:4b:0b:da:49:59:b2:93:c9:51: 83:2a:ef:a1:a2:7b:4e:57:d2:ef:93:e7:f2:03:06:35:84:3e: 56:49:da:02:12:fc:d8:09:6e:55:74:2e:c7:d4:fe:f1:56:43: 6c:d2:95:cd:41:b5:26:99:81:c3:01:8e:08:5d:e2:02:4f:10: e5:35:c8:b3:c7:04:ae:d3:d2:af:5f:eb:92:43:24:65:d5:05: f4:c3:04:e8:4b:13:04:9e:8b:4d:75:07:98:28:f6:2f:39:69: bb:92:bb:ef:31:a4:c8:cc:4e:5a:fd:c2:10:c6:b0:15:65:18: 42:cd:e0:4f:57:44:22:3c:46:54:68:82:f2:3a:25:75:57:47: 93:4d:39:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTFENDMxMTAvBgNVBAUTKDBCRTAyODYzNTVCNUUyNTY5ODhDRTQ1NERGOTNGQzBG Q0E3RjYwNDAwHhcNMjUxMjIzMDEzNTI0WhcNMjUxMjMwMDEzNTI0WjAYMRYwFAYD VQQDDA02OTQ5ZjFkYy02ZjJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsQf6oUZiUClh7+g4gTnDS7DyNrSDNvRa9ZP4Ne5ksriZiARtEsNz7G0f4dP9 +S99sC9J7GJkWB3lEQIu5fg2Bfl4qom4HORpIoSa1gogyA3iJkM6kZqSWDFVYYMq quZXvN8TPq6pOzmxOSs510GZFko9qNuPBAV7PwEzqVSHZxQ9VimM8cNWKSHTVr8n cn/q1pSaEXFSi6m6Uk/Aq220+WCPZOC8kVs0Tp5cNOjh1h244c66tZ4K+PTYkN/g lWEJxwB6SIWt5I/uKCq5Rlel0P9+6B9WbhGOwir5p8k5wU0HBDiQYDONeOvL3K91 AN7WvJEWYm9uJLqpcgxSlEZMVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJqTSdJ9 q4YpNLr5sVy4QzfESQ84MB8GA1UdIwQYMBaAFAvgKGNVteJWmIzkVN+T/A/Kf2BA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMUQ0My84OTI5REZERUVB MjgxMUVEQjdERDAxMThDNEY5QUUwMi9DLUFvWTFXMTRsYVlqT1JVMzVQOEQ4cF9Z RUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0MtQW9ZMVcxNGxhWWpPUlUzNVA4RDhwX1lFQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MUQ0My84OTI5REZERUVBMjgxMUVEQjdERDAxMThDNEY5QUUwMi9DLUFvWTFXMTRs YVlqT1JVMzVQOEQ4cF9ZRUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYANQ2hR2rQJ2JhjTzaebsznKX4nB4W8F7q0fRMrITE5Mu7nXn70VW rJz64du4ifOctr52TrWzqk2PKACZr91MSur0dJxkQD4TH4pcWB+VapgLY07K4Lg3 H/kbkWLRn5rXyJ8VYII6b7G5vnfOCbBqk9n5dJRLC9pJWbKTyVGDKu+hontOV9Lv k+fyAwY1hD5WSdoCEvzYCW5VdC7H1P7xVkNs0pXNQbUmmYHDAY4IXeICTxDlNciz xwSu09KvX+uSQyRl1QX0wwToSxMEnotNdQeYKPYvOWm7krvvMaTIzE5a/cIQxrAV ZRhCzeBPV0QiPEZUaILyOiV1V0eTTTlz -----END CERTIFICATE-----Generated at Thu Dec 25 00:55:39 2025 by rpki-client