This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.mft File: DYtx2GteICkzvLAqW210CSpSoXw.mft (raw, json) Hash identifier: 2ZQeBJwtgMRGSpKaz5PNQkZPwLiD8X0AS2GnzXZUfck= Subject key identifier: 65:93:8F:5A:FB:D1:56:4B:10:E7:BE:09:31:B7:DF:DE:80:7C:55:AE Authority key identifier: 0D:8B:71:D8:6B:5E:20:29:33:BC:B0:2A:5B:6D:74:09:2A:52:A1:7C Certificate issuer: /CN=A91A395C/serialNumber=0D8B71D86B5E202933BCB02A5B6D74092A52A17C Certificate serial: 3542 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DYtx2GteICkzvLAqW210CSpSoXw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.mft Manifest number: 3514 Signing time: Sun 28 Dec 2025 14:46:59 +0000 Manifest this update: Sun 28 Dec 2025 14:46:58 +0000 Manifest next update: Sun 04 Jan 2026 14:46:58 +0000 Files and hashes: 1: DYtx2GteICkzvLAqW210CSpSoXw.crl (hash: lvgy0NGqQaPW0p+QZa6KLr+zEHD9jQTreGayJ81uqX0=) 2: 9B71FEB0593F11EA9F9FA238C4F9AE02.roa (hash: XQCwNi2PZQw3HwB0S22xbUukUjh1gRPdN0DptoUSl6Q=) 3: 991EB004BE8511EE960E5082C4F9AE02.roa (hash: IR/fxoozFicSxIrUXHGZXGMAUroK6RP4wvdk7z4PV7A=) 4: 9A2B0DE4593F11EA9F9FA238C4F9AE02.roa (hash: jv97nGJvaH0WKHe7n31vkT3MMMbNqFjpDhhexD6X6+Q=) 5: 65552C3AE8D411ED8D0FAD45C4F9AE02.roa (hash: ifJGYL5q49BedEWwURROMxMLmQuzo6sd4i9VU7gjPWk=) 6: 3DBC186C5AD611EF85A4557BC4F9AE02.roa (hash: crg/ljxSxvSurizJ6VoDNQFMCKyOAKHsQIWFOorvrvI=) 7: D56D9FD87E8711EC9A928B6AC4F9AE02.roa (hash: MzFm0njK9GauK3PVGzL0I/Klqbd6ft5wJ9/podujw/8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.crl rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DYtx2GteICkzvLAqW210CSpSoXw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 Jan 2026 14:46:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13634 (0x3542) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A395C, serialNumber=0D8B71D86B5E202933BCB02A5B6D74092A52A17C Validity Not Before: Dec 28 14:46:58 2025 GMT Not After : Jan 4 14:46:58 2026 GMT Subject: CN=695142e3-c283 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:85:6e:f2:ac:f0:08:87:c4:dd:03:96:ce:09:b0: 86:13:5b:f7:67:c0:20:1b:de:ca:7e:53:04:2d:6b: 86:60:35:6d:bb:6d:de:a8:8b:e3:0a:d8:b9:84:cf: 00:98:d3:a9:f7:f2:07:81:f9:9e:d2:32:2e:44:4c: 05:69:70:c5:fd:7c:c7:bb:fe:75:79:6e:1a:22:c8: 5b:7c:2c:88:59:67:17:da:73:ee:60:cb:69:bc:b8: 1e:cb:b9:90:40:2d:29:62:86:ce:fd:d0:09:c1:55: c9:8c:30:03:57:5d:0f:d6:0e:4b:ed:a7:3f:00:40: 62:24:41:72:1e:04:71:fc:d5:3b:21:02:68:c1:c9: e2:15:9c:a1:9b:94:91:da:e7:39:a8:84:30:b8:6d: b3:52:ed:77:d4:c8:dc:26:95:d1:dd:6d:6f:04:71: 33:a2:d3:a7:1b:42:84:47:85:87:9e:d8:ed:d2:f2: c2:d9:c5:54:41:ad:0b:00:d0:64:ec:34:78:66:f1: 37:02:18:36:60:b8:71:85:f6:ea:97:82:da:8b:f6: 5c:0b:81:97:df:83:cb:01:fe:f3:fe:73:3e:8d:76: d5:13:95:fa:c9:96:cc:5e:fa:a2:48:89:18:65:ea: 65:c6:7c:a6:47:94:67:45:2a:7e:ea:1b:56:d8:38: 0f:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:93:8F:5A:FB:D1:56:4B:10:E7:BE:09:31:B7:DF:DE:80:7C:55:AE X509v3 Authority Key Identifier: keyid:0D:8B:71:D8:6B:5E:20:29:33:BC:B0:2A:5B:6D:74:09:2A:52:A1:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DYtx2GteICkzvLAqW210CSpSoXw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:0c:41:02:27:4f:d5:ca:77:6a:56:8a:ec:a7:ba:3c:0d:46: a3:30:f0:82:a4:3f:e9:45:23:39:13:3f:5c:d9:5d:43:d5:e7: b3:18:dc:65:51:e4:39:ab:f6:9b:74:f6:9f:b3:af:12:af:63: 0b:c6:d4:fe:0f:5d:de:1a:73:7a:b6:fa:9e:20:a2:b4:a1:99: 2a:99:98:6c:33:a2:21:c6:8e:36:79:47:60:40:a2:91:03:5f: 81:c2:e0:64:8e:11:a1:de:8a:a2:f8:a7:be:f2:e3:9b:d4:a7: 39:a8:ee:aa:01:a5:bb:90:92:f3:d4:2d:ee:c3:1b:35:c2:89: 2a:1b:70:2d:8e:9b:d9:d5:0f:69:e9:78:6a:45:4d:23:6b:27: 63:e3:32:1a:65:dd:39:25:19:fd:4b:a2:12:35:96:7e:41:99: 2e:40:3d:11:2c:8e:f0:89:05:15:e4:b6:16:82:45:75:ce:d1: a3:ff:e3:3e:10:c5:21:fe:df:b2:56:32:4a:c2:3a:e4:76:14: 11:fd:a3:74:24:03:f5:35:8b:f2:61:67:b7:57:95:eb:55:a3: ee:b8:e1:1b:20:d4:69:fa:05:60:be:dc:d9:f2:b9:88:22:38: 6c:0a:a7:49:08:4b:68:60:98:82:02:e5:a8:57:07:88:be:0c: 30:bf:f6:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNUIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTM5NUMxMTAvBgNVBAUTKDBEOEI3MUQ4NkI1RTIwMjkzM0JDQjAyQTVCNkQ3NDA5 MkE1MkExN0MwHhcNMjUxMjI4MTQ0NjU4WhcNMjYwMTA0MTQ0NjU4WjAYMRYwFAYD VQQDDA02OTUxNDJlMy1jMjgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAhW7yrPAIh8TdA5bOCbCGE1v3Z8AgG97KflMELWuGYDVtu23eqIvjCti5hM8A mNOp9/IHgfme0jIuREwFaXDF/XzHu/51eW4aIshbfCyIWWcX2nPuYMtpvLgey7mQ QC0pYobO/dAJwVXJjDADV10P1g5L7ac/AEBiJEFyHgRx/NU7IQJowcniFZyhm5SR 2uc5qIQwuG2zUu131MjcJpXR3W1vBHEzotOnG0KER4WHntjt0vLC2cVUQa0LANBk 7DR4ZvE3Ahg2YLhxhfbql4Lai/ZcC4GX34PLAf7z/nM+jXbVE5X6yZbMXvqiSIkY ZeplxnymR5RnRSp+6htW2DgPcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGWTj1r7 0VZLEOe+CTG3396AfFWuMB8GA1UdIwQYMBaAFA2LcdhrXiApM7ywKlttdAkqUqF8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzk1Qy9CQjM0MTdDMDFE OTYxMUUyQjhCQjgyN0YwOEIwMkNEMi9EWXR4Mkd0ZUlDa3p2TEFxVzIxMENTcFNv WHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RZdHgyR3RlSUNrenZMQXFXMjEwQ1NwU29Ydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Mzk1Qy9CQjM0MTdDMDFEOTYxMUUyQjhCQjgyN0YwOEIwMkNEMi9EWXR4Mkd0ZUlD a3p2TEFxVzIxMENTcFNvWHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC1DEECJ0/VyndqVorsp7o8DUajMPCCpD/pRSM5Ez9c2V1D1eezGNxl UeQ5q/abdPafs68Sr2MLxtT+D13eGnN6tvqeIKK0oZkqmZhsM6Ihxo42eUdgQKKR A1+BwuBkjhGh3oqi+Ke+8uOb1Kc5qO6qAaW7kJLz1C3uwxs1wokqG3AtjpvZ1Q9p 6XhqRU0jaydj4zIaZd05JRn9S6ISNZZ+QZkuQD0RLI7wiQUV5LYWgkV1ztGj/+M+ EMUh/t+yVjJKwjrkdhQR/aN0JAP1NYvyYWe3V5XrVaPuuOEbINRp+gVgvtzZ8rmI IjhsCqdJCEtoYJiCAuWoVweIvgwwv/Zh -----END CERTIFICATE-----Generated at Sun Dec 28 23:23:29 2025 by rpki-client