This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7B61/BE68D302CAAA11EBB8C02B5CC4F9AE02/cYQNfZjFz5vWvrRIatRnQGXxR0E.mft File: cYQNfZjFz5vWvrRIatRnQGXxR0E.mft (raw, json) Hash identifier: sjwqHs3+xD5N66WFtMVzwWEaJ3to2XEvWZRDYo/4ors= Subject key identifier: 4A:5A:58:54:FA:09:5C:99:45:E2:AE:29:FA:FC:0B:61:F8:D6:AE:F5 Authority key identifier: 71:84:0D:7D:98:C5:CF:9B:D6:BE:B4:48:6A:D4:67:40:65:F1:47:41 Certificate issuer: /CN=A91B7B61/serialNumber=71840D7D98C5CF9BD6BEB4486AD4674065F14741 Certificate serial: 0616 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cYQNfZjFz5vWvrRIatRnQGXxR0E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7B61/BE68D302CAAA11EBB8C02B5CC4F9AE02/cYQNfZjFz5vWvrRIatRnQGXxR0E.mft Manifest number: 0611 Signing time: Thu 18 Dec 2025 22:13:06 +0000 Manifest this update: Thu 18 Dec 2025 22:13:06 +0000 Manifest next update: Thu 25 Dec 2025 22:13:06 +0000 Files and hashes: 1: cYQNfZjFz5vWvrRIatRnQGXxR0E.crl (hash: KzHJEKlF+N0ENfh5ihhTTKIv86vfUWq13b+ZuewCWCM=) 2: C2EFC706CAAE11EBA95C5E64C4F9AE02.roa (hash: dMeJp28zx6FUq76ao4qK+ptEjKQRepLswYRFFIdTn7o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7B61/BE68D302CAAA11EBB8C02B5CC4F9AE02/cYQNfZjFz5vWvrRIatRnQGXxR0E.crl rsync://rpki.apnic.net/member_repository/A91B7B61/BE68D302CAAA11EBB8C02B5CC4F9AE02/cYQNfZjFz5vWvrRIatRnQGXxR0E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cYQNfZjFz5vWvrRIatRnQGXxR0E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 22:13:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1558 (0x616) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7B61, serialNumber=71840D7D98C5CF9BD6BEB4486AD4674065F14741 Validity Not Before: Dec 18 22:13:06 2025 GMT Not After : Dec 25 22:13:06 2025 GMT Subject: CN=69447c72-40e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:bc:11:68:d0:81:e6:af:d7:55:d0:ac:38:29: f4:d2:31:6c:7b:85:57:43:c8:06:6b:fd:4e:95:bd: c5:67:a1:05:f5:65:b4:59:6c:85:99:d4:a3:66:d1: e8:29:c0:51:16:b3:37:ea:4c:25:2c:b5:04:6c:bc: 2d:10:50:58:a0:15:b6:4e:8e:78:b9:5c:52:6e:f4: d4:32:c3:15:30:48:1a:a3:75:c2:fc:5f:a7:30:f4: e0:37:e8:98:c3:18:ff:6f:8c:11:b9:4c:60:70:1d: 4e:7e:f2:0e:53:71:80:ec:ea:f0:e4:b1:bd:1d:d2: 3e:f9:46:2a:37:78:0a:90:9a:59:50:9e:3c:76:97: 7d:73:80:0e:49:58:11:02:0f:d0:fe:a2:11:ca:35: c2:78:10:9e:66:8a:0e:6a:24:c4:62:7d:8a:c1:24: 14:62:c0:2f:ef:ac:1b:4a:ff:9e:1b:db:a2:0a:c4: de:d5:59:48:98:cf:af:f5:05:a4:35:80:ef:14:2f: 62:62:5a:bf:94:33:56:7f:08:e6:98:b7:61:18:03: e4:e9:9d:be:0a:e5:d6:d2:f9:44:cf:45:b0:b7:81: a4:66:fb:dc:ff:70:38:d9:0f:c2:6e:66:b7:db:04: be:04:ca:8d:ad:e6:5f:3f:d9:33:08:44:42:0f:b3: 84:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:5A:58:54:FA:09:5C:99:45:E2:AE:29:FA:FC:0B:61:F8:D6:AE:F5 X509v3 Authority Key Identifier: keyid:71:84:0D:7D:98:C5:CF:9B:D6:BE:B4:48:6A:D4:67:40:65:F1:47:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7B61/BE68D302CAAA11EBB8C02B5CC4F9AE02/cYQNfZjFz5vWvrRIatRnQGXxR0E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cYQNfZjFz5vWvrRIatRnQGXxR0E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7B61/BE68D302CAAA11EBB8C02B5CC4F9AE02/cYQNfZjFz5vWvrRIatRnQGXxR0E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:e2:3f:ce:d1:07:7a:9b:27:97:0f:ab:ab:cc:61:62:77:c9: b3:9d:31:ae:65:ae:3e:8f:58:9a:a2:8b:66:3a:79:ff:8f:a4: 70:06:2b:a8:80:33:86:76:5e:6f:9d:b0:7a:79:2e:d3:d3:37: 08:3b:71:d7:f8:35:6a:47:68:28:c8:63:c5:66:e3:26:a8:f3: c4:85:a5:6d:21:8a:df:d6:44:52:40:13:cb:ed:06:9b:aa:e3: cb:88:d2:7e:ca:59:42:cd:38:d3:28:4e:27:42:eb:a2:56:a7: 37:ac:90:7a:87:8c:94:63:57:2d:de:66:16:06:9e:87:66:57: ab:55:44:a7:dc:cd:23:38:98:f3:63:93:31:2f:08:b7:9f:d9: c7:f4:36:ce:de:79:3f:d0:73:54:11:f2:78:98:2b:97:1b:3f: 1c:3f:77:03:8c:b7:7c:ce:d1:94:b4:c8:23:1c:24:0c:f6:08: 98:01:41:dd:71:b1:1a:99:29:7b:0b:ae:32:47:62:8a:e9:e2: 3e:9d:76:04:0b:92:7f:ef:42:24:f3:12:c8:64:db:ca:0c:b5: 51:82:37:3b:b7:df:23:25:20:01:23:0c:7f:b0:64:84:a2:d8: 26:e1:b5:63:21:cf:17:f8:1e:38:f7:b3:a1:db:f4:37:7a:31: de:97:72:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBhYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjdCNjExMTAvBgNVBAUTKDcxODQwRDdEOThDNUNGOUJENkJFQjQ0ODZBRDQ2NzQw NjVGMTQ3NDEwHhcNMjUxMjE4MjIxMzA2WhcNMjUxMjI1MjIxMzA2WjAYMRYwFAYD VQQDDA02OTQ0N2M3Mi00MGU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvbwRaNCB5q/XVdCsOCn00jFse4VXQ8gGa/1Olb3FZ6EF9WW0WWyFmdSjZtHo KcBRFrM36kwlLLUEbLwtEFBYoBW2To54uVxSbvTUMsMVMEgao3XC/F+nMPTgN+iY wxj/b4wRuUxgcB1OfvIOU3GA7Orw5LG9HdI++UYqN3gKkJpZUJ48dpd9c4AOSVgR Ag/Q/qIRyjXCeBCeZooOaiTEYn2KwSQUYsAv76wbSv+eG9uiCsTe1VlImM+v9QWk NYDvFC9iYlq/lDNWfwjmmLdhGAPk6Z2+CuXW0vlEz0Wwt4GkZvvc/3A42Q/Cbma3 2wS+BMqNreZfP9kzCERCD7OEpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEpaWFT6 CVyZReKuKfr8C2H41q71MB8GA1UdIwQYMBaAFHGEDX2Yxc+b1r60SGrUZ0Bl8UdB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCN0I2MS9CRTY4RDMwMkNB QUExMUVCQjhDMDJCNUNDNEY5QUUwMi9jWVFOZlpqRno1dld2clJJYXRSblFHWHhS MEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NZUU5mWmpGejV2V3ZyUklhdFJuUUdYeFIwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC N0I2MS9CRTY4RDMwMkNBQUExMUVCQjhDMDJCNUNDNEY5QUUwMi9jWVFOZlpqRno1 dld2clJJYXRSblFHWHhSMEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB74j/O0Qd6myeXD6urzGFid8mznTGuZa4+j1iaootmOnn/j6RwBiuo gDOGdl5vnbB6eS7T0zcIO3HX+DVqR2goyGPFZuMmqPPEhaVtIYrf1kRSQBPL7Qab quPLiNJ+yllCzTjTKE4nQuuiVqc3rJB6h4yUY1ct3mYWBp6HZlerVUSn3M0jOJjz Y5MxLwi3n9nH9DbO3nk/0HNUEfJ4mCuXGz8cP3cDjLd8ztGUtMgjHCQM9giYAUHd cbEamSl7C64yR2KK6eI+nXYEC5J/70Ik8xLIZNvKDLVRgjc7t98jJSABIwx/sGSE otgm4bVjIc8X+B4497Oh2/Q3ejHel3I1 -----END CERTIFICATE-----Generated at Fri Dec 19 19:04:01 2025 by rpki-client