This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA958/5AE197F41D9F11E2BCBFF78F08B02CD2/_RYHGGNz6B9E0TeyoOlpV-YquKE.mft File: _RYHGGNz6B9E0TeyoOlpV-YquKE.mft (raw, json) Hash identifier: 4flLFm3OUPuFMDCrD+ymKjc1G+e5YAio+Uaf4U5PoEs= Subject key identifier: B4:4A:3A:48:BA:1C:37:BC:2B:76:22:16:BA:89:0E:C1:B8:54:00:A8 Authority key identifier: FD:16:07:18:63:73:E8:1F:44:D1:37:B2:A0:E9:69:57:E6:2A:B8:A1 Certificate issuer: /CN=A91EA958/serialNumber=FD1607186373E81F44D137B2A0E96957E62AB8A1 Certificate serial: 3532 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_RYHGGNz6B9E0TeyoOlpV-YquKE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA958/5AE197F41D9F11E2BCBFF78F08B02CD2/_RYHGGNz6B9E0TeyoOlpV-YquKE.mft Manifest number: 3512 Signing time: Thu 18 Dec 2025 14:58:33 +0000 Manifest this update: Thu 18 Dec 2025 14:58:33 +0000 Manifest next update: Thu 25 Dec 2025 14:58:33 +0000 Files and hashes: 1: _RYHGGNz6B9E0TeyoOlpV-YquKE.crl (hash: q1154a/gCv+q/ir8oGn1pG9yIiXnFfQrCjQQ/0Mq/xQ=) 2: 59F4A758BD2F11EBB84EE532C4F9AE02.roa (hash: uAMH22czrWhCVXR1Yh4Gb924YIN0PWuUVG5CCQ0T0QI=) 3: 5A7BB752BD2F11EBB84EE532C4F9AE02.roa (hash: LB+KlOsPvF4imD5dH4Y/7ETYXLpR1TopuFn08dtZ6UQ=) 4: D347187A7E9511ECA9132A0BC4F9AE02.roa (hash: kxrZR2YgejKdZw2KSRqTPBaBWQsbx9P5F4vQ2qVIgKA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA958/5AE197F41D9F11E2BCBFF78F08B02CD2/_RYHGGNz6B9E0TeyoOlpV-YquKE.crl rsync://rpki.apnic.net/member_repository/A91EA958/5AE197F41D9F11E2BCBFF78F08B02CD2/_RYHGGNz6B9E0TeyoOlpV-YquKE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_RYHGGNz6B9E0TeyoOlpV-YquKE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 14:58:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13618 (0x3532) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA958, serialNumber=FD1607186373E81F44D137B2A0E96957E62AB8A1 Validity Not Before: Dec 18 14:58:33 2025 GMT Not After : Dec 25 14:58:33 2025 GMT Subject: CN=69441699-84f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:f6:66:78:36:6b:51:2e:28:aa:e4:19:23:06: 61:8a:8f:48:11:f1:36:80:89:de:76:f3:e2:66:de: 9f:a1:57:45:ff:50:34:79:05:1d:74:24:05:46:a3: aa:c0:cc:a3:f7:47:a4:b9:94:42:92:2d:bb:ed:b4: 93:14:fb:84:b0:da:a5:5d:ce:48:6d:1a:4c:84:6f: d9:62:5c:0c:c8:dc:ae:f3:26:42:66:fd:ac:87:3a: c6:74:a9:1b:25:d3:58:49:52:cb:c9:c5:53:dc:38: f9:49:ee:db:db:ed:5c:09:86:72:4f:c3:23:a1:91: 01:f8:a5:20:3c:8a:28:4f:8c:f5:6c:f5:a8:99:b1: e1:5e:09:2d:9e:b8:42:bb:08:d0:33:98:93:4c:3d: 7d:d9:be:49:a7:fc:71:07:4b:8c:6e:9f:25:61:b1: e3:1b:15:90:6f:26:37:cb:96:44:5c:e5:f7:33:f5: f8:ed:01:42:1d:01:4c:16:b8:70:59:d3:1d:c3:76: de:e2:79:73:7c:25:37:ee:be:22:47:22:74:c9:a3: 81:1f:af:53:e7:94:e2:86:c3:f0:a2:b3:26:63:fe: 95:91:f6:4b:77:ba:07:bd:3f:a3:f0:66:7e:1f:6a: ac:d1:87:f0:0a:af:8f:be:ee:fe:62:ca:6b:c8:1b: 15:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:4A:3A:48:BA:1C:37:BC:2B:76:22:16:BA:89:0E:C1:B8:54:00:A8 X509v3 Authority Key Identifier: keyid:FD:16:07:18:63:73:E8:1F:44:D1:37:B2:A0:E9:69:57:E6:2A:B8:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA958/5AE197F41D9F11E2BCBFF78F08B02CD2/_RYHGGNz6B9E0TeyoOlpV-YquKE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_RYHGGNz6B9E0TeyoOlpV-YquKE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA958/5AE197F41D9F11E2BCBFF78F08B02CD2/_RYHGGNz6B9E0TeyoOlpV-YquKE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:c4:70:4e:94:8a:9d:a6:f1:f8:d2:fb:06:9b:f5:88:ec:26: e8:d4:4a:87:07:36:6c:b5:cb:a1:e9:93:63:12:e7:a6:2f:8b: be:26:57:ad:ed:92:aa:bf:56:57:8f:d3:f9:6d:73:6e:46:35: f9:69:6d:d6:cb:da:27:ea:19:18:6a:06:a0:e5:d1:a2:2b:20: fe:42:5b:c3:8d:ac:6f:71:ca:f6:fa:fb:e6:84:bc:b8:7f:d0: 57:a0:be:67:f3:4f:d3:09:2c:99:ef:08:b1:7f:51:8a:4d:84: 82:77:5c:89:9c:3a:6a:04:d9:77:72:8c:4e:a2:e2:a2:ac:49: 32:a5:66:27:13:8f:76:cf:8d:ff:fe:d0:6e:4a:d6:80:69:79: 82:2e:4a:62:59:cf:2b:58:3a:0a:03:40:d8:af:62:9a:21:f0: 75:8f:2c:a6:53:a4:b6:cf:bb:a2:e2:af:e0:2b:0a:e7:d5:5a: 5a:59:10:58:cf:6f:39:86:25:8f:a8:26:a0:97:08:4f:32:da: 91:4d:7b:47:7b:59:6b:15:83:e1:8b:39:aa:12:04:62:cf:9e: 52:e5:6b:8f:3f:21:a9:0c:59:ad:02:a6:59:f8:52:5c:f2:fd: 66:d9:ad:22:d5:c9:8b:de:6c:60:07:49:d7:a0:7b:7a:c9:d5: 22:8d:63:9b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNTIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE5NTgxMTAvBgNVBAUTKEZEMTYwNzE4NjM3M0U4MUY0NEQxMzdCMkEwRTk2OTU3 RTYyQUI4QTEwHhcNMjUxMjE4MTQ1ODMzWhcNMjUxMjI1MTQ1ODMzWjAYMRYwFAYD VQQDDA02OTQ0MTY5OS04NGY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9vZmeDZrUS4oquQZIwZhio9IEfE2gInedvPiZt6foVdF/1A0eQUddCQFRqOq wMyj90ekuZRCki277bSTFPuEsNqlXc5IbRpMhG/ZYlwMyNyu8yZCZv2shzrGdKkb JdNYSVLLycVT3Dj5Se7b2+1cCYZyT8MjoZEB+KUgPIooT4z1bPWombHhXgktnrhC uwjQM5iTTD192b5Jp/xxB0uMbp8lYbHjGxWQbyY3y5ZEXOX3M/X47QFCHQFMFrhw WdMdw3be4nlzfCU37r4iRyJ0yaOBH69T55TihsPworMmY/6VkfZLd7oHvT+j8GZ+ H2qs0YfwCq+Pvu7+YspryBsVCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLRKOki6 HDe8K3YiFrqJDsG4VACoMB8GA1UdIwQYMBaAFP0WBxhjc+gfRNE3sqDpaVfmKrih MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTk1OC81QUUxOTdGNDFE OUYxMUUyQkNCRkY3OEYwOEIwMkNEMi9fUllIR0dOejZCOUUwVGV5b09scFYtWXF1 S0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19SWUhHR056NkI5RTBUZXlvT2xwVi1ZcXVLRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTk1OC81QUUxOTdGNDFEOUYxMUUyQkNCRkY3OEYwOEIwMkNEMi9fUllIR0dOejZC OUUwVGV5b09scFYtWXF1S0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1xHBOlIqdpvH40vsGm/WI7Cbo1EqHBzZstcuh6ZNjEuemL4u+Jlet 7ZKqv1ZXj9P5bXNuRjX5aW3Wy9on6hkYagag5dGiKyD+QlvDjaxvccr2+vvmhLy4 f9BXoL5n80/TCSyZ7wixf1GKTYSCd1yJnDpqBNl3coxOouKirEkypWYnE492z43/ /tBuStaAaXmCLkpiWc8rWDoKA0DYr2KaIfB1jyymU6S2z7ui4q/gKwrn1VpaWRBY z285hiWPqCaglwhPMtqRTXtHe1lrFYPhizmqEgRiz55S5WuPPyGpDFmtAqZZ+FJc 8v1m2a0i1cmL3mxgB0nXoHt6ydUijWOb -----END CERTIFICATE-----Generated at Fri Dec 19 17:45:03 2025 by rpki-client