This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911B5BA/93E2FB0C3DA311EAA4DC3A59C4F9AE02/yozvXh2MPaWsm67lsZbvBmCaOVk.mft File: yozvXh2MPaWsm67lsZbvBmCaOVk.mft (raw, json) Hash identifier: tJz1rqr5ojd0DuRB52eVb4zk8hPwH3M6l8Bv1DZkxQ4= Subject key identifier: F1:F0:3A:C1:9E:46:E7:26:A7:6F:0C:3A:62:1E:7B:4B:38:67:92:D1 Authority key identifier: CA:8C:EF:5E:1D:8C:3D:A5:AC:9B:AE:E5:B1:96:EF:06:60:9A:39:59 Certificate issuer: /CN=A911B5BA/serialNumber=CA8CEF5E1D8C3DA5AC9BAEE5B196EF06609A3959 Certificate serial: 0B88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yozvXh2MPaWsm67lsZbvBmCaOVk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B5BA/93E2FB0C3DA311EAA4DC3A59C4F9AE02/yozvXh2MPaWsm67lsZbvBmCaOVk.mft Manifest number: 0B85 Signing time: Tue 16 Dec 2025 18:46:27 +0000 Manifest this update: Tue 16 Dec 2025 18:46:27 +0000 Manifest next update: Tue 23 Dec 2025 18:46:27 +0000 Files and hashes: 1: yozvXh2MPaWsm67lsZbvBmCaOVk.crl (hash: QkeZi7Q7zpw2rmwSRcXhNNrGeHnlM410/yxKp71VnIQ=) 2: 410BAD2095F011EFA9137C67C4F9AE02.roa (hash: 3u5hviV9wYqSDD6MZKgqds2XhBaPvlTgTPQdfbhFev0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B5BA/93E2FB0C3DA311EAA4DC3A59C4F9AE02/yozvXh2MPaWsm67lsZbvBmCaOVk.crl rsync://rpki.apnic.net/member_repository/A911B5BA/93E2FB0C3DA311EAA4DC3A59C4F9AE02/yozvXh2MPaWsm67lsZbvBmCaOVk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yozvXh2MPaWsm67lsZbvBmCaOVk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Dec 2025 18:46:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2952 (0xb88) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B5BA, serialNumber=CA8CEF5E1D8C3DA5AC9BAEE5B196EF06609A3959 Validity Not Before: Dec 16 18:46:27 2025 GMT Not After : Dec 23 18:46:27 2025 GMT Subject: CN=6941a903-a39f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:67:2b:04:66:35:c9:92:bb:06:c9:8e:b0:8b: 30:22:58:57:7d:4d:19:46:46:b1:fb:40:d9:a8:20: 65:6f:68:40:f1:39:0a:ad:c7:33:89:1b:88:07:b2: ec:fc:5c:db:28:98:e4:4c:4e:e0:0f:05:2e:0e:b8: 42:5b:c5:7e:0e:39:d1:db:3f:8c:50:5c:a6:93:ba: bf:1b:2a:10:4b:0c:55:d4:ce:ba:d7:3a:59:7d:48: 3f:68:33:2b:db:86:80:91:42:77:d9:2e:35:5f:25: 6e:bf:39:db:3c:dd:32:ea:f2:8c:a4:42:6c:a0:ed: 34:87:b0:cb:ed:f0:da:51:fb:88:d2:99:ce:3f:ae: 1a:82:62:a5:2e:25:d1:c9:d4:71:4b:51:ea:af:f9: 31:50:14:dd:f1:20:5e:54:35:69:58:a1:77:09:a3: b8:3d:5c:64:1a:ac:b5:d5:a4:32:de:f2:98:b7:60: df:38:e5:48:78:9d:6e:7a:84:83:20:58:37:f9:36: 43:0b:79:49:2a:ec:35:25:5a:38:dc:98:81:a2:98: ae:51:e2:6a:9c:58:e3:e3:2a:3b:25:ef:b5:03:0a: e4:2f:88:70:c4:24:91:c9:7b:91:e5:d4:ae:fb:5e: d9:a0:64:99:7c:b3:fc:a4:de:8b:65:77:79:55:f5: 99:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:F0:3A:C1:9E:46:E7:26:A7:6F:0C:3A:62:1E:7B:4B:38:67:92:D1 X509v3 Authority Key Identifier: keyid:CA:8C:EF:5E:1D:8C:3D:A5:AC:9B:AE:E5:B1:96:EF:06:60:9A:39:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B5BA/93E2FB0C3DA311EAA4DC3A59C4F9AE02/yozvXh2MPaWsm67lsZbvBmCaOVk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yozvXh2MPaWsm67lsZbvBmCaOVk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B5BA/93E2FB0C3DA311EAA4DC3A59C4F9AE02/yozvXh2MPaWsm67lsZbvBmCaOVk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:16:bf:69:97:9e:bb:82:38:12:5f:33:12:b8:1e:e6:58:bb: d2:8e:7b:34:d2:80:db:d9:d8:3b:ad:8a:e7:b2:4b:85:4c:4f: 4e:b7:16:7c:da:05:da:4d:ee:10:84:21:6a:a4:f2:e0:bb:f3: bc:1c:05:cb:99:33:3f:79:a6:9e:8e:91:1c:96:1b:4e:5a:65: db:f7:87:93:19:65:c5:1b:a5:c6:f5:86:78:70:71:7f:a7:94: 61:72:c0:4a:bb:c1:59:7d:c9:45:a9:f4:3e:60:9a:2d:76:5e: 65:86:d5:34:19:c6:5f:0c:32:4b:e4:18:51:93:2f:a7:1c:d7: 78:fa:87:b3:35:63:20:e5:05:76:cc:cd:d7:8d:9e:fb:2e:f8: ad:b1:14:ef:59:95:bb:c3:77:80:27:09:d4:80:0c:b9:0c:74: 20:f2:1c:4a:4d:bd:d8:c1:cb:34:61:b6:59:53:91:06:24:1a: 62:77:3d:a8:ee:9f:1a:c6:84:77:2a:cc:50:ad:ce:10:cb:86: 16:95:b0:ae:d9:59:6c:97:7b:43:3f:ec:a3:5e:45:73:aa:97: 48:2e:6d:0c:6c:ce:09:7e:3d:dd:5b:be:85:29:d8:69:8a:ff: fd:50:0f:aa:49:4c:86:2a:ed:f2:28:48:4b:38:19:bd:4a:c3: ac:27:34:f0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC4gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI1QkExMTAvBgNVBAUTKENBOENFRjVFMUQ4QzNEQTVBQzlCQUVFNUIxOTZFRjA2 NjA5QTM5NTkwHhcNMjUxMjE2MTg0NjI3WhcNMjUxMjIzMTg0NjI3WjAYMRYwFAYD VQQDDA02OTQxYTkwMy1hMzlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8WcrBGY1yZK7BsmOsIswIlhXfU0ZRkax+0DZqCBlb2hA8TkKrccziRuIB7Ls /FzbKJjkTE7gDwUuDrhCW8V+DjnR2z+MUFymk7q/GyoQSwxV1M661zpZfUg/aDMr 24aAkUJ32S41XyVuvznbPN0y6vKMpEJsoO00h7DL7fDaUfuI0pnOP64agmKlLiXR ydRxS1Hqr/kxUBTd8SBeVDVpWKF3CaO4PVxkGqy11aQy3vKYt2DfOOVIeJ1ueoSD IFg3+TZDC3lJKuw1JVo43JiBopiuUeJqnFjj4yo7Je+1AwrkL4hwxCSRyXuR5dSu +17ZoGSZfLP8pN6LZXd5VfWZ5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPHwOsGe Rucmp28MOmIee0s4Z5LRMB8GA1UdIwQYMBaAFMqM714djD2lrJuu5bGW7wZgmjlZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjVCQS85M0UyRkIwQzNE QTMxMUVBQTREQzNBNTlDNEY5QUUwMi95b3p2WGgyTVBhV3NtNjdsc1pidkJtQ2FP VmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lvenZYaDJNUGFXc202N2xzWmJ2Qm1DYU9Way5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjVCQS85M0UyRkIwQzNEQTMxMUVBQTREQzNBNTlDNEY5QUUwMi95b3p2WGgyTVBh V3NtNjdsc1pidkJtQ2FPVmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBNFr9pl567gjgSXzMSuB7mWLvSjns00oDb2dg7rYrnskuFTE9OtxZ8 2gXaTe4QhCFqpPLgu/O8HAXLmTM/eaaejpEclhtOWmXb94eTGWXFG6XG9YZ4cHF/ p5RhcsBKu8FZfclFqfQ+YJotdl5lhtU0GcZfDDJL5BhRky+nHNd4+oezNWMg5QV2 zM3XjZ77LvitsRTvWZW7w3eAJwnUgAy5DHQg8hxKTb3Ywcs0YbZZU5EGJBpidz2o 7p8axoR3KsxQrc4Qy4YWlbCu2Vlsl3tDP+yjXkVzqpdILm0MbM4Jfj3dW76FKdhp iv/9UA+qSUyGKu3yKEhLOBm9SsOsJzTw -----END CERTIFICATE-----Generated at Wed Dec 17 23:44:27 2025 by rpki-client