This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91228E2/CE5406F672E111EEB0781619C4F9AE02/yIwqqUquXvn01JfoOHo53RvOk50.mft File: yIwqqUquXvn01JfoOHo53RvOk50.mft (raw, json) Hash identifier: RXljoGj+1A22d5sCPRDqGdSwou8ouqJw2DVC+/z1HPY= Subject key identifier: C2:D5:75:1D:0A:8E:86:7D:8A:EE:5A:75:A4:38:A6:11:D4:32:BB:11 Authority key identifier: C8:8C:2A:A9:4A:AE:5E:F9:F4:D4:97:E8:38:7A:39:DD:1B:CE:93:9D Certificate issuer: /CN=A91228E2/serialNumber=C88C2AA94AAE5EF9F4D497E8387A39DD1BCE939D Certificate serial: 0195 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yIwqqUquXvn01JfoOHo53RvOk50.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91228E2/CE5406F672E111EEB0781619C4F9AE02/yIwqqUquXvn01JfoOHo53RvOk50.mft Manifest number: 0192 Signing time: Fri 19 Dec 2025 02:39:42 +0000 Manifest this update: Fri 19 Dec 2025 02:39:41 +0000 Manifest next update: Fri 26 Dec 2025 02:39:41 +0000 Files and hashes: 1: yIwqqUquXvn01JfoOHo53RvOk50.crl (hash: 83kXFfh7m5a+jJpbbSXGBcLvTS2MiFGX9zTQIM1nd6E=) 2: EF98E11472E211EEB93A4F72C4F9AE02.roa (hash: zjnMnu7RY/dZWeqb3tnlHnJORJa1AYwPA3wCVz3+WfI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91228E2/CE5406F672E111EEB0781619C4F9AE02/yIwqqUquXvn01JfoOHo53RvOk50.crl rsync://rpki.apnic.net/member_repository/A91228E2/CE5406F672E111EEB0781619C4F9AE02/yIwqqUquXvn01JfoOHo53RvOk50.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yIwqqUquXvn01JfoOHo53RvOk50.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 02:39:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 405 (0x195) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91228E2, serialNumber=C88C2AA94AAE5EF9F4D497E8387A39DD1BCE939D Validity Not Before: Dec 19 02:39:41 2025 GMT Not After : Dec 26 02:39:41 2025 GMT Subject: CN=6944baee-72ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:48:10:2d:4a:93:ff:fe:98:07:94:81:2e:7a: 03:ee:a4:04:5a:ad:8a:57:26:ea:4e:d7:b5:1d:59: 13:58:b1:fd:6b:49:ff:cb:78:0e:ac:9c:74:94:92: 76:b4:ae:b2:83:28:63:bc:73:58:48:7b:29:d4:d8: 7a:c3:56:d1:78:60:c8:94:84:7e:a7:4a:de:aa:4e: e2:c3:53:82:42:18:70:7d:43:89:94:90:2d:f9:42: e2:56:b6:a1:ce:ac:9b:41:73:07:19:4e:f9:f4:33: 40:b4:90:c4:a3:a9:19:54:83:d9:db:32:1d:a0:27: 14:69:1c:e5:1e:9b:6a:31:0e:7a:1f:d0:0f:74:7b: 57:8d:49:ec:65:7e:70:dd:8c:9b:e9:67:21:c0:5a: 43:a0:2e:84:36:d5:0d:70:60:ee:5c:a4:6a:54:84: 7c:fd:7a:d8:2c:01:35:43:8e:06:33:31:61:9b:91: 66:47:21:94:28:30:75:ef:08:b5:6c:3c:ea:27:8c: f1:34:0f:de:95:69:11:fc:fd:16:62:d4:96:96:5f: bc:b1:f0:8f:b9:a9:e5:28:25:38:94:07:dd:1f:94: 47:cf:74:f4:04:d6:70:d0:7f:6a:3f:80:2a:84:59: 0d:5b:1e:5e:3f:81:bc:05:1e:2d:45:cd:c0:63:30: 38:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:D5:75:1D:0A:8E:86:7D:8A:EE:5A:75:A4:38:A6:11:D4:32:BB:11 X509v3 Authority Key Identifier: keyid:C8:8C:2A:A9:4A:AE:5E:F9:F4:D4:97:E8:38:7A:39:DD:1B:CE:93:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91228E2/CE5406F672E111EEB0781619C4F9AE02/yIwqqUquXvn01JfoOHo53RvOk50.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yIwqqUquXvn01JfoOHo53RvOk50.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91228E2/CE5406F672E111EEB0781619C4F9AE02/yIwqqUquXvn01JfoOHo53RvOk50.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:7a:cb:08:df:7f:81:b0:56:46:b0:f3:e2:b5:29:82:34:d4: 37:57:1a:fd:56:0e:90:13:dd:7b:15:43:74:cf:e2:7f:10:ad: 0f:d9:51:c2:09:a7:69:5a:0f:db:e8:fb:11:e9:88:3c:da:6b: c6:46:72:6c:ec:59:c6:f0:67:f4:fe:07:cd:35:00:1d:41:71: d0:21:d4:28:55:fe:3c:0b:4f:b7:e8:8c:7a:33:cb:be:1e:85: 5f:d7:bd:2d:e2:dd:3c:ed:19:9b:dd:b7:65:1f:b5:7a:7d:be: a5:c3:45:e9:1c:05:6d:78:e1:6f:de:23:b8:37:92:f1:ff:62: a8:04:a4:29:99:a4:87:36:a3:16:86:ce:50:57:11:fd:0b:53: 6f:e0:a1:3d:ff:ab:a1:ba:d3:86:f2:86:76:17:b1:5b:dc:c5: d4:7a:4b:f7:e8:4f:a4:d0:d1:ed:e5:11:94:41:49:b8:8e:ab: 2e:5f:2a:b4:01:6f:a5:f6:8f:1a:8f:79:e7:f9:d2:ca:f5:8a: fc:87:e4:49:24:08:3e:72:e4:9a:2b:52:b8:0f:b0:ff:d5:21: ce:c5:a5:b6:b3:93:4b:49:79:aa:26:da:0f:e2:fa:5a:58:af: b8:95:72:59:78:63:73:14:96:75:36:af:37:a0:98:ba:b5:61: 3e:86:e2:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjI4RTIxMTAvBgNVBAUTKEM4OEMyQUE5NEFBRTVFRjlGNEQ0OTdFODM4N0EzOURE MUJDRTkzOUQwHhcNMjUxMjE5MDIzOTQxWhcNMjUxMjI2MDIzOTQxWjAYMRYwFAYD VQQDDA02OTQ0YmFlZS03MmFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8UgQLUqT//6YB5SBLnoD7qQEWq2KVybqTte1HVkTWLH9a0n/y3gOrJx0lJJ2 tK6ygyhjvHNYSHsp1Nh6w1bReGDIlIR+p0reqk7iw1OCQhhwfUOJlJAt+ULiVrah zqybQXMHGU759DNAtJDEo6kZVIPZ2zIdoCcUaRzlHptqMQ56H9APdHtXjUnsZX5w 3Yyb6WchwFpDoC6ENtUNcGDuXKRqVIR8/XrYLAE1Q44GMzFhm5FmRyGUKDB17wi1 bDzqJ4zxNA/elWkR/P0WYtSWll+8sfCPuanlKCU4lAfdH5RHz3T0BNZw0H9qP4Aq hFkNWx5eP4G8BR4tRc3AYzA4qQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMLVdR0K joZ9iu5adaQ4phHUMrsRMB8GA1UdIwQYMBaAFMiMKqlKrl759NSX6Dh6Od0bzpOd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMjhFMi9DRTU0MDZGNjcy RTExMUVFQjA3ODE2MTlDNEY5QUUwMi95SXdxcVVxdVh2bjAxSmZvT0hvNTNSdk9r NTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lJd3FxVXF1WHZuMDFKZm9PSG81M1J2T2s1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MjhFMi9DRTU0MDZGNjcyRTExMUVFQjA3ODE2MTlDNEY5QUUwMi95SXdxcVVxdVh2 bjAxSmZvT0hvNTNSdk9rNTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjessI33+BsFZGsPPitSmCNNQ3Vxr9Vg6QE917FUN0z+J/EK0P2VHC CadpWg/b6PsR6Yg82mvGRnJs7FnG8Gf0/gfNNQAdQXHQIdQoVf48C0+36Ix6M8u+ HoVf170t4t087Rmb3bdlH7V6fb6lw0XpHAVteOFv3iO4N5Lx/2KoBKQpmaSHNqMW hs5QVxH9C1Nv4KE9/6uhutOG8oZ2F7Fb3MXUekv36E+k0NHt5RGUQUm4jqsuXyq0 AW+l9o8aj3nn+dLK9Yr8h+RJJAg+cuSaK1K4D7D/1SHOxaW2s5NLSXmqJtoP4vpa WK+4lXJZeGNzFJZ1Nq83oJi6tWE+huIY -----END CERTIFICATE-----Generated at Fri Dec 19 17:45:53 2025 by rpki-client