This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91523FF/200C377A87CB11F0802B227DC4F9AE02/YGtPQu6X90iOwgtj2LGq9tQtnKc.mft File: YGtPQu6X90iOwgtj2LGq9tQtnKc.mft (raw, json) Hash identifier: Nfm89RkQp139n97nuiBD0nlaaTh/Q93ZNg0XM5yFh5E= Subject key identifier: D7:39:68:51:B9:AF:25:79:36:59:4B:64:F6:46:E5:DF:63:9F:34:7E Authority key identifier: 60:6B:4F:42:EE:97:F7:48:8E:C2:0B:63:D8:B1:AA:F6:D4:2D:9C:A7 Certificate issuer: /CN=A91523FF/serialNumber=606B4F42EE97F7488EC20B63D8B1AAF6D42D9CA7 Certificate serial: 39 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YGtPQu6X90iOwgtj2LGq9tQtnKc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91523FF/200C377A87CB11F0802B227DC4F9AE02/YGtPQu6X90iOwgtj2LGq9tQtnKc.mft Manifest number: 38 Signing time: Sun 21 Dec 2025 06:29:59 +0000 Manifest this update: Sun 21 Dec 2025 06:29:58 +0000 Manifest next update: Sun 28 Dec 2025 06:29:58 +0000 Files and hashes: 1: YGtPQu6X90iOwgtj2LGq9tQtnKc.crl (hash: BVjVpsWDKWD9+QssL7Pv/ZTra2NtxO6QyPgS2sCCO9g=) 2: 720ED6F487CB11F0B605C67DC4F9AE02.roa (hash: Rjr6eKNeN1KpnMLB6OZbv1JZX2fU2WirfbjPXhZ6QK4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91523FF/200C377A87CB11F0802B227DC4F9AE02/YGtPQu6X90iOwgtj2LGq9tQtnKc.crl rsync://rpki.apnic.net/member_repository/A91523FF/200C377A87CB11F0802B227DC4F9AE02/YGtPQu6X90iOwgtj2LGq9tQtnKc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YGtPQu6X90iOwgtj2LGq9tQtnKc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 06:29:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57 (0x39) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91523FF, serialNumber=606B4F42EE97F7488EC20B63D8B1AAF6D42D9CA7 Validity Not Before: Dec 21 06:29:58 2025 GMT Not After : Dec 28 06:29:58 2025 GMT Subject: CN=694793e7-d885 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:7a:1a:2c:c2:8a:88:9d:38:d1:7c:89:08:e6: 9b:15:00:ff:8e:fb:96:3f:04:c4:92:03:69:96:ab: 58:92:a7:c8:15:70:88:f1:0d:9f:46:be:02:b1:b3: 81:38:6d:4f:10:27:f9:fe:6f:dd:a4:ac:fa:06:97: c3:59:69:46:a6:e8:a1:10:67:bc:2e:86:fc:c6:eb: c9:f2:81:49:eb:0e:b0:36:19:28:09:30:92:e5:73: 6b:e9:07:3d:6d:09:6b:31:a5:25:da:38:9b:68:63: 14:cd:0c:4b:ec:a0:b6:ca:7f:9c:b1:3d:66:c1:3a: 77:11:bf:d4:e2:40:16:fe:a8:34:a2:31:7a:4f:99: 58:fc:38:9b:5f:fa:e7:1e:df:8d:43:2e:6a:ed:9e: eb:44:5d:89:61:29:2f:dd:d2:2f:84:cd:19:a9:1b: 5a:c8:f8:8e:23:2d:c2:c1:87:53:c3:47:f4:2f:ae: f2:d1:a2:fc:e6:ae:14:1b:57:f8:50:55:01:d2:50: 28:bc:94:c9:ea:f2:de:cf:39:b0:fa:2a:f7:fb:0e: cf:bb:06:e9:4e:57:a3:4b:08:99:79:2d:03:c0:b5: 61:c9:ee:a2:6b:cb:55:be:02:8f:55:8f:e5:9b:8a: e2:ed:13:4a:cb:5a:ed:58:3e:4c:e8:d2:5b:5b:2a: ee:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:39:68:51:B9:AF:25:79:36:59:4B:64:F6:46:E5:DF:63:9F:34:7E X509v3 Authority Key Identifier: keyid:60:6B:4F:42:EE:97:F7:48:8E:C2:0B:63:D8:B1:AA:F6:D4:2D:9C:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91523FF/200C377A87CB11F0802B227DC4F9AE02/YGtPQu6X90iOwgtj2LGq9tQtnKc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YGtPQu6X90iOwgtj2LGq9tQtnKc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91523FF/200C377A87CB11F0802B227DC4F9AE02/YGtPQu6X90iOwgtj2LGq9tQtnKc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:11:15:12:e6:35:16:a9:ac:1b:0e:32:02:4f:d1:1c:a2:f6: f3:1e:07:e4:47:8e:81:82:d1:12:36:e4:0c:ee:ea:4d:6b:e7: a3:c0:56:da:99:96:39:b5:93:40:af:57:68:10:41:e6:0f:62: 40:1d:fd:b8:89:a5:86:4e:1c:a2:61:3b:2d:7e:46:e1:4b:ac: bc:6e:11:f4:6f:fe:a6:d1:b7:7c:4b:de:e0:ec:da:9f:45:6b: 6a:c9:53:e4:d8:fe:5a:45:ae:7c:f0:bc:bf:5d:5c:aa:9a:90: b3:55:19:64:d7:66:dc:53:63:f4:f8:95:91:24:a0:71:9a:36: 02:35:e8:2d:bb:8b:5c:f7:f1:d1:79:33:71:1b:e3:73:96:b0: c3:42:99:8b:b6:19:12:5e:6b:0d:62:a2:36:39:d1:41:46:f3: e0:fe:6e:37:76:86:20:7d:f0:80:e3:03:cd:05:8c:08:7f:23: b9:7d:88:7b:e8:fb:83:bb:d2:11:11:b0:c6:c3:a1:e7:35:f5: 36:06:80:84:c4:f6:7c:2d:66:42:1a:37:a8:ac:ae:b3:7e:7f: f0:99:99:31:67:97:3c:7b:bf:b3:61:a4:55:e7:4f:e4:88:ac: a3:57:e2:6d:86:6e:0e:05:da:eb:5d:37:ba:c5:c1:bd:34:4b: 84:82:e7:99 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 MjNGRjExMC8GA1UEBRMoNjA2QjRGNDJFRTk3Rjc0ODhFQzIwQjYzRDhCMUFBRjZE NDJEOUNBNzAeFw0yNTEyMjEwNjI5NThaFw0yNTEyMjgwNjI5NThaMBgxFjAUBgNV BAMMDTY5NDc5M2U3LWQ4ODUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQChehoswoqInTjRfIkI5psVAP+O+5Y/BMSSA2mWq1iSp8gVcIjxDZ9GvgKxs4E4 bU8QJ/n+b92krPoGl8NZaUam6KEQZ7wuhvzG68nygUnrDrA2GSgJMJLlc2vpBz1t CWsxpSXaOJtoYxTNDEvsoLbKf5yxPWbBOncRv9TiQBb+qDSiMXpPmVj8OJtf+uce 341DLmrtnutEXYlhKS/d0i+EzRmpG1rI+I4jLcLBh1PDR/QvrvLRovzmrhQbV/hQ VQHSUCi8lMnq8t7PObD6Kvf7Ds+7BulOV6NLCJl5LQPAtWHJ7qJry1W+Ao9Vj+Wb iuLtE0rLWu1YPkzo0ltbKu6tAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU1zloUbmv JXk2WUtk9kbl32OfNH4wHwYDVR0jBBgwFoAUYGtPQu6X90iOwgtj2LGq9tQtnKcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUyM0ZGLzIwMEMzNzdBODdD QjExRjA4MDJCMjI3REM0RjlBRTAyL1lHdFBRdTZYOTBpT3dndGoyTEdxOXRRdG5L Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWUd0UFF1Nlg5MGlPd2d0ajJMR3E5dFF0bktjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUy M0ZGLzIwMEMzNzdBODdDQjExRjA4MDJCMjI3REM0RjlBRTAyL1lHdFBRdTZYOTBp T3dndGoyTEdxOXRRdG5LYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAB8RFRLmNRaprBsOMgJP0Ryi9vMeB+RHjoGC0RI25Azu6k1r56PAVtqZ ljm1k0CvV2gQQeYPYkAd/biJpYZOHKJhOy1+RuFLrLxuEfRv/qbRt3xL3uDs2p9F a2rJU+TY/lpFrnzwvL9dXKqakLNVGWTXZtxTY/T4lZEkoHGaNgI16C27i1z38dF5 M3Eb43OWsMNCmYu2GRJeaw1iojY50UFG8+D+bjd2hiB98IDjA80FjAh/I7l9iHvo +4O70hERsMbDoec19TYGgITE9nwtZkIaN6isrrN+f/CZmTFnlzx7v7NhpFXnT+SI rKNX4m2Gbg4F2utdN7rFwb00S4SC55k= -----END CERTIFICATE-----Generated at Sun Dec 21 20:59:07 2025 by rpki-client