This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9158491/60DA53FADFA511EF8BD49F87C4F9AE02/YfjH66e1XnGy5rF3QJFCUdiM8KY.mft File: YfjH66e1XnGy5rF3QJFCUdiM8KY.mft (raw, json) Hash identifier: FwUXd+UkTspoKJHgOSRsaTEEPu8DFucyrFh5vTyORZU= Subject key identifier: B5:5C:F9:19:3E:4A:74:14:EB:ED:14:F7:DF:24:5B:F9:45:EC:AB:5F Authority key identifier: 61:F8:C7:EB:A7:B5:5E:71:B2:E6:B1:77:40:91:42:51:D8:8C:F0:A6 Certificate issuer: /CN=A9158491/serialNumber=61F8C7EBA7B55E71B2E6B17740914251D88CF0A6 Certificate serial: BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YfjH66e1XnGy5rF3QJFCUdiM8KY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158491/60DA53FADFA511EF8BD49F87C4F9AE02/YfjH66e1XnGy5rF3QJFCUdiM8KY.mft Manifest number: B4 Signing time: Sun 21 Dec 2025 05:20:27 +0000 Manifest this update: Sun 21 Dec 2025 05:20:27 +0000 Manifest next update: Sun 28 Dec 2025 05:20:27 +0000 Files and hashes: 1: YfjH66e1XnGy5rF3QJFCUdiM8KY.crl (hash: FgCH1594GDCnsLLEmBILtFlRi4j/g5fB6bvrRS4VVNY=) 2: 5FDDEE1CE34211EF8EA0CA77C4F9AE02.roa (hash: mzE4Rj9TzgxYoPFC7hLQmMNdU4o1ATX8k/0uu+bhb9g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158491/60DA53FADFA511EF8BD49F87C4F9AE02/YfjH66e1XnGy5rF3QJFCUdiM8KY.crl rsync://rpki.apnic.net/member_repository/A9158491/60DA53FADFA511EF8BD49F87C4F9AE02/YfjH66e1XnGy5rF3QJFCUdiM8KY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YfjH66e1XnGy5rF3QJFCUdiM8KY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 05:20:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 189 (0xbd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158491, serialNumber=61F8C7EBA7B55E71B2E6B17740914251D88CF0A6 Validity Not Before: Dec 21 05:20:27 2025 GMT Not After : Dec 28 05:20:27 2025 GMT Subject: CN=6947839b-8084 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:3c:a3:33:34:33:ac:b0:31:6f:9d:8e:8c:30: 8f:8b:4d:5a:0c:78:ad:91:c2:fd:fc:c2:c2:5e:6e: fc:f1:d6:22:19:67:47:80:5a:de:e6:4e:57:50:0c: cc:0f:9c:e9:e3:9b:d0:c4:61:38:94:a8:5f:bf:7f: 39:93:a7:70:6a:8f:b5:4b:d6:cb:e7:fe:ec:28:87: a6:7f:a0:6c:86:cd:da:60:ca:b9:ad:de:2b:53:7f: 60:98:95:08:86:f4:95:04:91:66:31:6e:bf:52:83: 9d:21:61:9e:cf:fe:fe:7a:53:af:bb:60:53:93:79: a2:ba:bc:cf:ce:d1:92:86:33:89:e3:9e:a5:94:97: 53:e6:16:ba:bd:bf:22:34:15:69:42:19:20:26:29: 2e:77:3a:88:28:46:0c:9a:78:e7:dc:90:26:ce:ec: e2:e3:95:e5:0e:08:5c:7d:23:76:6a:02:b6:95:4e: 55:0c:19:a1:97:b9:2d:30:7d:7d:df:b9:51:0b:c9: 4e:ce:01:e2:e7:fd:89:1e:d5:a3:3e:21:08:05:99: 85:87:b2:6c:af:40:55:79:6f:10:63:32:18:e8:07: 76:a2:83:51:45:41:d9:2d:fd:4e:82:b3:15:58:eb: 3e:99:e4:4d:47:63:7a:f6:27:b5:82:5c:eb:b4:37: aa:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:5C:F9:19:3E:4A:74:14:EB:ED:14:F7:DF:24:5B:F9:45:EC:AB:5F X509v3 Authority Key Identifier: keyid:61:F8:C7:EB:A7:B5:5E:71:B2:E6:B1:77:40:91:42:51:D8:8C:F0:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158491/60DA53FADFA511EF8BD49F87C4F9AE02/YfjH66e1XnGy5rF3QJFCUdiM8KY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YfjH66e1XnGy5rF3QJFCUdiM8KY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158491/60DA53FADFA511EF8BD49F87C4F9AE02/YfjH66e1XnGy5rF3QJFCUdiM8KY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:60:ba:55:84:7d:1b:94:a4:dc:a3:90:0d:ad:e9:cd:2b:36: 51:e2:b8:f2:d5:ac:50:57:13:7e:82:d1:fa:0d:e1:31:23:e5: 00:5f:6f:41:23:d4:01:6e:1f:5a:f3:6f:ed:1b:e3:98:24:d9: 48:85:c7:e5:5f:d2:81:fe:8f:3e:01:b9:18:3a:32:0d:7a:03: 9c:06:e6:d9:1f:64:d1:55:2b:a2:aa:e5:17:7c:37:50:47:37: 62:d1:e9:eb:7e:23:d4:8d:e2:14:6a:16:a5:a8:07:ff:fb:fb: 05:7b:d7:bd:df:17:48:f6:34:ef:fd:f9:d5:21:24:bb:eb:3c: c8:fc:94:7d:cf:88:aa:6b:a6:48:e4:d2:ec:e6:dc:89:d1:cf: aa:9f:5b:22:1f:17:84:e3:a2:6f:b7:e4:b3:41:b8:e8:d1:f7: 10:26:f1:e7:b8:bb:3a:97:70:6e:14:b6:f4:48:66:bb:1e:d1: 71:ed:22:f2:26:69:6e:e1:f0:74:a6:b1:8e:3e:ae:c1:de:c7: 16:3f:99:95:63:8c:2c:06:17:b2:06:ec:06:8a:ba:97:31:cc: 63:d5:65:a7:dd:92:fd:9a:ff:81:5e:53:3b:2d:7c:2c:94:24: 15:a4:91:d7:51:42:05:5b:4e:a1:30:4f:b7:90:e2:1a:23:4c: 93:36:91:6b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAL0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg0OTExMTAvBgNVBAUTKDYxRjhDN0VCQTdCNTVFNzFCMkU2QjE3NzQwOTE0MjUx RDg4Q0YwQTYwHhcNMjUxMjIxMDUyMDI3WhcNMjUxMjI4MDUyMDI3WjAYMRYwFAYD VQQDDA02OTQ3ODM5Yi04MDg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxzyjMzQzrLAxb52OjDCPi01aDHitkcL9/MLCXm788dYiGWdHgFre5k5XUAzM D5zp45vQxGE4lKhfv385k6dwao+1S9bL5/7sKIemf6Bshs3aYMq5rd4rU39gmJUI hvSVBJFmMW6/UoOdIWGez/7+elOvu2BTk3miurzPztGShjOJ456llJdT5ha6vb8i NBVpQhkgJikudzqIKEYMmnjn3JAmzuzi45XlDghcfSN2agK2lU5VDBmhl7ktMH19 37lRC8lOzgHi5/2JHtWjPiEIBZmFh7Jsr0BVeW8QYzIY6Ad2ooNRRUHZLf1OgrMV WOs+meRNR2N69ie1glzrtDeqowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLVc+Rk+ SnQU6+0U998kW/lF7KtfMB8GA1UdIwQYMBaAFGH4x+untV5xsuaxd0CRQlHYjPCm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODQ5MS82MERBNTNGQURG QTUxMUVGOEJENDlGODdDNEY5QUUwMi9ZZmpINjZlMVhuR3k1ckYzUUpGQ1VkaU04 S1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lmakg2NmUxWG5HeTVyRjNRSkZDVWRpTThLWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODQ5MS82MERBNTNGQURGQTUxMUVGOEJENDlGODdDNEY5QUUwMi9ZZmpINjZlMVhu R3k1ckYzUUpGQ1VkaU04S1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjYLpVhH0blKTco5ANrenNKzZR4rjy1axQVxN+gtH6DeExI+UAX29B I9QBbh9a82/tG+OYJNlIhcflX9KB/o8+AbkYOjINegOcBubZH2TRVSuiquUXfDdQ Rzdi0enrfiPUjeIUahalqAf/+/sFe9e93xdI9jTv/fnVISS76zzI/JR9z4iqa6ZI 5NLs5tyJ0c+qn1siHxeE46Jvt+SzQbjo0fcQJvHnuLs6l3BuFLb0SGa7HtFx7SLy Jmlu4fB0prGOPq7B3scWP5mVY4wsBheyBuwGirqXMcxj1WWn3ZL9mv+BXlM7LXws lCQVpJHXUUIFW06hME+3kOIaI0yTNpFr -----END CERTIFICATE-----Generated at Sun Dec 21 14:42:31 2025 by rpki-client