This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91597E8/7A0FE7FA1D9211E2B5BC74F508B02CD2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.mft File: ycKPmQtidBLJfC3Ox8kG5hrTJaw.mft (raw, json) Hash identifier: qbbIGj5N7DuIMlq8ipvDXvx71hcfHEyyWoMxlnqFnws= Subject key identifier: 7C:3E:84:3F:D4:03:B4:8A:73:C8:9E:0E:79:77:40:57:9C:97:AD:9E Authority key identifier: C9:C2:8F:99:0B:62:74:12:C9:7C:2D:CE:C7:C9:06:E6:1A:D3:25:AC Certificate issuer: /CN=A91597E8/serialNumber=C9C28F990B627412C97C2DCEC7C906E61AD325AC Certificate serial: 3502 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91597E8/7A0FE7FA1D9211E2B5BC74F508B02CD2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.mft Manifest number: 34FC Signing time: Sat 20 Dec 2025 14:41:51 +0000 Manifest this update: Sat 20 Dec 2025 14:41:50 +0000 Manifest next update: Sat 27 Dec 2025 14:41:50 +0000 Files and hashes: 1: ycKPmQtidBLJfC3Ox8kG5hrTJaw.crl (hash: 0Cb7Jca6Edxab8mRjxdGqyRi1LnzpqwZLm4b+midMFI=) 2: 4731AAD2D9A211F092913C6268D3641D.roa (hash: 9I/aQr6sgxc6dIwQzYUlc8auTinO+9HPObIlo6LbZHs=) 3: 5D8B2B06D90B11F0A960BEC67CD3641D.roa (hash: azYdkvf28Hm+el5cCXE3/Bju5Cb90/2fU/85uVO1sCM=) 4: 4821776AD9A211F092913C6268D3641D.roa (hash: cKf3TaoYAlPwDB+K3qIkWpJNLCSUjbzcobiZY86mFj8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91597E8/7A0FE7FA1D9211E2B5BC74F508B02CD2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.crl rsync://rpki.apnic.net/member_repository/A91597E8/7A0FE7FA1D9211E2B5BC74F508B02CD2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 14:41:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13570 (0x3502) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91597E8, serialNumber=C9C28F990B627412C97C2DCEC7C906E61AD325AC Validity Not Before: Dec 20 14:41:50 2025 GMT Not After : Dec 27 14:41:50 2025 GMT Subject: CN=6946b5af-2578 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:0e:34:49:a2:02:c6:95:06:2d:cf:e7:3f:28: 45:7a:fd:0c:b2:d4:e4:4f:85:87:05:97:63:58:a8: 18:50:c5:8d:a9:8c:69:2a:c2:9e:a6:d8:cd:10:0b: dc:0a:01:6c:ad:f3:09:ed:3a:dc:75:ce:e1:71:ad: 0c:30:b6:51:f2:70:f8:ed:7c:23:89:85:38:7d:94: e8:d4:d9:ad:eb:f6:5d:f4:d8:93:8f:23:6a:cf:85: 30:6b:56:93:0a:73:0c:dd:5f:2e:54:d4:32:ec:35: 13:d8:fd:ce:0c:e1:a6:29:e4:6f:67:e3:91:b0:1f: 73:fb:d2:0a:0f:31:f7:4a:10:52:0a:e5:25:67:a7: ea:33:42:e8:e0:10:8f:04:0d:72:89:3a:92:74:db: e5:46:ff:cd:27:0a:5d:b5:85:c9:8b:c8:85:0a:b9: a6:0e:9e:f6:18:f6:20:d4:34:50:0c:65:60:c8:02: ba:9d:14:c3:6e:1f:81:a4:53:23:41:81:cd:e2:9d: 7a:a4:1d:66:40:8b:20:c3:07:c3:5a:d1:f1:ba:5e: 8f:c2:9f:6f:8c:5c:26:47:d0:a4:f0:67:ac:2f:63: ce:69:e0:5a:e4:95:bc:e9:9f:b5:c7:15:fb:e5:cc: 34:d6:fc:b1:29:13:ea:80:76:b3:02:87:d2:8c:d6: f6:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:3E:84:3F:D4:03:B4:8A:73:C8:9E:0E:79:77:40:57:9C:97:AD:9E X509v3 Authority Key Identifier: keyid:C9:C2:8F:99:0B:62:74:12:C9:7C:2D:CE:C7:C9:06:E6:1A:D3:25:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91597E8/7A0FE7FA1D9211E2B5BC74F508B02CD2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91597E8/7A0FE7FA1D9211E2B5BC74F508B02CD2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:ac:55:eb:2c:a8:bc:f2:e6:db:13:e5:88:2c:4d:5a:54:7d: 4e:38:19:4c:be:b1:b1:63:c0:55:d5:e1:e8:23:73:15:b5:d5: a9:e3:04:5c:d4:ca:e3:c1:6c:e1:e6:3b:57:de:77:5b:4d:87: e3:76:94:1e:d6:60:c4:f5:bc:44:58:f8:82:7f:33:9b:5c:e9: fc:e4:c6:bc:b1:8b:bc:c7:e4:04:27:24:d6:fd:c1:98:e2:df: de:7c:57:ab:30:5c:a0:bd:5c:e6:9a:37:07:70:72:0a:59:08: f4:17:cc:d0:03:f6:50:c4:d1:37:7a:6c:10:ac:27:aa:04:23: 1c:64:89:d6:5f:7a:9e:4e:ec:4e:db:5e:e9:d9:2d:18:19:8e: de:50:af:df:76:74:2d:97:90:7e:f8:7c:21:e4:9c:af:e9:88: c2:51:ee:68:eb:a5:ad:d2:5e:fe:a3:c0:2f:5a:aa:25:e6:70: dd:ba:44:22:62:29:49:76:ef:dc:f9:ab:84:28:01:50:15:2d: de:db:d5:34:49:9d:67:a5:2a:93:4f:c0:92:24:4b:e0:13:98: 23:6f:93:c2:d1:bf:ef:71:bd:6d:2c:99:cd:1a:bd:60:4e:63: 81:6e:0a:7c:d4:11:8b:82:39:60:a9:61:42:b3:99:b7:39:c5: f2:9b:4d:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNQIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTk3RTgxMTAvBgNVBAUTKEM5QzI4Rjk5MEI2Mjc0MTJDOTdDMkRDRUM3QzkwNkU2 MUFEMzI1QUMwHhcNMjUxMjIwMTQ0MTUwWhcNMjUxMjI3MTQ0MTUwWjAYMRYwFAYD VQQDDA02OTQ2YjVhZi0yNTc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApw40SaICxpUGLc/nPyhFev0MstTkT4WHBZdjWKgYUMWNqYxpKsKeptjNEAvc CgFsrfMJ7Trcdc7hca0MMLZR8nD47XwjiYU4fZTo1Nmt6/Zd9NiTjyNqz4Uwa1aT CnMM3V8uVNQy7DUT2P3ODOGmKeRvZ+ORsB9z+9IKDzH3ShBSCuUlZ6fqM0Lo4BCP BA1yiTqSdNvlRv/NJwpdtYXJi8iFCrmmDp72GPYg1DRQDGVgyAK6nRTDbh+BpFMj QYHN4p16pB1mQIsgwwfDWtHxul6Pwp9vjFwmR9Ck8GesL2POaeBa5JW86Z+1xxX7 5cw01vyxKRPqgHazAofSjNb2UwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHw+hD/U A7SKc8ieDnl3QFecl62eMB8GA1UdIwQYMBaAFMnCj5kLYnQSyXwtzsfJBuYa0yWs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OTdFOC83QTBGRTdGQTFE OTIxMUUyQjVCQzc0RjUwOEIwMkNEMi95Y0tQbVF0aWRCTEpmQzNPeDhrRzVoclRK YXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ljS1BtUXRpZEJMSmZDM094OGtHNWhyVEphdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OTdFOC83QTBGRTdGQTFEOTIxMUUyQjVCQzc0RjUwOEIwMkNEMi95Y0tQbVF0aWRC TEpmQzNPeDhrRzVoclRKYXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBrFXrLKi88ubbE+WILE1aVH1OOBlMvrGxY8BV1eHoI3MVtdWp4wRc 1MrjwWzh5jtX3ndbTYfjdpQe1mDE9bxEWPiCfzObXOn85Ma8sYu8x+QEJyTW/cGY 4t/efFerMFygvVzmmjcHcHIKWQj0F8zQA/ZQxNE3emwQrCeqBCMcZInWX3qeTuxO 217p2S0YGY7eUK/fdnQtl5B++Hwh5Jyv6YjCUe5o66Wt0l7+o8AvWqol5nDdukQi YilJdu/c+auEKAFQFS3e29U0SZ1npSqTT8CSJEvgE5gjb5PC0b/vcb1tLJnNGr1g TmOBbgp81BGLgjlgqWFCs5m3OcXym00/ -----END CERTIFICATE-----Generated at Sun Dec 21 03:28:34 2025 by rpki-client