This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91657FE/C08757224D8B11F08EAC5823C4F9AE02/yAlz0WzMyeGME6aIAz3E0PDmHEo.mft File: yAlz0WzMyeGME6aIAz3E0PDmHEo.mft (raw, json) Hash identifier: PGCWbeg+SglSDnmNO8HI5Im8qezvj48hjorplIBx9+0= Subject key identifier: 95:D3:96:31:29:7D:41:23:08:7B:88:18:27:82:D6:51:81:C1:65:98 Authority key identifier: C8:09:73:D1:6C:CC:C9:E1:8C:13:A6:88:03:3D:C4:D0:F0:E6:1C:4A Certificate issuer: /CN=A91657FE/serialNumber=C80973D16CCCC9E18C13A688033DC4D0F0E61C4A Certificate serial: 65 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAlz0WzMyeGME6aIAz3E0PDmHEo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91657FE/C08757224D8B11F08EAC5823C4F9AE02/yAlz0WzMyeGME6aIAz3E0PDmHEo.mft Manifest number: 63 Signing time: Thu 25 Dec 2025 05:59:52 +0000 Manifest this update: Thu 25 Dec 2025 05:59:52 +0000 Manifest next update: Thu 01 Jan 2026 05:59:52 +0000 Files and hashes: 1: yAlz0WzMyeGME6aIAz3E0PDmHEo.crl (hash: d5sCa1+4q7I24XCv6FVpSFTzQZG7oIDZ2+nWG9pFbas=) 2: BFEE74284D9811F0930F6465C4F9AE02.roa (hash: utYcBcFgJK+aEaHZM9pNCTgsikhCHuFU4gRIhVACRLY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91657FE/C08757224D8B11F08EAC5823C4F9AE02/yAlz0WzMyeGME6aIAz3E0PDmHEo.crl rsync://rpki.apnic.net/member_repository/A91657FE/C08757224D8B11F08EAC5823C4F9AE02/yAlz0WzMyeGME6aIAz3E0PDmHEo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAlz0WzMyeGME6aIAz3E0PDmHEo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 Jan 2026 05:59:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 101 (0x65) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91657FE, serialNumber=C80973D16CCCC9E18C13A688033DC4D0F0E61C4A Validity Not Before: Dec 25 05:59:52 2025 GMT Not After : Jan 1 05:59:52 2026 GMT Subject: CN=694cd2d8-4c86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:c9:96:d4:35:02:e0:d4:20:d4:25:45:55:b1: 63:6c:c2:51:0f:03:11:26:40:c0:28:78:c2:9e:e2: bd:91:b5:fc:d5:01:a9:88:b9:bb:4b:26:5d:a4:89: ac:56:a3:b2:7f:0c:25:2a:c5:5b:84:ab:cc:6f:b5: 25:c8:86:0e:4f:c8:ef:49:6c:c5:2b:87:d2:e3:03: b4:10:40:62:9c:99:75:f2:49:68:7c:d9:3d:ab:6d: ee:55:51:40:cf:ba:39:15:88:74:ae:27:d8:ee:c9: 49:77:03:b3:18:6b:c7:82:b2:97:0a:fb:63:60:1d: a0:2e:9f:7b:c9:a5:4b:c8:6a:ce:01:bf:5f:6a:ae: d3:49:63:31:1d:c0:d7:9c:fb:bb:35:b9:ce:59:e7: 02:89:da:64:bb:87:e4:ff:5b:4d:bb:57:10:51:55: db:32:ea:38:a5:cb:f9:5f:5a:3c:cb:56:6a:af:3b: 3b:bf:c5:47:66:cc:c5:97:66:d2:5f:4e:4e:3a:7a: db:a0:63:3c:74:98:4b:5f:ce:03:23:16:7e:53:c5: 1d:22:62:5e:29:3f:b1:5d:f0:43:c1:39:18:71:e3: 8f:19:ca:5e:12:b5:8f:aa:27:58:d8:54:9e:eb:29: a7:31:4d:55:70:be:ec:93:99:5b:d2:2b:c7:52:2e: 52:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:D3:96:31:29:7D:41:23:08:7B:88:18:27:82:D6:51:81:C1:65:98 X509v3 Authority Key Identifier: keyid:C8:09:73:D1:6C:CC:C9:E1:8C:13:A6:88:03:3D:C4:D0:F0:E6:1C:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91657FE/C08757224D8B11F08EAC5823C4F9AE02/yAlz0WzMyeGME6aIAz3E0PDmHEo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAlz0WzMyeGME6aIAz3E0PDmHEo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91657FE/C08757224D8B11F08EAC5823C4F9AE02/yAlz0WzMyeGME6aIAz3E0PDmHEo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:0f:77:fc:2a:83:da:db:01:51:d1:a2:fd:37:72:55:fc:23: 69:29:98:21:2b:2a:a3:9c:2a:0e:84:96:4d:c3:ee:84:8d:37: db:00:ad:71:83:87:14:d6:9c:22:e5:83:21:6f:26:66:20:d0: b3:a9:14:89:a6:a6:e2:cc:9e:78:2f:f8:67:b1:9d:29:54:6a: e0:22:c1:33:50:12:52:38:fb:75:14:27:80:af:1b:1a:27:95: ca:82:1c:f8:96:44:27:ab:5f:4c:73:cb:88:0a:36:99:b5:e6: 47:9d:a6:d4:4d:39:93:d9:8e:24:96:55:44:57:c9:e9:57:5b: 63:4b:aa:23:40:cc:bc:00:5c:a5:78:5e:9f:30:18:e2:46:c3: 76:2a:65:9e:e4:61:9a:04:94:ed:3b:de:e0:c9:51:70:ed:63: a3:33:6a:f1:4f:2d:f2:ba:32:39:93:e9:2d:83:0b:0b:e7:ff: 32:4f:85:70:1b:17:e1:b1:e1:4f:b1:a5:9b:3d:dc:b3:c7:e6: 9a:6c:3f:56:ee:d6:53:13:61:18:fe:fa:40:53:d6:42:97:a3: 05:cd:19:27:88:6c:b0:77:7a:01:13:c1:71:47:e2:58:48:f0: a7:7a:b2:b0:1b:7d:bb:96:1d:e0:64:f6:e8:e0:b9:81:48:b3: 97:e0:f1:02 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 NTdGRTExMC8GA1UEBRMoQzgwOTczRDE2Q0NDQzlFMThDMTNBNjg4MDMzREM0RDBG MEU2MUM0QTAeFw0yNTEyMjUwNTU5NTJaFw0yNjAxMDEwNTU5NTJaMBgxFjAUBgNV BAMMDTY5NGNkMmQ4LTRjODYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDayZbUNQLg1CDUJUVVsWNswlEPAxEmQMAoeMKe4r2RtfzVAamIubtLJl2kiaxW o7J/DCUqxVuEq8xvtSXIhg5PyO9JbMUrh9LjA7QQQGKcmXXySWh82T2rbe5VUUDP ujkViHSuJ9juyUl3A7MYa8eCspcK+2NgHaAun3vJpUvIas4Bv19qrtNJYzEdwNec +7s1uc5Z5wKJ2mS7h+T/W027VxBRVdsy6jily/lfWjzLVmqvOzu/xUdmzMWXZtJf Tk46etugYzx0mEtfzgMjFn5TxR0iYl4pP7Fd8EPBORhx448Zyl4StY+qJ1jYVJ7r KacxTVVwvuyTmVvSK8dSLlITAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUldOWMSl9 QSMIe4gYJ4LWUYHBZZgwHwYDVR0jBBgwFoAUyAlz0WzMyeGME6aIAz3E0PDmHEow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY1N0ZFL0MwODc1NzIyNEQ4 QjExRjA4RUFDNTgyM0M0RjlBRTAyL3lBbHowV3pNeWVHTUU2YUlBejNFMFBEbUhF by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveUFsejBXek15ZUdNRTZhSUF6M0UwUERtSEVvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY1 N0ZFL0MwODc1NzIyNEQ4QjExRjA4RUFDNTgyM0M0RjlBRTAyL3lBbHowV3pNeWVH TUU2YUlBejNFMFBEbUhFby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGwPd/wqg9rbAVHRov03clX8I2kpmCErKqOcKg6Elk3D7oSNN9sArXGD hxTWnCLlgyFvJmYg0LOpFImmpuLMnngv+GexnSlUauAiwTNQElI4+3UUJ4CvGxon lcqCHPiWRCerX0xzy4gKNpm15kedptRNOZPZjiSWVURXyelXW2NLqiNAzLwAXKV4 Xp8wGOJGw3YqZZ7kYZoElO073uDJUXDtY6MzavFPLfK6MjmT6S2DCwvn/zJPhXAb F+Gx4U+xpZs93LPH5ppsP1bu1lMTYRj++kBT1kKXowXNGSeIbLB3egETwXFH4lhI 8Kd6srAbfbuWHeBk9ujguYFIs5fg8QI= -----END CERTIFICATE-----Generated at Thu Dec 25 18:55:32 2025 by rpki-client