This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1CAA/8E275A1ECE4A11EE8DE9E51FC4F9AE02/YX8FTjzkUeDD5_RG3Qn3hkZStlY.mft File: YX8FTjzkUeDD5_RG3Qn3hkZStlY.mft (raw, json) Hash identifier: Ia/uXQBw4n3Haytcnl0SFo+hmnQF56jwD3g+b5Myp4M= Subject key identifier: 2C:12:4F:68:6F:B0:AC:CF:3F:05:D8:7E:31:AE:02:85:39:83:D8:B1 Authority key identifier: 61:7F:05:4E:3C:E4:51:E0:C3:E7:F4:46:DD:09:F7:86:46:52:B6:56 Certificate issuer: /CN=A91A1CAA/serialNumber=617F054E3CE451E0C3E7F446DD09F7864652B656 Certificate serial: 015F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YX8FTjzkUeDD5_RG3Qn3hkZStlY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1CAA/8E275A1ECE4A11EE8DE9E51FC4F9AE02/YX8FTjzkUeDD5_RG3Qn3hkZStlY.mft Manifest number: 015C Signing time: Mon 29 Dec 2025 03:12:58 +0000 Manifest this update: Mon 29 Dec 2025 03:12:57 +0000 Manifest next update: Mon 05 Jan 2026 03:12:57 +0000 Files and hashes: 1: YX8FTjzkUeDD5_RG3Qn3hkZStlY.crl (hash: i0qjZpA+O/2Ld+JLXOYhbcgNX+WEQmYQvUGwyZ6vhEY=) 2: E75FB4F0CE4A11EE95C15E20C4F9AE02.roa (hash: utq11zi2cO+ldR8mXOv++lb25ZgD5tUSUW03iRiwBL0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1CAA/8E275A1ECE4A11EE8DE9E51FC4F9AE02/YX8FTjzkUeDD5_RG3Qn3hkZStlY.crl rsync://rpki.apnic.net/member_repository/A91A1CAA/8E275A1ECE4A11EE8DE9E51FC4F9AE02/YX8FTjzkUeDD5_RG3Qn3hkZStlY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YX8FTjzkUeDD5_RG3Qn3hkZStlY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 Jan 2026 03:12:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 351 (0x15f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1CAA, serialNumber=617F054E3CE451E0C3E7F446DD09F7864652B656 Validity Not Before: Dec 29 03:12:57 2025 GMT Not After : Jan 5 03:12:57 2026 GMT Subject: CN=6951f1ba-5ca9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:ad:e4:49:64:49:ce:1a:43:ee:dc:ef:d2:c8: 81:25:54:4b:6b:5b:06:da:3b:75:17:38:76:e9:80: 40:21:09:b4:bf:ce:65:80:a9:00:e0:55:df:ad:9f: 36:3e:74:86:3e:70:11:a4:59:a9:45:1e:e7:11:4b: 37:c5:f6:cf:0c:c2:54:72:c6:60:ac:95:a7:c7:74: 03:eb:33:b8:68:76:8d:cf:45:fe:bf:65:f8:3d:08: 14:3e:f2:66:d0:80:32:ff:3e:01:5d:ea:d2:98:e4: ad:77:40:82:d7:da:70:93:4b:ba:44:fa:e2:32:fc: 1d:a0:8d:7a:9c:f5:e2:8a:23:20:25:1c:a0:a8:16: f8:69:8e:f3:38:d5:18:64:1c:6a:5c:83:b7:57:41: 3c:1c:2c:9a:8f:5a:20:d6:4d:22:73:50:a5:50:8f: ae:6a:06:1e:6b:06:49:e2:cc:f7:a3:00:d6:eb:99: 8e:c5:b4:61:1c:64:3a:d1:a4:8d:13:a2:22:39:fa: 62:54:ff:b9:b6:33:7b:46:a0:8a:b4:15:00:da:a1: 2e:7b:0a:5e:a9:35:92:d6:11:cd:7f:c0:d2:d0:fe: 24:fa:a2:17:09:52:8d:3f:e6:90:0f:aa:1a:7b:33: f9:12:0d:49:c4:fc:c7:98:0b:32:f8:49:fa:03:16: 47:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:12:4F:68:6F:B0:AC:CF:3F:05:D8:7E:31:AE:02:85:39:83:D8:B1 X509v3 Authority Key Identifier: keyid:61:7F:05:4E:3C:E4:51:E0:C3:E7:F4:46:DD:09:F7:86:46:52:B6:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1CAA/8E275A1ECE4A11EE8DE9E51FC4F9AE02/YX8FTjzkUeDD5_RG3Qn3hkZStlY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YX8FTjzkUeDD5_RG3Qn3hkZStlY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1CAA/8E275A1ECE4A11EE8DE9E51FC4F9AE02/YX8FTjzkUeDD5_RG3Qn3hkZStlY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:3a:32:30:c4:44:db:07:3a:41:84:91:7e:95:1f:d4:96:15: 39:be:4c:c1:bd:07:4c:7e:e5:87:b3:be:e9:61:87:54:f6:c1: 2d:99:74:d0:e8:d8:ce:cc:b0:44:27:97:d6:d8:b9:c0:bc:9d: 13:64:7c:b0:ea:ca:55:8a:8b:79:20:65:83:59:4a:7a:26:55: 2f:ec:8b:96:f6:ba:e5:a3:ac:d2:d7:40:85:4b:29:d5:c3:60: 99:1c:32:9f:51:3d:2c:14:dd:5c:90:8d:44:66:03:e3:ae:96: 26:4a:a1:dd:a6:0a:5e:d3:d7:48:71:70:36:e5:cb:c5:ff:2c: 60:45:26:50:2e:d7:94:bc:bc:ab:8b:0c:2e:8b:69:85:c5:19: 60:49:7e:56:a4:b5:54:00:e7:26:85:18:e1:51:75:4e:5e:11: 3b:67:b3:cf:cc:02:7d:a1:7b:81:13:c0:d6:a4:47:71:5f:af: 25:7c:ca:78:05:72:05:61:f5:64:97:db:38:d7:c8:9d:79:41: 46:4d:47:2f:fd:d8:c5:0e:0c:fd:7d:23:ed:19:2c:9a:be:6f: f6:ff:d9:fc:61:88:f8:1e:bf:13:d1:69:7b:8b:fc:76:93:d4: 8b:a3:06:0a:4f:d9:b8:80:00:bf:f1:ae:78:53:dc:b8:20:03: c3:18:cd:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAV8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTFDQUExMTAvBgNVBAUTKDYxN0YwNTRFM0NFNDUxRTBDM0U3RjQ0NkREMDlGNzg2 NDY1MkI2NTYwHhcNMjUxMjI5MDMxMjU3WhcNMjYwMTA1MDMxMjU3WjAYMRYwFAYD VQQDDA02OTUxZjFiYS01Y2E5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs63kSWRJzhpD7tzv0siBJVRLa1sG2jt1Fzh26YBAIQm0v85lgKkA4FXfrZ82 PnSGPnARpFmpRR7nEUs3xfbPDMJUcsZgrJWnx3QD6zO4aHaNz0X+v2X4PQgUPvJm 0IAy/z4BXerSmOStd0CC19pwk0u6RPriMvwdoI16nPXiiiMgJRygqBb4aY7zONUY ZBxqXIO3V0E8HCyaj1og1k0ic1ClUI+uagYeawZJ4sz3owDW65mOxbRhHGQ60aSN E6IiOfpiVP+5tjN7RqCKtBUA2qEuewpeqTWS1hHNf8DS0P4k+qIXCVKNP+aQD6oa ezP5Eg1JxPzHmAsy+En6AxZHDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCwST2hv sKzPPwXYfjGuAoU5g9ixMB8GA1UdIwQYMBaAFGF/BU485FHgw+f0Rt0J94ZGUrZW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMUNBQS84RTI3NUExRUNF NEExMUVFOERFOUU1MUZDNEY5QUUwMi9ZWDhGVGp6a1VlREQ1X1JHM1FuM2hrWlN0 bFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lYOEZUanprVWVERDVfUkczUW4zaGtaU3RsWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MUNBQS84RTI3NUExRUNFNEExMUVFOERFOUU1MUZDNEY5QUUwMi9ZWDhGVGp6a1Vl REQ1X1JHM1FuM2hrWlN0bFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtOjIwxETbBzpBhJF+lR/UlhU5vkzBvQdMfuWHs77pYYdU9sEtmXTQ 6NjOzLBEJ5fW2LnAvJ0TZHyw6spViot5IGWDWUp6JlUv7IuW9rrlo6zS10CFSynV w2CZHDKfUT0sFN1ckI1EZgPjrpYmSqHdpgpe09dIcXA25cvF/yxgRSZQLteUvLyr iwwui2mFxRlgSX5WpLVUAOcmhRjhUXVOXhE7Z7PPzAJ9oXuBE8DWpEdxX68lfMp4 BXIFYfVkl9s418ideUFGTUcv/djFDgz9fSPtGSyavm/2/9n8YYj4Hr8T0Wl7i/x2 k9SLowYKT9m4gAC/8a54U9y4IAPDGM2S -----END CERTIFICATE-----Generated at Mon Dec 29 10:09:58 2025 by rpki-client