This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/YN1l7H9y62x9qLk3BuLTug8GW_w.mft File: YN1l7H9y62x9qLk3BuLTug8GW_w.mft (raw, json) Hash identifier: YsCJ4ckDOkuhqfycos/RIWI4cLcQPAG96xb2DAsNs2Q= Subject key identifier: A6:B9:6F:E3:F4:1D:24:09:B3:22:FF:3B:C8:D3:29:BE:EF:73:B9:F2 Authority key identifier: 60:DD:65:EC:7F:72:EB:6C:7D:A8:B9:37:06:E2:D3:BA:0F:06:5B:FC Certificate issuer: /CN=A91A4264/serialNumber=60DD65EC7F72EB6C7DA8B93706E2D3BA0F065BFC Certificate serial: 1ACF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YN1l7H9y62x9qLk3BuLTug8GW_w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/YN1l7H9y62x9qLk3BuLTug8GW_w.mft Manifest number: 1AC0 Signing time: Sat 20 Dec 2025 16:07:06 +0000 Manifest this update: Sat 20 Dec 2025 16:07:05 +0000 Manifest next update: Sat 27 Dec 2025 16:07:05 +0000 Files and hashes: 1: YN1l7H9y62x9qLk3BuLTug8GW_w.crl (hash: u+gO2B5LdJP7Zg/GvqdXea+qglOYLhb9RSdtkN2Qkcs=) 2: 91CB97905BD211EBA9178181C4F9AE02.roa (hash: Wesd0InqJ/VHy6+SYHu7ABNFnSg/btyWb+0cbj+CPEk=) 3: D75BE71A410511E7970A2A5FC4F9AE02.roa (hash: rSf0co4QElknqmx/HUwcUze0T308M2kPbS2aUDzOJyo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/YN1l7H9y62x9qLk3BuLTug8GW_w.crl rsync://rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/YN1l7H9y62x9qLk3BuLTug8GW_w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YN1l7H9y62x9qLk3BuLTug8GW_w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 16:07:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6863 (0x1acf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4264, serialNumber=60DD65EC7F72EB6C7DA8B93706E2D3BA0F065BFC Validity Not Before: Dec 20 16:07:05 2025 GMT Not After : Dec 27 16:07:05 2025 GMT Subject: CN=6946c9aa-41d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:6d:5f:14:5f:b4:22:5f:41:21:5e:1b:1e:56: 19:83:50:11:61:5a:e9:23:47:d4:c5:dd:cb:45:4c: 8b:5e:f5:0f:a2:92:dc:a1:6e:8b:6d:b9:2a:7f:68: 5e:39:e7:52:f2:f2:d1:c8:7b:a0:32:c8:b4:25:2d: 5f:e1:39:23:99:c9:fc:41:17:31:a1:ad:f8:61:47: f0:e6:44:bd:48:77:d1:f6:b4:7d:87:02:53:ad:b0: 57:c6:41:90:28:d5:69:63:01:33:70:8f:f3:bc:41: d4:cf:1b:ae:f0:44:3b:28:7f:2b:09:78:1a:ca:13: bd:cf:16:55:9c:bf:9d:89:cb:b3:af:18:f9:0e:f0: fc:3f:10:1c:9e:20:fe:e2:9c:ad:a1:9e:bc:a6:1e: 14:8c:2c:14:0b:35:74:2a:df:44:d4:f3:ff:9a:c8: 62:6f:30:07:24:22:6c:1b:34:aa:c0:4b:59:5a:dd: 9c:e2:60:80:f9:72:2f:c4:50:94:d8:ab:c2:89:0d: e5:bb:4e:02:11:40:b5:1d:13:67:f3:ad:6f:f0:41: 78:c8:82:ea:b4:44:d1:97:42:a8:b2:50:de:22:e0: 66:f3:b4:3f:e9:dc:20:c0:ff:c8:7c:88:68:34:22: 38:ca:30:7d:5f:eb:76:3c:82:52:55:83:02:71:3b: f7:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:B9:6F:E3:F4:1D:24:09:B3:22:FF:3B:C8:D3:29:BE:EF:73:B9:F2 X509v3 Authority Key Identifier: keyid:60:DD:65:EC:7F:72:EB:6C:7D:A8:B9:37:06:E2:D3:BA:0F:06:5B:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/YN1l7H9y62x9qLk3BuLTug8GW_w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YN1l7H9y62x9qLk3BuLTug8GW_w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/YN1l7H9y62x9qLk3BuLTug8GW_w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:a9:1b:08:4d:ed:bd:8e:25:68:aa:45:6d:3d:e1:a0:51:ea: 41:75:92:93:0b:c6:41:26:7f:64:3a:da:77:cd:65:12:95:e9: bb:db:2b:7d:05:9e:bc:66:28:f7:75:2c:cd:34:4d:f3:60:2f: 62:c0:42:69:d9:a5:96:99:82:ba:13:67:8a:54:61:d4:95:8a: 6b:c2:a8:e6:34:ca:c6:4a:8a:e4:67:9d:94:2c:22:00:5c:d8: 1c:c8:30:60:48:c4:6f:7a:98:aa:e0:e5:ff:d1:58:a4:00:39: 84:8c:ad:ce:ba:a6:89:ce:30:7d:4b:8d:56:b9:ed:8e:43:33: 9b:82:a5:1a:1b:7a:25:1a:d0:6e:83:cb:c2:37:84:12:6e:3c: 44:af:63:33:65:15:01:6a:af:5b:a1:d6:76:09:97:79:55:b5: 2b:f5:c5:e8:b6:af:56:5d:e8:34:fd:88:8a:47:a0:01:43:98: 77:93:ab:8f:93:d0:87:48:8f:1b:80:6d:5e:87:16:a7:e8:89: 5b:f3:3f:47:39:d3:de:c4:ee:45:56:61:c5:e0:21:b3:b0:d2: 89:a4:3a:27:c1:29:fa:aa:78:13:43:ef:fc:28:75:1d:f0:d1: dd:11:f8:eb:1d:fc:ee:5c:1c:80:52:b7:9b:db:9d:e1:3f:d1: e9:a3:3d:ec -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGs8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQyNjQxMTAvBgNVBAUTKDYwREQ2NUVDN0Y3MkVCNkM3REE4QjkzNzA2RTJEM0JB MEYwNjVCRkMwHhcNMjUxMjIwMTYwNzA1WhcNMjUxMjI3MTYwNzA1WjAYMRYwFAYD VQQDDA02OTQ2YzlhYS00MWQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAj21fFF+0Il9BIV4bHlYZg1ARYVrpI0fUxd3LRUyLXvUPopLcoW6Lbbkqf2he OedS8vLRyHugMsi0JS1f4Tkjmcn8QRcxoa34YUfw5kS9SHfR9rR9hwJTrbBXxkGQ KNVpYwEzcI/zvEHUzxuu8EQ7KH8rCXgayhO9zxZVnL+dicuzrxj5DvD8PxAcniD+ 4pytoZ68ph4UjCwUCzV0Kt9E1PP/mshibzAHJCJsGzSqwEtZWt2c4mCA+XIvxFCU 2KvCiQ3lu04CEUC1HRNn861v8EF4yILqtETRl0KoslDeIuBm87Q/6dwgwP/IfIho NCI4yjB9X+t2PIJSVYMCcTv3CQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKa5b+P0 HSQJsyL/O8jTKb7vc7nyMB8GA1UdIwQYMBaAFGDdZex/cutsfai5Nwbi07oPBlv8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDI2NC9DNThENkZGQTQx MDQxMUU3OUVDMDM4NURDNEY5QUUwMi9ZTjFsN0g5eTYyeDlxTGszQnVMVHVnOEdX X3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lOMWw3SDl5NjJ4OXFMazNCdUxUdWc4R1dfdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDI2NC9DNThENkZGQTQxMDQxMUU3OUVDMDM4NURDNEY5QUUwMi9ZTjFsN0g5eTYy eDlxTGszQnVMVHVnOEdXX3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAcqRsITe29jiVoqkVtPeGgUepBdZKTC8ZBJn9kOtp3zWUSlem72yt9 BZ68Zij3dSzNNE3zYC9iwEJp2aWWmYK6E2eKVGHUlYprwqjmNMrGSorkZ52ULCIA XNgcyDBgSMRvepiq4OX/0VikADmEjK3OuqaJzjB9S41Wue2OQzObgqUaG3olGtBu g8vCN4QSbjxEr2MzZRUBaq9bodZ2CZd5VbUr9cXotq9WXeg0/YiKR6ABQ5h3k6uP k9CHSI8bgG1ehxan6Ilb8z9HOdPexO5FVmHF4CGzsNKJpDonwSn6qngTQ+/8KHUd 8NHdEfjrHfzuXByAUreb253hP9Hpoz3s -----END CERTIFICATE-----Generated at Sun Dec 21 13:05:37 2025 by rpki-client