This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.mft File: YbAiM19NheFtR3oAatyOPy_alGA.mft (raw, json) Hash identifier: Vrxc230sGB0X1s/m8/imky4/K8OuC9q1VZacggsJ/ZQ= Subject key identifier: 75:E2:1F:BC:39:A7:16:14:47:7A:A4:EE:6B:53:77:8D:BE:25:D8:5F Authority key identifier: 61:B0:22:33:5F:4D:85:E1:6D:47:7A:00:6A:DC:8E:3F:2F:DA:94:60 Certificate issuer: /CN=A91A7C77/serialNumber=61B022335F4D85E16D477A006ADC8E3F2FDA9460 Certificate serial: 04FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YbAiM19NheFtR3oAatyOPy_alGA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.mft Manifest number: 04F8 Signing time: Thu 18 Dec 2025 23:01:06 +0000 Manifest this update: Thu 18 Dec 2025 23:01:05 +0000 Manifest next update: Thu 25 Dec 2025 23:01:05 +0000 Files and hashes: 1: YbAiM19NheFtR3oAatyOPy_alGA.crl (hash: 1JazVJnzNu0gJzMH0WL+ReDzMPqdCFN2HXmqOPebpeY=) 2: FF4EB6B2395811ECA422C462C4F9AE02.roa (hash: rSYICcW+HFCzDD9ABBiFdKCTDCOz7xqqAaQJc2BnfOg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.crl rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YbAiM19NheFtR3oAatyOPy_alGA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 23:01:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1275 (0x4fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7C77, serialNumber=61B022335F4D85E16D477A006ADC8E3F2FDA9460 Validity Not Before: Dec 18 23:01:05 2025 GMT Not After : Dec 25 23:01:05 2025 GMT Subject: CN=694487b2-5141 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:b8:56:5c:1f:9d:d5:f6:31:9a:03:d6:c4:91: 53:29:89:82:e3:8c:f4:3a:49:19:d9:0b:9a:cc:df: 5b:43:8d:31:23:77:68:30:c9:1b:22:b6:40:9a:e1: f8:df:f7:41:1e:cc:bf:5c:b4:ba:03:56:1d:b5:b2: 88:2a:bc:3e:fe:f5:8d:3f:5a:89:ec:3d:93:0d:41: c5:e6:7b:05:1d:75:0f:0a:ed:a5:d1:81:3c:06:ae: fb:01:40:62:2e:92:ae:d8:21:f2:c3:f6:b7:e0:f2: 82:a4:d2:f6:c7:a4:87:0b:3a:7d:5d:ab:a7:a5:c5: 67:23:5b:25:71:fe:f9:26:13:3d:42:a0:37:b6:93: 1d:43:2e:f7:d8:1d:b2:56:bd:19:6a:bb:3b:56:0b: ed:8b:37:ca:42:26:bd:8d:66:fd:bd:79:ef:fd:ce: 45:ac:e5:77:67:06:e1:b0:bf:a5:d2:b3:be:a0:2b: 39:f4:7e:16:a8:dd:96:89:93:8a:e3:ce:2a:a2:1b: a0:ed:3b:a4:b3:d7:14:e4:d6:9d:b6:a7:a6:f2:2b: 60:da:8e:91:3a:9f:1b:9f:2f:ce:09:68:ca:15:f5: 62:a7:b3:a2:12:8f:88:7a:65:3c:33:21:79:5e:6a: e4:f0:36:b3:b7:5f:cd:8f:94:df:41:3c:2d:7d:ee: fa:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:E2:1F:BC:39:A7:16:14:47:7A:A4:EE:6B:53:77:8D:BE:25:D8:5F X509v3 Authority Key Identifier: keyid:61:B0:22:33:5F:4D:85:E1:6D:47:7A:00:6A:DC:8E:3F:2F:DA:94:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YbAiM19NheFtR3oAatyOPy_alGA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c8:82:38:6a:29:37:5a:a4:33:8a:ce:13:f5:73:b1:2d:4a:c1: 37:3a:b2:5a:0e:e9:48:7c:63:eb:e0:b8:f7:a2:1d:43:0a:61: 1a:45:d1:0b:d6:1c:aa:b1:b1:18:fa:dc:74:2b:ed:f6:f8:0b: 1c:48:b0:6b:7b:80:32:87:eb:68:4b:c3:bc:7c:9b:e3:21:f7: bb:a4:d0:95:ad:a4:4b:a1:68:d2:5e:88:1e:0b:b1:4f:f1:4d: 0c:5e:94:2b:ff:e9:cf:3b:e4:1f:67:84:69:5e:c7:44:ad:fa: 00:03:a7:94:df:c6:e5:97:29:ce:c4:cd:a6:4a:97:c7:47:ff: a3:b8:57:dc:6b:b1:96:34:af:e4:00:c0:7d:a7:3c:c3:78:7a: 6e:ff:c3:37:44:80:63:eb:b8:5f:ba:70:3f:60:9d:87:9c:98: 21:c7:d5:be:2a:7b:3f:1f:69:48:ed:45:24:df:e5:24:23:3f: 94:33:0a:02:30:6e:6c:b4:69:93:f2:a7:5d:ad:95:cf:e7:72: e0:e1:f6:20:34:8c:95:6b:56:fb:32:40:8a:83:72:c2:f5:fc: fd:1c:63:16:17:18:7f:e8:98:27:5e:e8:df:28:f3:16:6e:a0: 4e:93:a1:b4:7f:2e:61:6f:8b:5d:02:62:f1:ab:a3:4e:96:9f: 05:07:5e:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBPswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdDNzcxMTAvBgNVBAUTKDYxQjAyMjMzNUY0RDg1RTE2RDQ3N0EwMDZBREM4RTNG MkZEQTk0NjAwHhcNMjUxMjE4MjMwMTA1WhcNMjUxMjI1MjMwMTA1WjAYMRYwFAYD VQQDDA02OTQ0ODdiMi01MTQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3bhWXB+d1fYxmgPWxJFTKYmC44z0OkkZ2QuazN9bQ40xI3doMMkbIrZAmuH4 3/dBHsy/XLS6A1YdtbKIKrw+/vWNP1qJ7D2TDUHF5nsFHXUPCu2l0YE8Bq77AUBi LpKu2CHyw/a34PKCpNL2x6SHCzp9XaunpcVnI1slcf75JhM9QqA3tpMdQy732B2y Vr0Zars7VgvtizfKQia9jWb9vXnv/c5FrOV3ZwbhsL+l0rO+oCs59H4WqN2WiZOK 484qohug7Tuks9cU5Nadtqem8itg2o6ROp8bny/OCWjKFfVip7OiEo+IemU8MyF5 Xmrk8Dazt1/Nj5TfQTwtfe76vQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHXiH7w5 pxYUR3qk7mtTd42+JdhfMB8GA1UdIwQYMBaAFGGwIjNfTYXhbUd6AGrcjj8v2pRg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0M3Ny9EQzIwMUFGRTM5 NTQxMUVDODBEOUQzNTlDNEY5QUUwMi9ZYkFpTTE5TmhlRnRSM29BYXR5T1B5X2Fs R0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liQWlNMTlOaGVGdFIzb0FhdHlPUHlfYWxHQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB N0M3Ny9EQzIwMUFGRTM5NTQxMUVDODBEOUQzNTlDNEY5QUUwMi9ZYkFpTTE5Tmhl RnRSM29BYXR5T1B5X2FsR0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDIgjhqKTdapDOKzhP1c7EtSsE3OrJaDulIfGPr4Lj3oh1DCmEaRdEL 1hyqsbEY+tx0K+32+AscSLBre4Ayh+toS8O8fJvjIfe7pNCVraRLoWjSXogeC7FP 8U0MXpQr/+nPO+QfZ4RpXsdErfoAA6eU38bllynOxM2mSpfHR/+juFfca7GWNK/k AMB9pzzDeHpu/8M3RIBj67hfunA/YJ2HnJghx9W+Kns/H2lI7UUk3+UkIz+UMwoC MG5stGmT8qddrZXP53Lg4fYgNIyVa1b7MkCKg3LC9fz9HGMWFxh/6JgnXujfKPMW bqBOk6G0fy5hb4tdAmLxq6NOlp8FB14l -----END CERTIFICATE-----Generated at Fri Dec 19 18:48:05 2025 by rpki-client