This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft File: yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft (raw, json) Hash identifier: KDQSIrLQXjsbSR24LXGxVP+jpo3oUJXknJtjcbM//Ks= Subject key identifier: D5:5E:92:73:E1:B3:0D:AD:36:1D:23:BD:58:7E:7B:1E:A9:BE:45:CF Authority key identifier: C8:E0:59:1E:7E:51:7D:41:9C:FC:86:17:1C:DC:A9:FD:E6:26:E8:F5 Certificate issuer: /CN=A91AB3E3/serialNumber=C8E0591E7E517D419CFC86171CDCA9FDE626E8F5 Certificate serial: 0220 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yOBZHn5RfUGc_IYXHNyp_eYm6PU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft Manifest number: 021D Signing time: Fri 19 Dec 2025 01:22:27 +0000 Manifest this update: Fri 19 Dec 2025 01:22:27 +0000 Manifest next update: Fri 26 Dec 2025 01:22:27 +0000 Files and hashes: 1: yOBZHn5RfUGc_IYXHNyp_eYm6PU.crl (hash: ewJ76UsQ4LxQpMPcWjGvHx6AXCGNDZANaLK5BoTQ/SU=) 2: 1E7B7BB4996C11EDA107E666C4F9AE02.roa (hash: /ERrUArKmo0KgEQ70S3Uf+U0E1QNCp3+3kkOG/O7FLo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.crl rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yOBZHn5RfUGc_IYXHNyp_eYm6PU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 01:22:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 544 (0x220) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB3E3, serialNumber=C8E0591E7E517D419CFC86171CDCA9FDE626E8F5 Validity Not Before: Dec 19 01:22:27 2025 GMT Not After : Dec 26 01:22:27 2025 GMT Subject: CN=6944a8d3-ad27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:4e:0b:99:17:3a:f5:87:09:e2:d6:1e:b8:7a: 2a:75:5c:c3:b3:ca:44:91:7f:76:c1:e9:87:fc:c0: c3:25:12:87:99:7d:a7:63:d6:dd:92:3b:7e:42:08: f5:16:85:aa:d6:ee:a8:36:21:09:6b:8d:4e:24:64: 58:9c:49:4c:95:68:e5:4a:e3:ef:08:64:e6:8e:15: f2:c5:83:7b:8b:33:b4:e5:bb:f6:5d:89:0c:11:dc: 3f:85:a2:97:0d:2a:4b:ac:32:3e:ca:bb:12:d2:f8: 1e:13:07:28:00:c7:c0:dc:a3:49:e6:58:50:5d:0d: 88:77:9f:a3:d5:69:af:26:0e:fe:03:41:34:84:a2: 15:ae:cb:43:13:a3:74:51:e6:73:2c:23:4e:81:24: 81:ba:88:bc:4b:00:da:98:33:a1:0d:37:d2:88:ea: 00:fb:46:73:83:4b:49:d6:78:09:4c:bd:18:4c:db: 33:2e:85:6b:a4:3a:63:67:3d:3e:03:e2:60:98:f1: f9:14:4d:a6:86:4d:b6:76:1f:c1:a3:4c:57:8c:f5: 77:b5:8d:28:e9:74:22:4e:67:1e:63:a6:49:8d:12: f0:3d:cc:5c:1c:2e:86:e6:0d:07:0a:f0:a4:a3:36: 67:15:8b:05:b3:0c:02:ad:86:83:79:d0:06:c2:95: 1e:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:5E:92:73:E1:B3:0D:AD:36:1D:23:BD:58:7E:7B:1E:A9:BE:45:CF X509v3 Authority Key Identifier: keyid:C8:E0:59:1E:7E:51:7D:41:9C:FC:86:17:1C:DC:A9:FD:E6:26:E8:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yOBZHn5RfUGc_IYXHNyp_eYm6PU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:01:9e:77:37:65:82:ae:75:41:9b:20:a2:26:cf:19:c0:67: 9f:f2:9c:92:4d:86:b6:85:6d:27:2f:03:09:a1:25:dd:ef:b4: eb:10:cc:c0:8f:ac:8b:62:28:6e:c5:f8:f5:57:20:4e:ed:ad: c2:22:e7:18:9d:63:d3:fe:b3:53:9f:b8:12:db:60:31:c5:2a: 2b:79:f2:1b:19:75:55:43:7a:33:b4:2e:38:51:78:1b:13:4f: b0:60:ea:b2:bb:04:46:ff:ff:62:c8:57:be:58:56:a7:00:71: a7:5b:b6:25:7b:00:e2:5b:79:b8:bb:ed:df:71:3c:20:bb:2e: 20:b4:32:6a:ee:0c:20:2f:68:ad:cc:5d:1e:88:12:60:28:b8: 89:95:43:e2:39:2b:98:f1:56:e0:01:7a:84:07:28:bd:b8:c8: dc:0d:71:17:63:74:0b:59:96:0f:1b:f1:b1:16:20:4f:86:3b: d8:2e:0e:3e:b9:8b:7f:32:41:81:2f:49:ed:eb:6d:f9:b6:b6: 2b:7b:d7:f3:d4:5a:18:8b:6a:ac:41:b9:12:38:06:9d:ce:06: e0:7c:d5:92:39:30:59:51:d8:3f:eb:78:ba:fa:9d:8a:a5:cc: c4:c1:72:9a:fa:ec:90:09:03:b6:7c:68:43:78:08:c9:c0:c1: 36:f8:8c:67 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUIzRTMxMTAvBgNVBAUTKEM4RTA1OTFFN0U1MTdENDE5Q0ZDODYxNzFDRENBOUZE RTYyNkU4RjUwHhcNMjUxMjE5MDEyMjI3WhcNMjUxMjI2MDEyMjI3WjAYMRYwFAYD VQQDDA02OTQ0YThkMy1hZDI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmk4LmRc69YcJ4tYeuHoqdVzDs8pEkX92wemH/MDDJRKHmX2nY9bdkjt+Qgj1 FoWq1u6oNiEJa41OJGRYnElMlWjlSuPvCGTmjhXyxYN7izO05bv2XYkMEdw/haKX DSpLrDI+yrsS0vgeEwcoAMfA3KNJ5lhQXQ2Id5+j1WmvJg7+A0E0hKIVrstDE6N0 UeZzLCNOgSSBuoi8SwDamDOhDTfSiOoA+0Zzg0tJ1ngJTL0YTNszLoVrpDpjZz0+ A+JgmPH5FE2mhk22dh/Bo0xXjPV3tY0o6XQiTmceY6ZJjRLwPcxcHC6G5g0HCvCk ozZnFYsFswwCrYaDedAGwpUesQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNVeknPh sw2tNh0jvVh+ex6pvkXPMB8GA1UdIwQYMBaAFMjgWR5+UX1BnPyGFxzcqf3mJuj1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjNFMy9BOTQ2MjRCNDk5 NjgxMUVEQjE2MkY4NjFDNEY5QUUwMi95T0JaSG41UmZVR2NfSVlYSE55cF9lWW02 UFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lPQlpIbjVSZlVHY19JWVhITnlwX2VZbTZQVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjNFMy9BOTQ2MjRCNDk5NjgxMUVEQjE2MkY4NjFDNEY5QUUwMi95T0JaSG41UmZV R2NfSVlYSE55cF9lWW02UFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFAZ53N2WCrnVBmyCiJs8ZwGef8pySTYa2hW0nLwMJoSXd77TrEMzA j6yLYihuxfj1VyBO7a3CIucYnWPT/rNTn7gS22AxxSorefIbGXVVQ3oztC44UXgb E0+wYOqyuwRG//9iyFe+WFanAHGnW7YlewDiW3m4u+3fcTwguy4gtDJq7gwgL2it zF0eiBJgKLiJlUPiOSuY8VbgAXqEByi9uMjcDXEXY3QLWZYPG/GxFiBPhjvYLg4+ uYt/MkGBL0nt6235trYre9fz1FoYi2qsQbkSOAadzgbgfNWSOTBZUdg/63i6+p2K pczEwXKa+uyQCQO2fGhDeAjJwME2+Ixn -----END CERTIFICATE-----Generated at Fri Dec 19 20:17:12 2025 by rpki-client