This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft File: Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft (raw, json) Hash identifier: BnEgo1SaBC4CRUjrBV/eHo0knnP/NwVPm5yRCaQD2eo= Subject key identifier: 2D:67:76:97:8E:92:03:40:A6:9F:C6:15:90:B0:14:87:9C:8B:F0:A1 Authority key identifier: 63:49:73:59:04:E1:BC:0D:65:BD:59:4A:07:76:2B:B5:29:9C:03:8A Certificate issuer: /CN=A91AFB4C/serialNumber=6349735904E1BC0D65BD594A07762BB5299C038A Certificate serial: 021E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y0lzWQThvA1lvVlKB3YrtSmcA4o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft Manifest number: 0219 Signing time: Sat 27 Dec 2025 01:16:22 +0000 Manifest this update: Sat 27 Dec 2025 01:16:21 +0000 Manifest next update: Sat 03 Jan 2026 01:16:21 +0000 Files and hashes: 1: Y0lzWQThvA1lvVlKB3YrtSmcA4o.crl (hash: Tf8EYTZI623tL6mnpOwZ9UAMaGwb2MZrPLrjqGBruBM=) 2: AD286018B29C11EDB216812EC4F9AE02.roa (hash: ck7frHwbdvA8vLLhGdgsJbIt8cpEwUyRbFKBDEFTB8E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.crl rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y0lzWQThvA1lvVlKB3YrtSmcA4o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 Jan 2026 01:16:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 542 (0x21e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AFB4C, serialNumber=6349735904E1BC0D65BD594A07762BB5299C038A Validity Not Before: Dec 27 01:16:21 2025 GMT Not After : Jan 3 01:16:21 2026 GMT Subject: CN=694f3365-ec27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:37:8f:54:ff:ba:57:02:21:57:f5:e2:b7:02: d3:2d:90:b9:01:3e:2a:24:d0:6b:c2:0d:01:02:ca: c1:f0:cf:86:12:6a:f3:5b:d5:de:ea:01:4b:3d:a7: 48:89:c5:18:fd:dd:10:70:ac:f1:8a:aa:30:8c:eb: 73:56:3e:25:29:82:30:f4:0b:3f:e0:7b:bc:ad:ea: 0e:53:3b:9f:30:9e:cf:95:be:0c:dc:49:9b:94:8b: 66:e1:7e:44:62:ed:94:fa:df:8a:d4:9e:10:4b:63: 5e:43:78:3a:76:dd:fa:e3:04:d4:6f:31:8f:cd:ee: e2:55:14:d2:a1:f8:55:0b:d5:2d:91:98:7d:4f:34: b6:14:5d:9a:4d:3f:85:29:d6:3d:13:39:9d:b0:96: d4:44:6d:d3:c0:de:ef:c6:2c:8c:84:7a:e4:95:35: ec:3d:18:03:09:29:e8:af:e5:df:cc:59:60:e6:94: 72:83:02:79:19:46:36:3f:e9:64:09:a2:da:ed:f0: e4:d3:ed:7c:dc:f9:a3:2d:4a:4b:e6:33:64:29:bc: a9:b2:02:0f:4c:4a:24:71:85:c2:24:23:cb:4d:0a: 9c:1a:eb:8f:26:11:c4:3c:e5:df:0c:5c:41:98:57: e1:84:67:1c:ce:24:88:73:07:1d:0a:49:fb:48:59: 6a:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:67:76:97:8E:92:03:40:A6:9F:C6:15:90:B0:14:87:9C:8B:F0:A1 X509v3 Authority Key Identifier: keyid:63:49:73:59:04:E1:BC:0D:65:BD:59:4A:07:76:2B:B5:29:9C:03:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y0lzWQThvA1lvVlKB3YrtSmcA4o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:99:2d:41:96:4c:4c:10:20:0d:f8:64:6e:1b:8d:7d:20:ae: 59:d3:4e:20:52:96:9f:b5:90:38:c1:42:f7:98:3b:18:05:76: bb:3e:ab:31:e2:01:50:02:58:8f:d6:09:41:c3:15:40:17:b6: 68:db:c0:41:f0:d5:dd:3b:5f:54:70:5a:31:dd:ca:b4:9e:c1: ad:1d:69:5b:d1:39:cc:3b:af:e8:f7:89:59:6e:91:37:1e:88: 2d:12:dd:43:8a:c6:68:0e:71:93:b1:b4:f5:68:d5:86:3a:63: ad:d9:2b:91:51:15:43:4c:19:db:2c:b9:18:86:ec:ca:4a:db: dc:a7:12:e2:6f:b4:30:23:8e:62:0f:d2:12:f5:2d:d1:e3:1f: e1:33:8d:f0:73:af:20:3f:b0:46:e3:84:a2:26:a5:4b:f9:c8: 38:bf:6b:e4:ee:94:1e:b9:c4:2d:91:5d:f9:05:9d:03:73:e8: 78:88:51:b4:76:a0:69:31:fc:48:48:83:e7:fc:f5:f1:dc:d8: 11:1b:b9:f4:ad:ba:19:93:ae:5a:43:2a:1b:48:a1:36:fe:80: 27:d2:f2:95:0c:73:20:3a:df:40:22:fe:1f:37:40:c6:8b:72: 3e:4e:60:25:3b:8c:83:bc:91:94:f4:04:e3:d6:a9:15:5f:8b: 45:c1:3a:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAh4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUZCNEMxMTAvBgNVBAUTKDYzNDk3MzU5MDRFMUJDMEQ2NUJENTk0QTA3NzYyQkI1 Mjk5QzAzOEEwHhcNMjUxMjI3MDExNjIxWhcNMjYwMTAzMDExNjIxWjAYMRYwFAYD VQQDDA02OTRmMzM2NS1lYzI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlTePVP+6VwIhV/XitwLTLZC5AT4qJNBrwg0BAsrB8M+GEmrzW9Xe6gFLPadI icUY/d0QcKzxiqowjOtzVj4lKYIw9As/4Hu8reoOUzufMJ7Plb4M3EmblItm4X5E Yu2U+t+K1J4QS2NeQ3g6dt364wTUbzGPze7iVRTSofhVC9UtkZh9TzS2FF2aTT+F KdY9EzmdsJbURG3TwN7vxiyMhHrklTXsPRgDCSnor+XfzFlg5pRygwJ5GUY2P+lk CaLa7fDk0+183PmjLUpL5jNkKbypsgIPTEokcYXCJCPLTQqcGuuPJhHEPOXfDFxB mFfhhGccziSIcwcdCkn7SFlqKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC1ndpeO kgNApp/GFZCwFIeci/ChMB8GA1UdIwQYMBaAFGNJc1kE4bwNZb1ZSgd2K7UpnAOK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRkI0Qy9DNDcwQjIyQUIy OTcxMUVEOTRFRjA5MjZDNEY5QUUwMi9ZMGx6V1FUaHZBMWx2VmxLQjNZcnRTbWNB NG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1kwbHpXUVRodkExbHZWbEtCM1lydFNtY0E0by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RkI0Qy9DNDcwQjIyQUIyOTcxMUVEOTRFRjA5MjZDNEY5QUUwMi9ZMGx6V1FUaHZB MWx2VmxLQjNZcnRTbWNBNG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCnmS1BlkxMECAN+GRuG419IK5Z004gUpaftZA4wUL3mDsYBXa7Pqsx 4gFQAliP1glBwxVAF7Zo28BB8NXdO19UcFox3cq0nsGtHWlb0TnMO6/o94lZbpE3 HogtEt1DisZoDnGTsbT1aNWGOmOt2SuRURVDTBnbLLkYhuzKStvcpxLib7QwI45i D9IS9S3R4x/hM43wc68gP7BG44SiJqVL+cg4v2vk7pQeucQtkV35BZ0Dc+h4iFG0 dqBpMfxISIPn/PXx3NgRG7n0rboZk65aQyobSKE2/oAn0vKVDHMgOt9AIv4fN0DG i3I+TmAlO4yDvJGU9ATj1qkVX4tFwToo -----END CERTIFICATE-----Generated at Mon Dec 29 01:09:04 2025 by rpki-client